Technical Note Creating a Windows PE Recovery CD

Similar documents
DriveLock Quick Start Guide

DriveLock and Windows 7

DriveLock and Windows 8

McAfee Endpoint Encryption for PC 6.2

Recovering Encrypted Disks Using Windows Preinstallation Environment. Technical Note

McAfee Endpoint Encryption for PC 7.0

Creating a custom WinPE Boot.wim

book.book Page 1 Tuesday, August 19, :01 PM Dell OptiPlex FX160 Re-Imaging Guide

Windows Small Business Server 2003 Upgrade Best Practices

Full Disk Encryption Emergency Recovery Reference

Windows BitLocker Drive Encryption Step-by-Step Guide

UltraBac Documentation. UBDR Gold. Administrator Guide UBDR Gold v8.0

Dell NetVault Bare Metal Recovery User s Guide

Paragon Boot Media Builder

Cristie Automated Disaster Recovery. User Guide

Whitepaper. DriveLock. Endpoint Security for IGEL Thin-Clients

EHCI Removal from 6 th Generation Intel Core Processor Family Platform Controller Hub (PCH)

Overview of Microsoft Office 365 Development

How To Encrypt A Computer With A Password Protected Encryption Software On A Microsoft Gbk (Windows) On A Pc Or Macintosh (Windows Xp) On An Uniden (Windows 7) On Pc Or Ipa (Windows 8) On

SmoothWall Virtual Appliance

Implementing and Supporting Windows Intune

Understanding Backup and Recovery Methods. Lesson 8

Booting Live Backup Disaster Recovery over the Network

Paragon Recovery Media Builder

Improving Performance of Microsoft CRM 3.0 by Using a Dedicated Report Server

Metalogix Replicator. Quick Start Guide. Publication Date: May 14, 2015

Pipeliner CRM Phaenomena Guide Getting Started with Pipeliner Pipelinersales Inc.

Customizing Windows PE

Windows Server Update Services 3.0 SP2 Step By Step Guide

MICROSOFT EXAM QUESTIONS & ANSWERS

Update and Installation Guide for Microsoft Management Reporter 2.0 Feature Pack 1

Administering Windows-based HP Thin Clients with System Center 2012 R2 Configuration Manager SP1

Installing Microsoft Windows

Management Reporter Integration Guide for Microsoft Dynamics GP

Check Point FDE integration with Digipass Key devices

Product Guide for Windows Home Server

Hyper-V Server 2008 Getting Started Guide

Pipeliner CRM Phaenomena Guide Add-In for MS Outlook Pipelinersales Inc.

Microsoft Diagnostics and Recovery Toolset 7 Evaluation Guide

Acronis Backup & Recovery 11.5

StarWind iscsi SAN Software: Tape Drives Using StarWind and Symantec Backup Exec

Star USB Vendor Class Driver Installation Manual

Quick Start Guide. Version R91. English

How To Set Up A Load Balancer With Windows 2010 Outlook 2010 On A Server With A Webmux On A Windows Vista V (Windows V2) On A Network With A Server (Windows) On

OFFICIAL MICROSOFT LEARNING PRODUCT 6292A. Installing and Configuring Windows 7 Companion Content

Hyper-V Server 2008 Setup and Configuration Tool Guide

MBAM Self-Help Portals

Attix5 Pro Disaster Recovery

Abstract. Microsoft Corporation Published: August 2009

Symantec Backup Exec TM 11d for Windows Servers. Quick Installation Guide

Microsoft Business Solutions Navision 4.0 Development I C/SIDE Introduction Virtual PC Setup Guide. Course Number: 8359B

Acronis Backup & Recovery 11

Microsoft Hyper-V Server 2008 R2 Getting Started Guide

How to Make a USB Bootable

Pipeliner CRM Phaenomena Guide Opportunity Management Pipelinersales Inc.

Restoring a Windows 8.1 system from complete HDD failure - drivesnapshot

TrustPort, a.s. TrustPort Antivirus 2014 WindowsPE Plugin. User Manual. TrustPort, a.s.

Overview of Active Directory Rights Management Services with Windows Server 2008 R2

2.6.1 Creating an Acronis account Subscription to Acronis Cloud Creating bootable rescue media... 12

Intel NUC. Installing Microsoft Windows* 7 from USB Flash Drives onto USB 3.0 Computers

Installation and configuration guide

ThinkServer RD550 and RD650 Operating System Installation Guide

User Guide. CTERA Agent. August 2011 Version 3.0

SafeGuard Enterprise Tools guide

User Guide Max Secure Recovery CD/USB creation

AD RMS Step-by-Step Guide

Symantec Backup Exec System Recovery

Recovering Data from Windows Systems by Using Linux

The (Nearly) Perfect Forensic Boot CD. Windows Forensic Environment

The 2007 R2 Version of Microsoft Office Communicator Mobile for Windows Mobile: Frequently Asked Questions

CTERA Agent for Windows

Installing Windows Rights Management Services with Service Pack 2 Step-by- Step Guide

OS Deployment V2.0. User s Guide

Recovering Data from Windows Systems by Using Linux

Installing and Upgrading to Windows 7

Client side. DESlock + Data Encryption

Installation Guide. . All right reserved. For more information about Specops Deploy and other Specops products, visit

Implementing and Supporting Windows Intune

How Endpoint Encryption Works

Planning and Managing Windows 7 Desktop Deployments & Environments Version 7

CTERA Agent for Windows

DriveLock Installation Guide

EMC NetWorker Module for Microsoft for Windows Bare Metal Recovery Solution

Pipeliner CRM Phaenomena Guide Sales Pipeline Management Pipelinersales Inc.

EMC NetWorker Module for Microsoft for Windows Bare Metal Recovery Solution

EventTracker: Support to Non English Systems

Acronis Backup & Recovery 11.5

EMC NetWorker Module for Microsoft for Windows Bare Metal Recovery Solution

Windows Scheduled Tasks Management Pack Guide for System Center Operations Manager. Published: 07 March 2013

MS Planning and Managing Windows 7 Desktop Deployment and Environments

McAfee Endpoint Encryption for PC 7.0

Data Sheet: Backup & Recovery Symantec Backup Exec System Recovery Windows Small Business Server Edition

Abstract. Microsoft Corporation Published: November 2011

NSS Volume Data Recovery

Step-by-Step Guide for Creating and Testing Connection Manager Profiles in a Test Lab

Creating and Deploying Active Directory Rights Management Services Templates Step-by-Step Guide

Transcription:

Technical Note Creating a Windows PE Recovery CD CenterTools Software GmbH 2010

Copyright Information in this document, including URL and other Internet Web site references, is subject to change without notice. Unless otherwise noted, the example companies, organizations, products, domain names, e-mail addresses, logos, people, places, and events depicted herein are fictitious, and no association with any real company, organization, product, domain name, e-mail address, logo, person, place, or event is intended or should be inferred. Complying with all applicable copyright laws is the responsibility of the user. 2010 CenterTools Software GmbH. All rights reserved. CenterTools and DriveLock and others are either registered trademarks or trademarks of CenterTools GmbH or its subsidiaries in the United States and/or other countries. The names of actual companies and products mentioned herein may be the trademarks of their respective owners.

Contents 0 DATA REVOCERY SCENARIOS... 5 1 CREATING A WINDOWS PE RECOVERY CD... 5 2 USING A WINDOWS PE RECOVERY CD... 7

0 Data Revocery Scenarios Because of a hardware or software issue you can no longer start Windows on a computer where DriveLock Full Disk Encryption is installed. You need to access important files that are stored on the computer. There are two options for gaining access to the data in such a scenario: Decrypt the entire disk using the decdisk decryption tool. After the disk has been decrypted you can use standard tools to repair Windows, recover inaccessible disk sectors or copy important data from the disk to a different location. This method generally takes a long time to complete. To get access to data on the drive quickly, start the computer using a customized Windows PE recovery CD. After starting the computer from such a CD you can copy the encrypted data on the computer s hard disk to a different location. Once you have recovered the critical data you can immediately continue to work with the recovered files on a different computer. You can then decrypt the disk at a later time using the more timeintensive decdisk tool and repair Windows. (For information about how to use the decdisk tool, refer to the DriveLock FDE manual.) Note: The Windows PE DriveLock Plugin (available for FDE Version 5.6.0. SP1 and later) only works if DriveLock FDE was installed completely. If required system data on the hard disk is damaged or missing, you have to use the decdisk tool instead. 1 Creating a Windows PE Recovery CD You must create the recovery CD before an emergency occurs. You cannot create a recovery CD on the affected computer itself. Instead, you need to create the recovery CD on another computer that can run the Windows Automated Installation Kit. Before creating a recovery CD, ensure that you have access to the following files and data: - The files that are required to create a Windows PE recovery CD are contained in the file C:\Program Files\CenterTools\DriveLock\DLFdePEPrep.zip on any computer where the DriveLock Management Console is installed. 5

- You need to have access to the affected computer s disk recovery key. For information about how to generate the disk recovery key, refer to the chapter Recovering Encrypted Drives in the DriveLock FDE manual. To create the recovery CD, perform the following steps: 1. Extract the contents of the file DLFdePEPrep.zip to the folder C:\Temp\DLFdePEPrep The folder contains a subfolder for each DriveLock FDE version. As you continue, ensure that you are using the correct folder for the version of DriveLock that is installed on the affected computer. 2. To create a Windows PE CD, install the Microsoft Windows Automated Installation Kit (WAIK) from Microsoft to create a Windows PE CD. You can find additional information about the AIK, including download instructions, on the following Web page: http://www.microsoft.com/downloads/details.aspx?familyid=c7d4bc6d-15f3-4284-9123-679830d629f2&displaylang=en Make sure to use WAIK from Windows Vista (Win PE 2.0). Do not use the WAIK for Windows 7 (Win PE 3.0). 3. Start a Windows PE-Tools command prompt window from Start\All Programs\Microsoft Windows AIK. 4. To create a Windows PE working folder, run the command copype.cmd x86 c:\temp\winpe_x86 5. To mount the Windows PE image that is included with the AIK so you can customize it, run the command imagex /apply c:\temp\winpe_x86\winpe.wim 1 C:\temp\winpe_x86\mount 6. To customize the image for CenterTools DriveLock FDE, run the following command: C:\Temp\DLFdePEPrep\peprep /prep /img c:\temp\winpe_x86\mount /pd C:\Temp\DLFdePEPrep\version (Where C:\Temp\DLFdePEPrep\version is the folder to which you extracted the contents of the file DLFdePEPrep.zip. Ensure that you specify the correct subfolder for the FDE version to be recovered.) 7. Copy the disk key (DKE file) for the affected computer to the folder C:\temp\winpe_x86\mount\DriveLock. (For information about the disk recovery key, refer to the DriveLock FDE manual.) (If you will inject the driver for the computer s network adapter into the image, as described in the next step, you can retrieve the disk recovery key from a network share instead. If you will retrieve recovery keys over the network you can skip this step and you will not need to create a unique recovery CD for each computer.) 6

8. To access a network share from Windows PE and copy recovered data to it, Windows PE needs to load the driver for the network adapter of the affected computer. If Windows PE does not include the required driver, you need to inject the driver into the image. To inject a network driver, run the following command from the Windows PE command prompt: peimg /inf=<path to NIC Driver INF file> c:\temp\winpe_x86\mount\windows 9. To prepare the image for generating the CD, run the following command from the Windows PE command prompt: peimg /prep /image=c:\temp\winpe_x86\mount 10. To create the required WIM image, run the following command from the Windows PE command prompt: imagex /capture /boot /compress max "c:\temp\winpe_x86\mount" "c:\temp\winpe_x86\iso\sources\boot.wim" "My DLFDE PE Image" 11. To create an ISO image that can you can burn to a CD, run the following command from the Windows PE command prompt: oscdimg -n c:\temp\winepe_x86\iso c:\temp\winpe_x86\ein_pe_image.iso -n b c:\temp\winpe_x86\etfsboot.com 12. To create the CD, burn a CD from the image file c:\temp\winpe_x86\ein_pe_image.iso. 2 Using a Windows PE Recovery CD After starting the computer from the Windows PE CD you created, you need to inject the DKE recovery file to access encrypted data. To do this, perform the following steps: 1. Start the computer from the Windows PE recovery-cd. 2. Change to the folder X:\DriveLock und then run the following command: peprep.exe inj recovery.dke 3. When prompted, type the password you specified when you generated the recovery key file and then press ENTER. 7

Once the file has been injected, you can access data on the computer s encrypted hard drive and copy files to a network share. To connect to a network share, use the net use command (for example, net use z: \\192.168.0.30\apps /user:domain\username ). Starting with DriveLock FDE 9.2.0 you can also copy data from the encrypted hard drive to USB-attached removable media. To enable USB support, at the command prompt, type the following commands: cd \drivelock peprep.exe /usb Once USB support has been enabled, you can access disk key files (dke) on a USB-connected removable drive. You also can also copy files from the encrypted hard drive to a removable drive. To determine which drive letter is used by a removable drive, type the following command: diskpart.exe > list volumes 8

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information