Message Image

Skip main navigation (Press Enter).

Endpoint Encryption

View Only

Back to discussions

Expand all | Collapse all

Prohibiting un-installation of Symantec Endpoint Encryption

Migration UserJan 22, 2015 05:34 AM

Hello, I'm currently evaluating SEE and was wondering if there is a way to prevent un-installation ...

Migration UserJan 22, 2015 10:37 AM

If the product was installed using GPO, then it can only be uninstalled using the same GPO. Deploying ...

1. Prohibiting un-installation of Symantec Endpoint Encryption

0 Recommend
Migration User
Posted Jan 22, 2015 05:34 AM

Reply Reply Privately
Hello,

I'm currently evaluating SEE and was wondering if there is a way to prevent un-installation of the software on a windows 7 machine even for a user with "local admin". Please let me know if someone knows of a way. Thank You.
2. RE: Prohibiting un-installation of Symantec Endpoint Encryption

0 Recommend
Migration User
Posted Jan 22, 2015 10:37 AM

Reply Reply Privately
If the product was installed using GPO, then it can only be uninstalled using the same GPO. Deploying the product through GPO is the recommended method. Obviously, a lot of environments use different software management systems, so this will not apply for everyone.

To uninstall the Drive Encryption product, the system must be decrypted. It requires client administrator credentials to decrypt the system, and a local admin would not be able to do so unless they had access to those credentials. This should be enough to prevent uninstallation for non-GPO applications.

Copyright 2019. All rights reserved.

Powered by Higher Logic