Video Screencast Help
Scheduled Maintenance: Symantec Connect is scheduled to be down Saturday, April 19 from 10am to 2pm Pacific Standard Time (GMT: 5pm to 9pm) for server migration and upgrade.
Please accept our apologies in advance for any inconvenience this might cause.

USB Access on non n/w systems

Created: 10 Oct 2012 • Updated: 12 Oct 2012 | 5 comments
This issue has been solved. See solution.

I have 2-3 systems which has not getting the password. these systems are not in network now and I am not able to connect it in network becaus of security reason.

It require to set the full access of USB ADC policy.

I have try to uninstall it but due to password protected it not possible.

So is there any process to remove the password otherwise any way to update the policy here.

pls reply.

Comments 5 CommentsJump to latest comment

Sumit G's picture

Hi

How to manually uninstall Symantec Endpoint Protection client from Windows 2000, XP and 2003, 32-bit Editions

http://www.symantec.com/business/support/index?page=content&id=TECH102261

If you don't have any uninstall password change registry setting.

If it not done in normal mode then change it in Safe Mode because in Safe Mode SMC Service not working

HKEY_LOCAL_MACHINE\SOFTWARE\Symantec\Symantec Endpoint Protection\AV\AdministratorOnly\Security\UseVPUninstallPassword

Set to 0 to disable

then try to uninstall from ADD or Remove Program

or

 Use cleanwipe. you could create a Case Online and the Technical Support would provide you with the Tool.

 

How to update a support case and upload diagnostic files with MySupport

http://www.symantec.com/docs/TECH71023

Create and Manage Support Cases

http://www.symantec.com/business/support/index?page=content&id=HOWTO31091

Regards

Sumit G.

rs_cert's picture

Easiest Way is that you can Export the policy from another client where USB Access Available and paste in that systems

Steps -  Export the Policy

  • Open the SEP client shield.
    Click on Help.
    Click on Troubleshooting.
    Under Management there is Export Tab in Policy Profile, click the Export button.
    Export the policy in .xml format to the hard drive
     
  • Move that file using USB Device
  • Steps - Import: the policy

Open the SEP client.
Click on Help.
Click on Troubleshooting.
Under Management there is Import Tab in Policy Profile, click the Import button.
Import the policy in .xml format from the hard drive.
 

Hope this steps can help to get the access on that systems without uninstallation

  •  
SOLUTION
consoleadmin's picture

You are able to provide the USB access of that systems if it is infront of you

Follow the Steps

Run the system in safe Mode so USB device will be enable there.
Copy the sylink file of full access system in usb device and repace with that system sylink file where you required to update full access
Paste on the attach Path

path - C:\Program Files\Symantec\Symantec Endpoint Protection

Restart the system in Normal Window then check it will be work

2nd Way

Export the Sylink file from Server
Use the below step

login the sepm console
Go to Client Tab

Right Click on that Group where USB policy assigned

Select the Export Communication Setting

Browse the path and Export the file with name of Sylink.xml

Copy that file and paste it in to that client path

path - C:\Program Files\Symantec\Symantec Endpoint Protection

 

Hope it can help you

Thanks.

Sumit G's picture

Remove the Symantec in Safe Mode

In Safe Mode window installer service not working so you required to enable it.

try the below link to enable the service

https://www-secure.symantec.com/connect/articles/how-remove-sep-safe-mode

http://www.technibble.com/safemsi-exe-start-windows-installer-service-in-safe-mode/

 

Change registry setting to disable the password of sep uninstallation

HKEY_LOCAL_MACHINE\SOFTWARE\Symantec\Symantec Endpoint Protection\AV\AdministratorOnly\Security\UseVPUninstallPassword

Set to 0 to disable

Regards

Sumit G.

Seyad's picture

Hi Singh,

Uninstalling SEP client will leave the client unprotected.

Alternatively, you can find another computer with the desired policy (may be you can use a test machine and assign the policies to that machine) and export the 'Policy Profile' of that PC and send it to the affected PC (by some means, like email) and import it in to the affected PC. To know more about it, check the link below.

http://www.symantec.com/docs/TECH190053

 

Cheers.