Specops Key Recovery

Self-service for BitLocker

Changing hardware or working remotely can cause BitLocker lockouts.  The user must call the helpdesk for a recovery password if a lockout occurs.

Helpdesks commonly use security questions to verify users, which are susceptible to social engineering.

The Specops Key Recovery tool reduces helpdesk calls and increases security.  Users are verified with multi-factor authentication so they can receive a recovery key 

Self-service for Symantec Endpoint Encryption

A Symantec Endpoint Encryption lockout occurs when a remote user forgets or changes their password.

Each time the user restarts their computer, they will need to contact the helpdesk for a recovery key.

Together with our self-service password reset solution, Specops Key Recovery updates the cached credentials, triggering re-encryption.  The user can authenticate with their new password, even if they are outside the corporate network.

MFA with pre-enrollment

Administrators can enroll users for multi-factor authentication without requiring them to enroll themselves using Specops Key Recovery.

This is possible with identity services that have identifier information stored in Active Directory, such as Symantec VIP, Duo Security, Okta, and PingID, Mobile Code, and Manager Identification.

Enrollment information can also be used to reset passwords self-service, allowing users to manage their passwords securely.