Data Loss Prevention

Hi All,

I have lost password of Enforce server on Windows platform.

Any suggestions to reset the password.

OS version : Windows 2003 SP2

Symanec DLP 11.0

Rgds

Surinderjit

Hi Surinderjit,

Can u tell me whether ur user account (role based ) is a enduser or u have Admin account.

Please tell me , will try to provide u solution

Thanks & Regards

Kishorilal

Hi Kishorilal,

Thanks for prompt reply.

I have admin account (No end user) and that is the only account created in the server.

Rgds

Surinderjit

Hi sunderjit,

If you have user account as other than Admin then it can be reset or modified password settings.But if it is Admin accont for DLP then you need follow below steps.

If your login and password is authonticated with AD ID then it can be reset through AD team.For better understanding i am adding some expaination on authentication mechanism of DLP.

Active Directory authentication

With Microsoft Active Directory authentication, the Enforce Server administration console first evaluates a supplied user name to determine if the name exists in a configured Active Directory server. If the user name exists in Active Directory, the supplied password for the user is evaluated against the Active Directory password. Any password configured in the Enforce Server configuration is ignored.

SPC authentication

You can optionally integrate the Enforce Server with a single Symantec Protection Center (SPC) instance. With SPC integration, a user first logs into the SPC console, and may then access the Enforce Server administration console from within the SPC interface. When the user requests the administration console option, the SPC console delivers the user name or user name and role of an Enforce Server administration console user over a trusted connection. The SPC administrator can map all SPC users to a single Enforce Server user account, can map different SPC users to different Enforce Server user accounts.

 still need help , please feel free to ask

Regards

Kishorilal

Hi

As it is not integrated with AD. Only SPC option left for me.

Could you suggest me how to download SPC other than Fileconnect.symsntec.com, as it is not taking serial number (for Download).

Rgds

Surinderjit

Even with the SPC (which you'd have to install and configure), you're going to need a user account in DLP to integrate the two products.  You can't do that without a known DLP username/pw combo.  You need to know that in order to map those users. 

You're going to need to open a case with Symantec Support.  They will ask you for a particular config file.  They may be able to decrypt this file and provide you with your Administrator password.  At least it used to work that way...haven't had to do a pw recovery in some time.

~Keith

Hi Sunderjit,

I think it is not expectable that even u had Admin account you have forgot the password,you need to call raise with symantec support.I have reasearched that Symantec have solution for this and they can help you to resolve . They have some specific tool to perform this task and reset the admin password of Enforce.

Please check below

After you switch to Active Directory authentication, You have to still create users in the Enforce Server administration console. The users which you will create in the Enforce Administration console has to match with the user in the Active Directory.

 After you switch the Enforce to Active Directory authentication, all the users which does not match the AD user becomes invalid.

With this taking the effect the password reset option in the Enforce under System-> users-> is taken away and the user password can be changed only through AD.

Hi Sunder jit,

is ur problem is resolved. As i can say u confirm that ur problem can be resolved only from Symantec support since the tool and tricks are confidential to symantec and u will not get the solution here.Y can get the solution with Symantec support team only.

Hi,

    Resetting the Administrator password

1. Log onto the Enforce Server computer using the account that you created during Symantec Data Loss Prevention installation.
2. Change directory to the /opt/Vontu/Protect/bin (Linux) or c:\Vontu\Protect\bin (Windows) directory. If you installed Symantec Data Loss Prevention into a different directory, substitute the correct path.
3. Execute the AdminPasswordReset utility using the following syntax:

Hi Sunderjit,

I have researched to get solution for you and found solution that is related to your problem.

Please try below solution. I hope your problem will be resolved.

a lost Administrator password could be recovered at any time by using the raise the symantec tech support  , they will really help you to resolve the same . and i am confirm that they have solution for this.