4 Replies Latest reply on Oct 12, 2009 7:25 AM by mjpottratz

    Encrypting and decrypting files using Endpoint

      Hi,

      My colleague wants to encrypt a confidential Excel file currently saved on her workstation, and send it to another offsite user.

      Her workstation has McAfee Endpoint installed for hard disk encryption. I'd like to find out:

      1. Can Endpoint be used to encrypt a file, or create an encrypted volume for transmission outside of the network? I see there is Endpoint Encryption for File, Endpoint Encryption for Removable Media, etc. Which one does what I'm trying to do, and are they all included in the Endpoint suite?

      2. Does the receiving party need to have Endpoint installed as well? Is it possible to decrypt it using some other software like TrueCrypt if they have the password?

      Thanks.
        • 1. RE: Encrypting and decrypting files using Endpoint
          maybe creat Self-Extractor?:)
          • 2. RE: Encrypting and decrypting files using Endpoint
            Endpoint for FF includes EERM, and all are included in the Endpoint Encryption Suite, though you need to install EEFF/EEPC separately on the endpoints you need it on.

            EEFF will let your users do selective file encryption. There are options to create self-decrypting files.

            No,you won't be able to decrypt anything with a free product like TrueCrypt (or in fact any other product at all).
            • 3. RE: Encrypting and decrypting files using Endpoint


              You can configure it according to your need. Look at the self-extractor in the EEFF product guide? Encrypt through self-extractor where you don't have EEPC/EEFF installed in the other system, otherwise EERM can only be read where the EEPC/EEFF is installed.

              Also you can encrypt the whole USB using EERM by proving a password.

              Truecrypt can't decrypt EEPC protected files.

              - A
              • 4. Encrypting and decrypting files using Endpoint
                One other point about Self-Extractors - if you are using EEFF to protect removable media and want to send the extractor to a removable device you have to do it properly otherwise it gets "double encrypted" and unusable.

                What works =
                1. Right click the file and choose to create the Self Extractor in the menus
                2. Expand options to choose the location to save the new file to and choose your removable device, do NOT create on your local hard drive.
                3. Enter password for the file and you're done.

                What doesn't work is saving the file local to the hard drive then copying to removable device. The EEFF product detects the copy process and encrypts the file again, essentially breaking the file.

                This was our experience with the 3.2.1 version of EEFF. McAfee support re-created the scenario and are aware of the issue. Possibly will be fixed in 3.2.2.

                Also, McAfee doesn't recommend (but we've done it OK) to create self extractors larger than 10MB original file size... not sure how big your excel doc is but with macros and such they can sometimes get large... osmething to keep in mind.