McAfee Endpoint

From The University of Akron Support Wiki
Revision as of 14:39, 29 May 2009 by Cra5 (Talk | contribs) (Troubleshooting Login Issues)

Jump to: navigation, search
Endpoint encryption 135x120.jpg


McAfee Endpoint Encryption (or safeboot) is a Disk Encryption Software that will replace PointSEC at the University of Akron.

Getting Safeboot

Beginning February 1 all new laptops and desktops will have safeboot automatically. Current Desktops with no encryption software will be pushed Safeboot via [SMS] at a future date that has not been decided. All laptops that currently have PointSEC will eventually be converted to Safeboot, though no mandatory date has yet been set. A Mac version should be available in "6 to 9 months" and will be deployed via SMS for MAC.

Content.png Volunteer Safeboot Installations
Currently, Converting to safeboot is a voluntary action. If requested, Safeboot will be made available via your Run Advertised Programs icon found in the control panel.

When installing Safeboot, SMS will push a silent install of the software package. An IE window will pop up requesting you to type in your PASSWORD. Your Username will already be pre-filled in the form. If you do not enter a password, a default password will be entered. (12345). Your password will be synced with the network. If you do not enter a password matching your UAnetID password, it will be replaced with your current UAnetID password when the computer is connected with the network.

There will be no forced reboots during the install process.

A Micro-Zone tech will remove PointSEC and begin the Safeboot install process. Laptop users should expect the Zone Technician to have their laptops for several hours or days.

Notice.png To Request Safeboot
To request Safeboot, Contact_us to create a support request. You will receive further instructions at that time.


Once the safeboot Pre-boot environment is installed (the Safeboot login screen) your laptop will be configured with Single Sign On. You will only need to enter your UAnetID and Password with the computer is turned on. You will not be prompted to login to windows. (Vista64 users will not have SSO enabled).

Your safeboot password will be syncronized when windows loads, and every few hours. It can also be syncronized manually. If your machine is not connected to the UA network, the password will not be syncronized. You will need to VPN into the university and manually synchronize the account.

Troubleshooting Login Issues

Cause: Machine Credentials are not synced, or the user has no permission to sign into machine.
Solution:Contact the Support Center Via phone, or in person to enable sign-in ability
Fault:Authentication Parameters Incorrect
Cause:An invalid password was entered.
Solution:Enter the correct password, or Contact the Support Center Via phone, or in person to enable sign-in ability
Fault:Safeboot and UAnetID passwords are different
Cause:Most likely, your password was changed since the last time the machine was connected to the network.
Solution:Contact the Support center to generate a one time login.  If off campus, use the VPN to connect to UA's network to sync.

To select recovery options, press cancel from the password dialog. You may need to select reset password, user recovery, or machine recovery depending on the situation. A support technician will need to assist you when using these features.

One time login Bypass

The best way to allow a user to sign into a locked safeboot machine is to trigger a one time login bypass. To begin this process, have the user cancel the login prompt. Click Options in the lower left of the screen, recovery, and select machine recovery (then the next button).

The Zipsupport Agent should load the website and login with your uanet id and password. Click on Preform Endpoint Encryption Recovery. Next click on PC / Laptop User recovery.

Have the user read to you the string of letters and numbers they see on their screen. (XXXX XXXX XXXX XXXX) Have the user click Next.

The ZipSupport Agent should then choose Boot Machine Once. Have the user type in one line at a time, pressing enter after each line. Click Finish after the last line. The last line will be shorter than the previous lines.

The end user will recieve a notice that the Recovery operation has been successful. The Machine will now boot into windows normally.

Adding users to machine

It can be done from the Endpoint Management Console that is currently in Start, All Programs of the terminals. When you are in there you must find the device and then you are able to add a user.