Endpoint Encryption
danielt
|
November 19th, 2009
Hello,
I am beginner with SEE 7 and I would ask you for help with SEE Management Server installation.
I have follow instructions in "SEE-FD 7.0.4 Installation Guide.pdf"
During installation I recieve following error:
Error 27506. Error executing SQL script CreateSEEMSDb. Line 228. Timeout Expired (0)
My test enviroment is installed in vmware before it will be deployed in productin enviroment.
Both servers: Win2003 Standart R2 SP2 + available WindowsUpdate
I have test installation with SQL2005ExpressAdvanced, SQL2005Standart, SQL2008ExpressAdvanced.
SQL is always local instance with enabled remote connection (TCP/IP and named pipes)
Installed version is SEE 7.0.4 , FullDisk Management Server
Application is installed using domain administrator account.
Setup fails always at same point: (part of setup logfile)
1: ADO Error: Number: -2147217871 Description: Timeout expired Source: Microsoft OLE DB Provider for SQL Server SQL State: HYT00 Native Error: 0
MSI (s) (B8!F8) [22:37:...
1 comments
zenworksb
|
November 18th, 2009
Hello I am at a client about to push APP-V and Endpoint encryption removable media to all there clients 6,000 plus. I am here doing a POC. In the POC if a client has APP-V and endpoint encryption and tries to access a couple of teh apps teh computer reboots without endpoint encryption this never happens? any ideas or places to start looking
0 comments
fbentz
|
November 17th, 2009
The current release of removeable media does not allow a user to take a USB drive to a non SEE equiped machine, open the files on the machine and then save it back encryped to the usb drive. Once the file is opened it can only be saved unencrypted. This then allows confidential data to be compromised. Please add encrypting data on USB drives for all data rewritten to a drive.
0 comments
James ORegan
|
November 12th, 2009
Hi
I was wondering if anyone knew what the process is for transferring a a harddisk to a new machine when the current one fails , is there key that needs to be transferred so the OS can recognise the disk
Also is this documented anywhere ?
Kind Regards
James O'Regan
3 comments
Davinci_uk
|
November 11th, 2009
Where does this fit into the equation?
Wouldn;t admins use the SEE server and console to manage clients?
Whats does the manager do?
Thanks
0 comments
Davinci_uk
|
November 10th, 2009
With FD encryption on, I take it the ocal MP3's will be encrypted and unusalable on their IPOD/.IPHONE?
It sounds like a joke post, but I know most of our board directors have iphones.
We are going to be strict and tell them, but does anyone have experience of using encryption with files that are going to go to iphones/blackberry;s.
Can you create exceptions in Full Disk mode?
0 comments
Davinci_uk
|
November 10th, 2009
Hi, looking to do a design and pilot of SEE, but have only found the datasheet so far! Doesn;t seem to be accessible info. Will try Symantec Connect, but if anyone had a link to admin or install guides would be appreciated!
Can anyone be so kind as to answer the following please?
- What is the latest version of SEE?? 7.0.xxx????
- Does it require a SQL db or have a local embedded one? If SQL, can this be an instance on our SQL cluster i.e. not on the local SEE server?
- For clients to work, do we have to enable PXE in the BIOS?
Any other getting started info wouldbe very much appreciated!
Thanks
2 comments
camerons
|
November 6th, 2009
I've running a endpoint protection server V11.0.4204.MR4.MP2. I've created a set of Antivirus/Antispyware policies which I've assigned to the appropiate group. When I goto create my client install package I setup the group in the menu that I've assigned the special policies.
The problem when I deploy the application, it appears as unmanaged, and doesn't contain any of the policies I've applied. I've verified the policies are applied and re-created the package, with exactly the same results.
The installation of the client goes textbook, but it use's the wron settings.
Any idea's?
Thanks,
0 comments
tanyc
|
November 5th, 2009
Hi,
My user recently changes his account password. When he login to the machine with SEE Client installed, SEE requested my users to re register. Is this normal?
1 comments
manutitus
|
November 5th, 2009
Dear all,
Recently I implmeneted a SEE FD 7.0.3 on an ISA Server 2006 Server which is acting as a ISA Server Web Cache.
After creating the FRamework,Fulldisk and Removable storage clients, all these packages are deployed to the test PC using Group Policy
I can see the SEE USer Client GUI
I can see under Registered Users - the current user
Account seetings - I can see
Password - windows login password
Authenticheck - the wuestions that are asked
Onetime Password - the help desk names (first name ,last name)
Under Full Disk
Encryption - ITs shows disk is encrypted
Decryption - No access
Check- In -
Here is the Problem - When I click Check-In
It shows
Last communication with the SEE Server - never connected
Next communication due by - Not applicable
If I check In now - It will say
TRYING TO COMMUNICATE WITH THE SEE SERVER without any success message.
Can anyone shed light on this ?
IS ISA blocking something...
2 comments
hiepnh
|
November 4th, 2009
Hi all,
I have purchased the Symantec Endpoint Encryption 7.0. I have installed successfully on my test lab (with VMWare Workstation). But when i implemented on my real system, i got an error on AD synchonization step:
My AD information:
Windows server 2003 Ent
1 domain with 3 sub-domain
I synchonized with domain admin account
No firewall on the path from SEE Server to AD
I intalled SEE on the other server but the same error occur.
Thanks & Best regards.
1 comments
c_boyer
|
November 4th, 2009
We have a few users who have recieved the following message opon booting their machines:
"Fatal error has occured. Machine will need to be restarted. Brief description: The application returned a status of [0x80000001] in the state State_Initialized.
Detailed Information is blank.
At this point we have to run the access and recovery disks to gain access to the computer.
We are running SEE 7.0.3 on a Windows 2003 Enterprise Server SP2, and Windows XP SP2 for our clients.
Any help is greatly appreciated.
Channing
2 comments
tanyc
|
November 3rd, 2009
Hi, during the creation of the Client Installer package. We specify the ISS Client account with the password for the SEE Client to report back the status.
My user have a policy that needs to change the password every 90 days. If the password is changed, is the SEE Client is not able to communicate to the SEE Manager?
What is the solution for this?
Thanks
2 comments
tanyc
|
November 3rd, 2009
Hi, during the creation of the Client Installer package. We specify the ISS Client account with the password for the SEE Client to report back the status.
My user have a policy that needs to change the password every 90 days. If the password is changed, is the SEE Client is not able to communicate to the SEE Manager?
What is the solution for this?
Thanks
2 comments
a_gunslinger
|
November 3rd, 2009
Have SEP 11 running fine on my home system using Windows 7 final release except for one issue. With Network Threat Protection enabled it will not allow any outbound network access. Win7 come sup saying no netwrok connection present - to internet or what Windows 7 calls Home Group. Disable SEP 11 Network Threat Protection and everything fires right up.
Network Threat Protection has a lot of options setting but I am not sure which one will allow network access thur my router and cable modem without compromising any other threat protection advantages. Rather not turn it completely off.
Thanks!
3 comments
johnk@dp.io2io.com
|
November 3rd, 2009
Hi,
Need help how to disable the SEE policy update message on SEE client PC, user keep on received the SEE policy update message every time computer restarted. I only used Native policy to update SEE client.
Thanks!
John
0 comments
Pradeepb
|
October 29th, 2009
Symantec Endpoint Encryption not having any policy or feature to encrypt Full disk remotely. You can decrypt full disk remotely But you can't to do full disk encryption. If you select encryption setting as "Let user can choose partition for encryption ". If you want to change encryption setting you have to uninstall Symantec Endpoint Encryption full disk from applicable desktop or Laptops ( As per Symantec support). IT IS NOT POSSIBLE PRACTICALLY.
3 comments
Agr8lemon
|
October 29th, 2009
Hello everyone,
I hope this is an easy question to answer as I'm just stepping into this product where someone else left off.
I would like to load the Endpoint Encryption Manager on multiple PCs (ie Help desk PCs) so they can help do the One Time Password function. My question is this:
Do I just run the EEM install on the additional PCs using the same DB log in? And, do then have to give each help desk person the password to that DB so they can launch the Manager?
Any help on this would be great!
Thank you,
Monty
2 comments
Naor Penso
|
October 25th, 2009
Hi,
My idea/Feature request is this:
At the moment when you use SEE for removable storage feature there are two ways to copy the software to the DOK:
1) the software is copied every time the user plugs in any DOK without user interaction.
2) the software isn't copied at all, the user needs to manually copy the software to the DOK.
my idea consists of 2 other methods of using the SEE removable storage software:
1) the software will be copied only when a user copy a file to the DOK, this way when the user plugs in a DOK for read-only purposes the software wont bother him.
2) the software will ask a user when he inserts a DOK to the computer if the user is interested in copying the software to the DOK.
I think that its an essential upgrade to the SEE system.
Hope someone would pay attantion to this idea.
thanks.
naor
4 comments
ThierrySEP
|
October 23rd, 2009
We have a problem with encryption logon.
On some laptops, the number 0 don't work.
We work with a Belgian (period) keyboard and all the rest of the letters and numbers works fine. It is just the 0 that don't work.
The 0 on the numeric keyboard works fine, but not every laptop has a numeric keyboard.
Any solutions?
1 comments
gilseth
|
October 20th, 2009
We are a small to medium sized bank using an Active Directory 2000 native domain. We will be creating a new domain, a Windows 2008 Server domain. We are currently using Symantec Endpoint Encryption 7.0 , it is installed on a windows 2000 domain member server (running windows 2003 OS) and SEE-with a SQL database on a separate server. Our domain that it is currently running on is Windows 2000. As I said we will be creating a new, separate domain for Windows 2008 (we will not upgrade the existing domain---and will in fact be getting rid of the windows 2000 domain) . Is there a way of taking our existing SEE implementation and migrating it to----pointing it to use the new 2008 domain we will be creating? Will this require touching (decrypting/re-encrypting) all the laptops we already have encrypted with full disk encryption before getting rid of our 2000 domain?
1 comments
ohzone
|
September 23rd, 2009
We've had numerous questions regarding Windows 7 and which Symantec products will support the new OS and when. In effort not to duplicate information and keep updates as current as possible we are providing this link to the Symantec.com site: http://www.symantec.com/business/theme.jsp?themeid=windows7
This FAQ page contains a list of products and release dates along with links to the individual product pages.
Altiris Client Management Suite, Security, Altiris Deployment Solution, Backup and Archiving, Endpoint Management and Virtualization, Backup Exec, Backup Exec System Recovery, Windows, Control Compliance Suite, Data Loss Prevention (Vontu), Endpoint Encryption, Endpoint Protection (AntiVirus), Endpoint Protection Small Business, Enterprise Vault, Ghost Solution Suite, NetBackup, Network Access Control, pcAnywhere, Wise Application Packaging, Wise Installation Development, Workspace Streaming, Workspace Virtualization
5 comments
dougneb
|
September 18th, 2009
I installed SEE Management Server on the same server as the SQL DB. Can I install SEE Manager on the same server?
1 comments
tommyhawk
|
September 18th, 2009
I presently have SEP up and functional within my network. Preparing to start testing SEE v.7.03. On the face of it, SEP's db requirements are quite similar to the SEE db requirements, SQL db on the Mngt. server or with SQL db on a separate, backend SQL db server. However, SEP install documententation states the very best setup is creating a "separate instance" SQL db on SQL server. I see no specific recommendation toward's this, so far, in the SEE installation recommendations. I doubt I will create the db on the SEE mgr. server. More than likely I will install on a separate SQL server. With that in mind, what do you folks recommend; Separate or default instance? Will I see many benefits from a separate instance or will the default instance suffice? thanx
3 comments
neil_rogers
|
September 17th, 2009
Everyone knows USB drives are a huge chance for losing data. I found a way to make that worse.
I bought a USB drive for my wife to use on her personal laptop. We all carry at least one of these. Her drive stopped be recognized, let alone work on the system.
Since it had only been used 3 times, i wanted the manufacturer to replace it under warranty. They offered to exchange it only if i send it back with drive intact. I was shocked that they required me to send it back. They had a fax number that if i was with the government and can send letterhead of such an organization asking to not send the drive, and they will exempt it.
So a new drive cost $60-$150 depending on size. Having personal, let alone any corporate data on the drive and it falls into the wrong hands, which if it is being sent in a box that says what company makes the drive or is addressed to the company, it would be easy for someone to take a look inside to...
Altiris Client Management Suite, Emerging Threats, Security, Evolution of Security, Endpoint Management and Virtualization, Online Fraud, Security Risks, Vulnerabilities & Exploits, Control Compliance Suite, Critical System Protection, Data Loss Prevention (Vontu), Endpoint Encryption
1 comments