Error - "Failed to contact Symantec Endpoint Protection."

I've got two mostly identical Redhat 7.4 servers, configured the same way, on the same network subnet. Let's call them host1 and host2

One of them (host2) is having issues communicating with the SEPM manager. When you run ./sav manage -s, this is the error message:

[root@host2 symantec_antivirus]# ./sav manage -s
Failed to contact Symantec Endpoint Protection

However, I can both ping the address of the SEPM manager and telnet to port 8014 from that host2 server.

Host1 has no issues communicating with the SEPM manager.

I'm suspicious there's a java issue, because of this below. (it's entirely possible it's something else, but java is what I'm suspicious about)

The default java version on both is 1.8.0.141. If you run "java -version" this is what you get.

[root@host2 symantec_antivirus]# java -version
java version "1.8.0_141"
Java(TM) SE Runtime Environment (build 1.8.0_141-b15)
Java HotSpot(TM) 64-Bit Server VM (build 25.141-b15, mixed mode)

However, both are configured, in /etc/Symantec.conf, to use a version of java installed under /opt/Symantec

[Symantec Shared]
BaseDir=/opt/Symantec
JAVA_HOME=/opt/Symantec/jre1.8.0_131/bin

On host2, if you run systemctl status smcd, you get this:

â smcd.service - LSB: Symantec AntiVirus Scanner
   Loaded: loaded (/etc/rc.d/init.d/smcd; bad; vendor preset: disabled)
   Active: active (running) since Wed 2017-09-27 11:20:15 EDT; 1h 7min ago
     Docs: man:systemd-sysv-generator(8)
  Process: 2050 ExecStop=/etc/rc.d/init.d/smcd stop (code=exited, status=1/FAILURE)
  Process: 2193 ExecStart=/etc/rc.d/init.d/smcd start (code=exited, status=0/SUCCESS)
   CGroup: /system.slice/smcd.service
           ââ1899 /opt/Symantec/symantec_antivirus/smcd -l info
           ââ1906 /usr/lib/jvm/java-1.8.0-oracle-1.8.0.141-1jpp.1.el7_3.x86_64/jre/bin/java -Djava.security.egd=file:/dev/./urandom -cp /opt/Symantec/LiveUpdate/jlu....

Note the last line - it references java 1.8.0.141, which seems to imply that despite java 131 being configured in /etc/Symantec.conf, it looks like it's trying to use the system default java version. I tried removing and re-installing the SEP client again but am getting the same issue.

Suggestions?