Encryption certificates

Before installing Disk Protection, it is necessary to create certificates for data recovery. These files are required for performing emergency recovery and emergency logon procedures.

The following certificates have to be created:

• Master Security Certificate (MSC):

  The DLFDEMaster.cer and DLFDEMaster.pfx files produce a public/private key pair.

  DLFDEMaster.pfx is used to decrypt the hard disks. It has to be secret, stored securely, and available only to those who need to perform emergency recovery.

  DLFDEMaster.cer is the public key component of the master certificate (MSC) and is automatically used for each installation.

• Recovery Support Certificate (RSC):

  The DLFDERecovery.cer and DLFDERecovery.pfx files produce a public/private key pair.

  DLFDERecovery.pfx is used for the emergency logon procedure. It should be secret, stored securely, and available only to those who perform password recovery (e.g., Help Desk / Support).

  DLFDERecovery.cer is the public key component of the recovery certificate (RSC) and is automatically used for each installation.

Make sure that these files are saved in a safe place along with the password, as they will be used for emergency logon and data recovery. Recovery without this data is not possible.

Once the encryption certificates are created, the DriveLock Management Console shows the time and date of their creation.

Make sure to enable the Display system files setting so that these certificates appear:

The certificates are also stored in the private certificate store of the current user: