How to add encryption drivers for Kaspersky Endpoint Security 11 for Windows to a Windows Recovery Environment image (for workstations only)
Latest update: October 18, 2019
ID: 14675
- Kaspersky Endpoint Security 11.1.1 for Windows (version 11.1.1.126)
- Kaspersky Endpoint Security 11.1.0 for Windows (version 11.1.0.15919)
- Kaspersky Endpoint Security 11.0.1 for Windows (version 11.0.1.90)
- Kaspersky Endpoint Security 11.0.0 for Windows (version 11.0.0.6499)
In order for the Windows Recovery Environment (WinRE) to operate in normal mode on an encrypted drive, add the cm_km, klfde, klfdedmp, and klfdefsf encryption drivers to the WinRE image.
- Run the following command to search for the WinRE:
reagentc /info
- The path to the WinRE will be displayed in the “Windows RE location” line. To get the full path to the WinRE, add \winre.wim to the path you received after running the command above.
- Create a new folder with local administrator privileges.
- Run the following command to mount the image:
dism /mount-wim /wimfile:<full path to WinRE> /mountdir:<path to folder from step 2> /index:1
- Add the cm_km.inf, klfde.inf, klfdedmp.inf, and klfdefsf.inf encryption drivers. To do so, run the following command:
dism /image:<path to folder from step 2> /add-driver /driver:<path to the driver’s .inf file>
- Run the following command:
dism /unmount-wim /mountdir:<path to folder from step 2> /commit
The drivers will be added to the WinRE image.
If the command returned an error, run the following command to dismount the image:
dism /unmount-wim /mountdir:<path to folder from step 2> /discard
Examples
Example 1 for Windows 7
reagentc /info
dism /mount-wim /wimfile:\\?\GLOBALROOT\device\harddisk0\partition2\Recovery\cdd486b5-4446-11e6-92dd-cb2a4688e623\winre.wim /mountdir:c:\test /index:1
dism /image:c:\test /add-driver /driver:c:\klfde\klfde.inf
dism /unmount-wim /mountdir:c:\test /commit
dism /mount-wim /wimfile:\\?\GLOBALROOT\device\harddisk0\partition2\Recovery\cdd486b5-4446-11e6-92dd-cb2a4688e623\winre.wim /mountdir:c:\test /index:1
dism /image:c:\test /add-driver /driver:c:\klfde\klfde.inf
dism /unmount-wim /mountdir:c:\test /commit
Example 2 with processing error
reagentc /info
dism /mount-wim /wimfile:\\?\GLOBALROOT\device\harddisk0\partition2\Recovery\cdd486b5-4446-11e6-92dd-cb2a4688e623\winre.wim /mountdir:c:\test /index:1
dism /image:c:\test /add-driver /driver:c:\klfde\klfde.inf
<The system reboots or add-driver returns an error>
dism /unmount-wim /mountdir:c:\test /discard
dism /mount-wim /wimfile:\\?\GLOBALROOT\device\harddisk0\partition2\Recovery\cdd486b5-4446-11e6-92dd-cb2a4688e623\winre.wim /mountdir:c:\test /index:1
dism /image:c:\test /add-driver /driver:c:\klfde\klfde.inf
<The system reboots or add-driver returns an error>
dism /unmount-wim /mountdir:c:\test /discard
Example 3 with processing error
reagentc /info
dism /mount-wim /wimfile:\\?\GLOBALROOT\device\harddisk0\partition2\Recovery\cdd486b5-4446-11e6-92dd-cb2a4688e623\winre.wim /mountdir:c:\test /index:1
dism /image:c:\test /add-driver /driver:c:\klfde\klfde.inf
dism /unmount-wim /mountdir:c:\test /commit
<The system reboots or commit returns an error>
dism /unmount-wim /mountdir:c:\test /discard
dism /mount-wim /wimfile:\\?\GLOBALROOT\device\harddisk0\partition2\Recovery\cdd486b5-4446-11e6-92dd-cb2a4688e623\winre.wim /mountdir:c:\test /index:1
dism /image:c:\test /add-driver /driver:c:\klfde\klfde.inf
dism /unmount-wim /mountdir:c:\test /commit
<The system reboots or commit returns an error>
dism /unmount-wim /mountdir:c:\test /discard
