The resetpass.bat tool is a legacy utility used to reset the Symantec Endpoint Protection Manager (SEPM) admin password to its default value (admin/admin).
While this file was standard in older versions, it was removed from the default installation starting with SEPM 12.1 RU1 MP1 for security reasons. For SEPM 14, the tool is generally not included in the software directory, and Symantec (Broadcom) recommends using the "Forgot your password?" link or contacting support directly to obtain the utility. 🛠️ Finding or Using resetpass.bat
If you are running an older installation or have managed to obtain the file from Broadcom Support, follow these steps to use it: Locate the Tools folder:
64-bit: C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\Tools
32-bit: C:\Program Files\Symantec\Symantec Endpoint Protection Manager\Tools
Run the script: Right-click resetpass.bat and select Run as Administrator.
Wait: The process may take up to 10 minutes to sync with the database.
Login: Use the username admin and password admin. You will be prompted to change it immediately. 📧 Modern Alternatives (SEPM 14.x)
Since resetpass.bat is likely missing in version 14, use these officially supported methods: 1. Forgot Your Password Link Click Forgot your password? on the SEPM login screen.
Enter your username. An email with a reset link will be sent to the address configured for that account. 2. Log Recovery (If Email fails)
If SEPM cannot send emails (e.g., in an air-gapped environment), you can sometimes extract the reset link from the system logs: Enable FINEST logging in conf.properties. Request a password reset again.
Check ..\tomcat\logs\stdout-0.log for a line containing "PasswordServlet"; this often contains the temporary reset URL. 3. Contact Support
If you are locked out and cannot use the email method, the only way to get a safe, verified copy of the resetpass.bat tool for version 14 is to open a case with Broadcom Technical Support.
⚠️ Warning: Avoid downloading resetpass.bat from unofficial "free download" sites. These files can be easily modified to include malware or backdoors into your security management server. If you'd like, I can help you: Locate the log files to find a hidden reset link.
Draft the steps to reconfigure your SMTP settings so the "Forgot Password" link works. The resetpass
Provide the Broadcom support numbers for your specific region.
Guide to Resetting Symantec Endpoint Protection Manager (SEPM) 14 Passwords
The resetpass.bat script is a utility used to restore administrative access to the Symantec Endpoint Protection Manager (SEPM) console by reverting the login credentials to the default state. Finding and Using the Resetpass.bat Utility
You do not need to download resetpass.bat from external websites, as it is typically included in your local installation directory. Using unauthorized downloads can compromise the security of your management server. Local Installation Path
The script is usually found in the following directory on the server running SEPM:
64-bit Systems: C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\Tools
32-bit Systems: C:\Program Files\Symantec\Symantec Endpoint Protection Manager\Tools How to Run the Reset Navigate to the Tools folder using Windows Explorer. Locate resetpass.bat and double-click it to execute.
The tool will automatically reset the username to admin and the password to admin.
Launch the SEPM console and log in using these default credentials. You will be prompted to change the password immediately upon entry. Alternative Reset Methods for SEPM 14
If the resetpass.bat file is missing or doesn't work, consider these official alternatives provided by Broadcom (Symantec):
For Symantec Endpoint Protection Manager (SEPM) 14, the traditional resetpass.bat file is no longer bundled with the software and cannot be downloaded officially. In SEPM 14 and newer, password resets are primarily handled through the management console's "Forgot your password?" feature or specialized third-party tools like Papercut if local email delivery is blocked. Official Password Reset Method
The standard way to reset your administrator password in SEPM 14 is via the logon screen: Open the Symantec Endpoint Protection Manager logon screen. Click Forgot your password?. Enter the user name for the account you need to reset.
Click Temporary Password. An email containing a reset link will be sent to the administrator's registered email address.
Log in with the temporary password and change it immediately. Alternative: Using Papercut (No Internet/SMTP required) Step 1: Stop the SEPM Services Do not skip this
If your SEPM environment is isolated or the reset email is not being delivered, you can use a local SMTP receiver like Papercut to catch the reset link: Install Papercut directly on the SEPM server.
Trigger the Forgot your password? process in the SEPM console.
Papercut will capture the outgoing SMTP traffic and display the email, allowing you to copy the reset link or temporary password. Regarding resetpass.bat
Availability: This tool was primarily for SEPM 12.1 and earlier.
Location (Legacy): If you are using an older version, it is typically located in C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\Tools.
Download: There is no official standalone download for this batch file for version 14. If the email method fails, users are often advised to contact Broadcom/Symantec Support directly for assistance.
For Symantec Endpoint Protection Manager (SEPM) version 14, the resetpass.bat
tool is typically included in your local installation files rather than needing a separate "free download" from the internet. Locating resetpass.bat on your server
You can find this utility in the installation directory of the SEPM management server: Broadcom Community 64-bit systems
C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\Tools\ 32-bit systems
C:\Program Files\Symantec\Symantec Endpoint Protection Manager\Tools\ Broadcom Community How to Use the Tool Command Prompt as an administrator. Navigate to the directory listed above using the resetpass.bat
Once the script finishes, your primary administrator account (usually "admin") will have its password reset to
Log in to the SEPM console with these credentials and change the password immediately for security. Broadcom Community Important Notes for Version 14+
Disclaimer: This article is for educational and administrative recovery purposes only. Unauthorized access to a computer system or attempting to reset credentials without explicit permission is illegal. You should only perform these steps on hardware you own or have written authorization to manage. Open services
Do not skip this. If the database is in use, the script will fail with "Access Denied."
services.msc (Run as Administrator).Symantec Endpoint Protection Manager (Apache Tomcat)Symantec Endpoint Protection Manager Database (Sybase)Once you regain access, you must audit your security. A resetpass.bat reset leaves forensic traces. Perform the following immediately:
admin account.resetpass.bat on a read-only USB drive for future emergencies.sem5.db from backupC:\ProgramData\Symantec\Symantec Endpoint Protection Manager\data\db\sem5.db with a known good backup.Losing the keys to your Symantec Endpoint Protection Manager 14 console feels like a catastrophe, but it is actually a minor inconvenience if you know about resetpass.bat. This free, built-in utility lives on your hard drive, requires no internet connection, and can restore access in less than ten minutes.
Remember the three golden rules:
admin is not secure.By following this guide, you have saved your organization hours of reinstallation time and avoided a major security headache. Bookmark this page, share it with your junior admins, and always, always keep a local copy of the Tools folder backed up.
Have you successfully used resetpass.bat on SEPM 14.3? Share your experience in the comments below (or pat yourself on the back for a rescue well done).
Getting locked out of your Symantec Endpoint Protection Manager (SEPM) can be a major headache, especially if the automated email recovery isn't set up. While many users look for a standalone resetpass.bat download, this tool is actually built into the SEPM installation itself. Where to Find the Tool
You don’t typically need to download resetpass.bat from a third-party site. It should already be on your management server:
Path: C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\Tools\
(Note: On some systems, it may be in C:\Program Files\... depending on your version and architecture) How to Reset Your Admin Password
Open File Explorer and navigate to the Tools folder mentioned above.
Run as Administrator: Right-click resetpass.bat and select Run as Administrator.
Wait for Reset: A command window will briefly appear. It typically takes about 10 minutes for the reset to take effect within the system. Login with Defaults: Username: admin Password: admin
Immediate Change: Once logged in, the system will prompt you to immediately set a new, secure password. Alternative: Official "Forgot Password" Link
If your SEPM is configured with a mail server, you can use the standard recovery method: On the logon screen, click Forgot your password?.
Enter your username; a temporary password link will be sent to the administrator's email on file. Important Notes