Users Guide
● On the Dell Latitude Rugged Extreme, the user is able to detach the tablet from the dock. However, the dock is needed to
log in through the PBA. Detach the tablet only after the PBA authentication step is complete. [DDPLP-162, DDPLP-163]
● UPN name is not supported by PBA. The correct usage would be to login with a non-UPN user name, domain\username, or
enter the username independently and select the domain from the drop-down menu. [DDPLP-167, DDPC-80, MMW-591]
● After successfully authenticating to the Preboot Authentication environment, the computer will not complete Single Sign-on.
Instead, the computer halts at the Windows Logon screen for another user. Microsoft Windows 8.1 defaults to the Logon
screen for the previously authenticated user. To complete logon, return to the User Tiles screen by selecting the back arrow
in the top right of the screen and then selecting the correct user tile for the user authenticated in the PBA. SSO data
captured by the PBA may still be present and once the user tile is selected, Windows authentication may be completed
automatically. [MMW-564]
Technical Advisories v8.3.2
Encryption Client
● Local options to manage the secondary drive are unavailable in the Dell Data Protection | Encryption console until after a
policy change on that drive is applied and the computer is re-booted. [29046]
● PCIe SSDs are not supported on Precision T-series computers.
Technical Advisories v8.3
All Clients
● If Windows updates are not installed before the master installer runs, installation may fail. [28835]
Encryption Client
● Windows logon fails with some new CAC smart cards, which use multiple certificates with the same name. One certificate is
the authentication certificate and the other is a signing certificate. The algorithm used to select the certificate uses the
newest certificate. If the newest certificate is the signing certificate, Windows logon will fail. To work around this issue,
create an Active Directory entry for the principle name for the signing certificate. [27857]
● During a command line uninstall, the installer will not download the encryption keys for the computer unless Silent mode is
specified using the parameter CMGSILENTMODE=1. To work around this issue, specify CMGSILENTMODE=1 in the
command. [27979]
● All registry keys and installation files are not removed after uninstallation. [28219]
● After uninstallation, logon with cached credentials occasionally fails when the computer is not connected to the network.
During uninstallation, the cached credentials are decrypted. If this decryption fails for any reason, the user will not be able to
login while disconnected from the network. To work around this issue, reconnect to the network and log on to cache the
credentials. [28277]
● The encryption icon that indicates that a drive is encrypted does not display when a drive has been encrypted using HCA.
[28400]
● During an attended (non-silent) upgrade from v8.1, the installer does not prompt the user to confirm that the upgrade is
desired before continuing the installation. [28574]
● Preboot Authentication uses a "Basic" disk partition and cannot be converted to "Dynamic" partition (for RAID arrays).
Attempts to convert the partition will result in the PBA not being created or the PBA not starting. [28587]
● After partial decryption recovery on a computer with an HCA card, the local Dell Data Protection | Encryption console may
display duplicate information about local disks. To work around this issue, reboot the computer. After the restart, disk
information displays properly. [28656]
● After installation of the Dell Data Protection | Encryption client, the Microsoft Usbccid Smartcard Reader is intermittently
reported as being in a problem state in Device Manager. However, smart cards and fingerprints seem to function normally.
Dell ControlVault relies on the Microsoft Usbccid drivers. A premier case has been opened with Microsoft regarding this
issue. [28697]
● Decryption on computers with HCA cards removes Preboot Authentication, which must be reinstalled. At the next logon,
both an Encryption Administrator Password prompt and a Security Tools shutdown message display. When the computer is
shut down, PBA activation begins. However, provisioning will be completed only after a subsequent reboot and entry of the
Encryption Administrator Password. [28722]
● Infrequently, after HCA policy is set, the Preboot Authentication screen does not display until the computer is restarted a
second time. [28762]
● During Preboot Authentication activation, if the computer is not connected to the network with access to the Enterprise
Server, the Dell Data Protection | Encryption client does not enforce required shutdown and Preboot Authentication
activation is not completed. If the Dell Data Protection | Encryption client cannot access the Enterprise Server to back up
encryption keys and other critical data, PBA activation is not completed and the required shutdown does not occur. To work
Technical Advisories
69