cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Uthra
Level 10
Report Inappropriate Content
Message 1 of 6
‎03-23-2020 06:03 AM

Question on assigning the user

Jump to solution

What would be the best way to ensure that the end user is assigned to the client system and not the Admin account?

0 Kudos
Reply
1 Solution

Accepted Solutions
jsubbura
Employee
Employee
Report Inappropriate Content
Message 6 of 6
‎03-25-2020 12:02 AM

Re: Question on assigning the user

Jump to solution

Hi @Uthra ,

If you want to ensure that the Admin account is added to the client machine or not, you can follow the steps above to verify the same.

An admin account can have different names, it would have been named as Administrator or Admin or ITAdmin. You can search in the MfeEpe.log or Save Machine Info file if the admin account name is present or not. 

Kindly check this from the client and share us further updates with the admin account name which you are using in your client machines.

If you are using manual user assignment method using encryption users menu from EPO then you can remove the Admin user from the encryption users list, or if you are using ALDU in your policy, then the admin user should not have logged in to that machine at all, if they have logged in earlier then you need to use "Only add currently logged on local domain user(s); activation is dependent on a successful user assignment" option in your MDE Product settings policy for the ALDU.

 

If still you have more questions, kindly help us explaining your question with possible screenshots.

 

Thank you.

Regards,
Jithendran S
Trellix Employee

View solution in original post

0 Kudos
Reply
5 Replies
Uthra
Level 10
Report Inappropriate Content
Message 2 of 6
‎03-23-2020 06:43 AM

Re: Question on assigning the user

Jump to solution

What is this?

0 Kudos
Reply
Uthra
Level 10
Report Inappropriate Content
Message 3 of 6
‎03-23-2020 06:47 AM

Re: Question on assigning the user

Jump to solution

Why do you post the link here? Who are you?

0 Kudos
Reply
jsubbura
Employee
Employee
Report Inappropriate Content
Message 4 of 6
‎03-24-2020 08:32 AM

Re: Question on assigning the user

Jump to solution

Hi @Uthra ,

Thank you for writing in here.

You can verify the information on the client machine using two ways,

1) You can check the MfeEpe.log in the local machine in the bath below,

C:\Program Files\McAfee\Endpoint Encryption Agent 

2) Or you can enable the "Create Endpoint Machine Info File" using the MDE Product Settings policy, which will enable a button in the Drive Encryption Status window on the client machine to save the Machine info file, this machine file will have the list of users who are assigned to the McAfee Drive Encryption pre-boot login screen

machineinfo.PNGsavems.PNG

 

Was my reply helpful?
If you find this post useful, Please give it a Kudos! Also, Please don't forget to select "Accept as a solution" if this reply resolves your query!

Thank you.

Regards,
Jithendran S
Trellix Employee
0 Kudos
Reply
Uthra
Level 10
Report Inappropriate Content
Message 5 of 6
‎03-24-2020 11:50 PM

Re: Question on assigning the user

Jump to solution

Thanks for your response. Request you to revisit my question again

0 Kudos
Reply
jsubbura
Employee
Employee
Report Inappropriate Content
Message 6 of 6
‎03-25-2020 12:02 AM

Re: Question on assigning the user

Jump to solution

Hi @Uthra ,

If you want to ensure that the Admin account is added to the client machine or not, you can follow the steps above to verify the same.

An admin account can have different names, it would have been named as Administrator or Admin or ITAdmin. You can search in the MfeEpe.log or Save Machine Info file if the admin account name is present or not. 

Kindly check this from the client and share us further updates with the admin account name which you are using in your client machines.

If you are using manual user assignment method using encryption users menu from EPO then you can remove the Admin user from the encryption users list, or if you are using ALDU in your policy, then the admin user should not have logged in to that machine at all, if they have logged in earlier then you need to use "Only add currently logged on local domain user(s); activation is dependent on a successful user assignment" option in your MDE Product settings policy for the ALDU.

 

If still you have more questions, kindly help us explaining your question with possible screenshots.

 

Thank you.

Regards,
Jithendran S
Trellix Employee
0 Kudos
Reply
You Deserve an Award
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.

Community Help Hub

    New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

  • Find Forum FAQs
  • Learn How to Earn Badges
  • Ask for Help
Go to Community Help

Join the Community

    Thousands of customers use our Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

  • Get helpful solutions from product experts.
  • Stay connected to product conversations that matter to you.
  • Participate in product groups led by employees.
Join the Community
Join the Community

TrellixSkyhigh Security | Support Trellix.com SkyhighSecurity.com

Legal Privacy Copyright © 2023 Musarubra US LLC