Sophos SAFEGUARD startup guide
Sophos SafeGuard Disk Encryption 4.60
startup guide
Document date: June 2009
Contents
1 About this guide..................................................................................................................................... 3
2 About disk encryption and Pre-Boot Authentication.......................................................................... 3
3 How will encryption affect the way you manage the computer/network? ......................................... 3
4 What are the key steps?.......................................................................................................................... 4
5 Check the system requirements ............................................................................................................ 5
6 Carry out a trial installation .................................................................................................................. 5
7 Assign administration rights ................................................................................................................. 7
8 Install the administration tools ............................................................................................................. 8
9 Configure the encryption software ....................................................................................................... 8
10 Deploy the encryption software to end user computers.................................................................... 10
11 Recover a forgotten password ............................................................................................................. 11
12 Recover access to the system ............................................................................................................... 12
13 Get help with common tasks............................................................................................................... 12
14 Technical support ................................................................................................................................ 13
15 Copyright.............................................................................................................................................. 13
2
Sophos SafeGuard® Disk Encryption 4.60, startup guide
1 About this guide
This guide tells you how to set up Sophos SafeGuard Disk Encryption (SDE) to protect your
company's computers against unauthorized access.
2 About disk encryption and Pre-Boot Authentication
Sophos SafeGuard Disk Encryption encrypts the entire cont ents o f har d disks transparently. Users
do not need to decide which data is to be encrypted and decryption takes place unnoticed.
Pre-Boot Authentication ensures that only a Sophos SafeGuard Disk Encryption user registered
on a computer may log on to it. The keys required for encrypting and decrypting are calculated
dynamically. They are encrypted and stored on the hard disk as well. These keys can only be used
to start the operating system when the user logs on to the computer with the correct SDE
credentials.
The benefits of Sophos SafeGuard Disk Encryption are:
Simply but effectively protects the confidentiality of stored data.
Can be implemented quickly.
Based on market leading encryption technology certified FIPS 140 compliant.
3 How will encryption affect the way you manage the
computer/network?
Note the following:
You may generally use system management tools such as Microsoft SMS, Tivola, or NetInstall
with Sophos SafeGuard Disk Encryption.
Sophos SafeGuard Disk Encryption provides support for Lenovo Rescue and Recovery
Imaging tools are not supported and not tested with Sophos SafeGuard Disk Encryption.
Note that Sophos SafeGuard Disk Encryption needs to be specially configured for Wake-On-
LAN. If you use Wake-On-LAN you will need to configure this capability via the Advanced
Settings,
You will need to set up a helpdesk for recovery in emergency cases. Sophos SafeGuard Disk
Encryption provides user-friendly recovery in case the user has forgotten their password,
Recover a forgotten password on page 11.
see Configure the encryption software on page 8.
TM
.
see
3
Sophos SafeGuard® Disk Encryption 4.60, startup guide
You need to create a 'Helpdesk' user account with the right to change user settings. You can
do this by using the Advanced Settings when you pre-configure the encryption software,
Configure the encryption software on page 8.
For detailed information see the Sophos SafeGuard Disk Encryption help and the following
knowledgebase article:
During installation you need to define an initial password for the default user (USER). End
users will use this password to log on to
They will then be
Sophos SafeGuard Disk Encryption administration requires a specific SYSTEM password that
http://www.sophos.com/support/knowledgebase/article/56457.html.
Sophos SafeGuard Disk Encryption for the first time.
prompted to change it when they first log on.
you define during installation. Make a note of this password and keep it in a safe place,
Install the administration tools on page 8.
To always be able to access the installation log file when you deploy the encryption software
on the end user computers, ensure to save it to a UNC path on the network.
4 What are the key steps?
see
see
To protect your network, you configure SDE on the administrator's computer and deploy it to the
end user computers. The key steps are:
Check the system requirements.
Carry out a trial installation
Assign administration rights
Install the administration tools
Configure the encryption software
Deploy the encryption software to end user computers
4
Loading...