File Share Encryption

We have an issue with an old laptop that is on our PGP Universial setup.  The user has managed to lock the disk.  When we went onto the Universial Server the laptop is no longer there (as the laptop was old and no one was aware it was still in use, it was removed) so we can't generate a Whole Disk Recovery Token.

I assume there is no way around this, otherwise it would make the encryption pointless?

Okay, Two things you can do

Did you configure a Whole Disk Encryption Administrator passphrase in your policy?

If so at the Boot Guard screen User name is WDE Administrator ---- passphrase ----- Domain is This Computer

That would get you past the initial encryption piece.

If you didnt do that you can retrieve the Laptop and take out the hard disk drive and slave it to another PC that is encrypted and use its Whole Disk Encryption Desktoip client to unencrypt or Unlock the DIsk.

If you just want to unlock the DIsk use the pgpWDE cmd line tool, if you want to unencrypt use the Desktop GUI.

Hi Stevenuk,

If we have set a wde administrator passphrase in the PGP Server policy, we can use wde admin passphrase to unlock the disk.

Regards,

Sarfaraz Rahman

We can try pgpwde commands by slaving the HD as mentioned by InfoSecHealthCare

http://www.symantec.com/docs/TECH204285

Hello,

If you mean the device is locked out by policy with login attempts then only a WDE Disk Admin or a Recovery Token can unlock the disk.

Even if you slave the drive and try and decrypt with the users password the device will be locked.

If you do have a WDE Disk Admin setup on the disk then use the Admin passphrase when slaving the drive to decrypt.  The PGP GUI or Command Line can be used to decrypt the hard drive.

Thanks

Anthony