Loading...

Knowledge Center


Endpoint Encryption for Files and Folders 4.0 Known Issues
Technical Articles ID:  KB72625
Last Modified:  07/03/2013
Rated:


Environment

McAfee Endpoint Encryption for Files and Folders 4.0
McAfee Endpoint Encryption Removable Media 4.0

 

NOTE: Endpoint Encryption for Removable Media (EERM) is automatically installed with Endpoint Encryption Files and Folders (EEFF) 4.0.

Summary

This article contains important information about known issues of high or medium rating that are outstanding with this product release. This article will be updated if new issues are identified post-release or if additional information becomes available. To read the Release Notes, see: PD23264.

Release to Support (RTS):  July 11, 2011
Release to World (RTW):  August 23, 2011

Endpoint Encryption for Files and Folders 4.2 is the latest release available from the McAfee Downloads site. This article will be updated when newer patches are released that resolve the issues mentioned in this article.
 



Known Issues:


CRITICAL:

Reference Number Related Article Issue Description
677325
699147
KB72721 Issue: Because of an issue in the McAfee Agent, User-Based Policies in EEFF are not enforced if the User-based policy in Endpoint Encryption for PC is enabled with Opt-in.
Resolution: Resolved with McAfee Agent 4.6 Patch 1 (Build 4.6.0.2292), released on December 14th, 2011.
Workaround: Refer to the article.


Non-critical:

Reference Number Related Article Issue Description
810135 KB78578

Issue: When copying a file to an EERM managed device, a system that has both EEFF and HDLP 9.3 installed displays the following errors when a Removable Media storage protection rule is triggered:

  • The system displays the following error on Windows 8, Windows 7 and Vista: Catastrophic failure
  • The system displays the following error on Windows XP SP3: The media is write protected

IMPORTANT: The above messages are thrown by the Operating System when file copies are blocked, and there is no impact whatsoever on the functionality of either EEFF or HDLP.

Workaround: Disable the DLP Sandbox module. Refer to the article for details.
Resolution: This issue is being evaluated for consideration in a future release or patched version of the product.

n/a KB72276 Issue:  This version of Endpoint Encryption for Files and Folders supports network file share encryption only on the Windows Server 2003 and Windows Server 2008 platforms. Support for additional file servers will be added in later versions, subject to market demand. See the article for details.
593363 n/a Issue: When using McAfee Host DLP and McAfee EEFF, an encrypted file is not getting re-encrypted with the encryption key selected in Host DLP for removable media. That is, the EEFF encryption rule overrides the Host DLP rule by keeping the original encryption.
Resolution: Resolved in Host DLP 9.0 which is available from the McAfee Download Site using a valid  grant number.
669798 n/a Issue: When using the Percentage of option for EERM, a certain amount of space is lost (remain unused) when doing Windows formatting of the EERM encrypted device.
Resolution: Resolved in EEFF 4.1 which is posted to the McAfee download site.
673309 n/a Issue: Despite the policy, it is possible to copy files up to 800 kilobyte when the EERM media is protected using 100% free space or 100% total space of the EERM policy. Thus, for these extreme cases, the option Entire device should be used instead.
Resolution: Resolved in EEFF 4.1 which is posted to the McAfee download site.
676170 n/a Issue: Offline files synchronization is not fully supported with this version of the product.
Resolution: Resolved in EEFF 4.1 which is posted to the McAfee download site.
730001 KB74890 Issue: Files are corrupted when restoring from NetApp filer to a Windows XP SP3 client with EEFF 4.0 installed.
Resolution: Resolved in EEFF 4.0 Patch 1 which is posted to the McAfee download site.
678422 KB73422 Issue: When copying an encrypted file onto an NTFS-formatted external hard disk that has Read-Only permissions, the file ends up on the external disk as decrypted (if the user has access to the key).
Resolution: Improvements have been implemented in EEFF 4.0 Patch 1, which is posted to the McAfee download site.
670317 n/a Issue: An encrypted file sent through Attach encrypted to email gets decrypted when unpacked to a location on the local system.
Resolution: Resolved in EEFF 4.0 Patch 1 which is posted to the McAfee download site.
709058  n/a Issue: On Windows XP systems, when doing a file move operation between two local disks using the cut/paste commands Ctrl-X and Ctrl-V, the move operation may damage the file.
NOTE: This issue only happens under these specific conditions and only with the first move operation; it will not occur if you do a folder level cut and paste.
Resolution: Resolved in EEFF 4.0 Patch 1 which is posted to the McAfee download site.
719506
720951
KB73302 Issue: Visual C++ Runtime Error!, MfeEERM.exe out of memory (when initializing 1 TB USB HDD drive on Windows XP SP3)
Resolution: Resolved in EEFF 4.0 Patch 1 which is posted to the McAfee download site.
673713 n/a Issue: When using the Encrypt action in the File System Protection Rule (FSPR) in McAfee Host DLP, creating a new tagged file in an encrypted folder over the network results in that file getting Read-only or unreadable. The issue is specific to Windows 7 and Office 2010.
Resolution: Resolved in EEFF 4.0 Patch 1 which is posted to the McAfee download site.
537442 KB69807 Issue: Distributed File Share (DFS) Replication is not fully supported in this version of the product.
n/a n/a Issue: Sharing of encrypted files via Local shares is not supported with this version of the product.
629065 n/a Issue: The User Local Keys feature is not fully supported in this version of the product due to the number of deferred defects for this particular feature.
583889 KB69838 Issue: Encryption of Windows compressed folders is not supported in this version of the product.
670662
670664
n/a Issue:  Linked Distributed File Shares (DFS) paths and offline synch for DFS folders are not fully supported with this version of the product.
Resolution: This issue is being deferred for consideration in a future release or patched version of the product.
572457 582590
567375
KB69251 Issue: With McAfee Host Data Loss Prevention and Endpoint Encryption for Files and Folders installed on a system, the client may have to be restarted twice to display the correct user information on the McAfee ePolicy Orchestrator server.
Resolution: Changes have been made to the McAfee Agent (MA) 4.6 (4.6.0.1694) release to work around the problem. In MA 4.6.0 and later, the referenced registry keys are added on systems where they are missing during the MA installation. Adding these keys at the time of MA install does not guarantee the keys will not be removed later. Refer to the McAfee Agent 4.5, 4.6 article to resolve this.
n/a n/a Issue:  Users that are logged on as 'System' (vs. Domain) cannot access the Recovery Key for User Local Keys to perform any local operations on the local keystore.
585782 KB70001 Issue: A folder encryption policy that has an environment variable in the path requires users to log off and re-logon to the system for the policy to take effect.
Resolution: Requires user to log off and log in to the system for the policy to be applied.
673578  n/a Issue: With McAfee Virus Scan Enterprise (VSE) 8.8 installed, accessing an unprotected part of a media encrypted with Endpoint Encryption for Removable Media (EERM) may trigger a Windows error if the device was formatted with NTFS.
Resolution: Under investigation.
578571 KB70113 Issue: For a folder encryption policy, if the system name is included in the policy, network paths are not resolved correctly.
Resolution: Under investigation.
574121 n/a Issue: If network bandwidth is below 10 KB/s, copying data from the network to the Endpoint Encryption for Files and Folders client systems fails.
Resolution: Under investigation.
578265 KB69819 Issue: Lotus Notes is not officially supported with this version of the product. Files cannot be dragged and dropped into the Lotus email editor with retained encryption, even if the Notes process is set as blocked.
Resolution: To submit a Product Enhancement Request, see the Related Information section.
592198 KB69865 Issue: The user is unable to save a Microsoft Office file in an encrypted folder over the network if the file extension is excluded from encryption.
Workaround: Exclude the .docx and .tmp file extensions in the File Extension Exclusions policy.
675368 n/a Issue: EERM initialization fails once when initializing a device for the first time after the policy has changed from Entire device to Percentage of total capacity.
Resolution: Under investigation.
579081 n/a Issue: The option in EEFF to decrypt devices encrypted with the regular encryption feature is overridden by the Removable Storage Protection Rule (RSPR) in McAfee Host DLP (data gets encrypted despite Decrypt).
Resolution: Under investigation.
579086 n/a Issue: File extension encryption rules are overridden by the McAfee Host DLP Removable Storage Protection Rule (RSPR).
Resolution: Under investigation.
579114 n/a Issue: Even if a device is set as Exempted from encryption in the EEFF list of exempted devices, McAfee Host DLP will encrypt tagged files put on the device if the Removable Storage Protection Rule (RSPR) policy has to perform an encrypt action.
Resolution: Under investigation.
622417 n/a Issue: When using the Encrypt action in a File System Protection Rule (FSPR) in McAfee Host DLP, the user can still decrypt a file on a network share if the EEFF Decrypt option is enabled for the user.
Resolution: Under investigation.
641407
629366
KB72752 Issue: Specific to Office 2010, the user is unable to open Excel files present in the (optional) unprotected part of the EERM protected device if the option Make unprotected files and folders Read-Only (when used with EEFF) is enabled.
Workaround: Refer to the article for details.
Resolution: Under investigation.
673238 n/a Issue: When creating a Microsoft Office file in a folder encrypted with Windows Encrypting File System (EFS) and the file type is subject to an EEFF file extension encryption policy, the files will become unreadable after creation.
Resolution: Under investigation.
677714 n/a Issue: With file extension encryption enabled, it is not possible to create encrypted files on a floppy disk despite the Make floppy disks read-only policy being disabled.
Resolution: Under investigation.
676806 n/a Issue: The Microsoft Management Console (MMC) for Disk Management crashes if the user selects Properties for the unallocated space of the removable media.
Resolution: Under investigation.
669153 n/a Issue: Endpoint Encryption for Files and Folders file encryption removes and replaces Windows EFS encryption without notifying the end user.
Resolution: Under investigation.
672114 n/a Issue: Specific to file extension encryption and using a mapped network drive that is available offline, the user is unable to create a new Microsoft Access database file.
Resolution: Under investigation.
672789 n/a Issue: Encrypted image files cannot be edited and saved using the Microsoft Office Document Imaging software.
Resolution: Under investigation.
687159 n/a Issue: Specific to version 10.0.0.1 of Adobe Reader, it is not always possible to open an encrypted PDF file.
Workaround: n/a
577941
675194
KB69808 Issue: The Windows Roaming Profiles feature is not fully supported with this version of the product.
Resolution: Under investigation.
629065 n/a Issue: A Windows error is thrown in the Solidcore driver when the Windows Driver Verifier is enabled and EEFF is running on the same system.
Resolution: Under investigation.
690227 n/a Issue: The Endpoint Encryption for PC user retains the policy assignment rules and user-based policies even after removing the user-based policies from the policy assignment rules, in the presence of Endpoint Encryption for Files and Folders policy assignment rule.
Resolution: Under investigation.
593543 KB69563

Issue: Blue screen error for srv2.sys (when trying to attach a self-extractor over a Windows Share using the option Attach encrypted to e-mail)
Resolution:  Microsoft has released hotfix KB975517 to resolve this vulnerability, However, tests with EEFF continue to show this problem is unresolved. If the issue is not resolved after installing the Microsoft hotfix, contact Microsoft for assistance.
For details of the hotfix, see the Microsoft article KB975517 (MS09-050: Vulnerabilities in SMB could allow remote code execution) at: http://support.microsoft.com/kb/975517/en-us.

Rate this document

Did this article resolve your issue?

Please provide any comments below

Glossary of Technical Terms


Highlight Glossary Terms

Please take a moment to browse our Glossary of Technical Terms.
United States - English
© 2003-2013 McAfee, Inc.