Data Loss Prevention

We have installed around thousand+ DLP endpoint agents by using uninstall password parameter.  For an instance, if the password has been compromised, is there a way to reset/change  the password centrally or do we need to reset/change the password individually on all the agents?

Hi Sharma,

Could you please let me know if you’re using anyone of the software to deploy the agents

For Example: Symantec Management Platform (SMP) or Software Management System (SMS) programs or do you have your own customized one?

Thanks,

-Syed Hussain

We are using a software distribution tool for this purpose.

Let me know, if you need any other info.

Also, since you are Symantec employee, can you please help in moving this thread in DLP section. By mistake, its in Endpoint encryption section.

Hi Sharma,

In order to address this issue, there are few way to accomplish.  As you said, your using software distribution tool to deploy the agents then please follow the below steps

1. Either uninstall the agents with uninstall_agent.bat using the password that was supplied for the uninstall password.
2. Then reinstall agents with install_agent.bat with a newly created passwordkey/hash.

OR

1. Upgrade agents to a newer version with upgrade_agent.bat using new passwordkey/hash.
2. Use the same method to upgrade / uninstall / or install, as used to deploy the agents to begin with.

See Page 1184 of 11.1 Admin Guide.

 Note:  We wont be able to centrally change the password as we are using MSI facility to add the password parameter and that password is not stored centrally.

Thanks,

-Syed Hussain

Thanks Syed! I think, what you have written is correct.

Good to hear that your issue is resolved.