Endpoint Protection

Hello.

Recently installed the refresh update, that allows the client uninstall password to be removed from SEPM. This morning tried to remove the setting (we have some troublesome clients that seem to need the sw to be uninstalled first before the new version can be installed), but when I go to Clients - Policies - Password and take the check mark off from "Require a password to uninstall the client" and click ok and open the same setting again, the check mark is again on. 

Has anyone else encoutered this? If so did you find a fix for that, does something else need to be done first (My undestanding is that not)?

We have AD sync in pIace, I have so far tested this for one OU, that does not have inheritance on, and also for the whole My Company, but everywhere this setting just does not seem to budge.

Hi Sepe, 

Thanks for reaching out to the Broadcom Community. 

This is the first I've heard of this. 

To investigate this issue kindly open a ticket with Support!

Thanks,

Russ_V

Hello.

Recently installed the refresh update, that allows the client uninstall password to be removed from SEPM. This morning tried to remove the setting (we have some troublesome clients that seem to need the sw to be uninstalled first before the new version can be installed), but when I go to Clients - Policies - Password and take the check mark off from "Require a password to uninstall the client" and click ok and open the same setting again, the check mark is again on. 

Has anyone else encoutered this? If so did you find a fix for that, does something else need to be done first (My undestanding is that not)?

We have AD sync in pIace, I have so far tested this for one OU, that does not have inheritance on, and also for the whole My Company, but everywhere this setting just does not seem to budge.

Apparently at least in our instance it seems to be working so, that if we have the "Use a group client password" setting on, the "Require a password to uninstall the client" setting does not stay off. But, if I set the password  to "Use the default client password", and remove the require uninstall password setting, it stays off. We will test this, when the next maintenance window comes along, so no ticket for now.

Hi Sepe, 

Thanks for reaching out to the Broadcom Community. 

This is the first I've heard of this. 

To investigate this issue kindly open a ticket with Support!

Thanks,

Russ_V

Hello.

Recently installed the refresh update, that allows the client uninstall password to be removed from SEPM. This morning tried to remove the setting (we have some troublesome clients that seem to need the sw to be uninstalled first before the new version can be installed), but when I go to Clients - Policies - Password and take the check mark off from "Require a password to uninstall the client" and click ok and open the same setting again, the check mark is again on. 

Has anyone else encoutered this? If so did you find a fix for that, does something else need to be done first (My undestanding is that not)?

We have AD sync in pIace, I have so far tested this for one OU, that does not have inheritance on, and also for the whole My Company, but everywhere this setting just does not seem to budge.

Hello 

I have a similar case. After enforcing password protection for uninstalling clients in SEP 14.3 RU10, it is necessary to uninstall them using GPO. How to send the password to the installer in the command line?

https://knowledge.broadcom.com/external/article/156148
https://techdocs.broadcom.com/us/en/symantec-security-software/endpoint-security-and-management/endpoint-protection/all/appendices/uninstalling-client-software-with-an-active-direct-v8528056-d21e3807.html

thank you
-- 
Pawel

Apparently at least in our instance it seems to be working so, that if we have the "Use a group client password" setting on, the "Require a password to uninstall the client" setting does not stay off. But, if I set the password  to "Use the default client password", and remove the require uninstall password setting, it stays off. We will test this, when the next maintenance window comes along, so no ticket for now.

Hi Sepe, 

Thanks for reaching out to the Broadcom Community. 

This is the first I've heard of this. 

To investigate this issue kindly open a ticket with Support!

Thanks,

Russ_V

Hello.

Recently installed the refresh update, that allows the client uninstall password to be removed from SEPM. This morning tried to remove the setting (we have some troublesome clients that seem to need the sw to be uninstalled first before the new version can be installed), but when I go to Clients - Policies - Password and take the check mark off from "Require a password to uninstall the client" and click ok and open the same setting again, the check mark is again on. 

Has anyone else encoutered this? If so did you find a fix for that, does something else need to be done first (My undestanding is that not)?

We have AD sync in pIace, I have so far tested this for one OU, that does not have inheritance on, and also for the whole My Company, but everywhere this setting just does not seem to budge.