HP ProtectTools Troubleshooting Guide
Page 3
...already installed on the hard drive and can be installed unless the Security Manager interface is present. ■ HP ProtectTools Embedded Security: This supports the TPM 1.2 hardware directly and is preinstalled on an external flash integrated with the system board and is also incorporated through... products cannot be accessed from the task tray, start menu, or control panel. All TPM functions are encouraged to perform "best practices" in both hardware and software. Some HP Web-based downloads (SoftPaqs) will not install unless previous versions of the NIC. The Security...
...already installed on the hard drive and can be installed unless the Security Manager interface is present. ■ HP ProtectTools Embedded Security: This supports the TPM 1.2 hardware directly and is preinstalled on an external flash integrated with the system board and is also incorporated through... products cannot be accessed from the task tray, start menu, or control panel. All TPM functions are encouraged to perform "best practices" in both hardware and software. Some HP Web-based downloads (SoftPaqs) will not install unless previous versions of the NIC. The Security...
HP ProtectTools Troubleshooting Guide
Page 4
... reader to log on some models. The smart card BIOS security mode is a Web-based SoftPaq for updating your TPM firmware. ■ HP Credential Manager for ProtectTools: This tool provides identity management and has security features that shipped with the computer or access ... file/folder encryption, and it supports enhanced security for additional security settings, such as using the Embedded Security software. ■ HP ProtectTools TPM Firmware Update Utility: This utility is available on to Windows ❏ Single Sign On feature that automatically remembers credentials for Web...
... reader to log on some models. The smart card BIOS security mode is a Web-based SoftPaq for updating your TPM firmware. ■ HP Credential Manager for ProtectTools: This tool provides identity management and has security features that shipped with the computer or access ... file/folder encryption, and it supports enhanced security for additional security settings, such as using the Embedded Security software. ■ HP ProtectTools TPM Firmware Update Utility: This utility is available on to Windows ❏ Single Sign On feature that automatically remembers credentials for Web...
HP ProtectTools Troubleshooting Guide
Page 5
... Mail Extensions A specification for secure electronic messaging using PKCS. The TPM also enhances the security of EFS and the Personal Secure Drive by protecting the keys used by the HP ProtectTools Embedded Security device to "wrap" or protect the keys used...MIME offers authentication via digital signatures and privacy via S/MIME in Microsoft Outlook and Outlook Express. The TPM functions as a Cryptographic Service Provider (CSP). HP ProtectTools Troubleshooting Guide Acronym Term Detail EFS Encryption File System A transparent file encryption service provided by Microsoft...
... Mail Extensions A specification for secure electronic messaging using PKCS. The TPM also enhances the security of EFS and the Personal Secure Drive by protecting the keys used by the HP ProtectTools Embedded Security device to "wrap" or protect the keys used...MIME offers authentication via digital signatures and privacy via S/MIME in Microsoft Outlook and Outlook Express. The TPM functions as a Cryptographic Service Provider (CSP). HP ProtectTools Troubleshooting Guide Acronym Term Detail EFS Encryption File System A transparent file encryption service provided by Microsoft...
HP ProtectTools Troubleshooting Guide
Page 6
... per system. This is true whether or not an Embedded Security TPM is not related to Applying Attributes double-encrypt them . Microsoft EFS is as designed. Attempting to HP ProtectTools software. 4 www.hp.com Technical Reference Guide can encrypt the same files on the C:\...Security, logs on a restore there will not function on an extra installed hard drive. This is a feature of the folder. HP ProtectTools Embedded Security-Unauthorized administrator can view, delete, rename, or move contents of Microsoft's EFS and is installed. Embedded Security uses...
... per system. This is true whether or not an Embedded Security TPM is not related to Applying Attributes double-encrypt them . Microsoft EFS is as designed. Attempting to HP ProtectTools software. 4 www.hp.com Technical Reference Guide can encrypt the same files on the C:\...Security, logs on a restore there will not function on an extra installed hard drive. This is a feature of the folder. HP ProtectTools Embedded Security-Unauthorized administrator can view, delete, rename, or move contents of Microsoft's EFS and is installed. Embedded Security uses...
HP ProtectTools Troubleshooting Guide
Page 7
...instruct users never to encrypt/decrypt encryption/decryption and user for TPM module after system restore. The TPM must be through the hidden ($) share in Administrator account accessed over the network password-protected. HP ProtectTools Embedded Security-Windows 2000 User can be stored on not... removable media is displayed. This is running. Storage of the TPM fails. Customers should disable Auto-Protect on a network drive or another local drive other than the C drive. using HP ProtectTools Embedded Security EFS takes longer when Norton Antivirus is as ...
...instruct users never to encrypt/decrypt encryption/decryption and user for TPM module after system restore. The TPM must be through the hidden ($) share in Administrator account accessed over the network password-protected. HP ProtectTools Embedded Security-Windows 2000 User can be stored on not... removable media is displayed. This is running. Storage of the TPM fails. Customers should disable Auto-Protect on a network drive or another local drive other than the C drive. using HP ProtectTools Embedded Security EFS takes longer when Norton Antivirus is as ...
HP ProtectTools Troubleshooting Guide
Page 8
...the system to save the changes and exit the F10 Setup utility. Press Enter. Press F10 to reset the TPM module and cause possible loss of data. 6 www.hp.com Technical Reference Guide To use the wizard, the Embedded Security must be removed by a user who knows ...Use the Arrow keys to select various menus, menu items, and to recover from Security-Errors occur after enabling TPM Module Enabling the TPM module This is displayed: The Embedded 9. However, HP strongly recommends enabled, the user can (F10) Utility password. To work around the problem, encrypt the file as...
...the system to save the changes and exit the F10 Setup utility. Press Enter. Press F10 to reset the TPM module and cause possible loss of data. 6 www.hp.com Technical Reference Guide To use the wizard, the Embedded Security must be removed by a user who knows ...Use the Arrow keys to select various menus, menu items, and to recover from Security-Errors occur after enabling TPM Module Enabling the TPM module This is displayed: The Embedded 9. However, HP strongly recommends enabled, the user can (F10) Utility password. To work around the problem, encrypt the file as...
HP ProtectTools Troubleshooting Guide
Page 9
... encrypted information on the system. however, when viewing the certificate, it shows as a system without TPM user initialization. Technical Reference Guide www.hp.com 7 This Q257705 for users who have administrative rights on the configured to Security Platform Policies (both... Machine and User) does not require a TPM password for more information. Self-signed certificates are trusted. HP ProtectTools Embedded Security-No password required to change the Security Platform Policies Access to designate an...
... encrypted information on the system. however, when viewing the certificate, it shows as a system without TPM user initialization. Technical Reference Guide www.hp.com 7 This Q257705 for users who have administrative rights on the configured to Security Platform Policies (both... Machine and User) does not require a TPM password for more information. Self-signed certificates are trusted. HP ProtectTools Embedded Security-No password required to change the Security Platform Policies Access to designate an...
HP ProtectTools Troubleshooting Guide
Page 10
... Guide Software Impacted-Short description Details Solution / Workaround HP ProtectTools Embedded Security-Intermittent encrypt and decrypt error occurs: The process cannot access the file because it the Basic User Key and TPM or by first disabling the has not, then select Ok or Cancel in order to ... processed by the operating system or other applications. If user clicks No in the dialog box prompting Click Yes to opens the Administration TPM (through Admin. tool, the Disable option is only experienced if the user Security-Data loss in to and does not generate errors transfer...
... Guide Software Impacted-Short description Details Solution / Workaround HP ProtectTools Embedded Security-Intermittent encrypt and decrypt error occurs: The process cannot access the file because it the Basic User Key and TPM or by first disabling the has not, then select Ok or Cancel in order to ... processed by the operating system or other applications. If user clicks No in the dialog box prompting Click Yes to opens the Administration TPM (through Admin. tool, the Disable option is only experienced if the user Security-Data loss in to and does not generate errors transfer...
HP ProtectTools Troubleshooting Guide
Page 12
...Impacted-Short description Details Solution / Workaround HP ProtectTools Embedded Security-Application lock-ups occur when the connection with a TPM Module is lost When the TPM module is If system appears not to function properly or the damaged or the connection is TPM is not found, perform the following ...recovers and the user can run the self test and confirm damaged module. Click Broadcom TPM. (The device status should indicate This device is properly locks up. HP ProtectTools Embedded Running Large Scale HP is installed: 1. time on the same PC or on any issue and will ...
...Impacted-Short description Details Solution / Workaround HP ProtectTools Embedded Security-Application lock-ups occur when the connection with a TPM Module is lost When the TPM module is If system appears not to function properly or the damaged or the connection is TPM is not found, perform the following ...recovers and the user can run the self test and confirm damaged module. Click Broadcom TPM. (The device status should indicate This device is properly locks up. HP ProtectTools Embedded Running Large Scale HP is installed: 1. time on the same PC or on any issue and will ...
HP ProtectTools Troubleshooting Guide
Page 13
...; Click Control Panel. • Click Add or remove programs. • Ensure Microsoft .NET Framework 1.1 is a support download available at www.hp.com. Technical Reference Guide www.hp.com 11 If the BIOS TPM is factory-reset, ownership is removed and firmware update capability is prevented until after performing a firmware update. The firmware version...
...; Click Control Panel. • Click Add or remove programs. • Ensure Microsoft .NET Framework 1.1 is a support download available at www.hp.com. Technical Reference Guide www.hp.com 11 If the BIOS TPM is factory-reset, ownership is removed and firmware update capability is prevented until after performing a firmware update. The firmware version...
HP ProtectTools Troubleshooting Guide
Page 14
... the token location the Emergency Recovery Token should be retrieved from. 12 www.hp.com Technical Reference Guide Begins to factory settings in Embedded Security 1. When TPM authentication is used, this location is correct, the following error message is displayed... provided. in the text box. Even though this option is not available. HP ProtectTools Troubleshooting Guide Software Impacted-Short description Details Solution / Workaround HP ProtectTools Credential Using TPM authentication, the Using Credential Manager Single Sign On tools Manager-Using user is ...
... the token location the Emergency Recovery Token should be retrieved from. 12 www.hp.com Technical Reference Guide Begins to factory settings in Embedded Security 1. When TPM authentication is used, this location is correct, the following error message is displayed... provided. in the text box. Even though this option is not available. HP ProtectTools Troubleshooting Guide Software Impacted-Short description Details Solution / Workaround HP ProtectTools Credential Using TPM authentication, the Using Credential Manager Single Sign On tools Manager-Using user is ...
HP ProtectTools Troubleshooting Guide
Page 17
... of security policies and functions HP ProtectTools Embedded Hiding the TPM chip in the Hiding the TPM in restricting end-user privileges and client PC: restricting user access. • deletion of PSD Unauthorized users should re-enable their TPM or remove the HP Embedded Security software through Add/remove... programs. Technical Reference Guide www.hp.com 15 Windows. User is not able to delete the PSD and it is not...
... of security policies and functions HP ProtectTools Embedded Hiding the TPM chip in the Hiding the TPM in restricting end-user privileges and client PC: restricting user access. • deletion of PSD Unauthorized users should re-enable their TPM or remove the HP Embedded Security software through Add/remove... programs. Technical Reference Guide www.hp.com 15 Windows. User is not able to delete the PSD and it is not...
HP ProtectTools Troubleshooting Guide
Page 18
... to restore from Automatic Backup Archive 1. If a new system backup is lost. HP is working to restore at a later time. operate properly and makes TPM-encrypted data inaccessible. 16 www.hp.com Technical Reference Guide User must restore the entire system backup. selects The processes are... Windows. If the automated backup runs, it is required. An Archive Backup can be restored individually. HP ProtectTools Embedded Resetting the system ROM to Unhide the TPM in future product versions. however, the internal .xml Embedded Security error message is not clear the Restore ...
... to restore from Automatic Backup Archive 1. If a new system backup is lost. HP is working to restore at a later time. operate properly and makes TPM-encrypted data inaccessible. 16 www.hp.com Technical Reference Guide User must restore the entire system backup. selects The processes are... Windows. If the automated backup runs, it is required. An Archive Backup can be restored individually. HP ProtectTools Embedded Resetting the system ROM to Unhide the TPM in future product versions. however, the internal .xml Embedded Security error message is not clear the Restore ...
HP ProtectTools Troubleshooting Guide
Page 20
... name)\(admin name). If the Automatic Backup is working to designed for rights to use NT name\admin name. Tasks > Scheduled Task. HP is scheduled for TPM 1.1 platforms. 18 www.hp.com Technical Reference Guide This works properly to occur upon login, Embedded Security TNA Icon displays the following message: The Backup Archive...
... name)\(admin name). If the Automatic Backup is working to designed for rights to use NT name\admin name. Tasks > Scheduled Task. HP is scheduled for TPM 1.1 platforms. 18 www.hp.com Technical Reference Guide This works properly to occur upon login, Embedded Security TNA Icon displays the following message: The Backup Archive...
HP ProtectTools Troubleshooting Guide
Page 21
... fills in the application name; Technical Reference Guide www.hp.com 19 was removed from current location of registered virtual product offerings because it allowed non-users token in Credential Manager, the enhancements. When TPM authentication is used, this option is researching a workaround ... must then enter a unique name for each document so Credential Manager can select which password to log into. HP ProtectTools Credential Manager-Login with TPM authentication does not give the Network Accounts option Using the Network Accounts option, a user can tell which domain ...
... fills in the application name; Technical Reference Guide www.hp.com 19 was removed from current location of registered virtual product offerings because it allowed non-users token in Credential Manager, the enhancements. When TPM authentication is used, this option is researching a workaround ... must then enter a unique name for each document so Credential Manager can select which password to log into. HP ProtectTools Credential Manager-Login with TPM authentication does not give the Network Accounts option Using the Network Accounts option, a user can tell which domain ...
HP ProtectTools Troubleshooting Guide
Page 23
...by the Credential Manager. Select the Advise to choose another authentication method If user using TPM login authentication for a Manager-The option to have any supported card placed in at HP The message box that asks the operator for Credential Manager enters his/her password, the... the operator does not work properly, but instead immediately displays the Windows login screen. When logging in using TPM authentication, the Back button skips the option to log-on the card. HP is a password on checkbox. is available if there is researching a resolution for any functionality...
...by the Credential Manager. Select the Advise to choose another authentication method If user using TPM login authentication for a Manager-The option to have any supported card placed in at HP The message box that asks the operator for Credential Manager enters his/her password, the... the operator does not work properly, but instead immediately displays the Windows login screen. When logging in using TPM authentication, the Back button skips the option to log-on the card. HP is a password on checkbox. is available if there is researching a resolution for any functionality...
HP ProtectTools Troubleshooting Guide
Page 24
...Windows 2000 install, the logon policy is no guarantee that may lead customer to Credential Manager. 22 www.hp.com Technical Reference Guide HP ProtectTools Credential If the TPM module is removed This is as designed. This is as primary logon in product help files to further...at your own risk! There is configured. HP ProtectTools Credential Manager- characters for manual or auto logon admin. Using the Registry Editor (regedit) incorrectly can place your operating system. Refresh the graphical user interface by the TPM. If auto logon is designed to enter ...
...Windows 2000 install, the logon policy is no guarantee that may lead customer to Credential Manager. 22 www.hp.com Technical Reference Guide HP ProtectTools Credential If the TPM module is removed This is as designed. This is as primary logon in product help files to further...at your own risk! There is configured. HP ProtectTools Credential Manager- characters for manual or auto logon admin. Using the Registry Editor (regedit) incorrectly can place your operating system. Refresh the graphical user interface by the TPM. If auto logon is designed to enter ...
HP ProtectTools Troubleshooting Guide
Page 25
Customer Workaround: In order to logon, user must manually log into Credential Manager. The HP Credential Manager for ProtectTools fails to access the TPM if the TPM was reset to log in SP2 from sleeping to hibernation on the cause of the alert is ...3. If user logs into Credential Manager, user is prompted to factory settings or replaced after the TPM Embedded Security Module is restored. Workaround: 1. Enable and initialize the TPM. 4. HP ProtectTools Credential Manager-Restoring Embedded Security causes Credential Manager to fail Credential Manager fails to notify the user...
Customer Workaround: In order to logon, user must manually log into Credential Manager. The HP Credential Manager for ProtectTools fails to access the TPM if the TPM was reset to log in SP2 from sleeping to hibernation on the cause of the alert is ...3. If user logs into Credential Manager, user is prompted to factory settings or replaced after the TPM Embedded Security Module is restored. Workaround: 1. Enable and initialize the TPM. 4. HP ProtectTools Credential Manager-Restoring Embedded Security causes Credential Manager to fail Credential Manager fails to notify the user...