Important Update: System requirements information for Encryption products is now published along with the other product documentation at the Broadcom Tech Docs site. Consequently, this Knowledge Base article is no longer current and will not be updated. For up-to-date system requirements information for Symantec Endpoint Encryption products, please visit our Tech Docs site.
To visit our Tech Docs site, go to techdocs.broadcom.com. To find Encryption Documentation, click on the Broadcom business, "Symantec Security Software", then select "Information Security", and then select the product you wish to review.
For the current System Requirements for Symantec Endpoint Encryption 11.3.0, click here.
For the current System Requirements for Symantec Endpoint Encryption 11.3.1, click here.
This information in this article is kept for historical reference only and is no longer updated. See the System Requirements pages above for updated information.
|January 29, 2020||11.3.0||
Removed Windows Server 2008 R2 support for Symantec Endpoint Encryption clients.
Microsoft ended Windows Server 2008 R2 support on 14 January, 2020. Because Microsoft ended support, Symantec no longer supports Symantec Endpoint Encryption clients running on Windows Server 2008 R2 systems.
|January 17, 2020||11.3.0||
Removed Windows 7 platform support for Symantec Endpoint Encryption clients.
Microsoft ended Windows 7 support on 14 January, 2020. Because Microsoft ended support, Symantec no longer supports Symantec Endpoint Encryption clients running on Windows 7 systems.
|November 28, 2019||11.3.0||
Added compatibility with the following operating systems:
|November 22, 2019||11.3.0||
Added compatibility with the following operating system for Symantec Endpoint Encryption for FileVault and Removable Media Access Utility:
|September 13, 2019||11.3.0||
Added compatibility with the following operating system:
The following Microsoft Windows operating systems are supported only with all of the latest hot fixes and security patches from Microsoft.
Drive Encryption on Microsoft Windows Servers
Drive Encryption is supported on all of the client versions that are listed above as well as the following Windows Server versions:
Note: Dynamic disks, software RAID, and logical partitions are not supported.
.NET Framework requirements
Depending on the version of Microsoft Windows that you use, the Symantec Endpoint Encryption requires the following versions of .NET Framework:
|Operating system||Required version of .NET Framework|
|Microsoft Windows 10 November 2019 (version 1909)||4.8|
|Microsoft Windows 10 Enterprise LTSC 2019 (version 1809)||4.7|
|Microsoft Windows 10 May 2019 (version 1903)||4.8|
|Microsoft Windows 10 April 2018 (version 1803)||4.7.2|
|Microsoft Windows 10 Fall Creators Update (version 1709)||4.7.1|
|Microsoft Windows 10 Creators Update||4.7|
|Microsoft Windows 10 Anniversary Update||4.6.2|
|Microsoft Windows 10 LTSB 2016||4.6.2|
|Microsoft Windows 10 November 2015 Update||4.6.1|
|Microsoft Windows 10||4.5.2|
|Microsoft Windows 8.1||4.5.2|
|Microsoft Windows Server 2019 R2||4.7|
|Microsoft Windows Server 2016 R2||4.6.2|
|Microsoft Windows Server 2012 R2||4.5.2|
Supported virtual machines
The Symantec Endpoint Encryption client software for Microsoft Windows supports the following virtual servers:
Note: The Removable Media Encryption feature additionally supports VMware vSphere.
Note: VMware considers boot disk as removable disk. For Symantec Endpoint Encryption Drive Encryption to work correctly, disable the HotPlug capability in VMware. Refer to the following VMware article to disable this capability:
Disabling the HotAdd/HotPlug capability in ESXi 6.x, 5.x and ESXi/ESX 4.x virtual machines (1012225)
Citrix, Terminal Services and Hypervisor compatibility
Symantec Endpoint Encryption supports the Management Agent feature with the following terminal services software:
Note: Symantec Endpoint Encryption does not support Drive Encryption in the Citrix and Terminal Services environments.
Symantec Endpoint Encryption for BitLocker support for Trusted Platform Module (TPM)
Symantec Endpoint Encryption for BitLocker supports TPM version 1.2 and later.
Symantec Data Loss Prevention integration requirements
To integrate Removable Media Encryption with Symantec Data Loss Prevention, the supported versions of Symantec Data Loss Prevention are 14.0.1, 12.5.x, and 11.5.1.
Note: Integration on Microsoft Windows 10 systems requires Symantec Data Loss Prevention 14.0.1 or later. Integration on Microsoft Windows 10 RS3 systems requires Symantec Data Loss Prevention 15.0 or later.
Supported disk types for Drive Encryption
Following are the supported disk types and file systems for Drive Encryption:
Supported Opal v2-compliant drives for Drive Encryption
See the Support Center article, Compatible Opal v2-compliant drives for Symantec Endpoint Encryption Drive Encryption 11.2 and 11.3.
Unsupported disk types for Drive Encryption
Following are the unsupported disk types and file systems for Drive Encryption:
Smart card support for preboot authentication
Symantec Endpoint Encryption supports the following for preboot authentication on both BIOS and UEFI systems:
On BIOS and UEFI systems, Symantec Endpoint Encryption supports the following PIV CAC v2 smart cards:
On UEFI systems, Symantec Endpoint Encryption requires the following smart card firmware:
Note: If you have issues with any of the cards listed, see the Support Center article Symantec Endpoint Encryption Smart Card Support for preboot authentication.
Supported media types for Removable Media Encryption
Unsupported media types for Removable Media Encryption
Microsoft BitLocker hardware encryption on self-encrypting drives
Symantec Endpoint Encryption for BitLocker supports hardware encryption for Microsoft eDrives.
Symantec Endpoint Encryption supports Microsoft Surface Pro 3, 4, and 5 systems that have an external Type or Touch keyboard.
Symantec provides a utility to test whether your devices' Touch keyboards are compatible with Symantec Endpoint Encryption. For more information, see TECH237200.
Requirements for Symantec Endpoint Encryption for FileVault
You can install Symantec Endpoint Encryption for FileVault on the Mac systems running any of the following:
Requirements for the Removable Media Access Utility
The Removable Media Access Utility is supported on the following macOS X platforms: