ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

Symantec Endpoint Encryption 11.0 compatibility with Symantec Encryption Desktop enabled with Symantec Drive Encryption

book

Article ID: 161180

calendar_today

Updated On:

Products

Endpoint Encryption

Issue/Introduction

When you install Symantec Encryption Desktop 10.3.2 MP2 or earlier with Symantec Drive Encryption enabled on a system where Symantec Endpoint Encryption is installed with Drive Encryption functionality, the installation is successful. However, after you encrypt a disk, or if the disk gets automatically encrypted by policy using the Symantec Drive Encryption feature, when you restart the system and authenticate at preboot, a blue screen error occurs and Microsoft Windows stops working.

Symantec Encryption Desktop 10.3.2 MP2 or earlier with the Symantec Drive Encryption feature enabled is not compatible with Symantec Endpoint Encryption with Drive Encryption functionality.

This Knowledge Base article provides detailed information about compatibility between Symantec Endpoint Encryption Drive Encryption Client version 11.0 and Symantec Encryption Desktop.

Resolution

This issue was resolved by blocking the installation of Symantec Encryption Desktop in the 10.3.2 MP3 release. When you install Symantec Encryption Desktop 10.3.2 MP3 with the Symantec Drive Encryption feature enabled on a system where Endpoint Encryption is running the Drive Encryption functionality, the installation fails with the error message, “Drive Encryption exists on system, the system cannot continue. Installation terminated.” This is the expected behavior.

To enable compatibility between Symantec Encryption Desktop and Symantec Endpoint Encryption with Drive Encryption functionality, disable the Symantec Drive Encryption feature when you install Symantec Encryption Desktop by performing the following steps:

  1. Open the Windows command prompt.
  2. Change the Windows command prompt path to the folder in which the Symantec Encryption Desktop installer is located.
  3. Enter the following command:

    msiexec /I pgpdesktop.msi PGP_INSTALL_WDE=0

This command disables the Symantec Drive Encryption feature and installs Symantec Encryption Desktop.

When you disable the Symantec Drive Encryption feature, the option to use the feature does not appear in the user interface. This ensures that there are no compatibility issues with the operating system or any other products that are installed.

Note: To re-enable the Symantec Drive Encryption feature of Symantec Encryption Desktop, reinstall Symantec Encryption Desktop with the Symantec Drive Encryption feature enabled. Be sure you have uninstalled Symantec Endpoint Encryption first.


Applies To

  • Microsoft Windows systems running Symantec Endpoint Encryption Drive Encryption Client version 11.0 and Symantec Encryption Desktop (version 10.3.2 MP2 or earlier) with Symantec Drive Encryption enabled
  • At least one fixed drive is fully or partially encrypted using Endpoint Encryption with Drive Encryption functionality