Preparation
Before you can target Symantec Drive Encryption, you must:
Ensure the Bravura Security Fabric server can access the administration URL.
Install SSL certificates for the Administrative URL Bravura Security Fabric server.
Set up a target system administrator.
Optional: Configure Symantec Drive Encryption clients to use domain credentials.
Log onto Windows with the psadmin account at least once.
No client software is required.
Setting up a target system administrator
Bravura Security Fabric uses a designated account on Symantec Drive Encryption to perform Bravura Security Fabric operations. Create an account with appropriate permissions if one does not already exist.
A WDRT Only Administrator role is sufficient to provide the operations available.
Using domain credentials
Symantec Drive Encryption can be configured to use domain credentials with each client to allow easier auto-association with Active Directory accounts.
The following steps describe how to configure Symantec Drive Encryption to use domain credentials:
On the Symantec Encryption Management server, go to Consumers and click Directory Synchronization.
Click Enable to enable Directory Synchronization.
After enabling, click Add LDAP Directory....
Fill in the required information for the Active Directory server.
Click Test Connection and ensure connection test is successful.
Click Settings and enable Enroll clients using directory authentication.
Open the policy and click Edit.
Under General, check off Enable Silent Enrollment.
Create a new group and select the policy in the previous step for Consumer Policy.
During the download of Symantec Encryption Desktop client, set Preset Policy Group as the group created in previous step.
After installation, select Always allow for this site for the Symantec alert.
Log in with the domain credentials, this will enroll the client with the Symantec Drive Encryption server.