Verifying or Requesting Pre-boot Authentication with SEE
Laptops that were part of the Dell Lease program (or were imaged by CUMC IT) and received after June 1st, 2012 will have pre-boot authentication enabled. Simply follow the instructions below to finish setting up PBA.
IMPORTANT: Computers that have installed SEE from the online form will not automatically use pre-boot authentication; if you do not see the Symantec Endpoint Encryption login screen (or GuardianEdge screen for computers running the prior version of SEE) pictured below when your computer starts up, PBA is not running.
Click either picture for a larger image
Basic information about the computer and user must be added on the Symantec Endpoint Encryption server by CUMC IT to enable PBA; once completed (typically remotely) the computer will prompt for registration and begin using pre-boot authentication as detailed below.
To request that PBA is enabled on a computer(s) running SEE or GE please call 5-Help or email email@example.com with the following information*:
Your contact information - name, UNI, phone number and email
Whether the computer is a laptop or desktop.
The Computer name or hostname - click here to view instructions on finding this information.
Select the Start icon in the lower left corner of the computer screen
Select the Control Panel link in the list that appears
In the Control Panel, select the System and Security heading, then System to view basic information about the computer.
The Computer name is listed under the Computer name, domain and workgroup settings subheading. Please note this information carefully, it must be given exactly as listed for SEE to enable pre-boot authentication properly.
A CUMC IT technician will respond to your request after a short period of time to inform you of any further steps that may be required to enable PBA.
* If you are installing SEE on multiple computers please include the above information for each system, including each computer user's contact information. It is ok to send the information in advance.
Registering SEE Pre-Boot Authentication on Your Computer
Once you have received your computer with SEE PBA enabled, or had a CUMC IT technician enable PBA,
you will see a prompt to register for Symantec Endpoint Encryption after you first login to the computer. Click the Register Now button.
NOTE: Please click here for instructions on SEE PBA registration on a shared computer.
On shared computers, the first person to set up their SEE PBA login can simply continue with step 2 below. Anyone else who will be using the computer must set up their own SEE PBA login by completing the following:
With an already SEE PBA registered user/account logged in to the computer, have them log off by selecting the Start icon in the lower left corner of the screen, then Shut down - Log off.
Once the account is logged off, the normal Windows login prompt will appear. Type in your MC domainUser name (normally your UNI) and its password, making sure that the Log on to field is set to MC.
Windows will log you in and the Symantec Endpoint Encryption Registration prompt will appear. Select the Register Now button and continue to step two below.
The Symantec Endpoint Encryption Registration - Single Sign-On window will appear. Click the Next button.
In the Registration - Authenti-Check® window that appears, type in three security questions of your choice and their corresponding answers.
If you forget your SEE pre-boot authentication password, the computer will prompt you to answer these questions. IMPORTANT: answers are case sensitive, be sure that you will remember any upper vs lower-case letters when you create and type in your answers.
Create questions that you will be easy for you to answer but difficult for others to guess.
If you have a difficult time coming up with your own questions click here for examples.
Click the Next button in the lower right corner of the window when you have finished entering the security questions and answers.
You will see a message that your Symantec Endpoint Encryption user account is now active. Select the Finish button to to close SEE PBA registration.
Logging in to a SEE Pre-boot Authentication Enabled Computer
When the computer first starts up, you will see the Symantec Endpoint Encryption splash screen. Press the following three keys on on your keyboard at the same time: CtrlAltDelete
The Symantec Endpoint Encryption Logon window will appear. Type in the following:
User name: your computer login/MC Domain account (typically your UNI)
Password: your login account's password
Make sure the Domain drop down menu has MC selected
The computer will finish starting up and automatically log you in to Windows; no other login screen will appear.
What if I am sharing a computer?
Once a computer has a SEE Pre-boot Authentication account created on it, you will not see the Windows login screen or be able to create your own account without having the existing SEE PBA account holder log in first. See the NOTE under step 1 at the top of this page for full instructions.