When attempting to install or upgrade to the Symantec Endpoint Protection (SEP) 14.3 RU8 or later, the following error appears.



The SIS_INST.log may contain any of the following lines:

File C:\Program Files\Symantec\Symantec Endpoint Protection\14.3.10148.8000.105\Bin64\Smc.exe is not trusted. Verification result: 3

File C:\Program Files\Symantec\Symantec Endpoint Protection\14.3.10148.8000.105\Bin64\Smc.exe failed trust check. Error code: 8007007B = The filename, directory name, or volume label syntax is incorrect.

File C:\Program Files\Symantec\Symantec Endpoint Protection\14.3.11213.9000.105\Bin64\sepWscSvc64.exe is not trusted. Verification result: 3

14.3 RU8 and later 

SEP 14.3 RU8 and later requires Microsoft Trusted Signing Support. (formerly Microsoft Azure Code Signing)

To correctly verify modules signed by Microsoft Trusted Signing, computers are required to have the "Microsoft Identity Verification Root Certificate Authority 2020" certificate authority (CA) installed.

Install the Microsoft Identity Verification Root Certificate Authority 2020 on the problematic system in Trusted Root Certification Authorities Certificate Store.

In some scenarios, DigiCertAssuredIDRootCA also needs to be installed in advance for a successful install of SEP.

Upgrading Windows client computers with Microsoft Trusted Signing (formerly Azure Code Signing) support (14.3 RU8 and later)

Certificate error when installing, upgrading, or removing Endpoint Protection

Error: "The installer integrity check failed..." installing Endpoint Protection