SG Enterprise encryption - Bad Sectors survey

Thanks Dan,

What I was going to suggest is that knowing the files causing the boot failure, these could have been replaced easily from the WinPE boot disk and then the base machine would have been able to boot normally saving the effort of a reinstall. It sounds like support may not have suggested this option which is a little worrying don't you think?

Matt

Hi Matt,

since I don't know the case and the detailed circumstances how the case was logged I cannot say what has been adviced and what not. However, I strongly believe that the guys have given the relevant information based on the situation.

Actually we should not try to analyze cases and we cannot analyze cases which we cannot have a closer look into especially since no data was lost which is definitely the most important thing in my oppinion. So far I cannot see any complaint from JB1111 on this one.

If you or anyone else is concerned about the information or help which they get from support they need to call supprt with their case number and discuss it person to person.

Regards

Dan

Hi.  Sorry for the late response.  I've been quite buried at work.  Sophos directed me to this document for recovery options: http://www.sophos.com/images/kb/108156-Recovery%20in%20SGN.pdf  A few avenues were explored in the process.  I think because one system could not initially boot to the POA, we did use a Master boot restore/repair.  That went well, enabling us to pass the POA.  However since, "User may only boot from hard disk=yes", we HAD to slave the drives.  F12 - Dell BIOS/boot to CD did not help.  Once past the POA and died as Windows attempted to load.  Every Window boot option we chose ended in lockup (failure).

We have since changed, "User may only boot from hard disk" to be No.  Hopefully that will work (I will test soon).   I was not real happy with losing the laptops but Sophos did a great job helping us recover data.  Thanks for the responses.

Hi jb1111,

Do you know if you tried the WinPE route (mentioned in section 5 of the guide you linked to but not described very well in that document)? Basically WinPE is a standalone 'mini' windows environment. Sophos have bolted into this the SGN engine add-on and it should then allow you to boot directly from this (not your HD so pre-POA or any other OS) and then connect to the drive in your machine (slave your drive into WinPE), mount it using the key file data/challenge response etc and then make corrections to the file structure i.e. replace broken files etc without needing to grab all the data off, reinstall etc. In your case, you knew the system files that were broken, so I'm a bit surprised that this relatively quick solution wasn't successful if suggested and am trying to understand why?

Matt

Hi Matt,

chapter 5 simply describes the procedure of creating a WInPE in case that you don't use the one provided by us. Using the tools is described very detailed in chapter 4 actually.

Regards

Dan

Thanks Dan.

Matt

Hi!  I have used the techniques described in Chapter 4 (WinPE).  However, we were not directed to do so for this troubleshooting.  I think because we could get past the POA already.  Maybe it helps booting to alternate media?  That would be cool.  It was frustrating that we could boot to this cd and see the drives but no way to step off to Windows repair cd/folder.  Perhaps with the new setting described earlier, we will be OK next time.  Thanks for all the input.