Symantec Endpoint Encryption Full Disk Release Notes



Similar documents
Symantec Endpoint Encryption Full Disk Release Notes

Symantec Endpoint Encryption Full Disk Release Notes

Symantec Endpoint Encryption Full Disk

Symantec Endpoint Encryption Removable Storage Release Notes

Symantec Endpoint Encryption Full Disk

Symantec Endpoint Encryption Removable Storage

Symantec Endpoint Encryption Full Disk

Yale Software Library

SafeGuard Enterprise 5.50 Installation

Symantec Endpoint Encryption Full Disk

Symantec Endpoint Encryption Removable Storage

ZENworks 11 Support Pack 4 Full Disk Encryption Agent Reference. May 2016

User Manual. Onsight Management Suite Version 5.1. Another Innovation by Librestream

WhatsUp Gold v16.3 Installation and Configuration Guide

Symantec Endpoint Encryption Full Disk

Migrating MSDE to Microsoft SQL 2008 R2 Express

Symantec Endpoint Encryption Device Control Release Notes

Install MS SQL Server 2012 Express Edition

Citrix Access Gateway Plug-in for Windows User Guide

Full Disk Encryption Agent Reference

pcanywhere Advanced Configuration Guide

McAfee Endpoint Encryption (SafeBoot) User Documentation

SafeGuard Enterprise Installation guide. Product version: 6.1

RSA SecurID Ready Implementation Guide

SafeGuard Enterprise Web Helpdesk

How to Encrypt your Windows 7 SDS Machine with Bitlocker

SafeGuard Enterprise Web Helpdesk. Product version: 6 Document date: February 2012

RSA SecurID Ready Implementation Guide

Managed Antivirus Quick Start Guide

Installation Guide. . All right reserved. For more information about Specops Deploy and other Specops products, visit

WhatsUp Gold v16.1 Installation and Configuration Guide

TROUBLESHOOTING GUIDE

Integrating Trend Micro OfficeScan 10 EventTracker v7.x

Sophos for Microsoft SharePoint startup guide

Install SQL Server 2014 Express Edition

HP ProLiant Essentials Vulnerability and Patch Management Pack Release Notes

SafeGuard Enterprise Administrator help. Product version: 6.1

Synchronizer Installation

Exam: QUESTION 1 QUESTION 2 QUESTION 3 QUESTION 4

Yale Software Library

SafeGuard Enterprise User help. Product version: 7

STATISTICA VERSION 12 STATISTICA ENTERPRISE SMALL BUSINESS INSTALLATION INSTRUCTIONS

Networking Best Practices Guide. Version 6.5

Network Connect Installation and Usage Guide

NSi Mobile Installation Guide. Version 6.2

Use the below instructions to configure your wireless settings to connect to the secure wireless network using Microsoft Windows Vista/7.

Using Logon Agent for Transparent User Identification

Table of Contents. Introduction...9. Installation Program Tour The Program Components...10 Main Program Features...11

CTERA Agent for Windows

NETASQ SSO Agent Installation and deployment

WhatsUp Gold v16.2 Installation and Configuration Guide

HP ProtectTools User Guide

Release Notes for Websense Security v7.2

Operating System Installation Guide

Click Studios. Passwordstate. Password Discovery, Reset and Validation. Requirements

SafeWord Domain Login Agent Step-by-Step Guide

User Guide. CTERA Agent. August 2011 Version 3.0

Administrator s Guide

Pearl Echo Installation Checklist

AutoDownload: SQL Server and Network Trouble Shooting

Symantec PGP Whole Disk Encryption Hands-On Lab V 3.7

QUANTIFY INSTALLATION GUIDE

Core Protection for Virtual Machines 1

CITRIX 1Y0-A14 EXAM QUESTIONS & ANSWERS

Advanced Event Viewer Manual

ScoMIS Encryption Service

istorage Server: High-Availability iscsi SAN for Windows Server 2008 & Hyper-V Clustering

Fireware XTM v is a maintenance release for XTM 21, XTM 22, and XTM 23 wired and wireless devices.

Deploying Windows Streaming Media Servers NLB Cluster and metasan

Endpoint Security Client for Mac

Check Point FDE integration with Digipass Key devices

Installation Instruction STATISTICA Enterprise Small Business

Oracle Enterprise Single Sign-on Logon Manager. Installation and Setup Guide Release E

Installation Instruction STATISTICA Enterprise Server

Immotec Systems, Inc. SQL Server 2005 Installation Document

Welcome to MaxMobile. Introduction. System Requirements

STATISTICA VERSION 9 STATISTICA ENTERPRISE INSTALLATION INSTRUCTIONS FOR USE WITH TERMINAL SERVER

Getting Started. Symantec Client Security. About Symantec Client Security. How to get started

Dovico Timesheet v12 INSTALLATION GUIDE

PureMessage for Microsoft Exchange startup guide

Windows Server 2008 R2 Initial Configuration Tasks

PGP Desktop Version 10.2 for Windows Maintenance Pack Release Notes

SafeGuard Enterprise User help. Product version: 6.1

GlobalSCAPE DMZ Gateway, v1. User Guide

Configuration Information

NetWrix Server Configuration Monitor

SPECOPS DEPLOY / OS 4.6 DOCUMENTATION

Lenovo Online Data Backup User Guide Version

User Guide. Version R91. English

EXPRESSCLUSTER X for Windows Quick Start Guide for Microsoft SQL Server Version 1

CONFIGURING TARGET ACTIVE DIRECTORY DOMAIN FOR AUDIT BY NETWRIX AUDITOR

safend a w a v e s y s t e m s c o m p a n y

המרכז ללימודי חוץ המכללה האקדמית ספיר. ד.נ חוף אשקלון טל' פקס בשיתוף עם מכללת הנגב ע"ש ספיר

Symantec Endpoint Encryption Full Disk

Endpoint Security VPN for Windows 32-bit/64-bit

Moving the TRITON Reporting Databases

Changing the C Interface IP Address: step-by-step

Transcription:

Symantec Endpoint Encryption Full Disk Release Notes Symantec Endpoint Encryption Full Disk 7.0.3 Symantec Endpoint Encryption Framework 7.0.3 www.symantec.com About SEE Full Disk SEE Full Disk protects data on laptops and PCs from the threat of theft or loss with strong, centrally managed encryption, auditing, and policy controls for full disks and partitions, ensuring that the loss of a machine and its data does not result in disclosure required by corporate policy or government regulation. SEE Full Disk provides the industry s most robust and comprehensive integration with Microsoft Active Directory for fast, simple deployment of endpoint data protection controls in a familiar administrative environment. What s New Improved Support for High Availability Symantec Endpoint Encryption supports multiple independent servers in a single deployment and Microsoft Server 2003 Network Load Balancing for server clusters, enabling customers to choose and configure virtually any level of SEE Management Server availability based on their business requirements. Symantec Endpoint Encryption now supports virtually all Microsoft SQL Server 2005 backup, restore, replication and failover technologies, including log shipping and SQL Server clustering. Support for Multiple Directory Service Instances Symantec Endpoint Encryption now supports the management of multiple Active Directory forests and multiple Novell edirectory forests within a single SEE Full Disk or SEE Removable Storage deployment. Support for Multiple Deployments Within a Single Forest Symantec Endpoint Encryption now supports multiple independent deployments within a single Active Directory or edirectory forest. Directory server synchronization can now exclude administrator-defined domains per deployment, enabling independent management of endpoints. Improved Communication Security Symantec Endpoint Encryption extends its support for encrypted communication to all solution components. In addition to its previous support for SSL/TLS encrypted communication between the SEE Full Disk and SEE Removable Storage endpoint clients and SEE Management Server, administrators can now choose to encrypt communication: Between the SEE Management Server and SQL Server, Between the SEE Management Server and Active Directory (domain controller), and/or Between the SEE Manager and SQL Server.

More Configuration Choices Symantec Endpoint Encryption now supports additional configuration choices to support a broader range of deployment requirements, including: The port number for SEE Management Server/SQL Server communication, and The SEE database name. Reporting Enhancements Reports and Group Views in the SEE Manager now support the standard Microsoft dialogs for Print and Print Preview. Any report or Group View can be printed to any printing device configured in Windows. Administrators can choose to hide one or more data columns in any report or Group View. Column hiding is persistent across SEE Manager sessions and is honored by the Print and Print Preview features. Increase in Maximum Numbers of Endpoint Users and Administrators SEE Full Disk endpoints can now have up to 1,024 (one-thousand twenty-four) registered user and 1,024 (onethousand twenty-four) Client Administrator accounts in the pre-boot environment. Novell Workstation-Only Logon SEE Full Disk users now have the runtime option of choosing to log on to their local credential cache only when configured for Single Sign-on with the Novell Windows Client. Installation Notes SEE Framework 7.0.3 is only compatible with SEE Full Disk 7.0.3 and SEE Removable Storage 7.0.3. If you are running SEE Removable Storage and plan to upgrade to SEE Full Disk 7.0.3, you must upgrade to SEE Removable Storage 7.0.3 also. Resolved Issues Issues preventing the full support of the following Dell models have been remediated: Latitude D531, Latitude D631, OptiPlex 320, OptiPlex 760, and OptiPlex 960. Issues preventing the full support of the Panasonic Toughbook CF-52K and CF-19K have been remediated. Issues preventing the full support of the following Toshiba models have been remediated: Portégé M700-S7005V, Tecra A9, Tecra A10, Tecra M9, and Tecra M10. External keyboards and mice plugged into the docking stations of various Dell, Fujitsu, and Lenovo machines can now be used during Pre-Windows authentication. External keyboards and mice plugged into the docking stations of Dell Latitude D630 laptops no longer prevent the laptop from resuming after going into standby. Dell Latitude D820 and D610 laptops no longer hang if left at the Startup screen for an extended period of time, such as overnight. SEE Full Disk no longer receives double input for each key pressed on external keyboards connected to the left-hand USB slots of HP Compaq nc6120 computers in pre-windows. USB thumb drives connected to Dell laptops such as Latitude D820, E420, and E6400 or their docking stations no longer prevent the system from loading Windows. Blackberry Curve, Bold, and Pearl models connected by USB at boot time no longer prevent the system from loading Windows. Pressing the NUMLOCK key no longer results in incorrect keyboard input in Pre-Windows. Symantec Endpoint Encryption Full Disk 7.0.3 Page 2 of 5

SEE Full Disk no longer interprets SHIFT+0 on the Belgian (Period) keyboard as the numeral 9. The client can now be installed on non U.S. English operating systems. SEE Full Disk now recognizes PCMCIA card readers on Hewlett Packard machines. Users and Client Administrators no longer receive a fatal error if they remove their card from their PCMCIA reader after entering their PIN and before the validation process has completed. The integrated USB hub option available in the BIOS of Dell D620, D430, and/or D760 machines can now be set to high without causing the Dell D620 embedded card reader as well as a wide range of USB devices to be unrecognized during Pre-Windows authentication. The message disabling IRQ #10 is no longer occasionally displayed during Pre-Windows authentication. An account that already exists on the database can no longer be specified in the Database Communications page of the SEE Management Server InstallShield wizard. Highlighted computers and/or groups in the Symantec Endpoint Encryption Users and Computers snap-in no longer occasionally display the following incorrect information, Currently no policy has been assigned to the group. After turning off synchronization services using the Configuration Manager, the Symantec Endpoint Encryption Native Policy Manager no longer shows that a policy has been applied to a Novell or Active Directory object that does not exist anymore. The Novell SSO panel of the User Client Console no longer occasionally displays absent any check boxes. Known Issues Third Party Compatibility Third Party Tool BIOS Power Management Roxio 6.2 Symantec Endpoint Protection 11 RSA SecurID 800 Client machines will fail to recover after going into screensaver mode from Pre-Windows. The Framework client package will fail to install due to a missing drive letter in the primary partition. Following the installation of SEE Full Disk on the Client Computer, a Network Threat Protection message may be displayed, alerting the end user to a change in the EAFRCliADSI application. If a second certificate is added to the token and the first certificate is deleted, the user will be unable to register with the token. Perform a hard reboot and disable BIOS power management. Windows power management should be used instead. Ensure that the following Registry key has the value PartMgr: HKEY_LOCAL_MACHINE\ SYSTEM\CurrentControlSet\ Control\Class\{4D36E967-E325-11CE- BFC1-08002BE10318}\UpperFilters Open Symantec Endpoint Protection and click Options in the Network Threat Protection area. Select Configure Firewall Rules from the pop-up menu. Highlight Block IPv6 over IPv4 and click Edit. Select the Allow this traffic option button on the General tab. Open the Ports and Protocols tab. Select All IP Protocols from the Protocol drop-down list box. Remove all certificates from the token and add the certificate again. Symantec Endpoint Encryption Full Disk 7.0.3 Page 3 of 5

Third Party Tool SymplisIT DefragMagic 1.0.0 If an encrypted hard disk is defragmented, the Full Disk panels of the User and Administrator Client Consoles will no longer be displayed. Defragment with this tool before encrypting the drive. Upgrade/Install/Uninstall/Migration When uninstalling the SEE Full Disk client, the following error may be displayed, Error 25027. Stop EAFRCliManager service failed. If power is lost during an upgrade of the client machine, a blue screen may occur and the machine may loop continuously in an effort to boot into Windows. If password authentication is selected during the installation of SEE Framework Manager console, but token authentication is specified by policy, users will be unable to register. Hibernation On certain machines, such as the Compaq nc6320, Optiplex GX280, Lifebook T5010, EliteBook 8730w, and ThinkPad T400, errors ranging from inconvenient to fatal may occur if the machine goes into hibernation following the registration of the first user and before reboot. Token Authentication When users attempt to authenticate in Pre-Windows using the Aladdin etoken, they may receive the following incorrect message, A certificate validation error has occurred. The current token needs to be replaced or modified by an administrator. Please call the help Desk for assistance. Tokens cannot be used for Pre-Windows authentication on the Acer Aspire 5515. Client Keyboards Users may be unable to combine the ^ (Circumflex), (Diaeresis), ` (Grave) and (Acute) dead keys with l (0131), I (0049), Shift+i (0069) or Shift+I (0130) from the Turkish Q keyboard. The Turkish Q character İ; (0130) may display as I in pre-windows. Users will be unable to enter the following characters from Canadian French keyboards in Pre-Windows: á ç Users will be unable to enter the following character from German keyboards in Pre-Windows: µ Manually stop the service and try again. Run Recover /d. If Recover /d fails, try Recover /b. If the Recover Program completes successfully, back up important files, then reinstall SEE Full Disk. If this fails, you will need to reinstall Windows or reimage the machine. Disable hibernation or ensure that the machine reboots following registration of the first user. If expired certificates are allowed or the certificate is not expired, check the PIN. The PIN may have expired according to Aladdin etoken software settings. Symantec Endpoint Encryption Full Disk 7.0.3 Page 4 of 5

Users will be unable to toggle keyboards after launching logon assistance. Manager Console The name of the Last Logon Time column of the Associated Users dialog refers to the last time/date that the user or Client Administrator logged on to the User or Administrator Client Console. A single quote character in the Enter User Names field of the Computers with Specified Users report (e.g., Ryan O Neil) causes a database access error to be displayed repeatedly. Deploying an Active Directory policy that contains a change to the Client Administrator settings from a 6.1.0 or later Manager to 6.0.0 or earlier clients will result in a failure of the new Client Administrator policy to be applied, a deletion of all existing Client Administrator policies, and a return to the Client Administrators specified in the original installation settings. Single Sign-On If a user presses CRTL+ALT+DEL in Windows Vista, clicks Change Password, provides the incorrect old password causing an error or is prevented from changing their password due to Windows policies, and then cancels out, that user will be unregistered from SEE. Password synchronization problems in Windows Vista could occur if users specify blank passwords. Section 508 JAWS does not always announce all of the information displayed within the Registration wizard and User Client consoles. If users need to toggle keyboards, they should do so before launching logon assistance. When deploying an Active Directory policy from a 6.0.0 or earlier Manager, add the following WMI filter: Select * FROM Win32_Product WHERE (name="symantec Endpoint Encryption Framework Client") AND (version <= "6.0.0") When deploying an Active Directory policy from a 6.1.0 or later Manager, add the following WMI filter: Select * FROM Win32_Product WHERE name = Symantec Endpoint Encryption Framework Client AND version > "6.1.0" Visit http://support.microsoft.com/ kb/936183. Obtain and apply the hotfix. Set the Windows policy to prevent users from specifying blank passwords. Users should follow these steps: 1. Press INSERT+F9. 2. Select the frame that is of interest from the resultant Frames List dialog. 3. Click OK. 4. Press P. If this doesn t work, restart JAWS and try the steps again. Symantec Endpoint Encryption Full Disk 7.0.3 Page 5 of 5

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information