Endpoint Encryption

Hi,

I have OSX El Capitan and liocence for Symantec Desktop Encryption and I have big part of my work on external disk in .PGD file. Because Symantec didn't Desktop Encryption version for El Capitan I have no access to my files, my work. It is biggest and biggest problem every day. What I can do, how I can decrypt my files in .pgd storage?

Thank you!

I have quite a similar situation with many encrypted *.pgp files . Have you tried downgrading into earlier OS X version, perhaps virtually? I agree that is a very complicated way to go and I have not done it myself yet.

Hope that there soon would be a 10.11 compatible version available.

Hi, thank you! Problem is that I have other apps from third parties and it needs ElCapitan... Solution is more responsibility of Symantec. I'm their client with PGP since 2005...

OK. By downgrading I was thinking to have a totally seperate installation which of course takes time and money.

Definitely: I agree the situation is shameful. I have been using PGP on mac since around 1998 ...

Has there been any update to this situation?  I too have PGP files and need to access them via my MAC El Capitan system.  I have a virtual Windows machine running so I can work round the problem but it is a pain.  Are they going to bring out a version compatible with El Capitan?

Version 10.4.0 is available now, and should work with El Capitan.  Drive encryption will require SIP to be disabled:
https://support.symantec.com/en_US/article.TECH235027.html

Mike-

Thank you for keeping us posted all the way along this path.  Without your comments we would really have been in the dark wondering if would ever be able to use this product again.  I'm a little confused by the information on dealing with SIP.  In step 6 of the tech note you cited above it states:

          6.   "Once encryption has started you may re-enable SIP by running the following command..."

At the bottom, it says:

           "Once SIP has been disabled, Drive Encryption should then be possible."

The first part (action 6) sounds like we disable SIP.  Install PGP and then re-enable SIP.  (indefinitely?)

The second part makes it sound like you can't operate PGP with SIP enabled.

Could you clarify this for us?

Thank you.

-Larry

And just to make sure we're talking Apples and Apples, our use is to mount .pgd drives to use as logical drives for reading and writing data that needs to be secure.

Thank you.

-Larry

Sure thing.  If you are doing drive encryption, that should be the only time you would need to disable SIP.  As I understand it (and I will try to get a definite confirmation when I can), the permissions required to begin encryption are such that SIP interferes.  Once started, however, you should be able to re-enable SIP, and not wait for the drive to completely encrypt.  The driver once activated initially without SIP (to instrument the drive and begin encryption) should operate normally.

If you don't use Drive Encryption with Symantec encryption desktop, the other features should work with SIP enabled from the start.

I was able to confirm a couple things:
It is only when intitializing/starting/creating things that use the drive encryption driver that SIP should be disabled.  For example, creating a new Virtual Disk will require SIP disabled.  Using an existing Virtual Drive, SIP can be enabled.  The initial processes for initialization of a new encrypted medium with the driver require root-level permissions, which SIP denies.  The driver should otherwise be able to access and use existing medium without issue.

Mike-

Thank you so much for adding this level of detail.  Will be updating to El Capitain soon to give it a try.

-Larry