This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
carlosfuch
Explorer
‎2024-10-31 07:37 AM

How to reinstall FDE after Recovery?

I had a machine with Full Disk Encryption and tried out the Recovery process. The process completed successfully: the disk was fuly decrypted, and Pre-boot authentication was disabled. However, the next steps were somewhat unclear to me. Since the Data Protection policy rule applied to that machine still has FDE enabled, I expected the disk to re-encrypt automatically once the agent updated the policy, but this wasn't the case. I attempted to reinstall the policy with minor adjustments via the Infinity Portal, but FDE remained inactive.

Questions:

  1. What is the correct procedure to reactivate Full Disk Encryption for this machine?
  2. Why didn’t the re-encryption process start automatically as anticipated?

 

By the way, on the Infinity Portal, the deployment status of the FDE capability is: installed, not activated.

deployment.jpg

On the other hand, the Full Disk Encryption view shows the following statuses to the FDE blades:

fde view.jpg

On the machine, this is the FDE view:

epsec.png

 

Labels
0 Kudos
3 Replies
PhoneBoy
Admin
Admin
‎2024-11-04 10:36 AM

Sounds like the Full Disk Encryption service might be stopped on the Endpoint.
See if it's listed under the Windows Services and start the service if it's not running.
Otherwise, I'd check with TAC.

0 Kudos
carlosfuch
Explorer
‎2024-11-04 11:05 AM
In response to PhoneBoy

 

I had tried it before. It is listed, but Windows is not able to start it up.

services.png

0 Kudos
PhoneBoy
Admin
Admin
‎2024-11-04 02:46 PM
In response to carlosfuch

Suggest engaging with TAC here as I'm sure they've seen this situation before.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events