You are trying to use the Command Line Scanner directly on the Scan Engine server to scan a file. You instead receive a message saying it is unable to connect.
When logging the scan (with the parameter –log), the log will end with -2
Depending on some environmental variables, about 20 or more lines above the end of the log file the error appears. “Error: unable to connect to the Scan Engine”.
There are multiple causes for this error:
The Symantec Scan Engine service is not started
The protocol is not configured correctly
The number of ephemeral TCP ports in Windows is exhausted and cannot service the number of concurrent connections. In this case Command Line Scanner will scan a number of items before the error is generated.
Network issues or restrictions could be blocking access from the server the Command Line Scanner is run from to the Scan Engine server.
Verify that the scan engine service is started:
From the Start Menu, choose Run...
Type services.msc and choose OK
Locate the service listed as Symantec Scan Engine.
Verify that the service state shows running and it is set to Automatic
You can also verify that you can access https://localhost:8004 in a web browser and see if you are prompted for a password.
Check the protocol settings:
Log into the Scan Engine
Click on the Configuration and choose Protocol
Verify that ICAP is selected
For Scan Engine 5.2.x, make sure that 127.0.0.1 is checked in Binding address
Increase the number of ephemeral TCP ports on the Windows computer where Command Line Scanner is installed:
=> Warning <= Increasing the number of ephemeral TCP ports requires that a modification to the registry is done. Symantec does not accept any responsibility for modifications to the registry. Please make sure that you follow these steps carefully. It is highly recommended to backup the registry before you modify it. For more information about how to back up and restore the registry, please read the following Microsoft Knowledge Base How to back up and restore the registry in Windows
Set this DWORD value to a number higher than the default 5000 (decimal). Only increase the value in small steps, e.g. by 1000 or 2000.
Reboot the computer
The computer where the files reside that need to be scanned, may also need to have the number of ephemeral TCP ports increased. For a Windows computer, please follow http://support.microsoft.com/kb/196271 . For non-Windows computers, please refer to the documentation that applies to that Operating System.
NOTE: Symantec provides these links as a convenience only. The inclusion of such links does not imply that Symantec endorses , recommends, or accepts any responsibility for the content of such sites.
Imported Document ID: TECH93762
Subscribing will provide email updates when this Article is updated. Login is required.