Prevent Dell Encryption Enterprise Self-Encrypting Drive managed endpoints from booting into alternate Operating Systems
Summary: This article provides the recommended settings for Dell Encryption (formerly Dell Data Protection | Encryption) when running Dell Encryption on a Self-Encrypting Drive.
This article applies to
This article does not apply to
This article is not tied to any specific product.
Not all product versions are identified in this article.
Symptoms
Affected Products:
- Dell Encryption Enterprise Self-Encrypting Drive
- Dell Data Protection | Self-Encrypting Drive
If you are using Dell Encryption Enterprise Self-Encrypting Drive, it is recommended that you disable the ability of users to boot into alternate Operating Systems, which may allow unauthorized access to encrypted data.
Error:
Endpoint Setting:
- Dell Encryption Enterprise Self-Encrypting Drive installed and activated
- Pre-Boot Authentication enabled.
A user warm reboots the endpoint and presses F12 to select the boot device. User then chooses to boot off alternate operating system using USB drive. The Self-Encrypting Drive drive is unlocked for the alternate Boot operating system.
Cause
Not Applicable
Resolution
To work around this issue, customers must set a BIOS admin password and disable booting from alternate media such as USB drives, floppy drives and PXE Boot network devices.
To contact support, reference Dell Data Security International Support Phone Numbers.
Go to TechDirect to generate a technical support request online.
For additional insights and resources, join the Dell Security Community Forum.
Affected Products
Dell EncryptionArticle Properties
Article Number: 000129530
Article Type: Solution
Last Modified: 03 Aug 2023
Version: 11
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.