cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Former Member
Not applicable
Report Inappropriate Content
Message 1 of 7
‎09-23-2014 09:33 PM

EEFF encrypt usb device via authentication certificate

Jump to solution

eeffusb.jpg

Help! EEFF encrypt usb device via authentication certificate.. certificate can't find any certification.

0 Kudos
Reply
1 Solution

Accepted Solutions
Former Member
Not applicable
Report Inappropriate Content
Message 4 of 7
‎02-09-2015 05:54 PM

Re: EEFF encrypt usb device via authentication certificate

Jump to solution

Hi Paulo

You can create a authentication certificate in the AD server or as your domain server. Here are the step by step what I've done during my testing. This is a self-sign certificate so you can do this manually every workstation

Go to certmgr.msc> Personal Folder>Right Click All task> Request New Certificate.

3.PNG

After successfully creating the certificate

6.PNG

Next step is to export the certificate so you can install it to your workstation

14.PNG

15.PNG

After exporting the certificate in the certmgr.msc. Copy the certificate file and paste it on the "workstation that has an EEFF installed and connected to your AD server" and Import the file in the certmgr.msc>Personal

24.PNG

Now you can see the authentication certificate on the EEFF

-Jeoff

View solution in original post

0 Kudos
Reply
6 Replies
securitasis
Level 9
Report Inappropriate Content
Message 2 of 7
‎09-23-2014 09:42 PM

Re: EEFF encrypt usb device via authentication certificate

Jump to solution

You have to create a Regular Key that would need to be attached to the User Key policy that is assigned to the machine in ePO.  Read over page 21 in the FRP Best Practice Guide @ McAfee KnowledgeBase - File and Removable Media Protection 4.3.0 Best Practices Guide

I've found it easiest to make a single global Regular Key that is the default (top) while also enabling the use of a user personal keys.  The user then has the option to make their encryption private (per local or domain account) or shared with other users.

Good luck.

0 Kudos
Reply
Former Member
Not applicable
Report Inappropriate Content
Message 3 of 7
‎09-23-2014 11:29 PM

Re: EEFF encrypt usb device via authentication certificate

Jump to solution

I have created a Global Key and my Personal account as Active and Regular..

My personal account smg\msolomon client side available keys..

Still can't find Authentication certificate...

Help please

0 Kudos
Reply
Former Member
Not applicable
Report Inappropriate Content
Message 4 of 7
‎02-09-2015 05:54 PM

Re: EEFF encrypt usb device via authentication certificate

Jump to solution

Hi Paulo

You can create a authentication certificate in the AD server or as your domain server. Here are the step by step what I've done during my testing. This is a self-sign certificate so you can do this manually every workstation

Go to certmgr.msc> Personal Folder>Right Click All task> Request New Certificate.

3.PNG

After successfully creating the certificate

6.PNG

Next step is to export the certificate so you can install it to your workstation

14.PNG

15.PNG

After exporting the certificate in the certmgr.msc. Copy the certificate file and paste it on the "workstation that has an EEFF installed and connected to your AD server" and Import the file in the certmgr.msc>Personal

24.PNG

Now you can see the authentication certificate on the EEFF

-Jeoff

0 Kudos
Reply
Former Member
Not applicable
Report Inappropriate Content
Message 5 of 7
‎02-13-2015 04:08 AM

Re: EEFF encrypt usb device via authentication certificate

Jump to solution

Dear Jeoff,

Can you share the procedure for generate the testing cert?

0 Kudos
Reply
Former Member
Not applicable
Report Inappropriate Content
Message 6 of 7
‎02-15-2015 05:45 PM

Re: EEFF encrypt usb device via authentication certificate

Jump to solution 

cdcheung2 wrote:


Dear Jeoff,

Can you share the procedure for generate the testing cert?

Hi cdcheung2

As mentioned above that was the whole procedure for creating the certificate authentication or testing cert. You can create the cert only in the AD server. Just add roles features "Active Directory Certificate Services> Certificate Authority" (I'm using Windows Server 2008 R2). Then  Go to certmgr.msc> Personal Folder>Right Click All task> Request New Certificate. Then Go next in the Enrollment certificate you must see "Active Directory Enrollment Policy" then go next as follows.

0 Kudos
Reply
Former Member
Not applicable
Report Inappropriate Content
Message 7 of 7
‎02-15-2015 07:07 PM

Re: EEFF encrypt usb device via authentication certificate

Jump to solution

Hi jeoff! si mike2 of smits. hahaha. tagal na to na post ko,

0 Kudos
Reply
You Deserve an Award
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.

Community Help Hub

    New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

  • Find Forum FAQs
  • Learn How to Earn Badges
  • Ask for Help
Go to Community Help

Join the Community

    Thousands of customers use our Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

  • Get helpful solutions from product experts.
  • Stay connected to product conversations that matter to you.
  • Participate in product groups led by employees.
Join the Community
Join the Community

TrellixSkyhigh Security | Support Trellix.com SkyhighSecurity.com

Legal Privacy Copyright © 2023 Musarubra US LLC