Solved

stopping Symantec services and deleting old virus definition files

Posted on 2014-01-15
10
3,002 Views
Last Modified: 2014-01-18
stopping Symantec services.

I am trying to stop the following services:
Symantec endpoint protection
Symantec Management Client
but the stop button is greyed out.

Though I am logged in to a domain controller as domain admin, but still cannot stop the services I indicated.
I need to stop the services so that I can deleted old virus definition files which are taking too much space

any help will be very much helpful

Thanks
0
Comment
Question by:jskfan
  • 5
  • 5
10 Comments
 
LVL 30

Assisted Solution

by:Gareth Gudger
Gareth Gudger earned 500 total points
Comment Utility
Open a command prompt.

Change the directory to where SEP is installed.

Type the following command.

"smc -stop"

This will stop all services related to SEP. There is a space in between SMC and -STOP

Also, SMC -START will restart all services when done.
0
 

Author Comment

by:jskfan
Comment Utility
it prompts for password when I type my domain admin password it does not take it
0
 
LVL 30

Expert Comment

by:Gareth Gudger
Comment Utility
Ah. Someone must have configured a password in the Policies to disable the AV services.... do you have access to the Symantec EndPoint Protection Manager where you can move this server into a new group, apply a different policy to it, or, remove the setting that says service stops require a password?
0
 

Author Comment

by:jskfan
Comment Utility
The service is started, however everything is greyed out, I cannot disable it nor start it nor stop it...though I am logged in to the domain controller as Domain Admin
0
 
LVL 30

Expert Comment

by:Gareth Gudger
Comment Utility
Yea it doesn't matter what credentials you have on the domain itself. This service shutdown password is set in Symantec EndPoint Protection Manager and the SEP Tamper Protection makes sure you have that password. Can you access SEPM to change or remove this password? Its easy to do.
0
What Should I Do With This Threat Intelligence?

Are you wondering if you actually need threat intelligence? The answer is yes. We explain the basics for creating useful threat intelligence.

 

Author Comment

by:jskfan
Comment Utility
I managed to stop the service, but still cannot delete the folders under VirusDef, I get a message: You require permissions from Administrators to make change to this folder
0
 
LVL 30

Expert Comment

by:Gareth Gudger
Comment Utility
Check this article. It list the files and folders specifically to look for and delete.
http://www.symantec.com/business/support/index?page=content&id=TECH102927
0
 

Author Comment

by:jskfan
Comment Utility
This helped me delete the files

To disable Tamper Protection for an individual client:

1.Open the client interface and go to Change Settings on the left.  
2.Click "Configure Settings" next to Client Management.
3.Select the "Tamper Protection" tab and uncheck the box that says, "Protect Symantec security software from being tampered with or shut down."
0
 
LVL 30

Accepted Solution

by:
Gareth Gudger earned 500 total points
Comment Utility
Ah nice. That's surprising they had password protected the services from being shut down and not blocked changes to the Tamper Protection. Normally its all or nothing. But glad you got it resolved.
0
 

Author Closing Comment

by:jskfan
Comment Utility
Thanks
0

Featured Post

Find Ransomware Secrets With All-Source Analysis

Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

Join & Write a Comment

Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
A safe way to clean winsxs folder from your windows server 2008 R2 editions
This tutorial will give a an overview on how to deploy remote agents in Backup Exec 2012 to new servers. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as connecting to a remote Back…
This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently change…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now