Skip to main content

Symantec endpoint protection deployment fails

Deploying Symantec Endpoint Protection or SEP 14 on remote computers will fail if Firewall or services on remote computer is not properly set.

Deploying SEP version 14 to computers running Windows 8.1 will not install successfully.

If ICMPV4 is not allowed on the firewall will also cause fail deployment.

Even though ICMPV4 is enabled and allowed on the firewall and the deployment still fails.

If unable to deploy SEP 14 to remote computers running Windows 8.1, either do manual installation, send a link to user and ask them to install if user has a local admin password.

Of course, if trying to install to multiple computers remote deployment is the best way to do.

It's efficient, faster and user productivity is not disturbed.

One solution for this issue, is to enable "remoteregistry" service on the remote computers.

To enable "remoteregistry" on remote computers, open an elevated command prompt and enter the domain credentials.

C:\>sc \\James_PC_001 config remoteregistry start= auto

[SC] ChangeServiceConfig SUCCESS -- this message will be shown if the command is successful.

Next step,

C:\>sc \\sg0103 start remoteregistry 

If the command is successful a message will be displayed, success command will have this output: WIN32_EXIT_CODE    : 0  (0x0)

Once the two steps above has been done, try deploying again SEP 14 to the remote computer.

If everything goes well, deployment will be successful.

Once SEP 14 has been deployed successfully, then you need to be fair to the user.

Disable or revert back the status of the remote registry to disable.

C:\>sc \\James_PC_001 config remoteregistry start= disabled

Above command will disable the remoteregistry service.

To verify, type:
C:\>sc \\James_PC_001 stop remoteregistry 

It will show that the service is not started.

Cheers..hope it saves some time trying to figure out why SEP 14 cannot be deployed.


Popular posts from this blog

WMIC get computer name

WMIC get computer model, manufacturer, computer name and  username.
WMIC is a command-line tool and that can generate information about computer model, its manufacturer, its username and other informations depending on the parameters provided.
Why would you need a command line tool if there’s a GUI to check?
If you have 20 or 100 computers, or even more. It’s quite a big task just checking the GUI to check the computer model and username.
If you have remote computers, you need to delegate someone in the remote office or location to check.
Or you can just write a batch file or script to automate the task.
Here’s the code below on how get computer model, manufacturer and the username.
Open an elevated command prompt and type:
wmic computersystem get "Model","Manufacturer", "Name", "UserName"
Just copy and paste the code above, the word “computersystem” does not need to be change to a computer name.
A sample output below will be generated if the co…

Unable to install Teamviewer on Windows 7 and Windows 8

Installing Teamviewer on Windows 7 and Windows 8, has an error message of “rollback framework could not be initialized, installation aborted”.
To resolve this issue login to an administrator user account.
Go to an elevated command prompt and enable the hidden admin account.

Click on the link below, to check on how to open an elevated command prompt using Windows 7.

To open an elevated command prompt in Windows 10 check out link below:

Type:  net user administrator /active:yes
If the command prompt is not elevated you will receive this error:
System error 5 has occurred. Access is denied.
However if the command is successful, it will show:
The command completed successfully.