I have a question concerning the offline encryption process for standalone machines that will have NO connectivity to ePO. I followed the instructions outlined in https://community.mcafee.com/community/business/data/epoenc/blog/2012/12/19/offline-activation-for-e... offline encryption process and was able to encrypt my standalone machine. I have a question concerning the Mcafee password options, which appears to require the user to change the password every 30 days even though Windows local policy are set for every 90 days. Is there a way to update the offline encryption EpeOaGenxml file to make Mcafee use the Winodows local policy password settings?
I tried updating the encryption user based policies before exporting the policy file from the ePO server but when I run the EpeOaGenxml application, the xml file that gets generated still shows the default password is set to 30 days. I tried manually changing this to something else, before running the offline activation, but it doesn't appear to change anything.
I also look at the offline encryption FAQ and it doesn't state that the password settings can be updated so I'm at a lost. Has anyone had any success using the offline encryption?
The policy in ePO is exported to capture the ePO public key which is contained in the policy. This is used to encrypt the recovery information that can be generated upon activating MDE using the offline activation exe.
All policy options are set using command line switches on the EpeOaGenXml.exe. There is not an option to change the number of days from 30. Please submit an Idea to the Idea Forum to request this functionality be added:
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.
Community Help Hub
New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.