Endpoint Protection

I am trying to replace the sylink file remotely through SEPM in 12.1 RU3. It is failing to replace the sylink file after the authentication. There is no specific error displayed. It just says failed. Do we have any log file to check and Is there any other way to replace the sylink file remotely.

Does it authenticate? Use a local Admin account. There is a standalone tool called sylink replacer. However, make sure you have remote registry enabled when replacing the sylink.

No logs generated for this, Its just failed to authenticate the machine using the ID /pass provided.

You can replace sylink.xml Reset Client Communication

See chetan articles

https://www-secure.symantec.com/connect/articles/sep-121-ru2-and-reset-client-communication

It is getting authenticated but it is failing while replacing the file.

Enable remote registry

Is it on Win 7? Is UAC diabled?

 

It is Win7 but I am not sure whether the UAC is enabled or disabled

It needs to be disabled and remote registry service enabled

Brian,

This requirment is for Win 8 right. Do we need for Win 7 as well.

Yea

Preparing Windows and Mac computers for remote deployment

First you need to follow this, its same for any remote push you do from SEPM

http://www.symantec.com/business/support/index?page=content&id=tech163112

2) I doubt if SEP Tamper protection is blocking the replacement, check UAC, Tamper protection.

have you tried replacing it manually on one client, just to take out the possibility of Tamper protection, it should be either of these two