Dell Data Protection | Encryption Admin Utilities
© 2014 Dell Inc. Registered trademarks and trademarks used in the DDP|E, DDP|ST, and DDP|CE suite of documents: Dell™ and the Dell logo, Dell Precision™, OptiPlex™, ControlVault™, Latitude™, XPS®, and KACE™ are trademarks of Dell Inc. Intel®, Pentium®, Intel Core Inside Duo®, Itanium®, and Xeon® are registered trademarks of Intel Corporation in the U.S. and other countries. Adobe®, Acrobat®, and Flash® are registered trademarks of Adobe Systems Incorporated.
Contents 1 Administrative Download Utility . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Use the Administrative Download Utility in Admin Mode . . . . . . . . . . . . . . . . . . . . . . . . . . . . Use the Administrative Download Utility in Forensic Mode 2 Administrative Launch Utility . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Use the Administrative Launch Utility in Admin Mode Syntax for Admin Mode 5 6 7 . . . . . . . . . . . . . . . . . .
Admin Utilities
1 Administrative Download Utility This utility allows the download of a key material bundle for use on a computer that is not connected to an Enterprise Server. The Admin utilities can then use these offline bundles. This utility uses one of the following methods to download a key material bundle, depending on the command line parameter passed to the application: • Admin Mode - Used if -a is passed on the command line or if no command line parameter is used.
Use the Administrative Download Utility in Forensic Mode 1 In the location where the Administrative Download Utility is located, open a command prompt and type cmgad.exe -f. 2 Enter the following information (some fields may be pre-populated). Device Server URL: Fully Qualified Device Server URL If your Enterprise Server is pre-v7.7, the format is https://deviceserver.domain.com:8081/xapi If your Enterprise Server is v7.7 or later, the format is https://deviceserver.domain.
2 Administrative Launch Utility This command line utility enables Administrators to unlock User or Common encrypted files on a computer while a process is running. This utility is used to launch jobs from a management console. The utility must be copied to the client computer and any job that requires access to User or Common encrypted files is changed to run this utility, by passing the command line for the management job, to the utility. Once the process exits, the utility terminates.
Use the Administrative Launch Utility in Forensic Mode Syntax for Forensic Mode CmgAlu -f -vX -aAdminName -AAdminPwd [-r] [-XURL [-dMCID] [-sSCID]] "command" Forensic Mode Parameters -f AdminName AdminPwd URL Description Indicates the Forensic Mode is to be used. Username of the Administrator with Forensic Admin credentials. Forensic Admin password. Fully Qualified Device Server URL. If your Enterprise Server is pre-v7.7, the format is https://deviceserver.domain.
3 Administrative Unlock Utility This utility allows access to User, Common, or SDE encrypted files on a slaved drive, a computer booted in a pre-installed environment, or on a computer where an activated user is not logged in. This utility uses the following method to download a key material bundle: • Admin Mode - No switch required. This is the default mode. • Forensic Mode - Used if -f is passed on the command line.
3 Enter the following information (some fields may be pre-populated). Server: Fully Qualified Hostname of the Key Server, such as keyserver.domain.com Port Number: The default port is 8050 Server Account: The domain user the Key Server is running as. The format is domain\username. The domain user running the utility must be authorized to perform the download from the Key Server MCID: Machine ID, such as machineID.domain.com DCID: First eight digits of the 16-digit Shield ID Click Next >.
0XXXXXA0X
