3 Replies Latest reply on Sep 26, 2011 4:06 AM by SCtbe

    EETech Standalone Recovery ISO in User Possession

      I have a nagging question regarding whether it's OK to provide users in remote locations (no IT presence) the 2MB EETech recovery ISO to perform the more obvious quick solutions, IE. emergency boot.

       

      As an Infrastructure Engineer Specialist, I have found in certain situations where it's critical the user get back into Windows as quickly as possible and to resolve the issue at hand quickly, this method does address the issue head on.

       

      Assumptions:

       

      • Code of the Day can only be obtained if you have  grant number and the code of the day changes daily - users don't have access to either.
      • IT would walk the user through the process over the phone, spefically emergency boot - this is my main purpose to reduce the down time for the user.
      • Once the issue is resolved using CD, instruct user to destroy
      • If a user was savy enough to think he could in fact decrypt his drive, I have a server task that runs daily to report on decrypted or decryption in progress systems which then are referenced against open incidents regarding encryption issues.

       

      Question:

       

      • Do you or our organization email or provide a copy of the EETech standalone recovery ISO to remote users for any of the above mentioned situations?
      • If so, please describe whether it works for your organization or not. 
      • If not, why wouldn't you invoke this break fix method?  Possible security risk?

       

      Looking forward to hearing about any positive or negative experiences in this situation. 

       

      Thanks.

        • 1. Re: EETech Standalone Recovery ISO in User Possession
          SCtbe

          In my opinion it is to risky to allow users play with EETech. This tool is too powerfull and can make too much problems when using itinappropriately.

          IIt is possible to completely lose access to data without any further methods of recovery.

          • 2. Re: EETech Standalone Recovery ISO in User Possession

            I should have prefaced my question around on the fact that this is primarily to leverage Emergency Boot.

             

            My follow up to your comment, "its too risky" is that if you have a well defined process for the tech to instruct the user to use, I don't see how this is risky.  Lets face it, if a veteran tech can't walk a user through an emergency boot over the phone > authorise > authenticate > emergency boot, then something is terribly wrong.  Post emergency boot procedure, advise customer to destroy labeled EEPC version CD OR leave in the office in a secure location to leverage for another day. 

             

            I see the risk but I don't think that the process can't be documented and instructed for both the user and the tech...if they stray from the process, just like anyting else, there are consequences. 

            • 3. Re: EETech Standalone Recovery ISO in User Possession
              SCtbe

              You are right, that everything can be documented, but user don't tend to follow procedures... But this is not the place to talk about this.