Users Guide
Technical Advisories v1.2
Advanced Threat Prevention v1.2
● Added 8/2017 - The Advanced Threat Prevention tile displays Not Protected until the computer is restarted a second time.
Occasionally, it is necessary to restart the DellMgmtAgent service. [CYL-435]
Encryption Client v8.11
● Cumulative encryption exclusions are now automatically applied when the Encryption client is upgraded. This will require an
encryption sweep for each user upgraded to v8.11 or later. However, subsequent updates will require a sweep only if the
update includes new exclusions. [DDPC-1334, DDPC-5138]
● The user receives an access denied error when attempting to access removable media, although policy is set to allow full
access to unShielded media. [DDPC-4523]
● After upgrade to Windows 10 Fall Update using WSProbe -E on a computer with Hardware Crypto Accelerator, during re-
encryption with WSProbe -R, the Local Management Console freezes and a message displays regarding HCA key backup and
provisioning. [DDPC-4645]
Advanced Authentication v8.11
● When dual authentication is configured for a user, but one of the authentication options is not yet enrolled, the icon for the
unenrolled option does not display on the user's logon screen. [DDPC-4690]
New Features and Functionality v1.1.1
● A new Advanced Threat Protection Agent Auto Update feature is available and can be enabled from Services Management
in the left pane of the Remote Management Console. Enabling Agent Auto Update allows clients to automatically download
and apply updates from the Advanced Threat Protection server. Updates are released monthly.
● Advanced Threat Protection has Enhanced Script Controls for Powershell to mitigate against Powershell attack vectors. This
feature is available for the Advanced Threat Protection client with build 1391, available in early October. To enable this
feature on the client, either enable auto update or go to the FTP site to get the update to deploy.
● Advanced Threat Protection has Enhanced Script Controls to protect against malicious Microsoft Office macros. This
feature is available for the Advanced Threat Protection client with build 1391, available in early October. To enable this
feature on the client, either enable auto update or go to the FTP site to get the update to deploy.
● Advanced Threat Protection has enhanced “Memory Action: Exploitation” to protect against malicious payloads created
using the Metasploit toolkit. This feature is available for the Advanced Threat Protection client with build 1391, available in
early October. To enable this feature on the client, either enable auto update or go to the FTP site to get the update to
deploy.
● The Encryption client now supports Microsoft Windows 10 Anniversary Update (Redstone release).
● Customers upgrading to Windows 10 from an earlier version of Windows OS are no longer required to decrypt and re-encrypt
data at OS update.
● The Encryption client now supports Audit Mode. Audit Mode allows administrators to deploy the Encryption client as part of
the corporate image, rather than using a third-party SCCM or similar solutions to deploy the Encryption client. To suppress
activation until deployment is complete, install the Encryption client and perform the necessary restart when the
configuration computer is in Audit Mode.
● A new policy allows the administrator to hide Encryption overlay icons in File Explorer for managed users.
● The Encryption client and BitLocker Manager are now supported with TPM 2.0.
58
Technical Advisories