Endpoint Protection

 View Only

  • 1.  Disabling Uninstall Password

    Posted Oct 07, 2009 01:37 PM
    Hi! I'm looking for a way to disable the uninstall password on a SEP client, preferrably silently and remotely. There is a discussion here (https://www-secure.symantec.com/connect/forums/silent-uninstall-symantec-end-point-agent-without-supplying-password) which appears promising as there is talk of a tool to do this, but the topic is old and stale and I'm hoping this post will receive more attention.

    Thanks!


  • 2.  RE: Disabling Uninstall Password

    Posted Oct 07, 2009 01:44 PM
    You can do it from SEPM

    password to stop.JPG


  • 3.  RE: Disabling Uninstall Password

    Posted Oct 07, 2009 01:51 PM
    That works, Sandeep, so long as I stop the SMC service. Thank you very much!


  • 4.  RE: Disabling Uninstall Password

    Posted Oct 07, 2009 01:55 PM

    @Sandeep

    Thanks for the key

    Regards...
    Ramji Iyyer



  • 5.  RE: Disabling Uninstall Password

    Posted Oct 07, 2009 02:16 PM
    Because we're a security company, we don't post things like this pubically.  The logic behind this is that we don't want John Enduser uninstalling/removing the software against Steve Admin's wishes (which are clear because of the setting of a password for uninstallation).

    To get this information, you must contact support where we can verify that you are the contact person and provide the information to you.  It won't be posted publically.


  • 6.  RE: Disabling Uninstall Password

    Posted Oct 07, 2009 02:29 PM
     I would agree to Chris on this and even sandeep in his earlier post which dbenett has highlight wrote
    " but then the information on how to take out the password for uninstall would be really disastrous, People who write the destructive code know how to use the search engines to the peak.
     "


  • 7.  RE: Disabling Uninstall Password

    Posted Oct 08, 2009 12:18 AM
    If a user has rights to delete a registry key, then there is no way you can stop him from uninstalling a program, password protected or not. There is no secret in it.


  • 8.  RE: Disabling Uninstall Password

    Posted Oct 08, 2009 12:24 AM
    Maybe the bent of mind but now I think there is no risk if someone knows how to take the password away. This is not a vulnerability or exploit.


  • 9.  RE: Disabling Uninstall Password

    Posted Oct 08, 2009 12:57 AM
    These posts are somewhat digressing from the askers question, but I would still like to point out that while I think Chris and Vikram are right (this shouldn't be posted in Symantec's space without properly verifying the user) it is pretty much publicly available information about how to uninstall SEP without a password. Anyone who has even used google before should be able to find out this information in about 5 seconds. Personally I feel that it should be up to the adminstrator to restrict access to the registry if he/she doesn't wish these kind of acts to be performed. It goes against all logic to restrict someone from uninstalling their anti-virus software but then giving them full access to the registry. Again this is just my personal feelings on the subject.

    Cheers,
    Grant