After upgrading the Symantec Endpoint Protection (SEP) manager and clients from 14.2.x to 14.3 RU5 the password is no longer accepted on the client.

Prior Release : 14.2 RU2 MP1

Release : 14.3 RU5

Incomplete client policy conversion during upgrade.

Because of the prior version, the policy setting may not have been converted correctly. To resolve this issue, please do the following:

1. Disable the password option(s) for affected groups
2. Wait for the new policy to update on the clients, at least one hour, preferably over night
3. Enable the password option(s) again
4. Wait for the new policy to update on the clients again

You can try this in a test group and speed up the process by forcing a heartbeat at step 2 and 4 on your test client(s) by right clicking the shield and selecting Update Policy.