Command Line

 View Only
  • 1.  Bootguard Bypass Count Command Limit

    Posted Mar 22, 2022 03:24 AM
    Hello experts,

    I am trying to use the decryption command as follows.
    The count command does not work properly on the customer's PC.

    pgpwed.exe --add-bypass --disk 0 --count 100000 --admin-passphrase

    Please refer to the photo.


    When I checked it myself, when I set the count value to 10 and 2 and 50, the setting was normal.

    However, for values more than 100 caused the command to not work.

    How many count values can be set?

    From this KB, The Maximum Value Range is between 1-1000000 for Bootguard Bypass.
    Symantec Encryption Desktop/PGP-How to Bypass PGP BootGuard
    Broadcom remove preview
    Symantec Encryption Desktop/PGP-How to Bypass PGP BootGuard
    Resolution The article contains multiple sections to cover adding the bypass functionality to Symantec Encryption Desktop: Section 1 - Add Bypass using the WDE-ADMIN Security Group Section 2 - Using Deployment tools such as Altiris, and SCCM to add the bypass user using the WDE-ADMIN Security Group Section 3 -
    View this on Broadcom >



    Regards,
    Syera


  • 2.  RE: Bootguard Bypass Count Command Limit

    Broadcom Employee
    Posted Mar 22, 2022 11:13 AM
    Syera,

    If low bypass counts work but high bypass count don't, then the problem is almost certainly the wdeMaximumBypassRestarts property as described in the article you linked.  Make sure you are modifying the policy that the user is a member of and make sure that the user has the latest policy by manually updating the policy on the client.  You should also be able to check the actual preferences file on the client to see what value it has for this property.

    Josh