Endpoint Protection Point error 0x8007002



Enabling the Endpoint Protection Point on the primary/central administration server, you might encounter this error.

SCEPInstall.exe retursn 0x80070002
SMSEP could not be installed. The return code was -2147024894

Possible causes of this are:

  • There are other AV software installed on the server. Remove it.
  • Windows Defender service is not running. Ensure that it is running
  • The account you are using does not have enough permission. Ensure that correct permission is applied.
All these are must be corrected then try to enable again the EP Role.

But if you are using Windows Server 2016, even though all the causes above was addressed you may still encounter the error 0x80070002, because of the built-in Windows Defender which also included a antimalware client that is preventing you to create registry entry for the SCEP client thus causing the error.

SCEP Registry entry:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Microsoft Security Client


To resolve this issue:
If you have an existing client PC with SCEP client is installed, you can export the register entry, and the import it to the server.

Once export is successful, you can rerun and enable the Endpoint Protection Role.




Hope this helps! :)



Comments

Post a Comment

Popular posts from this blog

Enable Endpoint Protection Point in SCCM version 1802

Image
How to Enable Endpoint Protection Point on SCCM. In this post I will discus how to enable Endpoint Protection Point on SCCM Current Branch 1802. Enabling Endpoint Protection role in SCCM will allow you to manage antimalware policies and definition update, Windows Firewall security for you client computers in you Configuration Manager. Before installing Endpoint Protection Role, you must have the following: Working SCCM environment. Windows Server Update Services (WSUS) is enabled and configured for software updates synchronization. Software Update Point site system system must be enabled and configure to deliver definition updates if you will used Configuration Manager software update to deploy definition and engine updates. Endpoint Protection role must be install on one site system server only and at the top of the hierarchy on a Central Administration site or Stand-along primary site. To install the Endpoint Protection Role: Open Configuration Management Console
Read more

How to connect your Hyper-V VM to internet

Image
Hyper-V uses virtual switch, for your VM to communicate to each other, for your VM to communicate to the host and for your VM to be able to access your internet, if you need too. Hyper-V has 3 categories on virtual switch, Internal , Private and External virtual switch.             External virtual switch – is the virtual switch that connect to the physical network.            Internal virtual switch – is use to connect all your VM to communicate to each other and to communicate to host.            Private virtual switch – is used to connect all your VM to communicate to each other, but cannot communicate to the host. For your VM to connect to the internet, you must create an external virtual switch. In creating your virtual switch, you should know, which type of physical network your host has internet connectivity. Are you using wired connection or wireless connection? To create external virtual switch: Open Hyper-V, then on the host PC, right-cli
Read more