What’s New
SEE Full Disk now includes full support for pre-boot authentication and policy updates through GPO or native policy on Windows 7 endpoints (32-bit and 64-bit).

SEE Full Disk and SEE Removable Storage now support server and client upgrades from comparable GuardianEdge products. SEE Full Disk supports in-place client upgrades (even if the drive is encrypted) from GuardianEdge Hard Disk Encryption, Encryption Anywhere Hard Disk, and Encryption Plus Hard Disk. SEE Removable Storage supports in-place client upgrades from GuardianEdge Removable Storage Encryption and Encryption Anywhere Removable Storage. See the Installation Guide for details.

Installation Notes
SEE Framework 7.0.6 is only compatible with SEE Full Disk 7.0.6 and SEE Removable Storage 7.0.6. If you are running SEE Removable Storage and plan to upgrade to SEE Full Disk 7.0.6, you must upgrade to SEE Removable Storage 7.0.6 also.

Resolved Issues

Number	Description
MA21548	Issues preventing the full support of the Acer TravelMate 6593 have been remediated.
MA21414 MA21822 MA21938 MA22044 MA22073 MA22095 MA22118 MA22134	Issues preventing the full support of the following Dell models have been remediated: Latitude E4300, Latitude XT, Latitude XT2, Precision M4400, Precision M6400, and Precision M6500.
MA21560	Issues preventing the full support of the Fujitsu Siemens Esprimo P2530 have been remediated.
MA21474 MA21530 MA21803 MA22045	Issues preventing the full support of the following Panasonic models have been remediated: ToughBook CF-19KHRAX2M, CF-52GCMHXAM, CF-T8EWDTZAM, CF-T8EWRTZ2M, and CF-T8HWGTZ2M.
MA22138	Users no longer lose access to Philips DVD/CD-ROM drives following the installation of SEE Full Disk on Dell Precision 490 Workstations.
MA20089 MA20711	Vista computers no longer fail to boot if a PCMCIA reader is inserted.
MA20868	The full range of USB ports and devices on the Dell D531 and D631 docking stations can now be utilized in Pre-Windows.
MA20217	The DVD drive of the Dell Optiplex 170L no longer becomes unrecognizable as of the first reboot following the installation of GuardianEdge Hard Disk.
MA21240	The One-Time Password Program Manager Console snap-in can now be installed on a drive other than C.
MA20749	The full list of supported token readers can now be used for Pre-Windows authentication on the HP Compaq 6535b—except GemPC Express.
MA21360	The 32-bit Manager Console MSI (Symantec Endpoint Encryption Framework.msi) can no longer be installed on a 64-bit operating system.
MA22000	The User Client Console no longer crashes after a token user without Single Sign-On enabled attempts to change their password.
MA21434 MA21998	The Client Administrator Guide now includes a method for achieving safe mode on laptops.
	The Installation Guide has been enhanced to include an upgrade procedure for multiple SEE Management Servers.

Known Issues
Dell E Series
On March 30, 2010, Dell released updates to the E series laptops that included significant changes in the computer BIOS and memory map. The updated models contain the trailing digits ‘10’ in the model name, for example, Dell E6410. The BIOS for these models has been patched twice since their initial availability two months ago. Symantec is working with Dell to enable support in SEE Full Disk for these computer models.

There are known issues with SEE Full Disk on various configurations of the following Dell computer models:

• Dell E4310
• Dell E6410
• Dell E6510
• Dell E5410
• Dell E5510

Third Party Compatibility—Hardware

Number	Hardware	Description	Workaround
MA22145	Fujitsu LifeBook T900 Tablet PC	These models may fail to boot up following installation of SEE Full Disk.	Do not install SEE Full Disk on these models.
MA22182	HP z800 Workstation	These models may fail to boot up following installation of SEE Full Disk.	Do not install SEE Full Disk on these models.
MA21952	Dell Studio 1440 and XPS 1320	If Windows 7 is installed, the computer will fail to boot into Windows following the installation of SEE Full Disk.	Do not deploy SEE Full Disk to these machines if Windows 7 is installed.
MA21864 MA21884	HP Compaq dc5700 and dc5100	If multiple USB devices are inserted at boot time, the computer will fail to boot into Windows.	Remove USB devices and try again.
MA21516	HP Compaq 6535b	The GemPC Express reader cannot be used for Pre-Windows authentication.
MA22200	Dell Precision M6500	Devices connected through USB or PCI Express will not be recognized in Pre-Windows.	Users should open laptop and use internal keyboard, mouse pad to complete pre-Windows authentication.
MA21327	Panasonic Toughbook CF-U1	Users will be unable to use USB devices such as keyboards and mice inserted into the docking stations of these computers during pre-Windows authentication.	Users should open laptop and use internal keyboard, mouse pad to complete pre-Windows authentication.
MA19987 MA20673	Acer Aspire 5515	Tokens cannot be used for Pre-Windows authentication.
MA21514	Dell Latitude D631 and D531	Following the removal of the CD/DVD drive, the computer will fail to boot into Windows.	Uninstall SEE Full Disk before removing the CD/DVD drive.
MA20752	SanDisk 4GB Cruzer Micro USB Flash Drive and HP Compaq dc7700	A SanDisk 4GB Cruzer Micro USB Flash Drive inserted at startup will cause HP Compaq dc7700 computers to hang after Pre-Windows authentication.	Remove SanDisk devices before powering on.
MA19704	SanDisk Cruzer Micro 512 MB USB 2.0 Flash Drive (SDCZ4- 512-A10)	If the SanDisk Cruzer Micro 512 MB USB 2.0 Flash Drive (SDCZ4-512-A10) device is inserted at startup, users may experience slow boot times.	Remove SanDisk devices before powering on.

Third Party Compatibility—Software

Upgrade/Install/Uninstall/Migration

Number	Description	Workaround
MA22161	If a custom destination folder was chosen during the installation of GuardianEdge Management Server 9.2.2, 9.2.1, or 9.2.0, the default path shown in the Destination Folder page during the upgrade to 7.0.6 will be missing the final subdirectory. For example, if you chose C:\GuardianEdge\Management Server\ for your original installation files, C:\GuardianEdge will be the default.	Click Change and navigate to the desired destination of the SEE Management Server files.
MA20747	If a local instance is selected during the installation of the SEE Management Server, the SEE Management Server uninstallation will fail with the message, “Could not connect to Microsoft SQL Server.”	Locate the GEServerConfig.xml file on the SEE Management Server machine. Find (local). Replace with the computer name of the SEE Management Server machine. Save and close the file. Try the uninstall again.
MA15465	If power is lost during an upgrade or migration of the client machine, a blue screen may occur and the machine may loop continuously in an effort to boot into Windows.	Run Recover /d. If Recover /d fails, try Recover /b. If the Recover Program completes successfully, back up important files, then uninstall Encryption Plus Hard Disk or reinstall SEE Full Disk. If this fails, you will need to reinstall Windows or reimage the machine.
MA12748	If password authentication is selected during the installation of SEE Framework Manager console, but token authentication is specified by policy, users will be unable to register.
MA16499	Following the successful application of an SEE migration package to an Encryption Plus Hard Disk 7.0.23, 7.1.0, or 7.1.1 workstation, users will need to log on to Encryption Plus Hard Disk one last time.

Drive Size/Fragmentation

Windows Power Management

Safe Mode Reboot Option

Recover Program

Manager Console

Number	Description	Workaround
MA21307	If an XPS print job is cancelled, the following error may be displayed, “The data area passed to a system call is too small.”
MA20559	After clicking a column heading to sort by the column, the sort arrow will be displayed to the left of the column heading if the operating system is Vista or Server 2008.
MA16623	Deploying an Active Directory policy that contains a change to the Client Administrator settings from a 6.1.0 or later Manager to 6.0.0 or earlier clients will result in a failure of the new Client Administrator policy to be applied, a deletion of all existing Client Administrator policies, and a return to the Client Administrators specified in the original installation settings.	When deploying an Active Directory policy from a 6.0.0 or earlier Manager, add the following WMI filter: Select * FROM Win32_Product WHERE (name="Symantec Endpoint Encryption Framework Client") AND (version <= "6.0.0") When deploying an Active Directory policy from a 6.1.0 or later Manager, add the following WMI filter: Select * FROM Win32_Product WHERE name = “Symantec Endpoint Encryption Framework Client” ANDversion > "6.1.0"

Client Keyboards

Number	Description	Workaround
MA19021	Users may be unable to combine the ^ (Circumflex), ¨ (Diaeresis), ` (Grave) and ´ (Acute) dead keys with l (0131), I (0049), Shift+i (0069) or Shift+I (0130) from the Turkish Q keyboard.
MA19019	The Turkish Q character İ; (0130) may display as I in pre-Windows.
MA16958	Users will be unable to enter the following characters from Canadian French keyboards in Pre-Windows: á ç
MA18893	The CAPSLOCK key will behave like the SHIFTLOCK key for nonalphabet characters in Pre-Windows for the Belgian (Period), French, and German keyboards.
MA19067	The character ł (0142) displays as Ł (0141) in pre-Windows when the Hungarian keyboard is used.
MA19335	CTRL+ALT combinations do not produce the expected special characters in Pre-Windows

Single Sign-On

Pre-Windows Authentication

Section 508