Users Guide

ManualsBrandsDell ManualsConverged InfrastructureEncryption

Table Of Contents

Cloud Edition

● When an iOS device is moved to a different Enterprise Server, the local policy and cached keys are now correctly reset.

[27765]

● Users can no longer access protected sites when the policy is set to block those sites. [DDPCE-24]

● When using OneDrive and an iOS app, files uploaded to the cloud are no longer deleted by the sync client running on a

Windows computer. [DDPCE-97]

● While IPv6 is not supported, the web browser no longer intermittently toggles between protected and unprotected states

when IPv6 is enabled on the network adapter. IPv4 should be used, for Cloud Edition for Windows to function properly.

[DDPCE-98, DDPCE-107]

●

Compatibility issues with 64-bit computers are now resolved. [DDPCE-108, DDPCE-138]

● Encrypted files are no longer re-encrypted when downloaded with the browser and saved into protected sync folders.

[DDPCE-109]

● Protection status no longer intermittently toggles between protected and unprotected. [DDPCE-113]

● Encryption client behavior during device suspension is improved. [DDPCE-118]

● Auditing functionality is improved. Event IDs now map directly to Event Types. Audit volume is reduced, up to 98 percent.

Uploads and downloads are now logged as Events.

● Compatibility with Windows Sync Client is improved.

● The new IP address range introduced by Box sync client is now represented in VE Server policies for Cloud Edition.

[DDPS-88]

● On the Endpoint Details page, Cloud Device Control commands now correctly display when an SED is activated. [DDPS-379]

Technical Advisories v8.3

All Clients

● If Windows updates are not installed before the master installer runs, installation may fail. [28835]

Enterprise Edition for Windows

● Windows logon fails with some new CAC smart cards, which use multiple certificates with the same name. One certificate

is the authentication certificate and the other is a signing certificate. The algorithm used to select the certificate uses the

newest certificate. If the newest certificate is the signing certificate, Windows logon will fail. To work around this issue,

create an Active Directory entry for the principle name for the signing certificate. [27857]

● During a command line uninstall, the installer will not download the encryption keys for the computer unless Silent mode

is specified using the parameter CMGSILENTMODE=1. To work around this issue, specify CMGSILENTMODE=1 in the

command. [27979]

● All registry keys and installation files are not removed after uninstallation. [28219]

● After uninstallation, logon with cached credentials occasionally fails when the computer is not connected to the network.

During uninstallation, the cached credentials are decrypted. If this decryption fails for any reason, the user will not be able

to login while disconnected from the network. To work around this issue, reconnect to the network and log on to cache the

credentials. [28277]

● The encryption icon that indicates that a drive is encrypted does not display when a drive has been encrypted using HCA.

[28400]

● During an attended (non-silent) upgrade from v8.1, the installer does not prompt the user to confirm that the upgrade is

desired before continuing the installation. [28574]

● Preboot Authentication uses a "Basic" disk partition and cannot be converted to "Dynamic" partition (for RAID arrays).

Attempts to convert the partition will result in the PBA not being created or the PBA not starting. [28587]

● After partial decryption recovery on a computer with an HCA card, the local Dell Data Protection | Encryption console

may display duplicate information about local disks. To work around this issue, reboot the computer. After the restart, disk

information displays properly. [28656]

● After installation of Enterprise Edition, the Microsoft Usbccid Smartcard Reader is intermittently reported as being in a

problem state in Device Manager. However, smart cards and fingerprints seem to function normally. Dell ControlVault relies

on the Microsoft Usbccid drivers. A premier case has been opened with Microsoft regarding this issue. [28697]

● Decryption on computers with HCA cards removes Preboot Authentication, which must be reinstalled. At the next logon,

both an Encryption Administrator Password prompt and a Security Tools shutdown message display. When the computer is

Technical Advisories