cancel
Showing results for 
Search instead for 
Did you mean: 

Disaster recovery of EEFF protected data

Jump to solution

Hello,

I'm just testing the implementation of "Endpoint Encryption 1.1.1" and "Endpoint Encryption for files and folders 4.0.0" on our EPO 4.6 environment. Everything is working well. But I have one question regarding recovery possibilities. To recover encrypted HDDs (encrypted by EE 1.1.1) I tested the EETech tool. This tool is also working well to get access on EE 1.1.1 encrypted HDD.

But how can I get access on (additional) encryptet files and folders that are (additional) encrypted by "Endpoint Encryption for files and folders 4.0.0"? I've started my EE protected system using the BartPE boot CD.  After authentication using the EETech toll and the furter exported machine.XML file I have access to the HDD files and folders. But all files and folders that are additional encrypted by "Endpoint Encryption for files and folders 4.0.0" are unreadable.

How can I get access to files and folders that are encrypted by "Endpoint Encryption for files and folders 4.0.0" without booting the current installed OS? There should be a possibility to copy and restore this encrypted files and folders if the OS have crashed. Is there also a recovery tool (loke EETech) for restoring this encrypted files? I've also exported the "Endpoint Encryption for files and folders 4.0.0" encryption key as a .BIN file. But how to use this for an offline encryption?

Thanks for help.

Best regards and greetings from Germany

Janni

Nachricht geändert durch EPO-Janni on 13.10.11 16:51:26 MESZ
1 Solution

Accepted Solutions
Reliable Contributor SafeBoot
Reliable Contributor
Report Inappropriate Content
Message 6 of 8

Re: Disaster recovery of EEFF protected data

Jump to solution

No there's not. Just put the data on another machine running eepc, or just build eeff into your winpe image.

7 Replies
Highlighted

Re: Disaster recovery of EEFF protected data

Jump to solution

Hi there,

not really a good one but:

After removing Endpoint Encryption copy those Files to an other System with EEFF and use "allow explicit decrypting" on that one (policyname: "general/generic"). Assign the specific encryption Key to the new machine and there after you should be able to decrypt all those files after moving them off the encryptet media (right click on these files: McAffee Endpoint Encryption->Decrypt).

Not a good one, not the answer you really wanted but nevertheless a Workaorund.

Any further advice in recovering not only a crashed EEPC-System but EEF-Files would be appreciated.

Regards

Re: Disaster recovery of EEFF protected data

Jump to solution

Hi Don_Martin,

thanks for information. I will also check this possibilities next week. We will have a McAfee workshop.

Best Regards

Janni

Reliable Contributor SafeBoot
Reliable Contributor
Report Inappropriate Content
Message 4 of 8

Re: Disaster recovery of EEFF protected data

Jump to solution

Eeff is not machine specific, so you can just copy the data to another machine and decrypt it there (as long as you have rights to the key etc)

If you allowed users to encrypt files without using a central recovery key, the data will of course be lost if their machine dies. That's why central recovery keys are so important.

Re: Disaster recovery of EEFF protected data

Jump to solution

Hi Safeboot,

thanks for information. Yes that's one possibility to restore this data. But I searched for another possibility to get access to encrypted data using a kind of recovery tool like the EETech tool. Is there such a (offline) tool available to restore data using the exportet .BIN key?

Best regards

Janni

Reliable Contributor SafeBoot
Reliable Contributor
Report Inappropriate Content
Message 6 of 8

Re: Disaster recovery of EEFF protected data

Jump to solution

No there's not. Just put the data on another machine running eepc, or just build eeff into your winpe image.

Reliable Contributor SafeBoot
Reliable Contributor
Report Inappropriate Content
Message 7 of 8

Re: Disaster recovery of EEFF protected data

Jump to solution

(another machine running eeff)

Re: Disaster recovery of EEFF protected data

Jump to solution

Hi SafeBoot,

thanks for information.

Best regards

Janni

More McAfee Tools to Help You
  • Subscription Service Notification (SNS)
  • How-to: Endpoint Removal Tool
  • Support: Endpoint Security
  • eSupport: Policy Orchestrator
  • Community Help Hub

      New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

    • Find Forum FAQs
    • Learn How to Earn Badges
    • Ask for Help
    Go to Community Help

    Join the Community

      Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

    • Get helpful solutions from McAfee experts.
    • Stay connected to product conversations that matter to you.
    • Participate in product groups led by McAfee employees.
    Join the Community
    Join the Community