CleanWipe fails to fully remove Endpoint Protection 12.1 with error "Could not obtain SeDebugPrivilege"

Article Id: 157045

Status: Published

Updated On: 25-10-2018 09:35

Legacy Id: TECH196734

Products:

Endpoint Protection

Issue/Introduction:

CleanWipe fails to fully remove Symantec Endpoint Protection (SEP) 12.1. Some files, folders, and Registry keys may be left behind.

You may also see the error, "Could not obtain SeDebugPrivilege. Please ensure current user/group is listed in Local Security Policy/User Rights Assignment/Debug programs Policy".

Cause:

CleanWipe requires the administrative priviledge "Debug programs" (SeDebugPriviledge) in order to successfully remove SEP 12.1.

Resolution:

Please confirm that the account which is running CleanWipe has the "Debug programs" priviledge.

This setting can be viewed within the local machines Domain or Local Group Policy at Computer Configuration > Windows Settings > Security Settings > Local Policies > User Rights Assignment > Debug programs.

Note: After changing the windows local policy , logoff/logon, gpupdate or restarting the machine may be required for the changes to take effect.