1. Open the Kaspersky Security Center Administration Console.
2. In the Managed devices folder in the Administration Console tree, open the folder with the name of the administration group to which the relevant client computers belong.
3. In the workspace, select the Devices tab.
4. On the Devices tab, select the computer of the user requesting access to encrypted data and right-click to open the context menu.
5. In the context menu, select Grant access in offline mode.
6. In the window that opens, select the Authentication Agent tab.
7. In the Encryption algorithm in use section, select an encryption algorithm: AES56 or AES256.

   The data encryption algorithm depends on the AES encryption library that is included in the distribution package: Strong encryption (AES256) or Lite encryption (AES56). The AES encryption library is installed together with the application.

8. In the Account drop-down list, select the name of the Authentication Agent account of the user who requested recovery of access to the drive.
9. In the Hard drive drop-down list, select the encrypted hard drive for which you need to recover access.
10. In the User request section enter the blocks of request dictated by the user.

As a result, the contents of the blocks of the response to the user's request for recovery of the user name and password of an Authentication Agent account will be displayed in the Access key field. Convey the contents of the response blocks to the user.

1. In the main window of Web Console, select Devices → Managed devices.
2. Select the check box next to the name of the computer whose drive you want to restore access to.
3. Click the Share this device offline button.
4. In the window that opens, select the Authentication Agent section.
5. In the Account drop-down list, select the name of the Authentication Agent account created for the user who is requesting recovery of the Authentication Agent account name and password.
6. Enter the request blocks conveyed by the user.

The contents of the blocks of the response to the user's request for recovery of the user name and password of the Authentication Agent account will be displayed at the bottom of the window. Convey the contents of the response blocks to the user.

1. Open the Kaspersky Security Center Administration Console.
2. In the Managed devices folder in the Administration Console tree, open the folder with the name of the administration group to which the relevant client computers belong.
3. In the workspace, select the Devices tab.
4. On the Devices tab, select the computer of the user requesting access to encrypted data and right-click to open the context menu.
5. In the context menu, select Grant access in offline mode.
6. In the window that opens, select the Data Encryption tab.
7. On the Data Encryption tab, click the Browse button.
8. In the window for selecting a request access file, specify the path to the file received from the user.

You will see information about the user's request. Kaspersky Security Center generates a key file. Email the generated encrypted data access key file to the user. Or save the access file and use any available method to transfer the file.

1. In the main window of Web Console, select Devices → Managed devices.
2. Select the check box next to the name of the computer whose data you want to restore access to.
3. Click the Share this device offline button.
4. Select the Data Encryption section.
5. Click the Select file button and select the request access file that you received from the user (a file with the KESDC extension).

   The Web Console will display information about the request. This will include the name of the computer on which the user is requesting access to the file.

6. Click the Save key button and select a folder to save the encrypted data access key file (a file with the KESDR extension).

As a result, you will be able to obtain the encrypted data access key, which you will need to transfer to the user.