File Share Encryption

I have Symantec Drive Encryption 10.3.2 MP11 running in my enviroment managed by Symantec Encryption Management Server (EMS) for performing Whole Disk Encryption on clients. I know after the drives are encrypted we have the capability to add multiple user from the Symantec Drive Encryption's GUI so that they can unlock the system and logon at BootGuard Authenitcation screen.

I have one concern that we have around 1000 machines and i want to add all the administrators in Admin Group to all the machines. It is impratcical to go on every single machines and add all the administrators in Admin group one by one on them. What are the options avaiable to achieve what i am trying to do?

Thanks.

Each user must be logged into machine\laptop inorder to enroll user account.

Manual adding is not recommended here.

Essentially, Bootguard uses the locally stored creds of users in Windows for authentication purposes, which means each of them must have logged into each of the 1000 machines before Bootguard is even able to see them.  Bootguard is not capable of connecting to a network, so it cannot perform a lookup against a DC and check user membership to a group before allowing the members of such a group to login.

You'd be better off using the "Encrypt Drive Encryption disks to a Disk Administrator Passphrase" option in the Drive Encryption policy, and changing this every so often