Video Screencast Help

PGP Universal

Created: 09 Apr 2013 • Updated: 12 Apr 2013 | 7 comments
This issue has been solved. See solution.

 

- If we have integrated PGP universal with AD and any user is deleted in AD, will it automatically gets deleted from PGP Universal, if yes then what are the settings.

 

- If user gets lefts the organization then do i need to decrypt the hard disk and then re-enroll the new user and encrypt the hard disk.What are the steps to re-enroll. 

 

- One of my user works in day shift and other user comes in night shift on the same machine, how can i enroll both the users and both of them should be single sign on. What are the steps to enroll both the users. 

 

- In media encryption, can i encrypt the media automatically as soon as it is connected, if yes, then how what are the settings.

 

- Can i disable the usb port through PGP Universal, if yes, then how what are the settings.

 

- Any media once connected should not be detected to any other machine.

 

- In File encryption do users have to import every other user key, as in our organization there are many users, so we cannot import every other key. What is the alternative for this.

 

- How to edit the client agent .msi file, i tried with notepad and worpad.

 

- After Encrypting one of the partition, i am not getting the option to decrypt, instead i am getting the encrypt button and when i click on encrypt it gives me an error as 'Unable to Encrypt: Bad Parameter (-12000). But it asking pre-boot passphrase everytime i login.

 

 

Operating Systems:

Comments 7 CommentsJump to latest comment

Arif.Khan's picture

 

HI

I managed to answer some of you questins alternatively follow this Install guide to achive the poliy settings decribed below.

http://www.symantec.com/docs/DOC6201

 

If we have integrated PGP universal with AD and any user is deleted in AD, will it automatically gets deleted from PGP Universal, if yes then what are the settings.

The user wont be deletd You will have to delete them manaully.

 

- If user gets lefts the organization then do i need to decrypt the hard disk and then re-enroll the new user and encrypt the hard disk.What are the steps to re-enroll. 

You can add another user to disk and then remove the existing user.  

 

- One of my user works in day shift and other user comes in night shift on the same machine, how can i enroll both the users and both of them should be single sign on. What are the steps to enroll both the users. 

SInce you are suing AD sync just login both the user account one after to same onto system and follow enrollment wizart. 

 

- In media encryption, can i encrypt the media automatically as soon as it is connected, if yes, then how what are the settings.

Use PGP portable policy from Symantec Encryption mgmt Server.

 

- Can i disable the usb port through PGP Universal, if yes, then how what are the settings.

It is not possible to disable USB port You can use Group Policy or BIOS Settings for same.

 

- In File encryption do users have to import every other user key, as in our organization there are many users, so we cannot import every other key. What is the alternative for this.

You can use Group Key to achive this.

PGP NetShare Group Key FAQ's http://www.symantec.com/docs/HOWTO61299

Arif

Please mark posts as solutions if that helps you resolve the issue.

SOLUTION
Amandeep Singh Deol's picture

Thanks for your mail.

- Can i hide uninstall button from users, as they can unistall the PGP client.

 

Alex_CST's picture

You cannot do that within PGP.  You will have to prevent that via group policy.

Please mark posts as solutions if they solve your problem!

http://www.cstl.com

Amandeep Singh Deol's picture

By Group policy, do you mean by Active Directory.

Alex_CST's picture

Yea, prevent the users from even accessing add + remove programs via group policy within AD

Please mark posts as solutions if they solve your problem!

http://www.cstl.com

Amandeep Singh Deol's picture

Hi Alex,

Thanks for your reply.

Regarding my query,

- One of my user works in day shift and other user comes in night shift on the same machine, how can i enroll both the users and both of them should be single sign on. What are the steps to enroll both the users. 

SInce you are suing AD sync just login both the user account one after to same onto system and follow enrollment wizart.

I tried your suggestion one user got enrolled, but the other did not the enrollment pop-up instead when he clicks the PGP tray or PGP Desktop he is getting an error. Attached is the screen shot for your reference.

- Whenever i login i get the certificate error, how to disable it.

- Also, policies are not updating as per the scheduled.

PGP error.JPG
Amandeep Singh Deol's picture

- What database is used in PGP Universal server?

- Can i encrypt and decrypt remotely without knowing to users.

- If my machine is in workgroup and my user forgets his password, he will login by answering security questions but then how can he reset his password as while clicking on change password it asks for the old password. Can administrator reset the password.