Jump to content
Kaspersky Support Forum

FDE access the data from another encrypted drive KES 12

Meroine

By Meroine
in Kaspersky Endpoint Security for Business

 Share

Recommended Posts

Meroine

Meroine

Posted
Posted

In this document, we are using host client01 as the host to access the data from another encrypted drive. Encrypted drive should be connected directly to the client01 using SATA cable, do not use SATA to USB devices.

Also, make sure that client01 does not have FDE encryption policy applied. It should have setting “Leave unchanged” for FDE specified; otherwise data on encrypted drive may be lost in certain cases.

If you connect encrypted drive from the host client02 to a client machine (client01 in this example) that is managed by the same administration server that was used to encrypt drive in question, then in order to gain access to the encrypted drive the following procedure should be followed:

Upon connecting an encrypted drive on the client host (client01) pop-up window will appear:

 image.thumb.png.23b81b4c11907839d55af5ab83ea2577.png

 

Alternatively, it can be accessed from the local KES GUI as follows:

image.thumb.png.75e9989a5b5a733736741aa8f9d205da.png

Save challenge file (*.kesdc) somewhere.

In administration server console find the client host (client01 in our example) that is used to gain access to the encrypted drive – right click on it and select the “Grant access in offline mode”:

 image.thumb.png.1e604928b43f7c8ccef30d749b6bb41d.png

 

Important! You should select the client host that is used to gain access to the encrypted drive (client01 in our example), not the host that was used to encrypt the drive in question (client02)! Otherwise you will receive error “File corrupted. Failed to process encrypted device.” on the client host.

 Select Data encryption tab and then browse, select challenge file:

image.thumb.png.21abf4ee36ea8565429837e54ee96cee.png

Save the response (*.kesdr) file:

image.thumb.png.827e562198f53e984ced821a9e4939d3.png

On the client host (client01) use the response file to access the encrypted drive as shown below:

image.thumb.png.27da6d9085c0d2f3707081d92ea3bd21.png

 

or simply double-click on it.

 image.thumb.png.208f6265a7d3cd2f55174aa0b50bc37a.png

-          At this point all data on the encrypted drive should be accessible.

Important! Do not apply Encrypt all drives encryption policy to client01 host at any point in this scenario, otherwise it is possible that the data on this drive will be re-encrypted and thus corrupted.

-          If necessary to decrypt the original drive from client02 apply the decrypt all hard drives FDE policy to the client01 and wait for the drive in question to be decrypted to 100%.

-          Backup all user sensitive data from the accessed drive BEFORE applying the policy.

 

  • Like 1
Tahmeed702

Tahmeed702

Posted
Posted
12 hours ago, Meroine said:

In this document, we are using host client01 as the host to access the data from another encrypted drive. Encrypted drive should be connected directly to the client01 using SATA cable, do not use SATA to USB devices.

Also, make sure that client01 does not have FDE encryption policy applied. It should have setting “Leave unchanged” for FDE specified; otherwise data on encrypted drive may be lost in certain cases.

If you connect encrypted drive from the host client02 to a client machine (client01 in this example) that is managed by the same administration server that was used to encrypt drive in question, then in order to gain access to the encrypted drive the following procedure should be followed:

Upon connecting an encrypted drive on the client host (client01) pop-up window will appear:

 image.thumb.png.23b81b4c11907839d55af5ab83ea2577.png

 

Alternatively, it can be accessed from the local KES GUI as follows:

image.thumb.png.75e9989a5b5a733736741aa8f9d205da.png

Save challenge file (*.kesdc) somewhere.

In administration server console find the client host (client01 in our example) that is used to gain access to the encrypted drive – right click on it and select the “Grant access in offline mode”:

 image.thumb.png.1e604928b43f7c8ccef30d749b6bb41d.png

 

Important! You should select the client host that is used to gain access to the encrypted drive (client01 in our example), not the host that was used to encrypt the drive in question (client02)! Otherwise you will receive error “File corrupted. Failed to process encrypted device.” on the client host.

 Select Data encryption tab and then browse, select challenge file:

image.thumb.png.21abf4ee36ea8565429837e54ee96cee.png

Save the response (*.kesdr) file:

image.thumb.png.827e562198f53e984ced821a9e4939d3.png

On the client host (client01) use the response file to access the encrypted drive as shown below:

image.thumb.png.27da6d9085c0d2f3707081d92ea3bd21.png

 

or simply double-click on it.

 image.thumb.png.208f6265a7d3cd2f55174aa0b50bc37a.png

-          At this point all data on the encrypted drive should be accessible.

Important! Do not apply Encrypt all drives encryption policy to client01 host at any point in this scenario, otherwise it is possible that the data on this drive will be re-encrypted and thus corrupted.

-          If necessary to decrypt the original drive from client02 apply the decrypt all hard drives FDE policy to the client01 and wait for the drive in question to be decrypted to 100%.

-          Backup all user sensitive data from the accessed drive BEFORE applying the policy.

 

Edit the title as (Advices and Solutions)

Please sign in to comment

You will be able to leave a comment after signing in



Sign In Now
 Share
Go to topic listing


×
×
  • Create New...