Introduction If you are a system administrator managing a corporate network, you have likely faced the dreaded scenario: a user forgets their Symantec Endpoint Protection (SEP) client password, or a former IT employee leaves without handing over the Uninstall password. Suddenly, you cannot disable the firewall to install new software, you cannot uninstall an outdated client, and you cannot modify policies.

:: Stop the SEP Management Service temporarily echo Stopping SEP services... net stop "Symantec Endpoint Protection" /y >nul 2>&1 timeout /t 2 /nobreak >nul

@echo off title Symantec Endpoint Protection Password Reset Tool (SEP 14) echo ====================================================== echo SEP 14 Client Password Reset Utility echo ====================================================== echo. echo This script will reset the Client Control and Uninstall password. echo You must run this script as Administrator. echo. pause :: Check for Admin rights net session >nul 2>&1 if %errorLevel% neq 0 ( echo ERROR: Please run this batch file as Administrator. pause exit /b 1 )

Enter resetpass.bat . This is a lifesaver utility provided officially by Broadcom (formerly Symantec) designed specifically to reset the SEP client password without needing the old one.

echo. echo Password reset complete. The new password is now BLANK (empty string). echo You can now uninstall or reconfigure SEP without a password. echo. echo IMPORTANT: Restart the computer to apply changes. echo. pause

:: Alternative command for newer builds (14.3+) :: "C:\Program Files\Symantec\Symantec Endpoint Protection\smc.exe" -p reset

:: Reset the password using smc command echo Resetting password... "C:\Program Files\Symantec\Symantec Endpoint Protection\smc.exe" -stop "C:\Program Files\Symantec\Symantec Endpoint Protection\smc.exe" -start "C:\Program Files\Symantec\Symantec Endpoint Protection\smc.exe" -securitypasswordreset