Article Number: 000125667
Microsoft recently modified the Windows update process to change files within the \Windows\System32 directory before Dell Encryption Enterprise drivers are loaded. This may result in SDE encrypted executables (.exe) within the System32 folder being replaced by a clear-text (nonencrypted) file without notifying Dell Encryption Enterprise on the change.
This causes Dell Encryption Enterprise to attempt to decrypt a nonencrypted file, resulting in a blue screen.
Only users using Dell Encryption Enterprise with System Data Encryption (SDE) are affected by this issue. Click the version of your Dell Security Management Server to determine if the issue is present in your environment.
Figure 1: (English Only) Populations
Figure 2: (English Only) Choose Enterprise, Endpoint Group, or Endpoints
Figure 3: (English Only) File/Folder Encryption (FFE)
Figure 4: (English Only) Verify SDE Encrypted Enabled
C:\Windows\System32\;exe @C:\Windows\System32\;exe %ENV:SYSTEMROOT%\System32\;exe @%ENV:SYSTEMROOT%\System32\;exe
If you are unable to find syntax similar to the above examples, then you are not affected by the issue. If you find syntax similar to the above example, go to: How do I fix the issue?
Figure 5: (English Only) Choose Enterprise, Endpoint Groups, Endpoints
If you are unable to find syntax similar to the above examples, then you are not affected by the issue. If you find syntax similar to the above example, go to: How do I fix the issue?
Figure 6: (English Only) Security Policies
Figure 7: (English Only) Override
Figure 8: (English Only) Select Windows Encryption
Figure 9: (English Only) Fixed Storage
C:\Windows\System32\;exe @C:\Windows\System32\;exe %ENV:SYSTEMROOT%\System32\;exe @%ENV:SYSTEMROOT%\System32\;exe
Click the version of your Dell Data Security Server / Dell Data Protection Server for the solution.
Figure 10: (English Only) Before
Figure 11: (English Only) After
Figure 12: (English Only) Save
Figure 13: (English Only) Management
Figure 14: (English Only) Commit
This may result in BSODs if .exe extensions are encrypted with System Data Encryption (SDE), Common, or User.
Figure 15: (English Only) Before
Figure 16: (English Only) After
Figure 17: (English Only) Save
Figure 18: (English Only) Commit Policies
To contact support, reference Dell Data Security International Support Phone Numbers.
Go to TechDirect to generate a technical support request online.
For additional insights and resources, join the Dell Security Community Forum.
Dell Encryption
02 May 2023
8
Solution