Manualshelf

Users Guide

ManualsBrandsDell ManualsConverged InfrastructureEncryption
31323334353637383940
Table Of Contents
Technical Advisories v8.15
Encryption
If the CmgHiber.sys or CmgHiber.dat file is missing from C:\windows\system32\drivers on a computer that
hibernates, the computer will not resume. Ensure that disk cleaner and optimization tools do not delete these files.
[DDPC-6211]
Policy updates are not received following a user security identifier (SID) change. [DDPC-6374]
Encrypted user and common data on a computer with an HCA card is unrecoverable if the user clears HCA ownership,
even though the computer is not HCA-encrypted, because the user and common keys are wrapped in the GPE (HCA) key.
[DDPC-6505, DDPC-6535]
On rare occasion, the Local Management Console becomes unresponsive. To work around this issue if it occurs, add the
following exclusion to the SDE Encryption Rules policy: -^3C:\Windows\Globalization [DDPC-6547]
Command-line uninstallation with the Encryption Removal Agent parameter fails. To work around this issue, uninstall with the
master installer or by double-clicking the child installer executable file. Dell recommends storing a copy of the LSARecovery
file locally before running a scripted uninstallation with decryption. [DDPC-6568]
Advanced Authentication
SSL is no longer supported. TLS 1.0, 1.1, or 1.2 should be used rather than SSL.
SED Client v8.15
SSL is no longer supported. TLS 1.0, 1.1, or 1.2 should be used rather than SSL.
New Features and Functionality v8.13
The Encryption client is now supported with the Windows 10 Creators Update (Redstone 2 release).
Users can now access ProSupport contact information from the About screen in DDP Console and through the About option
from the system tray icon.
Resolved Technical Advisories v8.13
Encryption
An issue is resolved that occasionally resulted in access denial errors for SDE-encrypted files stored in the \users folder.
[DDPC-3170]
An activation issue with Kaspersky Small Office Security installed is resolved after upgrade to the latest version of
Kaspersky. [DDPC-3388]
All text now displays as expected in Japanese Encryption Removal Agent dialogs. Previously, some text did not display in one
dialog. [DDPC-4159]
Resolved Customer Issues
Setting the registry entry, EnableNGMetadata, resolves an issue that resulted in Microsoft update failure on computers with
Common key-encrypted data and performance issues related to encrypting, decrypting, or unzipping large numbers of files
within a folder.
Set the EnableNGMetadata registry entry in the following location:
[HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\CmgShieldFFE]
"EnableNGMetadata" = dword:1
0=Disabled (default)
Technical Advisories
33