We have been using a product called Embassy Security Center from WAVE Systems at work for the last year or so to encrypt the hard drives (Samsung SSD 850 evo) and manage the encryption on all of our machines (a couple hundred). Well apparently WAVE declared bankruptcy a couple months back so now we're looking for an alternative. I've mainly dealt with WAVE since that's all we've had and I'm not terribly familiar with what is currently out there. I'm looking for any recommendations for products that have similar functionality at an enterprise level- encrypting HDs, central management, etc. The company not being on the threshold of bankruptcy is also a plus. Thanks! 
0 Comments   [ + ] Show Comments

Comments

Please log in to comment

Answers

1
Are you using Windows? Your devices have TPM?

Use BitLocker, its MS technology for encryption, I think its quite good as it bolts into a Window enviroment quite well and you can manage it from a enterprise point of view.

The main thing is your keys are stored on the server, so you can recover/read the ssd on the another device if needed.

I think you get this service as part of the VLK subscrption? There might be other solutions out there, but Ive mainly used this one. I have seen it once where, like you, used a non major vendor and they went out of business which left them in the lurk.
Answered 06/17/2016 by: rileyz
Red Belt

  • Cool thanks, will look into. Not sure why we didn't go with Bitlocker initially (actually I have no idea how it was decided to even go with WAVE).

    "so you can recover/read the ssd on the another device if needed."
    This would be very helpful; we had problems with WAVE if you took a drive out and put it into another machine, as it associated the HD with the machine name.
Please log in to comment
1
We went with bitlocker integrated into AD so you can go to the machine objects and recover the key if needed.  Works great when you have hardware failure.
Answered 06/17/2016 by: SMal.tmcc
Red Belt

Please log in to comment
1
We went with DDP|E from Dell to manage our mixed environment of Windows and Mac. Like the built in Bit Locker management in AD you are also able to have that same control over File Vault for the Mac. We are only using Bit Locker and File Vault on our end user machines running Intel and Crucial SED's. We have a few low end machines running Bit Locker not on SED nor with a TPM chip yet we are still able to manage those keys without issue for recovery. DDP|E is decently priced and as easy to use as Symantec was. It of course is very easy to deploy the agent with the K2000 and the K1000 for existing machines. 
Answered 07/05/2016 by: getch
White Belt

Please log in to comment
Answer this question or Comment on this question for clarity

Share