Giving Remote Help to Full Disk Encryption Users

Use this challenge/response procedure to give access to users who are locked out of their Full Disk EncryptionClosed A component on Endpoint Security Windows clients. This component combines Pre-boot protection, boot authentication, and strong encryption to make sure that only authorized users are given access to information stored on desktops and laptops. Acronym: FDE. protected computers.

To give Full Disk Encryption Remote Help assistance from the SmartEndpoint:

  1. Select Tools > Remote Help > User Logon Preboot Remote Help.

    The User Logon Preboot Remote Help window opens.

  2. Select the type of assistance the end-user needs:

    1. One Time Login - Gives access as an assumed identity for one session without resetting the password.

    2. Remote password change - This option is for users who have forgotten their fixed passwords.

  3. In the User Name field, click Browse and select the user in the Select a Node window.

  4. Select the locked computer in the Device Name list.

  5. Click Generate Response.

  6. Tell the user to enter the Response One (to user) text string in the Remote HelpClosed Users can be denied access to their Full Disk Encryption-protected computers or Media Encryption & Port Protection-protected devices for many different reasons. Remote Help can help users in these types of situations. The user contacts the Help Desk or specified administrator and follows the recovery procedure. window on the locked computer.

    The endpoint computer shows a challenge code.

  7. In the Challenge (from user) field, enter the challenge code that the user gives you.

  8. Click Generate Response.

    Remote Help authenticates the challenge code and generates a response code.

  9. Tell the user to enter the Response Two (to user) text string in the Remote Help window on the locked computer.

  10. Make sure that the user changes the password or has one-time access to the computer before ending the Remote Help session.

To give Full Disk Encryption Remote Help assistance from the web portal:

  1. Go to https://<IP Address of Endpoint Security Management Server>/webrh.

  2. Enter your User Name and Password to log in to the portal. Administrators must have permission to provide Remote Help.

  3. Select FDE.

  4. Select the type of assistance the end-user needs:

    1. One Time Login - Gives access as an assumed identity for one session without resetting the password.

    2. Remote password change - This option is for users who have forgotten their fixed passwords.

  5. In the User Name enter the User's name.

  6. Select the locked computer in the Device Name list.

  7. Click Get Response One.

  8. Tell the user to enter the Response One (to user) text string in the Remote Help window on the locked computer.

    The endpoint computer shows a challenge code.

  9. In the Challenge (from user) field, enter the challenge code that the user gives you.

  10. Click Get Response Two.

    Remote Help authenticates the challenge code and generates a response code.

  11. Tell the user to enter the Response Two (to user) text string in the Remote Help window on the locked computer.

  12. Make sure that the user changes the password or has one-time access to the computer before ending the Remote Help session.