In case of unmanaged SED, the WDRT token is generated when the encryption starts and is displayed in the window so end users are prompt to save it in a secure place. It is done by running the following command, assuming that "1QAZ2-WSX3E." is the token value: pgpwde -decrypt -disk 1 -recovery-token "1QAZ2-WSX3E-DC4RF-V5TGB-6YHN7-UJM" -aa Token can be taken from the Symantec Encryption Management Server (SEMS) console in case of managed Symantec Encryption Desktop (SED). It is possible to use also Whole Disk Recovery Token (WDRT) to decrypt the drive. You will notice that "lowwatermark" will be higher each time the command is executed:Ħ. The value next to "lowwatermark" indicates how many sectors have been decrypted so far, while "highwatermark" specifies how many sectors were originally encrypted. In order to see the decryption status, the command from step 2 needs to be run periodically. What i did is I restore my computer at earlier time. The result is my drive is encrypted and when i restart it I cannot boot it to open anymore. First I install the agent and drive encryption into my computer even i am not in the domain. In the screenshot there were 2 attempts - the first one was incorrect password (error -11500), and the second was the correct one, so it can be used for decryption:ĥ. Posted 03:25 AM Reply Reply Privately Hello. To do that, command pgpwde -auth -disk 0 -interactive needs to be executed. When uninstalling Symantec Encryption Desktop for Macintosh using the Uninstall option from the Encryption Desktop menu, some PGP preference files, specific to software settings, are not removed from the disk. It is possible to check if the known passphrases are correct. It might happen, that the error will be displayed after executing the decrypt command (for example, if wrong passphrase was specified). Symantec Drive Encryption 10 will encrypt all sectors by default. Once the correct is inserted, the decryption process will start: PGP Tool Locate file using the file explorer and Double-click Enter the passphrase (might not be needed if remembered) Confirm decryption. Once this is executed, you will be prompted for passphrase. Next command to run is the decryption command: pgpwde -decrypt -disk 0 -interactive. Check if there are users assigned to this disk - passphrase for any of that assigned user would be used for the decryption:Ĥ. Assuming that the affected drive is "0", run pgpwde -disk-status -disk 0 in order to see the status of the disk - is it encrypted, decrypted, instrumented:ģ. Run pgpwde -enum in order to check what is the disk number for the encrypted boot drive:Ģ. Once machine is booted from that iso, so you see the command-line window with the path "X:\windows\system32", follow the below steps:ġ. How to Customize Windows PE 4.0 and above using Symantec Encryption Desktop 10.3.2 and PGPRecoveryGUI.exe Here is the document which describes in details the process of customizing the Windows PE: In order to be able to boot affected machine using the Recovery CD, you need to create first custom Windows PE iso, which can be then burned on CD.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |