Deployment Guide
Table Of Contents
- Dell Encryption Personal Installation Guide v11.0
- Contents
- Overview
- Requirements
- Download the Software
- Installation
- Advanced Authentication and Encryption Personal Setup Wizards
- Configure Console Settings
- Uninstall the Master Installer
- Uninstall Using the Child Installers
- Data Security Uninstaller
- Policies and Template Descriptions
- Policies
- Template Descriptions
- Aggressive Protection for All Fixed Drives and External Drives
- PCI Regulation Targeted
- Data Breach Regulation Targeted
- HIPAA Regulation Targeted
- Basic Protection for All Fixed Drives and External Drives (Default)
- Basic Protection for All Fixed Drives
- Basic Protection for System Drive Only
- Basic Protection for External Drives
- Encryption Disabled
- Extract Child Installers
- Troubleshooting
- Glossary
Option Meaning
/qb!- Progress dialog without Cancel button, restarts itself after process completion
/qn No user interface
● Once extracted from the master installer, the Encryption client installer can be located at C:
\extracted\Encryption\DDPE_XXbit_setup.exe.
● The following table details the parameters available for the uninstallation.
Parameter Selection
CMG_DECRYPT Property for selecting the type of Encryption Removal Agent installation:
2 - Get keys using a forensic key bundle
0 - Do not install Encryption Removal Agent
CMGSILENTMODE Property for silent uninstallation:
1 - Silent - required when running with msiexec variables containing /q or /qn
0 - Not Silent - only possible when msiexec variables containing /q are not
present in the command line syntax
DA_KM_PW The password for the domain administrator account.
DA_KM_PATH Path to the key material bundle.
● The following example uninstalls the Encryption client without installing Encryption Removal Agent.
DDPE_XXbit_setup.exe /s /x /v"CMG_DECRYPT=0 CMGSILENTMODE=1 DA_KM_PATH=C:
\FullPathToLSA.exe DA_KM_PW=password /qn /l C:\ddpe_uninstall.txt"
● The following example uninstalls the Encryption client using a forensic key bundle. Copy the forensic key bundle to the local
disk and then run this command.
DDPE_XXbit_setup.exe /s /x /v"CMG_DECRYPT=2 CMGSILENTMODE=1 DA_KM_PATH=C:
\FullPathToForensicKeyBundle DA_KM_PW=password /qn /l C:\ddpe_uninstall.txt"
Reboot the computer when finished.
The decryption process could take several hours, depending on the number of drives being decrypted and the amount of
data on those drives. To check the decryption process, see Check Encryption Removal Agent Status.
Uninstall Encryption Management Agent
Choose an Uninstallation Method
There are two methods to uninstall the Encryption Management Agent, select one of the following:
● Uninstall Interactively
● Uninstall from the Command-Line
Uninstall Interactively
1. Go to Uninstall a Program in the Windows Control Panel (in the search box on the taskbar, type Control Panel, and then
select Control Panel from the results).
2. Highlight Dell Encryption Management Agent and left-click Change to launch the Setup Wizard.
3. Read the Welcome screen and click Next.
4. Follow the prompts to uninstall and click Finish.
5. Restart your computer and log on to Windows.
36
Uninstall Using the Child Installers