This content has been marked as final. Show 3 replies
C:\Program Files\SBAdmin5500>sbadmcl -command:getrecoveryresponsecode -help
McAfee Endpoint Encryption Scripting Tool
Copyright ® 1991-2008 McAfee, Inc. All Rights Reserved.
Executable version : 220.127.116.11
DLL version : 18.104.22.168
Get a response code for a recovery challenge
-Challenge:<challenge> Challenge string from client machine
-Action:<action> Action to perform. Must be one of:
-Token:<token> Optional new token type (for ChangeToken)
Command = getrecoveryresponsecode
ResultCode = 0x00000000
ResultDescription = The operation completed successfully.
you need boot once I think?
BootOnce is my 2nd choice if there's no BypassPreboot. BootOnce, I believe, generates a recovery code for the machine, so I can't pass it a user name and have it reject the user name if the user isn't assigned to the machine. I'll be able to work around this by seeing who's assigned to the machine first, but was just checking first.
The only way to bypass pre-boot is sbadmcl.exe -command:disablesecurity, prior to reboot. This will create an autoboot user account, that will be removed the next time the machine syncs. If you try using this option, be sure that the machine allows autoboot to be locally managed and uncheck the "do not check for autoboot user" (or whatever the verbage is).