If this is not entered, no Personal Recovery Key will be sent to the SEE Management Server, which will prevent further recovery from happening. Once the password has been entered, and the user logs in, a new Personal Recovery Key will be generated and SEE FileVault will prompt the user for the new password entered, and this new PRK will then be sent to the Symantec Encryption Management Server:Īs is mentioned in the screenshot above, it is very important for the user to enter the macOS password. This is the case whether or not Endpoint Encryption is installed: You cannot reset an Active Directory account with a recovery key. Note that this will only work for a local user account. Once the recovery key is entered, you will be prompted to enter a new password to reset the macOS password for the user. TIP: If you don't see the option to enter a recovery key, click the Question Mark "?" icon in the login field and see if this will help you proceed. In the above screenshot, click the little arrow icon above. However, if you have encrypted the system, you’ll have some additions: See the following articles for additional information related to this topic:Ģ13010 - How to create a SEE Client and Institutional Recovery Key for Symantec Endpoint Encryption FileVault Recovery (client creation)Ģ13002 - How to install and use the SEE FileVault client to enable encryption and manage Recovery Keys with the SEE Management ServerĢ13006 - Using the SEE Helpdesk Web Portal to obtain the Personal Recovery Key for SEE FileVault clientsįirst, when a system is encrypted, the system does not look or behave much differently than a non-encrypted system. If a user forgets the passphrase, and SEE FileVault was used, the end user can call helpdesk and can provide a recovery key to unlock the system and configure a new macOS password.įor information on how to install the SEE FileVault client, see article X.įor information on how to use a Symantec Encryption Management Server Helpdesk recovery, see article X. This is a critical component for recovery. When a Personal Recovery Key is configured, the SEE FileVault client will upload this to the SEE Management Server. SEE FileVault can manage the recovery keys for macOS systems that are encrypted with FileVault.
0 kommentar(er)
