Symantec PGP Encryption

Hi Everybody,

My MBR got corrupted. Now i just want to boot into windows and fix it. How to procees i dont want to decrypt using CD or Slave it to other computer.

Hi Samir,

Without Slaving the drive or decrypting the machine you would be able to do it only if you have got a virtual machine/snapshot, image (depending on the version of PGP) or full bit by bit copy of your entire disk.

I am afraid when the MBR is corrupted and you do not have a backup you should Slave the drive, trying authenticate to the disk and rescue your important data. Reparing corrupted MBR from the Windows Recovery CD only will destroy PGP bootguard and it will not be easy to get access to the data.

So I strongly advice you to Slave the drive first and rescue your data

Then I would follow the steps as describe in below KB

Drive Encryption Diagnosis and Recovery - Symantec Drive Encryption & PGP Whole Disk Encryption
http://www.symantec.com/docs/TECH149679

HTH

Dear Adam,

Thanks for your quick reply.

I dont want to fix the MBR using windows.

Can i bypass the PGP bootguard using Symantec recovery cd?

If yes then can fix mbr using pgp commands


 

The recovery CD is for the emergency decrypting of data.  It's not for regular use.  If you bypass bootguard and try and repair the MBR, you will brick your machine.  You must decrypt the data otherwise you are in danger of losing it.

The recovery CD can take days to decrypt also.  Slave the drive.

Hi Alex and Adam,

Thanks for your replies.
 

1.So if the MBR is corrupted the only way is to slave the HD to another computer for decrypting.

2. In Mcafee Encryption there is a option if the MBR is corrupted you need to insert a iso file that will help you take into windows after authentication.Once you login inot windows the MBR will get repaired through the EPO.


 

Hi Samir,

Yes Slaving the drive is the only option available. You should backup up your data and then you can try to decrypt the drive from pgpwde command line hoping everyting goes well. If the drive is fully decrypted you can can Use Windows CD Recovery to repair the MBR and encrypt the disk again. I would also run chkdsk and defrag.

If your data are safe after slaving depending on how the MBR is corrupted you can also follow this KB:

BootGuard loading stage 2... PGPWDE disk data are corrupted
http://www.symantec.com/docs/TECH149631

HTH

Hello Samir,

I understand that you believe the MBR on your system is corrupt. However, I would like some clarification before you move further.
What are the symptoms here?
Are you certain that the MBR is corrupt, and it's not just the bootguard?

If you are able to get to bootguard, and enter your passphrase, then get an error message, I agree, your MBR is probably corrupt. In this case, you should certainly decrypt the drive before doing any additional troubleshooting. Symantec Encryption Desktop (PGP Desktop) does not have any feature to automatically fix your MBR, so decryption would be neccesary before troubleshooting the MBR.

However, if you do not see bootguard, the issue may be that the bootguard pre-boot data has become corrupt. There is a bootg.iso file, which will search your drive for the bootguard recovery information, which is written to a random spot on the disk for events like this. The bootg.iso disc will find and attempt to restore the bootguard, and you may be able to log in as normal if that is the only problem. If bootg.iso fixes the problem, and you are able to login, I recommend backing up your data immediately.

In either case, all of our standard recovery procedures for encryption desktop are available via this link,
Drive Encryption Diagnosis and Recovery - Symantec Drive Encryption & PGP Whole Disk Encryption - http://www.symantec.com/docs/TECH149679