FEATURE REQUEST: Network Awareness at Preboot with Symantec Encryption Products

book

Article ID: 211083

calendar_today

Updated On:

Products

Endpoint Encryption Encryption Desktop Corporate Powered by PGP Technology Encryption Desktop Powered by PGP Technology Encryption Desktop Professional Powered by PGP Technology Encryption Desktop Storage Powered by PGP Technology

Issue/Introduction

Symantec Encryption products are a robust line of products and have proven the test of time.  Historically, all users who are able to authenticate at the preboot screen do so as a pre-registered user.  This is done through an easy method that happens as soon as the user logs in, and in most cases is an invisible process.  There are scenarios where this may not be possible, such as a user "Kiosk" situation where the users may never have logged in. 

In these situations, Symantec Encryption products do have an "Autologon" or "Bypass" feature, which will skip the preboot screen with an "Autologon" user, and this is ideal where the system is behind a locked environment where no unauthorized users are able to access the system. 

For other scenarios, where systems may be out "in the wild", or taken outside the organization, this Autologon scenario is not ideal and not recommended for highest security.   In general, Symantec Enterprise Division recommends to enable the Preboot Login screen as a system is locked, even when shut down.  A system is not able to be booted up until a user has logged on.  This is the best practice for highest security.

In this scenario, we want users to be able to authenticate at preboot, but still bypass the need to be registered as we have done.   This is where Network Awareness at Preboot is useful, so that even at preboot, users can authenticate as long as they are on the network, as long as they can authenticate with their user credentials.  

 

A Feature Request for Network Awareness at Preboot has been submitted to our product management team 

Symantec Corporation is committed to product quality and satisfied customers. Technical Support filed a Feature Request to add the functionality listed above. This Feature Request is currently being considered by Symantec Enterprise Division to be addressed in a forthcoming version of the product.    

There is no guaranteed date for this request from the Encryption Product Management team, or the Encryption Engineering team at this time. Please be sure to refer back to this article periodically as any changes to the status of the request will be reflected here. You can also subscribe to this article to receive notification when it is updated. 

To have your organization added to the list of companies that desire this Feature Request, please contact technical support.”

Resolution

Support has worked directly with Product Management and this feature is still under review.  To have your organization added to the list of companies that desire this Feature Request, or to follow-up directly on status, please contact technical support.

Additional Information

ISFR-1619, EPG-22846