How to Set Group Policy Object on a Domain Controller to Enable Dell Encryption Entitlements

Summary: This article explains how to set Group Policy Objects (GPO) on domain controller to enable Dell Encryption (formerly Dell Data Protection | Encryption) entitlements.

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.
Check out other resources

Symptoms

Affected Products:

  • Dell Security Management Server
  • Dell Data Protection | Enterprise Edition
  • Dell Security Management Server Virtual
  • Dell Data Protection | Virtual Edition

Cause

Not Applicable

Resolution

  • If your client is entitled from Dell Digital Delivery (DDD), follow these instructions to set the GPO on the domain controller to enable entitlements (this may not be the same server running the Dell Security Management Server [formerly Dell Data Protection | Enterprise Edition] or Dell Security Management Server Virtual [formerly Dell Data Protection | Virtual Edition]).
  • The workstation must be a member of the OU where the GPO is applied.
Note: Ensure that outbound port 443 is available to communicate with the Dell Security Management Server or Dell Security Management Server Virtual. If port 443 is blocked (for any reason), the entitlement functionality does not work.
  1. Log in to a domain controller or a computer that has the Remote Server Administration Tools (RSAT) installed.
Note: For more information about RSAT, review the following Microsoft site https://support.microsoft.com/en-us/help/2693643/remote-server-administration-tools-rsat-for-windows-operating-systems This hyperlink is taking you to a website outside of Dell Technologies..
  1. Press the Windows key and search for Group Policy Management.
  2. Right-click the Organizational Unit where the policy should be applied and select Create a GPO in this domain, and Link it here.
  3. Enter a Name for the New GPO, select (none) for Source Starter GPO, and click OK.

New GPO
Figure 1: (English Only) New GPO

  1. Right-click the GPO that was created and select Edit.

Group Policy Management
Figure 2: (English Only) Group Policy Management

  1. Expand Computer Configuration > Preferences > Windows Settings > Registry.

Group Policy Management Editor
Figure 3: (English Only) Group Policy Management Editor

  1. Right-click Registry and select New > Registry Item.
    1. Action: Create
    2. Hive: HKEY_LOCAL_MACHINE
    3. Key Path: SOFTWARE\Dell\Dell Data Protection
    4. Value Name: Server
    5. Value type: REG_SZ
    6. Value data: Enter the Fully Qualified Domain Name or IP address of the Enterprise or Virtual Edition Server.

Server properties
Figure 4: (English Only) Server properties

  1. Click OK.
  2. We can now close out of any windows and log off from any servers that were used to perform the above steps.
  3. On a workstation that falls into the scope of this GPO logoff and log in to or run gpupdate /force to apply this new group policy setting.
  4. Your machines are now automatically configured to contact the DDP Server once installed by Dell Digital Delivery.

To contact support, reference Dell Data Security International Support Phone Numbers.
Go to TechDirect to generate a technical support request online.
For additional insights and resources, join the Dell Security Community Forum.

Affected Products

Dell Encryption
Article Properties
Article Number: 000130312
Article Type: Solution
Last Modified: 15 Apr 2024
Version:  10
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.