Manualshelf

Administrator Guide

ManualsBrandsDell ManualsConverged InfrastructureEndpoint Security Suite Enterprise
31323334353637383940
MacBook7.*
MacBookAir2.*
MacBookPro7.*
MacPro5.*
XServe3.*
For example, iMac10.1, iMac11.1 and iMac11.2 support Optional Firmware Password Protection (as indicated by the *), but
iMac12.1 or later does not.
NOTE:
When the FirmwarePasswordMode key option is set to Optional, it only disables client enforcement of firmware password
protection. It does not remove any existing firmware password protection. You can remove any existing firmware password
using the Mac OS X Firmware Password Utility.
If you intend to use Boot Camp (see How to Enable Mac OS X Boot Camp for instructions) on encrypted Mac computers, you
must configure the client to not use firmware password protection.
Mac computers use firmware password protection to enhance access security of the computer. On Mac computers, by default,
the protection is turned OFF. During client installation, whether a new installation or an upgrade from an earlier client version,
you have the ability to edit the existing com.dell.ddp.plist file to allow the FirmwarePasswordMode key to be set to either
Required or Optional. The Required option is the default setting that enforces firmware password protection, while the Optional
setting causes the firmware password to not be enforced. Following the installation or upgrade, the client evaluates the
modified installer com.dell.ddp.plist file during restart.
NOTE:
To prevent users from changing the computer's security posture, the client does not accept changes to the
FirmwarePasswordMode key after installing the client software.
You can change the value of this key after installation or upgrade by initiating a disk decryption process, and then re-
enabling encryption.
For Mac OS X firmware password protection to be required, follow normal client installation/upgrade procedures outlined in
Install/Upgrade the Encryption Client for Mac.
Using Boot Camp
Mac OS X Boot Camp Support
NOTE:
When using Boot Camp, Dell Encryption Enterprise does not encrypt the Windows operating system. Also, if two or more
bootable macOS partitions exist on the device, Encryption Enterprise encrypts only the primary volume.
Boot Camp is a utility included with Mac OS X that assists you in installing Windows on Mac computers in a dual-boot
configuration. Boot Camp is supported with the following Windows operating systems:
Windows 7 and 7 Home Premium, Professional, and Ultimate (64-bit)
Windows 8.1 and 8.1 Pro (64-bit)
NOTE:
Windows 7 is Boot Camp 4 or 5.1. Windows 8.1 and higher is Boot Camp 5.1 only.
To use Endpoint Security Suite Enterprise for Windows in Boot Camp on a computer with Endpoint Security Suite Enterprise for
Mac, the system volume must be encrypted through the Encryption client for Mac with FileVault2. See the Command Line
Installation/Upgrade for instructions.
NOTE:
If your Windows partition is a candidate for Encryption External Media, be sure to whitelist it or it will be encrypted. See
Copy whitelist rule.
NOTE:
Tasks for the Encryption Client 33