search cancel

How to disable the Symantec Endpoint Encryption login screen for a multi-user computer.

book

Article ID: 151412

calendar_today

Updated On:

Products

Endpoint Encryption

Issue/Introduction

How can the Symantec Endpoint Encryption login screen be disabled on a multi-user machine?

Resolution

For all versions of SEE 7.x, you need to use the autologin snap-in for the SEE Management Server that allows you to push out a policy or create an installer that includes an option to avoid the SEE pre-boot screen for a specified number of reboots.

For SEE 6.0 only, the following is possible:
Warning: : Please be aware that by choosing the disable to Symantec Endpoint Encryption login screen, you are bypassing the pre-Windows security feature of the "Symantec Endpoint Encryption-Full Disk" software. If this is still desired for the convenience of the end users, a specific set of "Symantec Endpoint Encryption Client MSIs" can be created or use "Group Policy Object" to force the maximum number of registered "Symantec Endpoint Encryption" users to be zero.

To create a specific set of "Symantec Endpoint Encryption Client MSIs", follow the steps below:
  1. Click on Symantec Endpoint Encryption Software Setup > Symantec Endpoint Encryption Framework > Framework Installation Settings > Registered Users.
  2. Change "Allow up to X accounts to be registered on each computer" to "0."
    • For a "Group Policy Object":
      1. Go to Group Policy Object Editor
      2. Select Computer Configuration > Symantec Endpoint Encryption > Symantec Endpoint Encryption Framework > Registered Users.
      3. Change "Allow up to X accounts to be registered on each computer" to "0."

        NOTE: When using the "Group Policy Object", it is highly recommend to use a filter on the "Group Policy Object" to only push the update to the specific machines that you need the "Symantec Endpoint Encryption" login screen removed.