Surface Pro 3 安裝 PGP 全硬碟加密並完成加密,但回復原廠預設值後仍跳出註冊與 unlock disk 畫面
重開機後仍出現 BootGuard 驗證頁面
輸入第一次加密的 passphrase 仍無法通過驗證,之後出現以下頁面
試過格式化、重新以授權光碟重新安裝都有問題
【解決方案】
1.Surface Pro 3 安裝 PGP 全硬碟加密並完成加密,欲回復原廠預設值前請先進行解密
2.如果未解密便回復原廠預設值,請您參照以下方式將 Surface Pro 3 復原
【About Surface pro 3】下載 Microsoft Surface 適用的復原映像
必須要先以 Windows Live ID 註冊 Surface Pro 3,並以此 Windows Live ID 登入以下頁面,網頁會依據您註冊的 Surface Pro 版本提供您正確的 Surface Pro Image 來還原
註:Surface Pro 3 的硬碟配置
|
1. Symantec™ System Recovery 2013 R2 Server Edition FREE 60-day Evaluation! ( 60 天試用版可以於以下網址下載 )
https://www4.symantec.com/Vrt/offer?a_id=88724
2.
Enterprise Support – Symantec Corp. – Symantec System Recovery 2013 R2 General Information
http://www.symantec.com/business/support/index?page=content&id=TECH225253
※ Symantec System Recovery 2013 R2需要 SSR 2013 R2 的授權才能在 Symantec Fileconnect 下載的到
3. 雖然下載得到 SSR 2013 R2,但安裝後輸入 SSR 2013 授權碼也無法通過授權
台灣地區 SSR 2013 R2 Release Day 可能會落在 12 月中下旬
若您的 SSR 合約仍在有效期限內,請您登入 Symantec License Portal
http://www.symantec.com/zh/tw/global/licensing/
輸入帳號與密碼 ( 若您尚未註冊請按下下方【立即註冊】以進行註冊 )
按下【檢視所有授權】
找到您所購買的產品,並按下右方的【檢視詳細資料】
再出現的頁面中,按下【Upgrade this license】
即可取得下載序號與授權碼
漫遊使用者可以在 PGP 下正常運作
請參考以下測試
Roaming_user account is a roaming user
Windows7-temp.elite2003.intra is a domain computer and has installed the PGP client program,then the boot partition was encrypted.
We log out the current user and login with Roaming_user account.
As the same step,you must press the [ Always Allow for This Site ] to accept the Certificate.(We will use the publish CA and you will not see the PGP Alert. )
Please type the password for this domain roaming user.
After the silent enrollment finished,you can see the domain roaming user become a bootguard user.
This means that the domain roaming user account can pass the bootguard anthentication then single-sign-on to the Windows on this computer.
So if the domain roaming user account can login to any computer and enroll to the PGP Encryption Managemnet Server,it will work fine on these computers.
Document\PGP\ can be created and you can find the PGP key pair.
\\192.168.181.121\profiles\roaming_user.V2\Documents\PGP
User the domain roaming user to another computer
Type the password for this domain roaming user.
Enrolling to the PGP Encryption Managemnet Server
![clip_image003[4]](http://www.wellife.com.tw/symantec/wp-content/uploads/sites/4/2014/11/clip_image0034.png "clip_image003[4]")
After the silent enrollment finished,you can see the domain roaming user become a bootguard user.
![clip_image004[4]](http://www.wellife.com.tw/symantec/wp-content/uploads/sites/4/2014/11/clip_image0044.png "clip_image004[4]")
Review the roaming user profile document folder
![clip_image005[4]](http://www.wellife.com.tw/symantec/wp-content/uploads/sites/4/2014/11/clip_image0054.png "clip_image005[4]")
View the record on the console
※ The roaming user also create a local user profile on local,you can find the PGP key pair in the c:\users\%username%\Documents\PGP,so it is working fine if the roaming user is offline.
