Dynamic Disks aren't encrypted after selecting the policy option to encrypt All Disks
Last Modified: 2024-01-06 09:46:10 Etc/GMT
Affected Products
Languages:
This article is available in the following languages:
Trellix CEO, Bryan Palma, explains the critical need for security that’s always learning.
As per Gartner, "XDR is an emerging technology that can offer improved threat prevention, detection and response."
Trellix announced the establishment of the Trellix Advanced Research Center to advance global threat intelligence.
Trellix Advanced Research Center analyzes threat data on ransomware, nation-states, sectors, vectors, LotL, MITRE ATT&CK techniques, and emails.
As of May 14, 2024, Knowledge Base (KB) articles will only be published and updated in our new Trellix Thrive Knowledge space.
Log in to the Thrive Portal using your OKTA credentials and start searching the new space. Legacy KB IDs are indexed and you will be able to find them easily just by typing the legacy KB ID.
Dynamic Disks aren't encrypted after selecting the policy option to encrypt All Disks
Technical Articles ID:
KB87219
Last Modified: 2024-01-06 09:46:10 Etc/GMT Environment
Drive Encryption (DE) 7.1.x For details of DE 7.1.x supported environments, see KB79422 - Supported platforms for Drive Encryption 7.x. ProblemAfter successfully deploying DE or EEPC, some or all of the drives fail to be encrypted. This problem occurs only on a small number of computers.
Server Side: The DE or EEPC Product Settings policy on the Encryption tab is set to encrypt ALL Disks. The following is shown at the ePolicy Orchestrator Console on the Endpoint Encryption Disk Details page:
On the same page, when you click Go to Related Disk Volumes, only some disks are displayed as encrypted:
Client Side: Computer Management, Storage, Disk Management shows the problem disk(s) that can't be encrypted. Layout: Simple Type: Dynamic File System: NTFS The Endpoint Encryption System Status window shows the following:
The Volume Status for the drive that can't be encrypted is displayed as either
NOTE: When a new volume is created by shrinking an existing volume on a Dynamic disk, it's not visible via the DE client User Interface. System ChangeThe disks have been converted from Basic to Dynamic.
CauseDE or EEPC works at the sector level; it does not support software-based dynamic disks and software-based RAID.
Excerpt from the DE 7.1 Patch 3 Release Notes (PD25903) For product documents, go to the Product Documentation portal.
Dynamic and RAID disks in Windows
Endpoint Encryption works at the sector level; consequently, it doesn't support software-based dynamic disks and software-based RAID. SolutionThis is expected behavior. Because Endpoint Encryption works at the sector level, the following issues must be considered when installing DE or EEPC on a system with this feature:
Affected ProductsLanguages:This article is available in the following languages: |
|