Decryption of removable drives

To decrypt removable drives:

  1. Open the Administration Console of Kaspersky Security Center.
  2. In the Managed devices folder of the Administration Console tree, open the folder with the name of the administration group for which you want to configure decryption of removable drives.
  3. In the workspace, select the Policies tab.
  4. Select the necessary policy.
  5. Open the Properties: <Policy name> window by using one of the following methods:
    • In the context menu of the policy, select Properties.
    • Click the Configure policy link located in the right part of the Administration Console workspace.
  6. In the Data Encryption section, select the Encryption of removable drives subsection.
  7. If you want to decrypt all encrypted files that are stored on removable drives, in the Encryption mode drop-down list select Decrypt entire removable drive.
  8. To decrypt data that is stored on individual removable drives, edit the encryption rules for removable drives whose data you want to decrypt. To do so:
    1. In the list of removable drives for which encryption rules have been configured, select an entry corresponding to the removable drive you need.
    2. Click the Set a rule button to edit the encryption rule for the selected removable drive.

      The context menu of the Set a rule button opens.

    3. Select the Decrypt all files item in the context menu of the Set a rule button.
  9. Click OK to save changes.
  10. Apply the policy.

View the Kaspersky Security Center Administrator's Guide for details on applying the Kaspersky Security Center policy.

After the policy has been applied, when the user connects a removable drive or if a removable drive is already connected, Kaspersky Endpoint Security notifies the user that the removable drive is subject to an encryption rule whereby encrypted files stored on the removable drive as well as the file system of the removable drive (if it is encrypted) will be decrypted. The application warns the user that the decryption process may take some time.

The Kaspersky Security Center policy with preset settings for data encryption on removable drives is formed for a specific group of managed computers. Therefore, the result of data decryption on removable drives depends on the computer to which the removable drive is connected.

If the user initiates safe removal of a removable drive during data decryption, Kaspersky Endpoint Security interrupts the data decryption process and allows removal of the removable drive before the decryption operation has finished.

If decryption of a removable drive failed, view the Data encryption report in the Kaspersky Endpoint Security interface. Access to files may be blocked by another application. In this case, try unplugging the removable drive from the computer and connecting it again.

Page top