Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 5 subscribers
  • Views 8349 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

unable to login via safeguard after BCD recovery

Alasdair

So my day started with a blue screen on turning the laptop on.

Rebooted and was presented with error 0xc0000098 relating to the windows Boot Configuration Data file not containing a valid os entry.

Laptop is encrypted using Safeguard 5.61.0.25 as deployed from the Enterprise Console so normal recovery procedures wouldn't work.

So I got hold of the WinPE disk from http://www.sophos.com/en-us/support/knowledgebase/108805.aspx for SGN client 5.60.0.192 and 5.60.1.7 as it was the most recent v5 one, fired it onto a disk and booted it up.

When I went through the C/R process, all seemed to go OK but I was still unable to see the contents of the hard drive.

So I opened up the command prompt and ran chkdsk /r against the drive.

Turns out there was about 100MB of bad sectors.

Once check disk had completed, I was able to see the contents of the drive within the PE.

I then ran the Bootrec /RebuildBcd command to repair the BCD file.

On reboot, windows starts up OK but when it tries to logon, I now get

"the current sophos safeguard policies do not allow you to log on"

Just wondering if there is an easy fix to this or will I have to copy all data off with the WinPE and reformat?

Any help would be much appreciated.

Thanks

:28707


This thread was automatically locked due to age.
Parents
  • 0

    The issue with continuing to use this HDD is that it may not be a good drive anymore with that many bad sectors. Remember that sector based encryption unlike most forms of security are unusually hardware dependent and if the disk is bad it may not be able to load everything is needs for it to work correctly. I suggest using the manufacturers disk checking tool to verify the disk is still good. I would do that first before proceeding this way you will know if you can continue to use it or not, otherwise you're asking for potential data loss for the user if the drive is close to failure.



    f the disk is locked and the domain dropdown is blank you'll have to assign your user the boot encryption key and get any data because the SGN POA is locked out and malfunctioning. This happens on a bad disk because it can't access a vital component and one or more of the data blocks contains the POA FreeBSD sectors.

    If you have a normal POA system and it's just locked then you MIGHT be able to use a challenge/response with the web help desk module to unlock the system and proceed. If you aren't sure how to use/install the web help desk that's a server based IIS module and that may require some pro-services time to help you set up if you aren't familiar with IIS and integrated applications to getting it working and connected to SafeGuard. If you are at least semi-familiar with this sort of thing it can probably be done in a remote services or support session.
    :28763
Reply
  • 0

    The issue with continuing to use this HDD is that it may not be a good drive anymore with that many bad sectors. Remember that sector based encryption unlike most forms of security are unusually hardware dependent and if the disk is bad it may not be able to load everything is needs for it to work correctly. I suggest using the manufacturers disk checking tool to verify the disk is still good. I would do that first before proceeding this way you will know if you can continue to use it or not, otherwise you're asking for potential data loss for the user if the drive is close to failure.



    f the disk is locked and the domain dropdown is blank you'll have to assign your user the boot encryption key and get any data because the SGN POA is locked out and malfunctioning. This happens on a bad disk because it can't access a vital component and one or more of the data blocks contains the POA FreeBSD sectors.

    If you have a normal POA system and it's just locked then you MIGHT be able to use a challenge/response with the web help desk module to unlock the system and proceed. If you aren't sure how to use/install the web help desk that's a server based IIS module and that may require some pro-services time to help you set up if you aren't familiar with IIS and integrated applications to getting it working and connected to SafeGuard. If you are at least semi-familiar with this sort of thing it can probably be done in a remote services or support session.
    :28763
Children
No Data
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?