Users Guide

Resolved Technical Advisories v8.9

Encryption

● The Encryption client uninstaller now defaults to the uninstall/decrypt option instead of uninstalling but leaving files

encrypted. When the option to uninstall without decrypting is selected, the Encryption Removal Agent is no longer installed.

[DDPC-857, DDPC-1455]

● Silent uninstallation now supports decryption with pre-download key material on locally and remotely managed clients.

[DDPC-930]

● The Shield Service no longer crashes during an HCA encryption sweep when the Volumes Targeted for Encryption policy is

set to All Fixed Volumes. [DDPC-955]

● Files larger than 64Kb that are encrypted with the User or Common key on computers with HCA cards are no longer

corrupted after decryption during uninstallation. [DDPC-1000]

● Upgrades now succeed, and an error no longer occurs with the message, "Error 1303: The installer has insufficient privileges

to access this directory." [DDPC-1178]

● An issue that resulted in rare crashes of the local console when the console was open during an encryption sweep is

resolved. [DDPC-1199]

● A default SDE Encryption Rules policy which caused problems with Windows updates has been resolved. The issue resulted

from encryption of \System32 executable files. [DDPC-1207]

● Restarting or shutting down a computer during an encryption sweep no longer causes a Shield Service crash. [DDPC-1233]

● External Media Shield is now updated on a non-Shielded computer when that computer is used to access an encrypted

removable media that has been updated. [DDPC-1259]

● The issue that prevented the Managed Migration Utility from converting Personal Edition to Enterprise Edition when

attempting to obtain the User Principal Name (UPN) from the operating system is resolved. [DDPC-1260]

● An issue that allowed re-encryption of encrypted files when an encryption sweep started and ended during a single user login

session is resolved. [DDPC-1262]

● An issue that occasionally caused a computer to become unresponsive during an encryption sweep is resolved. [DDPC-1275]

● Files stored in redirected folders on computers running HCA encryption are no longer corrupted. Previously, the last 4Kb of

such files could be corrupted. [DDPC-1282]

● The Encrypt for Sharing context menu option is now present when the user right clicks a file or folder in Windows Explorer.

[DDPC-1291]

● An issue that led to the computer becoming unresponsive during the reboot following installation is resolved. [DDPS-1328]

● The issue that flagged services as suspicious or offline injection attacks and blocked them from starting is resolved.

Previously, this issue led to restart failures. [DDPC-1346, DDPC-1463]

Preboot Authentication

● Upgrade from v8.1 and later with PBA activated succeeds. [DDPLP-397]

Technical Advisories v8.9

All Products

● On computers running both the Windows 10 Fall Update and Kaspersky Anti-Virus, installation is blocked. [CSF-1223]

Encryption

● The Setup Wizard does not automatically launch on computers running Kaspersky Antivirus. [DDPC-1001]

● Added 04/2016 - A computer running Windows 7 hibernates although the client is unable to encrypt the hibernation data and

the Prevent Unsecured Hibernation policy is enabled. [DDPC-1220]

● A fully-qualified network path must be used instead of browsing to select a mapped network drive to back up encryption

keys with the Setup Wizard. [DDPC-1247]

Technical Advisories