Symantec Drive Encryption (formerly PGP Whole Disk Encryption) Recovery for Mac OSX
|Article:TECH149559|||||Created: 2009-09-22|||||Updated: 2013-05-13|||||Article URL http://www.symantec.com/docs/TECH149559|
This article details how to use the EFI recovery disk on a Macintosh system which is encrypted using Symantec Drive Encryption or PGP Desktop.
While the chances are extremely low that a boot.efi file could become corrupt on a boot disk or partition protected by Symantec Drive Encryption, it is possible. If this occurs, it could prevent your system from booting. Prepare for this unlikely event by creating a recovery CD before you encrypt a boot disk or partition using Symantec Drive Encryption on a Macintosh system.
You may download and burn a Recovery CD for your version of Symantec Encryption Desktop or PGP Encryption Desktop. Direct links for the most recent releases are available from the support articles below.
To use the recovery disk
- Download and save recovery iso image to your system.
- Burn the image to a CD-ROM using the Mac OS X Disk Utility. Click here for an Apple Support article on how to burn a disk image file.
- Boot the Macintosh system with the disk. To boot with the disk, hold down the Option key when rebooting the system and select to boot from the recovery disk. The PGP BootGuard screen is displayed.
- Enter your passphrase when prompted and press Enter.
- To decrypt the disk press D then press Enter.
Caution: Once you have started to decrypt a disk or partition using a recovery disc or diskette, do not stop the decryption process. Depending on the size of the disk being decrypted, this process can take a long time. A faster way to decrypt the drive is to use another system that has the same version of Symantec Encryption Desktop installed on it. If using Target Disk Mode, see the following caution:
Target Operating Systems: Macintosh OS X 10.5 (Leopard), Macintosh OS X 10.6 (Snow Leopard), Macintosh OS X 10.7 (Lion), Macintosh OS X 10.8 (Mountain Lion)
When using the recovery disk the PGP boot partition is not automatically removed. To remove the PGP partition, use the following steps:
- Partially encrypt the disk using the Symantec Encryption Desktop, and then decrypt disk using Symantec Encryption Desktop.
- Uninstall Symantec Encryption Desktop, and then reinstall Symantec Encryption Desktop.
- Use a third-party tool to remove the partition.
Article URL http://www.symantec.com/docs/TECH149559