Thank you for the update. Looking forward to your update. A humble suggestion from our end. McAfee does not recommend the use of Endpoint Product Removal tool unless that is the only way to remove an existing version of a product installed. We want it to be your last resort if other conventional uninstall methods fail.
However, please do keep us posted with the progress. kudos to you for keeping us updated!
Good morning! I uninstall all McAfee products with the removal tool and let SCCM install normally again. From 3 machines, one of then still falling...Im sharing the logs from that machine...
Thanks a lot!
Thank you for posting the logs here. May I know if you performed the reboot after running the EPR tool?
Also, the logs we will be looking into will be the same as previous since the failure is again seen under "common" which refers to Endpoint Security Platform component.
Did you reboot following the uninstall? From the log extract it seems as though some things are pending removal upon a reboot.
Have you already checked that you have the following root certs installed:
If not, please run the two attachments, reboot and try again.
Kudos to you for your quick updates and efforts in following our suggestions! Let us know how this goes!
Any update on the progress of the issue, is the issue resolved now or is it still persisting
So, Im looking at this machines with failing installations and seeing a pattern. This machines have some software that may be causing some conflicting at the moment of the installation. A lot of the falling machines have some 1092 eventsIDs related to .dll from Eracent, IBM Truster Rapport, Diebold Warsaw and Check Point VPN.
I still testing, but in one case, I just uninstall the VPN and the McAfee installation complete with success..but in other case nothing changes and issue remain.
I will keep testing and if anything changes I'll let you guys know..
May be you should take a look at the below mentioned KBA
If you experience the issue with Check Point VPN, there is a hotfix available from Check Point that resolves the issue. For more information, see: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut....
Excellent findings! If you suspect third party dll injection, my first recommendation would be to create a ticket, Support has the time and resources to troubleshoot the issue live and investigate logs offline. However, If you are having any challenges with the same, feel free to share the logs folder in compressed zip format here and I can look into them for you. Kudos to your efforts here!
Please keep us posted on how it goes.
*Note: Kindly please sanitize the logs (removing it off sensitive information like IP Addresses) before uploading to this forum.