Restoring Symantec System Recovery images of machines that have been protected by Symantec Drive Encryption (previously PGP Whole Disk Encryption)

Article:TECH198084  |  Created: 2012-10-09  |  Updated: 2013-12-30  |  Article URL http://www.symantec.com/docs/TECH198084
Article Type
Technical Solution


Subject

Issue



How to restore disks encrypted with Symantec Drive Encryption with Symantec System Recovery images using the Recovery Disk


Error



Currently, if restoring images encrypted by Symantec Drive Encryption and using Symantec System Recovery with default restore settings, the system will not boot correctly and may boot to a black screen with a blinking cursor, or the error 'No Operating System Found'. Or, the PGP BootGuard screen does not accept the correct password.


Solution



DISCLAIMER: At this time, restoring volume(s) encrypted with Symantec Drive Encryption software is not currently supported by Symantec. The following steps are a 'work-around' in situations where a restore is imperative, and is not a guarantee of a successful restore.
 
To successfully restore disks encrypted with Symantec Drive Encryption using the Symantec Recovery Disk, use one of the following methods:
 
Attempt the steps outline in TECH55306 before proceding in re-restore methods listed below:
 
METHOD 1:
  1. Boot machine with the BESR/SSR Recovery Disk (SRD).
  2. If applicable, map a network drive to the storage location of the recovery points.
  3. From the Recovery Disk Home page, click Recover My Computer.
  4. From the drop-down menu, select Filename.
  5. Browse to the image file location and select the image file to restore.
  6. Click Open, then Next
  7. Uncheck Verify recovery point before recovery.
  8. Click Edit
  9. Highlight the volume you are restoring the image to, and click Delete Drive. 
  10. Highlight the new unallocated space
  11. In the options, select only Set drive active (for booting OS)
  12. Click OK
  13. De-select Use Restore Anyware to recover to different hardware if going to the same hardware. Otherwise, select this option.
  14. Click Next
  15. Click Finish
  16. Click OK, allow the recovery to finish, remove the Recovery disk and reboot the machine.
  17. Enter the pass phrase on the PGP screen.
  18. When the error Missing Operating System appears, boot the machine from the recovery disk used in step 1.
  19. Click Analyze, then Open Command Shell Window. Navigate to the drive letter the recovery disk was booted from. 
  20. Click CD MANAGER to get into the manager directory (example: D:\MANAGER). 
  21. If system is Windows Vista or later, type BOOTSECT /NT60 c: /MBR (ensure that c:\ is the system volume. If not, adjust drive letter accordingly).
  22. If system is Windows XP, type BOOTSECT /NT52 c: /MBR (ensure that c:\ is the system volume. If not, adjust drive letter accordingly).
  23. Remove the recovery disk, reboot the system, type in the correct PGP pass phrase, and log into system.
METHOD 2:
 
  1. Download pgp_fixmbr.zip from technote http://www.symantec.com/docs/TECH149102 and extract pgp_fixmbr.exe to the location where the recovery points (backup images) are stored.
  2. Boot machine with the BESR/SSR Recovery Disk (SRD).
  3. If applicable, map a network drive to the storage location of the recovery points.
  4. Click Analyze, then Open Command Shell Window. Navigate to where pgp_fixmbr.exe is located.
  5. Type pgp_fixmbr.exe and press enter.
  6. Type diskpart and press enter.
  7. When diskpart loads, type list disk.
  8. From the list, determine the target (destination) for the image file restore (typically disk 0). 
  9. Type sel disk X, where x represents the target disk. (example sel disk 0). 
    ***WARNING: ENSURE THE CORRECT DISK IS SELECTED. The remaining steps will erase and then overwrite the selected disk contents.***
  10. Type Clean and press Enter. (This removes any and all partition or volume formatting from the disk selected in step 8.)
  11. Type create partition primary and press Enter. (This creates a primary partition on the current basic disk.)
  12. Type sel part 1 and  press Enter. (This selects the specified partition and gives it focus.) 
  13. Type format fs=ntfs quick and press Enter. (This formats the volume selected in step 12.)
  14. Type exit and press Enter to exit diskpart.
  15. Type exit and press Enter to exit the DOS shell.
  16. From the Recovery Disk Home page, click Recovery My Computer.
  17. From the drop-down menu, select Filename.
  18. Browse to the image file location and select the image file to restore.
  19. Click Next
  20. Uncheck Verify recovery point before recovery.
  21. Click Next
  22. Click Finish
  23. Click Yes
  24. The restore fail with Error EC950019: The current recovery data is invalid
  25. Click OK
  26. Click Back
  27. Click Edit
  28. Highlight the volume and click Delete Drive
  29. Highlight the new unallocated space
  30. In the options, select only Set drive active (for booting OS)
  31. Click OK
  32. De-select Use Restore Anyware to recover to different hardware if going to the same hardware. Otherwise, select this option.
  33. Click Next
  34. Click Finish
  35. Click OK, allow the recovery to finish, remove the Recovery disk and reboot the machine.
 
METHOD 3:
  1. Boot machine with the BESR/SSR Recovery Disk (SRD).
  2. If applicable, map a network drive to the storage location of the recovery points.
  3. From the Recovery Disk Home page, click Recover My Computer.
  4. From the drop-down menu, select Filename.
  5. Browse to the image file location and select the image file to restore.
  6. Click Open, then Next
  7. Uncheck Verify recovery point before recovery.
  8. Click Edit
  9. Highlight the volume you are restoring the image to, and click Delete Drive. 
  10. Highlight the new unallocated space
  11. In the options, select Set drive active (for booting OS) and restore original disk signature.
  12. Click OK
  13. De-select Use Restore Anyware to recover to different hardware if going to the same hardware. Otherwise, select this option.
  14. Click Next
  15. Click Finish
  16. Click OK, allow the recovery to finish, remove the Recovery disk and reboot the machine.
  17. Insert a Windows Vista 7/8/2008/2012 DVD (according to your operating system.
  18. Restart your computer
  19. Hit a key when asked if you want to boot from your DVD drive.
  20. Choose your language, click Next.
  21. Click Repair your computer
  22. Select the operating system you want to repair.
  23. On the system recovery screen, click Command Prompt
  24. Type bootrec.exe /fixmbr, press Enter.
  25. Type bootrec.exe /fixBoot, press Enter.
  26. Remove the Windows DVD, reboot the machine. 




Article URL http://www.symantec.com/docs/TECH198084


Terms of use for this information are found in Legal Notices