If Symantec Scan Engine is installed on Windows and the protocol setting is changed to RPC through the console, the service startup properties may need to be changed to an account that has the appropriate permissions.
You might also need to change the service startup properties if you edit the list of RPC clients.
If the client uses the RPC protocol, the account that is assigned to the Symantec Scan Engine service must have all of the following rights and permissions:
Access rights to the RPC clients
Domain administrators or backup operators privileges
Local administrator permissions on the computer on which Symantec Scan Engine runs
Rights to run as a service
If your client uses the native protocol, the account that is assigned to the Symantec Scan Engine service must have:
Access rights to any shared drives or universal naming convention (UNC) paths for which scanning services are provided.
Change permission so that Symantec Scan Engine can delete the infected files that it cannot repair.
To edit the service startup properties
In the Windows Control Panel, click Administrative Tools.
In the list of services, right-click Symantec Scan Engine, and then click Properties.
In the Properties dialog box, on the Log On tab, click This account.
Type the account name and password for the account under which Symantec Scan Engine runs (use the following format for the account name: domain\username)
Stop and restart the Symantec Scan Engine service.
Imported Document ID: TECH154399
Subscribing will provide email updates when this Article is updated. Login is required.