I am having issues trying to decrypt a laptop with the Emergency Recovery Disk. Here is a basic outline.
McAfee Encryption version 5
OS: Microsoft Windows XP SP-3 (recent updates applied)
Laptop setup with McAfee Endpoint Encryption and nothing else
Recovery disk created on a good E6410 and still blue screens on that system as well when booting to the Recovery disk
The system will startup and load windows normally without the recovery disk. (it's just not communicating to the server since it's computer object was deleted)
This has been tested on multiple systems with the same results.
Is there an update to the drivers that needs to be applied that I am missing? or possibly a driver conflict?
you mean a WinPE disk you created? Yes, you probably need to include the right SATA drivers, or switch the bios to ATA mode when you are using the CD (switch it back when finished).
ACHI should, I think that driver is included in Windows by default. You should really include the correct ones to start with though.
Thanks for your quick responses. One last question... Could the EPO agent serve as a different vehicle for communicating with the server to tell it to unencrypt? Or is it dependant upon the Encryption agent to communicate with the server as well. (just curious for the future)
you're not using an EPO product - you're using EEPC5 connected to EEM.
If you want to use EPO to manage encryption, you need to upgrade to EEPC 6.1
I know that we are currently managing the product through the McAfee Administrators Console but we have deployed the EPO agent to our systems in preperation for an upgrade to 6.5. We are just waiting for it to be FIPS certified.
I take it from your answer above that any management functionality will have to wait for the newer version.
its really that they are two totally different products - you have EEPC5 connected to EEM - if you want an encryption product managed by EPO, you need EEPC6 - you'll never be able to manage your current product within EPO, you'll have to migrate to the EPO managed version.
That's what I figured. I am very anxious to get to the new version to take advantage of some of the new features. I just have to wait till the product is approved. Managing the system as it is has become very time consuming due to the user adds, and password changes. (people currently change their pswds in Lotus so it doesn't sync)
I will try to be patient in the mean time.
Thanks again for you help.
what are the new features you're thinking of? I'm not sure there's anything which will help your Lotus problem - the password change architectures of v5 and v6 are pretty much identical.