Endpoint Protection

 View Only

  • 1.  Bypass password Uninstall of Symantec endpoint protection

    Posted May 18, 2009 07:52 AM
    It looks like their is a possibility to bypass the password for uninstalling Symantec. Does someone have a solution
    to prevent this. Indeed taking of the priveliges of the users is one possibility. Does anyone have or knows a script to
    see people who try to uninstall sep this way?


  • 2.  RE: Bypass password Uninstall of Symantec endpoint protection

    Posted May 18, 2009 10:15 AM
    You can use CleanWipe tool from Symantec (ask Symantec tech support for it)

    or

    Use following procedure:
    http://www.symantec.com/connect/forums/uninstall-sep-11-without-password
    and next for full clean use following tool:
    http://www.symantec.com/connect/forums/sep11-32-bit-removal-utility


  • 3.  RE: Bypass password Uninstall of Symantec endpoint protection

    Posted May 18, 2009 10:19 AM
    Use App/Dev Control to lock down the reg key


  • 4.  RE: Bypass password Uninstall of Symantec endpoint protection
    Best Answer

    Posted May 18, 2009 10:32 AM
    You can use Application control in SEP to prevent access to that reg key as identified above. You can then create notifications based on the alert generated when someone attempts this process.


  • 5.  RE: Bypass password Uninstall of Symantec endpoint protection

    Posted May 19, 2009 03:48 AM
    Thanks for the great info.