search cancel

Symantec Download Manager unable to reach cloud resources


Article ID: 221136


Updated On:


Endpoint Protection Cloud


You created the Symantec Endpoint Security (SES) Cloud agent (Symantec_Agent_setup.exe) from the Integrated Cyber Defense Manager (ICDm). When you launch the Symantec Endpoint Security (SES) Cloud agent installation (Symantec_Agent_setup.exe) on a Windows system, it failed with the following error messages.


FSDLauncher. Log
2021-06-12-01-31-22-146 : 0x15B0 : Error : Unable to connect, hr 0x80072F8F


SES, SEP 14.x


Use PSEXEC.EXE to SPOC Test with SYSTEM account and determine if Symantec Endpoint Security (SES) is able to communicate with Symantec the ICDm cloud console and connect specific URLs that Symantec owns to perform multiple functions.   The following procedure is provided as an example of how you can use the Microsoft SysInternal tool PsExec.exe test the connections.  

For a free download of PsExec.exe, and information about this tool, visit PsTools Jump in the Windows Sysinternals web site on TechNet.
Download PSExec from Microsoft Sysinternal tools

We will use the PSExec tool here to do a SPOC Test with SYSTEM account.  SPOC is the Cloud notification service which get used to notify the client to check into the cloud services.

1. Copy or move the psexec.exe to new folder ‘Ex: C:\test’

2. Go to the DOS Command Prompt as local Administrator

3. Run Powershell.exe

4. Type the following command to launch a second Powershell cmdlet

Start-Process -FilePath cmd.exe -Verb Runas -ArgumentList '/k C:\Path\To\psexec.exe -i -s powershell.exe'

Note: The path to the psexec.exe should be C:\test\psexec.exe

5. Type the command to validate SYSTEM account


Expected result - NT authority\system

6. Invoke the following test commands

Test-NetConnection -Port 443
Test-NetConnection -Port 443
Test-NetConnection -Port 443
Test-NetConnection -Port 443
Test-NetConnection -Port 443
Test-NetConnection -Port 443


Example of the results you will get:

  Test-NetConnection -Port 443
  Expected result
  ComputerName     :
  RemoteAddress    : <REMOTE IP>
  RemotePort       : 443
  InterfaceAlias   : tap91327765-c0
 SourceAddress    : <Local IP>
 TcpTestSucceeded : True

7. Type Exit to quit

If any of the above tests fail, please consult your local network administrator to help determine why.  A failure of the above is a result of a bad network path.


Additional Information

URLs that allow SEP and SES to connect to Symantec servers

Firewall requirements

Another cause for the same error could be a missing certificate. Please verify that the certificate for is installed as per this article: