Reference Guide
Security Management Server Virtual - AdminHelp v9.8
107
13. Ask the user for the Key ID and enter it into the appropriate field (if your organization allows non-
domain user activation, the Key ID is required.
14. Click Generate Access Code. The Restore User Access page displays the Directory User Alias
associated with the Encryption client, along with an Access Code.
15. Confirm to your satisfaction that the request is coming from the Directory User Alias shown.
This is especially important if recovering removable storage that may have been given to another
user. Dell recommends that you set a help desk policy for how to handle requests from users other
than those who originally copied the data.
16. Do one of the following:
• To allow the user to access the endpoint, click Activate.
• To not allow the user to access the endpoint, click Cancel.
17. If the requester is the device authorized user, ask the user to enter the Access Code (not case
sensitive) on the endpoint and click OK. The Access Code policies of the user affect this process (for
example, how many attempts the user has to enter the code correctly).
18. When the user successfully enters the Access Code, the Encryption client changes the Current Shield
State policy to Activate, and the successfully entered Access Code is no longer valid. Instruct the
user to click OK to close the dialog.
19. In the left pane, click Management > Commit.
20. Click Commit Policies.
Once manual authentication is successful, the user is directed to reset their password. Depending on how
policies are set, one of the following three dialogs are displayed. The user enters a new password and
confirms it, then clicks OK or Cancel.
Depending on policies set, the user may be prompted to type this password when using this removable
storage in other computers.
If the policy is set to block all
access to removable storage
until authenticated/encrypted
and the user clicks Cancel, they
cannot access any files on this
removable storage.
If a user re-uses a password that
has been used too recently, a
dialog displays asking them to
use a different password.
If a password does not meet the
criteria set by policy, a dialog
displays, outlining the password
criteria.
If the policy gives read-access
to removable storage until
authenticated/encrypted and
the user clicks Cancel, they can
read/delete existing files on
this removable storage, but
cannot edit/add files to this
removable storage.
If a user re-uses a password that
has been used too recently, a
dialog displays asking them to
use a different password.
If a password does not meet the
criteria set by policy, a dialog
displays, outlining the password
criteria.
If the policy gives full access to
removable storage until
authenticated/encrypted and
the user clicks Cancel, they
have full access to unencrypted
files on this removable storage,
but cannot access encrypted
files.
If a user re-uses a password
that has been used too
recently, a dialog displays
asking them to use a different
password.
If a password does not meet the
criteria set by policy, a dialog
displays, outlining the password
criteria.
The user may now use the removable storage as usual.