Users Guide
● In order for Dell Data Protection SED and HCA v8.5.1 and earlier clients to communicate with Dell Enterprise Server and
Virtual Edition v9.4, the following settings must be configured on the Server:
1. On the Security Server, access <installation folder>\Enterprise Edition\Security Server\conf\spring-jetty.xml, and comment
out the excludeProtocols property:
<!--
<property name="excludeProtocols" value="SSL,SSLv2,SSLv3" />
-->
2. In the ..\Dell\Java Runtime\jre1.8\lib\security\java.security file, remove "SSLv3, " from the line below:
jdk.tls.disabledAlgorithms=SSLv3, RC4, DH keySize < 768
[DDPS-3371]
● Universal security groups are not supported due to the way they are created within Active Directory. [DDPS-3765]
New Features and Functionality v9.2
● Dell Enterprise Server now supports Advanced Threat Prevention. Advanced Threat Prevention provides real-time threat
detection by analyzing potential file executions for malware in both the operating system and memory layers to prevent the
delivery of malicious payloads. Control of execution at the endpoint allows for accurate and effective detection of malicious
threats - even those that have never been seen before. Advanced Threat Prevention uses machine learning techniques that
allow detection of new malware, viruses, bots and unknown future variants, where signatures and sandboxes fail. Memory
protection strengthens basic operating system protection features by providing an additional layer to detect and deny
certain behaviors that are commonly used by exploits.
● The Remote Management Console has a new look and feel, with a responsive HTML 5 design that can be viewed on virtually
any screen size. It no longer requires installation and is now accessed at this URL:
https://server.domain.com:8443/webui/
● The Remote Management Console now offers the following new features and capabilities:
○ Email alert notifications can be set for Threat Protection and Advanced Threat Prevention events.
○ When data is recovered on a computer with more than one self-encrypting drive, each drive can be individually selected
for recovery.
● Amended 07/2016 - The Console Web Service component is no longer used as of v9.2, with the removal of the Silverlight
Console.
Resolved Technical Advisories v9.2
● Further research into entitlement issues yielded testing improvements, resulting in the resolution of some open and
unresolved issues. [DDPMTR-1768, DDPS-1571, DDPS-1716/DDPSUS-235]
● A few items on Remote Management Console screens that were previously untranslated are now translated. [DDPS-846,
DDPS-1519, DDPS-1525, DDPS-1722, DDPS-1928]
● The Compliance Reporter Effective Policy Report now displays Gatekeeper connections and the correct value type for the
Policy Proxy Polling Interval policy. [DDPS-1233]
● When a non-domain computer is joined to the domain, duplicate endpoint entries no longer display in the Remote
Management Console, and the endpoint properly receives policies. [DDPS-1304]
● The Compliance Reporter Administrator List Report now includes the Group Name field. [DDPS-1720]
● In the Remote Management Console, when Client Firewall rules are added or edited, the executable Signed by field is now
validated. [DDPS-1794/DDPSTE-445]
● When retrieving the BitLocker Manager recovery password in the Remote Management Console for more than one volume,
the first recovery password is now cleared before second and subsequent BitLocker volumes are selected. [DDPS-1808]
● Uninstallation with setup.exe no longer requires reboot. [DDPS-1839]
● At the end of Server installation, the check box next to Show windows installer log is now visible. [DDPS-1840]
● Permissions that are inherited from a group are now removed from Remote Management Console administrators when the
group is removed. [DDPS-1853]
● The Compliance Reporter Local Policy Report now includes device-based policy changes made at the Endpoint Group and
Endpoint levels. [DDPS-1859]
32
Dell Security Management Server Technical Advisories