HP dc73 Blade Client manual Process cannot access, File because it is, Being used by another

Page 68

Short description

Details

Solution

 

 

 

Microsoft EFS does not fully work in Windows 2000.

An administrator can access encrypted information on the system without knowing the correct password. If the administrator enters an incorrect password or cancels the password dialog, the encrypted file will open as if the administrator had entered the correct password. This happens regardless of the security settings used when encrypting the data. This occurs only in the first administrator account on Windows 2000.

The Data Recovery Policy is automatically configured to designate an administrator as a recovery agent. When a user key cannot be retrieved (as in the case of entering the wrong password or canceling the Enter Password dialog), the file is automatically decrypted with a recovery key.

This is due to the Microsoft EFS. Please refer to Microsoft Knowledge Base Technical Article Q257705 at http://www.microsoft.com for more information.

The documents cannot be opened by a non- administrator user

When viewing a certificate, it shows as non-trusted.

After setting up HP ProtectTools and running the User Initialization Wizard, the user has the ability to view the certificate issued; however, when viewing the certificate, it shows as non-trusted. While the certificate can be installed at this point by clicking the install button, installing it does not make it trusted.

Self-signed certificates are not trusted. In a properly configured enterprise environment, EFS certificates are issued by online Certification Authorities and are trusted.

Intermittent encrypt and

Extremely intermittent error during file

To resolve the failure:

decrypt error occurs: The

encryption or decryption occurs due to

1.

Restart the system.

process cannot access

the file being used by another process,

the file because it is

even though that file or folder is not being

2.

Log off.

being used by another

processed by the operating system or

process.

other applications.

3.

Log back in.

 

 

 

 

 

Data loss in removable

Removing storage mediums such as a

The issue is only experienced if the user accesses the

storage occurs if storage

MultiBay hard drive still shows PSD

PSD, then removes the hard drive before completing

is removed prior to new

availability and does not generate errors

new data generation or transfer. If the user attempts to

data generation or

while adding/modifying data to the PSD.

access the PSD when the removable hard drive is not

transfer.

After system restart, the PSD does not

present, an error message is displayed stating that the

 

reflect file changes that occurred while

device is not ready.

 

the removable storage was not available.

 

 

During uninstall, if user has not initialized the Basic User and opens the Administration tool, the Disable option is not available and Uninstaller will not continue until the Administration tool is closed.

The user has the option of uninstalling either without disabling the TPM or by first disabling the TPM (through Admin. tool), then uninstalling. Accessing the Admin tool requires Basic User Key initialization. If basic initialization has not occurred, all options are inaccessible to the user.

Since the user has explicitly chosen to open the Admin tool (by clicking Yes in the dialog box prompting Click Yes to open Embedded Security Administration tool), uninstall waits until the Admin tool is closed. If user clicks No in that dialog box, then the Admin tool does not open at all and uninstall proceeds.

The Admin tool is used for disabling the TPM chip, but that option is not available unless the Basic User Key has already been initialized. If it has not, then select OK or Cancel in order to continue with the uninstallation process.

Intermittent system lockup occurs after creating PSD on 2 users accounts and using fast-user-switching in 128-MB system configurations.

System may lock up with a black screen and non-responding keyboard and mouse instead of showing welcome (logon) screen when using fast-switching with minimal RAM.

Root Cause suspicion is a timing issue in low memory configurations.

Integrated graphics uses UMA architecture taking 8 MB of memory, leaving only 120 available to user. This 120 MB is shared by both users who are logged in and are fast-user-switching when error is generated.

Workaround is to reboot system and customer is encouraged to increase memory configuration (HP

62 Chapter 7 Troubleshooting

ENWW

Image 68
Contents ProtectTools First Edition July Document Part Number Table of contents Embedded Security for HP ProtectTools Java Card Security for HP ProtectToolsDrive Encryption for HP ProtectTools Bios Configuration for HP ProtectToolsTroubleshooting Enww Introduction to security HP ProtectTools features Module Key featuresAccessing HP ProtectTools Security Protecting against targeted theft Restricting access to sensitive dataAchieving key security objectives Creating strong password policies Assigning security roles Managing HP ProtectTools passwordsAdditional security elements Java Card PIN also protects access to Backing up credentials and settings HP ProtectTools Backup and RestoreCreating a secure password Restoring credentials Configuring settings Credential Manager for HP ProtectTools Logging on to Credential Manger Setup proceduresUsing the Credential Manager Logon Wizard Registering fingerprints Registering credentialsLogging on for the first time Setting up the fingerprint reader Using your registered fingerprint to log on to WindowsRegistering a Java Card, USB eToken, or virtual token Registering a USB eTokenChanging the Windows logon password General tasksCreating a virtual token Changing a token PINManaging identity Clearing an identity from the systemUsing Windows Logon Locking the computerLogging on to Windows with Credential Manager Adding an accountUsing Single Sign On Using automatic registrationRemoving an account Registering a new applicationUsing manual drag and drop registration Managing applications and credentialsModifying application properties Removing an application from Single Sign OnModifying credentials Using Application ProtectionImporting an application Removing protection from an application Restricting access to an applicationChanging restriction settings for a protected application Enww Advanced tasks administrator only Specifying how users and administrators log onConfiguring custom authentication requirements Configuring credential propertiesConfiguring Credential Manager settings Select Start All Programs HP ProtectTools Security Manager Embedded Security for HP ProtectTools Select Embedded security device state and change to Enable Enabling the embedded security chipInitializing the embedded security chip Setting up the basic user account Sending and receiving encrypted e-mail Using the Personal Secure DriveEncrypting files and folders Changing the Basic User Key password Creating a backup file Restoring certification data from the backup fileAdvanced tasks Backing up and restoringChanging the owner password Resetting a user passwordEnabling Embedded Security after permanent disable Enabling and disabling Embedded SecurityMigrating keys with the Migration Wizard Java Card Security for HP ProtectTools Changing a Java Card PIN Selecting the card readerAdvanced tasks administrators only Assigning a Java Card PINSetting power-on authentication Assigning a name to a Java CardTo enable Java Card power-on authentication Disabling Java Card power-on authentication Creating a user Java CardBios Configuration for HP ProtectTools Managing boot options Enabling and disabling system configuration options Enww Managing HP ProtectTools add-on module settings Under Smart Card Security, click EnableClick Apply, and then click OK in the HP ProtectTools window DriveLock Applications Using DriveLockEnabling and disabling DriveLock hard drive protection Managing Computer Setup passwords Setting the power-on passwordChanging the power-on password Setting the setup passwordEnabling and disabling stringent security Changing the setup passwordSetting password options Enww Drive Encryption for HP ProtectTools Encryption management User management Recovery Right pane, click Click here to backup your keysTroubleshooting Security Change password option, but, sinceCredential Manager for ProtectTools Virtual Token duringClick Advanced Settings Click Service & ApplicationsConnect Click Java Cards and TokensReader to log on to Credential ManagerF10 = ROM Based Setup message is displayed It to Embedded Security Device-EnableSelect Enable Save changes and exit Security Restore IdentityEmbedded Security for ProtectTools Select File Save Changes and Exit Process cannot access File because it isBeing used by another ProcessOut with access denied Clicks Restore under Backup Error has been detectedSelects SPSystemBackup .xml Selected Backup Archive doesEnww Miscellaneous Click All Programs Click HP ProtectTools Security ManagerPower-on Computer Setup, the Power-on Authentication support Glossary Enww Access IndexEnww Enww
Related manuals
Manual 65 pages 2.14 Kb