Unable to launch the Symantec Management Agent user interface. Error: Unable to start user session: A required privilege is not held by the client.

book

Article ID: 157446

calendar_today

Updated On:

Products

Management Platform (Formerly known as Notification Server) Client Management Suite Server Management Suite

Issue/Introduction

The Symantec Management Agent icon is not displayed in the system tray and when attempting to open the user interface via AeXAgentActivate.exe, an error message is displayed:  Error activating agent session, please see the agent log for details.

The agent logs may reflect the messages below.

StartRemoteSession: Unable to start user session: Security error:  A required privilege is not held by the client. (-2147023582)

StartRemoteSession: Failed to get session 2 user token, error: A required privilege is not held by the client (0x00000522)

Failed to get session 2 user name, error: A required privilege is not held by the client (0x00000522)

Failed to start the session or activate the object '{FF1B80EC-257A-4DF9-8712-74150E4ADB2A}' in session 2, COM error: Failed to get the session (0x80004002)

 

Cause

The Symantec Management Agent is not running as the Local System Account.

Environment

7.x, 8.x

Resolution

By default, the Symantec Management Agent runs under the local system account.  If the agent service has been modified to use an alternate logon credentials, then you may run into this error.  It is best to leave the Symantec Management Agent service running as Local System Account.

After making the change to the Logon Credentials, stop and start the agent.

Attachments