Users Guide

Table Of Contents

Resolved Technical Advisories v8.9

Enterprise Edition for Windows

● The Encryption client uninstaller now defaults to the uninstall/decrypt option instead of uninstalling but leaving files

encrypted. When the option to uninstall without decrypting is selected, the Encryption Removal Agent is no longer installed.

[DDPC-857, DDPC-1455]

● Silent uninstallation now supports decryption with pre-download key material on locally and remotely managed clients.

[DDPC-930]

● The Shield Service no longer crashes during an HCA encryption sweep when the Volumes Targeted for Encryption policy is

set to All Fixed Volumes. [DDPC-955]

● Files larger than 64Kb that are encrypted with the User or Common key on computers with HCA cards are no longer

corrupted after decryption during uninstallation. [DDPC-1000]

● Upgrades now succeed, and an error no longer occurs with the message, "Error 1303: The installer has insufficient privileges

to access this directory." [DDPC-1178]

● An issue that resulted in rare crashes of the local console when the console was open during an encryption sweep is

resolved. [DDPC-1199]

● A default SDE Encryption Rules policy which caused problems with Windows updates has been resolved. The issue resulted

from encryption of \System32 executable files. The default policy has been changed for EE and VE Servers v9.2 and later.

[DDPC-1207, DDPS-2952]

●

Restarting or shutting down a computer during an encryption sweep no longer causes a Shield Service crash. [DDPC-1233]

● External Media Shield is now updated on a non-Shielded computer when that computer is used to access an encrypted

removable media that has been updated. [DDPC-1259]

● The issue that prevented the Managed Migration Utility from converting Personal Edition to Enterprise Edition when

attempting to obtain the User Principal Name (UPN) from the operating system is resolved. [DDPC-1260]

● An issue that allowed re-encryption of encrypted files when an encryption sweep started and ended during a single user login

session is resolved. [DDPC-1262]

● An issue that occasionally caused a computer to become unresponsive during an encryption sweep is resolved. [DDPC-1275]

● Files stored in redirected folders on computers running HCA encryption are no longer corrupted. Previously, the last 4Kb of

such files could be corrupted. [DDPC-1282]

● The Encrypt for Sharing context menu option is now present when the user right clicks a file or folder in Windows Explorer.

[DDPC-1291]

● An issue that led to the computer becoming unresponsive during the reboot following installation is resolved. [DDPS-1328]

● The issue that flagged services as suspicious or offline injection attacks and blocked them from starting is resolved.

Previously, this issue led to restart failures. [DDPC-1346, DDPC-1463]

● Slotted activation is now functioning as expected. Previously, in v8.5.1 and later versions, the Shield Service crashed without

indication to the user and the activation request never occurred. [DDPC-1462]

Preboot Authentication

● Upgrade from v8.1 and later with PBA activated succeeds. [DDPLP-397]

Server Encryption

● The Server Encryption client uninstaller now defaults to the uninstall/decrypt option instead of uninstalling but leaving files

encrypted. [DDPC-857]

Technical Advisories v8.9

All Clients

● On computers running both the Windows 10 Fall Update and Kaspersky Anti-Virus, installation is blocked. [CSF-1223]

Technical Advisories