Dell Data Protection Encryption Endpoint Inventory Options
Summary: This article discusses Dell Data Protection | Encryption endpoint computer inventory options.
This article applies to
This article does not apply to
This article is not tied to any specific product.
Not all product versions are identified in this article.
Symptoms
Affected Products:
- Dell Data Protection | Encryption
Use the following registry settings to:
- Allow the Shield to send an optimized inventory to the Server.
- Send a full inventory to the Server.
- Send a full inventory for all users to the Server.
Cause
Not Applicable
Resolution
Create or modify the registry setting as follows:
Warning: The next step is a Windows Registry edit:
- Back up the Registry before proceeding, reference How to Back Up and Restore the Registry in Windows
.
- Editing the Registry can cause the computer to become unresponsive on the next reboot.
- Contact Dell Data Security International Support Phone Numbers for assistance if you have concerns about performing this step.
- Send Optimized Inventory to Server:
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\CMGShield REG_DWORD: OnlySendInvChanges Value: 1
The section above is the default for our product. This triggers the policy-based encryption client to only send inventory data to the Dell Security Management Server (formerly Dell Data Protection server) when any data has changed. When data does change, only the items that have changed on the device are collected and sent to the Dell Server. No other data is updated.
- Send Full Inventory to Server:
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\CMGShield REG_DWORD: OnlySendInvChanges Value: 0
The section above indicates that every time a device with Dell Encryption's Policy-Based Encryption attempts to check-in to a Dell Security Management Server, a full inventory is sent, this means that all data that could be reported back is regenerated and sent to the Dell Server.
Note: This may cause bandwidth issues due to the larger amounts of data that would be moving throughout the network. This can be offset by increasing the "Policy Proxy Polling Interval" within the Policy-Based Encryption policy set on the Dell Security Management Server.
- Send Full Inventory for All Users:
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\CMGShield REG_DWORD: RefreshInventory Value: 1
The above section indicates that only on the next check-in to the Dell Security Management Server that this endpoint regenerates all inventory data, and send that data to the Dell Security Management Server.
- If no entry is present, an optimized inventory is sent to the Server.
Note: This entry is deleted from the registry when it is processed. The value is saved in the vault, so even if the computer is rebooted before the inventory upload takes place, the Shield still honors this request after the next successful inventory upload.
This entry supersedes the OnlySendInvChanges registry value.
To contact support, reference Dell Data Security International Support Phone Numbers.
Go to TechDirect to generate a technical support request online.
For additional insights and resources, join the Dell Security Community Forum.
Additional Information
For more information about getting Inventory information, reference How to have the Shield dump the inventory that it is uploading to the Policy Proxy out to a file.
Affected Products
Dell EncryptionArticle Properties
Article Number: 000124874
Article Type: Solution
Last Modified: 03 Oct 2023
Version: 8
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.