I just started a new job where all of the laptops are encrypted using Sophos Safeguard Easy 5.6. These are all unmanaged clients and the xml recovery keys are all stored on our server. The encyrption policy was created 3 years ago by someone who no longer works here.
I just got back a laptop that has been locked. The message is "Workstation is locked! Perform Challenge/Response to unlock". I have tried using the xml key for the laptop in the Safeguard Policy Editor, but I get the error "INVALID KEY RECOVERY FILE" with every xml key that is saved. I am using the same version of Policy editor as the installed policy on the laptops.
I've done a little research on this and it looks like the recovery key may have to be used on the same policy editor that created the policy being used. Is that correct? Does the security officer have to be the same? Is there any way to get into this laptop if the recovery key is not working?
This thread was automatically locked due to age.
