4 Replies Latest reply on Feb 26, 2012 4:04 AM by wcoetsee

    EE EPO Reporting

    ghuber

      We have a policy that disables Endpoint Encryption pre-boot if the computer does not sync with EPO in 30 days. 

       

      Does anyone know how to create an EPO report to determine what users have not synced in 20 days?  We like to stay ahead of preboot deactivations so we don't have to do a machine recovery.

       

      It doesn't appear there is a pre-canned report.   

        • 1. Re: EE EPO Reporting
          ROD

          Did this ever work?...if the machine does not communicate with the ePO, how does it get the policy?

          • 2. Re: EE EPO Reporting
            ghuber

            Sure it works.  Consider this scenario.  A new machine is built, encrypted, pre-boot is activated and it is synced with EPO.

             

            User takes the machine out of the office... does not sync with EPO.

             

            We want to run a report so we can identify systems that have no synced in 20 days.

            • 3. Re: EE EPO Reporting
              ROD

              Yes, create a new query and set the filter for last communication is not within the last 20 days. My question was how will the PBA screen gets disabled ? The machine would have to have network connectivity for the policy to be pushed down and enforced...

               

              Message was edited by: ROD on 21/02/12 1:57:25 CST PM
              • 4. Re: EE EPO Reporting

                Hi Rod,

                 

                This feature is available from v6.1.2. This forms part of your policy which you will assign to the system to enable pre-boot and or encryption. The system (endpoint) will activate this feature when it does not perform successful ASCI in x amount of time (days).