Contents
Product release information:
Supported operating systems:
General software related:
General hardware related:
General DE related:
Upgrade or Migration:
When Microsoft releases new operating systems or Service Packs, the original Product Guides might not reflect the current support policy for those platforms. Most of the following information is available in the product installation guides and Release Notes. However, some of the information is available only in Product Management statements published in the Knowledge Base. Content in this article supersedes all other published content in both the guides and release notes.
McAfee product software, upgrades, maintenance releases, and documentation are available from the Product Downloads site at:
http://www.mcafee.com/us/downloads/downloads.aspx.
NOTE: You will need a valid Grant Number for access.
KB56057 provides additional information about the Product Downloads site, as well as alternate locations for some products.
Recent updates to this article:
To receive email notification when this article is updated, click Subscribe on the right side of the page. You must be logged in to subscribe.
| Date | Update |
| Nov 13, 2017 | Multiple table updates for the release of DE 7.2.2. |
| Sep 14, 2017 | Added entry for Windows 10 LTSB version 1607 (32-bit/64-bit). |
| Sep 09, 2017 | Added support for ePO 5.3.3. |
| Sep 04, 2017 | Added support for MA 5.0.6 |
Product release information
DE release information
NOTE: These releases are with full ePO integration/management.
DE Release
|
Build
DE Package
|
|
Known
Issues
|
Released
| Comments |
| DE 7.2.2 | 7.2.2.14 | PD27239 | See RTW below | Nov 13, 2017 | |
| DE 7.2.1 | 7.2.1.24 | PD26978 | See RTW below | Mar 29, 2017 | |
| DE 7.2.0 (Repost) | 7.2.0.457 7,6 | See below | See RTW below | Dec 19, 2016 | |
| DE 7.2.0 (RTW) | 7.2.0.456 6 | PD26652 | See RTW below | Dec 15, 2016 | |
| DE 7.1.0 Patch 3 Hotfix 1148978 (HF1148978) | 7.1.3.604 | PD26603 | See RTW below | Aug 02, 2016 | Rollup hotfix |
| DE 7.1.0 Patch 3 Hotfix 1131996 (HF1131996) | 7.1.3.590 | PD26487 | See RTW below | May 04, 2016 | Rollup hotfix |
| DE 7.1.0 Patch 3 Hotfix 1098432 (HF1098432) 5 | 7.1.3.571 | KB86406 | See RTW below | Jan 13, 2016 | Superseded by HF1131996 |
| DE 7.1.0 Patch 3 Hotfix 1097826 (HF1097826) 5 | 7.1.3.559 | KB85865 | See RTW below | Oct 15, 2015 | Superseded by HF1131996 |
| DE 7.1.0 Patch 3 Hotfix 1087719 (HF1087719) 5 | 7.1.3.554 | KB85488 | See RTW below | Aug 18, 2015 | Superseded by HF1131996 |
| DE 7.1.0 Patch 3 (7.1.3) | 7.1.3.547 | PD25903 | See RTW below | Jun 25, 2015 | |
| DE 7.1.0 Patch 2 (7.1.2) 1 | 7.1.3.497 | PD25632 | See RTW below | Dec 11, 2014 | |
| DE 7.1.0 Patch 1 Hotfix 1044054 (HF1044054) | 7.1.1.1044054 | KB84401 | See RTW below | Apr 7, 2015 | |
| DE 7.1.0 Patch 1 Hotfix 1025171 (HF1025171) | 7.1.1.485 | KB83653 | See RTW below | Dec 15, 2014 | |
| DE 7.1.0 Patch 1 Hotfix 1018149 (HF1018149) | 7.1.1.479 | n/a | See RTW below | Oct 30, 2014 | |
| DE 7.1.0 Patch 1 Hotfix 1005393 (HF1005393) | 7.1.1.470 | KB82892 | See RTW below | Sep 25, 2014 | |
| DE 7.1.0 Patch 1 Hotfix 992692 (HF992692) | 7.1.1.467 | n/a | See RTW below | Aug 27, 2014 | |
| DE 7.1.0 Patch 1 Hotfix 978195 (HF978195) | 7.1.1.463 | n/a | See RTW below | Jun 26, 2014 | |
| DE 7.1.0 Patch 1 Hotfix 977150 (HF977150) | 7.1.1.461 | KB82246 | See RTW below | Jun 24, 2014 | |
| DE 7.1 Patch 1 (7.1.1) 2 | 7.1.1.454 | PD25230 | See RTW below | Jun, 2014 | |
| DE 7.1 Hotfix 945213 (HF945213) 3 | 7.1.0.9452131 | n/a | See RTW below | Mar, 2014 | |
| DE 7.1 Hotfix 948245 (HF948245) 4 | 7.1.0.424 | n/a | See RTW below | Feb, 2014 | |
DE 7.1 (RTW)
|
7.1.0.389
|
|
|
Dec, 2013
| |
n/a = not available
1
| DE 7.1.2 is a server-side only feature pack release (no client component). |
2
| DE 7.1.1 is a hybrid release containing both solutions for issues and new features. For details, see KB81901. |
3
| To review the resolved issues, see KB81522. |
4
| To review the resolved issues, see KB81148. |
| 5 | These hotfixes were previously internal and only Released to Support (RTS). They have now all been rolled-up into DE 7.1.3 Hotfix 1131996 and are no longer available. |
| 6 | The DE 7.2.0 installer will appear as version 7.2.0.64 (RTW) in the ePO master repository and in Add/Remove Programs on the client system. The installer is now built as a separate component and its version number may therefore differ from other components. |
| 7 | A post DE 7.2.0 (RTW) issue was found where corrupted text was displayed when accessing the Single Sign On (SSO) section located under Policy Catalog, Drive Encryption 7.2, Product settings, Logon (tab), on systems that use double-byte languages.
The issue is resolved in the DE 7.2.0 (Repost). The DE 7.2.0 EEAdmin Extension will appear as version7.2.0.456 (RTW) and 7.2.0.457 (Repost) in the ePO Extensions. |
Extensions shipped with DE
Extension
| DE 7.2.2 | DE 7.2.1 | DE 7.2.0
(Repost) | DE 7.2.0
(RTW) | DE 7.1.3
HF1148978 | DE 7.1.3
HF1131996 | DE 7.1.3
Ext Build |
DE 7.1.2
Ext Build
|
DE 7.1.1
Ext Build
|
DE 7.1
Ext Build
|
| DPSSP | 1.3.1.1 | 1.3.0.12 | 1.3.0.0 | 1.3.0.0 | 1.3.0.6 | 1.3.0.6 | 1.2.0.3 | 1.1.0.37 | - | - |
EEADMIN
| 7.2.2.14 | 7.2.1.24 | 7.2.0.457 | 7.2.0.456 | 7.1.3.604 | 7.1.3.590 | 7.1.3.547 | 7.1.2.497 | 7.1.1.454 |
7.1.0.389
|
| EEPC | 7.2.2.14 | 7.2.1.24 | 7.2.0.456 | 7.2.0.456 | 7.1.3.604 | 7.1.3.590 | 7.1.3.547 | 7.1.2.497 | 7.1.1.454 | 7.1.0.389 |
DEGO
| 7.2.2.14 | 7.2.1.24 | 7.2.0.456 | 7.2.0.456 | 7.1.3.604 | 7.1.3.590 | 7.1.3.547 | 7.1.2.497 | 7.1.1.454 |
7.1.0.389
|
EEDEEP
| 7.2.2.14 | 7.2.1.24 | 7.2.0.456 | 7.2.0.456 | 7.1.3.604 | 7.1.3.590 | 7.1.3.547 | 7.1.2.497 | 7.1.1.454 |
7.1.0.389
|
User Directory1
| 7.2.1.1 | 2.0.0.23 | 2.0.0.22 | 2.0.0.22 | 1.0.0.151 | 1.0.0.151 | 1.0.0.146 | 1.0.0.146 |
1.0.0.146
|
1.0.0.136
|
1
|
The User Directory and DPSSP extensions are included in the DE package for convenience, but are developed as separate components; therefore, they have their own version number.
|
Software Packages shipped with DE
Package name
| DE 7.2.2 | DE 7.2.1 | DE 7.2 |
| MfeEEPC | 7.2.2.14 | 7.2.1.16 | 7.2.0.64 |
MfeEEAgent
| 7.2.2.14 | 7.2.1.16 | 7.2.0.64 |
| EegoPackage | 7.2.2.14 | 7.2.1.24 | 7.2.0.456 |
Compatibility XML version shipped with DE
| DE Version |
Compatibility
XML Version 1
|
| DE 7.2.2 | v69 |
| DE 7.2.1 | v59 |
| DE 7.2.0 | v58 |
| DE 7.1.3 HF1148978 | v40 |
| DE 7.1.3 HF1131996 | v21 |
| DE 7.1.3 | v12 |
DE 7.1.2
| n/a |
DE 7.1.1
| v6 |
DE 7.1.0
| n/a |
1
|
IMPORTANT: The latest version of the hardware compatibility XML is attached to KB81900.
|
ePO / MA requirements
NOTE: ePO and MA versions that are End of Life (EOL) have been removed.
ePO requirements to manage DE clients
|
|
DE
7.2.1
7.2.2
|
DE
7.2.0 |
DE 7.1.3
HF1148978
HF1131996 | DE
7.1.x
|
| ePO 5.9.0 | Yes | No | No | No |
| ePO 5.3.3 | Yes | No | Yes | No |
| ePO 5.3.2, 5.3.1, 5.3.0 | Yes | Yes | Yes | Yes |
| ePO 5.1.x | Yes | Yes | Yes | Yes |
MA requirements to manage DE clients
MA Release
|
DE
7.2.02
7.2.1
7.2.2 |
DE
7.1.3 |
|
|
| MA 5.0.6 | Yes 1 | Yes 1 | No | No |
| MA 5.0.5 | Yes 1 | Yes 1 | Yes 1 | No |
| MA 5.0.4 | Yes 1 | Yes 1 | Yes 1 | No |
MA 5.0.1, 5.0.2, 5.0.3
| Yes 1 | Yes 1 | Yes 1 | No |
MA 5.0.0
| Yes 1 | Yes 1 | Yes 1 | Yes 1 |
MA 4.8
| Yes 2 | Yes | Yes | Yes |
1
|
MA 5.0 and later will be supported only with legacy features because these versions cannot exploit the new features introduced in MA 5.0. To review the MA 5.0/ePO 5.1.1 feature dependencies, see KB71298. |
| 2 | The minimum supported version of MA 4.8 with DE 7.2.0 is MA 4.8 Patch 3 (MA 4.8.3). |
Supported operating systems for DE
The following tables detail the McAfee
products supported for use on Windows workstation and server operating systems. Only the most recent versions are included because most customers upgrade to the latest service packs shortly after they are released.
NOTE: If the operating system is
not listed, then it is not supported.
Operating System 1
|
Microsoft
Supported
Service
Pack
| DE
7.2.2 | DE
7.2.1 | DE
7.2.0 | DE
7.1.3
HF1148978 | DE 7.1.3
or
DE 7.1.3
HF1131996 | DE
7.1.1
7.1.2 | DE
7.1.0
|
Windows Server 2016 (64-bit):
(Standard, Datacenter) | - | Yes | Yes | Yes | Yes | No | No | No |
Windows Server 2012 R2 (64-bit):
| - | Yes | Yes | Yes | Yes | Yes | Yes | No |
Windows Server 2012 (64-bit):
(Standard, Datacenter)
| - | Yes | Yes | Yes | Yes | Yes | No | No |
Windows Server 2008 (32-bit and 64-bit):
(Standard, Enterprise, Datacenter)
|
1
| Yes | Yes | Yes | Yes | Yes | Yes | Yes |
Windows Server 2008 R2 Server Core (Optional 32-bit)
NOTE: This is the first OS with optional 32-bit support; the default is 64-bit.
|
-
| No | No | No | No | No | No | No |
Windows Server 2008 R2 (64-bit only):
(Standard, Enterprise, Datacenter)
|
1
| Yes | Yes | Yes | Yes | Yes | Yes | Yes |
Windows 10 Fall Creators Update (32-bit/64-bit) 10
(Pro, Enterprise) | - | Yes | No | No | No | No | No | No |
Windows 10 Creators Update (32-bit/64-bit) 9
(Pro, Enterprise) | - | Yes | Yes | No | No | No | No | No |
Windows 10 LTSB version 1607 (32-bit/64-bit) 2, 7
(Enterprise) | - | Yes | Yes | No | No | No | No | No |
Windows 10 Anniversary Update (32-bit/64-bit) 2, 7
(Pro, Enterprise) | | Yes | Yes | Yes | Yes | No | No | No |
Windows 10 (32-bit/64-bit) 2, 3, 8
(Pro, Enterprise)
November Update / Threshold 2 (TH2)
|
-
| Yes | Yes | Yes | Yes | Yes | No |
No
|
Windows 8.1 (32-bit/64-bit) 3
(Professional, Enterprise)
|
-
| Yes | Yes | Yes |
Yes
|
Yes
|
Yes
|
Yes
|
Windows 8 (32-bit/64-bit) 3
(Professional, Enterprise)
|
-
| Yes | Yes | Yes | Yes | Yes |
Yes
| Yes |
Windows RT
(Version of Windows 8 that runs on mobile devices such as tablet computers)
|
-
| No | No | No | No | No | No |
No
|
| Windows To Go (all versions) 4 |
-
| No | No | No | No | No | No | No |
Windows 7 (32-bit/64-bit) Yes 5
(Professional, Enterprise, Ultimate)
|
1
| Yes | Yes | Yes | Yes | Yes | Yes | Yes |
Windows 7 (32-bit/64-bit) Yes 5
(Professional, Enterprise, Ultimate)
|
Without
SP
| Yes | Yes | Yes | Yes | Yes | Yes | Yes |
Windows Vista (64-bit / 32 bit) 6
(Business, Ultimate, Enterprise)
|
-
| No | No | No | No | No | No | No |
n/a = not applicable
| 1 | Dual boot for Windows is currently not supported. To submit a product idea, see the Related Information section below.
Home versions of any Windows operating system (OS) are not tested or supported. DE is an enterprise product that is tested only on enterprise OS versions. |
| 2 | To review the product manager statement that covers support for Windows 10, and any caveats that apply, see KB85784.
For how to upgrade the operating system to Windows 10 with Drive Encryption 7.1 Patch 3 installed, see KB84962. |
| 3 | The Trusted Platform Module (TPM) AutoBoot using TPM 1.2 chipset is only supported on Windows 8.x and Windows 10 clients with DE 7.1 Patch 1 and later, and that are configured to use the Unified Extensible Firmware Interface (UEFI). |
| 4 | Windows To Go is a feature in Windows 8 Enterprise that allows Windows 8 to boot and run from an external USB hard drive or USB flash drive. This has not been tested. If you require this functionality, see the Related Information section of this article for instructions to submit a product idea to have this researched for implementation in a future product or patch release. |
| 5 | Windows 7 is not supported in XP Mode. |
| 6 | As of July 2011, Windows Vista SP1 is no longer supported by Microsoft; therefore, the sustaining and development of Encryption products on this platform has also ended.
NOTE: Windows Vista Extended Support reaches its EOL date on April 11, 2017. Support for this operating system will no longer be provided after that date. |
| 7 | DE 7.1.3 Hotfix 1148978 is the minimum supported version of Drive Encryption for Windows 10 Anniversary Update. For information about support for Device Guard and Drive Encryption, see KB86009. |
| 8 | Windows 10 Enterprise Long-Term Servicing Branch (LTSB) is only supported with DE 7.2.1 and later. Prior to this release, DE offers support only for official Windows 10 builds, which include Current Branch (CB) and Current Branch for Business (CBB).
NOTE: LTSB is Microsoft terminology for a Sustaining build that does not receive feature updates and would be limited to security patches in general. |
| 9 | DE 7.2.1 is the minimum supported version of Drive Encryption for Windows 10 Creators Update.
For information about support for Device Guard and Drive Encryption, see KB86009.
For how to upgrade to Windows 10 Creators Update with DE 7.2.1 installed, refer to KB89000. |
| 10 | DE 7.2.2 is the minimum supported version of DE, for Windows 10 Fall Creators Update. |
Back to Contents
Supported operating systems for DE on Mac hardware with an Intel CPU
DE is
not supported on any Mac hardware. For support on Mac hardware, install the latest version of Management of Native Encryption.
EDC
EDC Release
|
DE
7.2.0
7.2.1
7.2.2 | DE 7.1.3
HF1131996
HF1148978 |
DE
7.1.3
|
DE
7.1.2
|
DE
7.1
7.1.1
|
| EDC 2.4.1 | No | No | No | No | No |
| EDC 2.4 | Yes | Yes | No | No | No |
| EDC 2.3 | Yes | Yes | Yes | No | No |
EDC 2.2
| Yes | Yes | Yes |
Yes
| No |
|
| No | Yes | Yes |
Yes
|
Yes
|
EDC 2.0
| No | No | Yes |
Yes
| Yes |
EDC 1.5
| No | No | No |
No
| Yes |
| EDC 1.0 | No | No | No | No | No |
Supported browsers for the DPSSP
IMPORTANT: Technical Support
recommends that you do not use DPSSP on public computers, and that the browser is closed following recovery.
Browser
|
Google Chrome
|
Internet Explorer
|
| Mozilla Firefox |
| Safari 1 |
1
|
Use caution when using Safari because of the non-standard behavior of its page caching.
|
Support for UEFI
IMPORTANT: If you plan to install DE 7.x on a system using native UEFI, Technical Support recommends that you use only native UEFI mode if the system is explicitly Windows 8, 8.1, or Windows 10 certified. If the system is not certified for Windows 8, 8.1, or Windows 10, Technical Support recommends that the BIOS settings are changed to put the system into legacy BIOS boot mode. Note that DE 7.x fully supports Windows 8, 8.1 and Windows 10 in BIOS mode.
Technical Support also recommends upgrading your UEFI systems to the latest UEFI firmware level and testing on a specific native UEFI-capable machine before wide-scale deployment.
Some key points about UEFI:
The original EFI developed by Intel has been replaced in favor of UEFI.
UEFI introduces a completely new boot process. UEFI is a more complex operating system style of BIOS, which includes applications and device drivers. End users will not notice this.
Only Windows 7 (64-bit), Windows 8, 8.1, and Windows 10 currently support the UEFI native boot process.
Macs have had a UEFI boot process for quite a bit longer.
Many modern laptops over the last two years have UEFI, but operate in a backward-compatible mode to emulate a legacy BIOS.
Windows 8, 8.1, and Windows 10 can be installed on UEFI systems operating in legacy BIOS compatibility mode or native UEFI mode.
UEFI implementations differ by hardware vendors. Depending on the UEFI implementation, we have seen issues ranging from missing protocols to support OPAL drives to issues in USB support provided in the preboot environment used by EEPC when operating in native UEFI mode.
With DE, Opal drives are supported only in the Advanced Host Controller Interface (AHCI) mode.
DE does not support the Opal version 2.0 drives which operate in A user mode, managed via the OS.
Endpoint Encryption Opal Hardware Compatibility Tool
The Endpoint Encryption Hardware Compatibility Tool gathers data about the Opal drive and performs some tests on the drive's functionality. Use the tool to test A Opal drive to verify that it is compatible before you use the Opal features. To obtain and use the tool, see
KB76182.
Intel AMT
AMT Release
|
DE
7.2.0
7.2.1
7.2.2
| DE 7.1.3
HF1131996
HF1148978 |
DE
7.1.3 |
DE
7.1.1
7.1.2
|
DE
7.1.0
|
| AMT 11.x | No | No | No | No | No |
| AMT 10.x | Yes | Yes | No | No | No |
AMT 9.5
| Yes | Yes | No | No | No |
AMT 9.0
| Yes | Yes | Yes |
Yes
| No |
AMT 8.x
| Yes | Yes | Yes |
Yes
|
Yes
|
| AMT 7.x | Yes | Yes | Yes |
Yes
| Yes |
| AMT 6.x | Yes | Yes | Yes |
Yes
| Yes |
| AMT 5.x and earlier releases | No | No | No | No | No |
Back to Contents
Supported tokens and readers used for authentication with DE
Version
|
Article
|
Readers
|
|
Tokens
|
|
Supported Wacom USB devices
To view a list of Wacom USB devices supported with DE, see
KB79914.
Supported languages for DE in ePO
Chinese (Traditional)
|
Chinese (Simplified)
|
English
|
French
|
German
|
Japanese
|
Korean
|
Russian
|
Spanish
|
DE 7.x
|
| Brazilian Portuguese |
Chinese (Traditional)
|
Chinese (Simplified)
|
| Danish |
| Dutch |
| English |
| Estonian |
| Finnish |
| French |
| German |
| Greek |
| Italian |
| Japanese |
| Korean |
| Norwegian |
| Polish |
| Portuguese |
| Russian |
| Spanish |
| Swedish |
| Thai |
Back to Contents
Documentation
The documentation is available in the following languages:
DE 7.x 1
|
|
|
|
|
English
|
French
|
German
|
Japanese
|
Korean
|
Russian
|
Spanish
|
1
|
For DE 7.1.0 - 7.1.2, the above list applies only to the Product Guide. The Release Notes provided with patch releases are generally in U.S. English only, but Release Notes for DE 7.1.3 are also localized because of alignment with Windows 10 launch. DE 7.1.3 also introduced a new document, Client Transfer between ePO Servers, which is also localized.
|
Upgrade or migrate
Supported EEPC to DE upgrade paths
| Source Version | Target Upgrade | Supported Upgrade Paths |
| DE 7.1.x | DE 7.2.x
DE 7.2.0
DE 7.1.x | IMPORTANT:
- To avoid possible upgrade problems, perform the following tasks when upgrading from Drive Encryption 7.1.x or 7.2.x to a later release:
- Releases later than DE 7.2.1 Hotfix 1199587, will no longer include the functionality to upgrade EEPC 5.2.x (V5 users). For details, see KB89717.
- At the ePO console, ensure that there are no LDAP Sync tasks running. If any are running, wait for them to complete.
- Disable all LDAP Sync tasks before initiating the upgrade.
- Check in the latest Drive Encryption extensions.
- Check in the latest Drive Encryption Agent and PC software packages.
- Re-enable all LDAP Sync tasks.
- Deploy the latest Drive Encryption software packages to the client system.
- Restart the client system after the deployment task has completed.
|
| EEPC 7.0.x | DE 7.2.0
DE 7.1.x | IMPORTANT: If you have a system installed with EEPC 7.0.x, you can upgrade to DE 7.1 or DE 7.2.0. However, you must first upgrade the EEPC extension to either EEPC 7.0 Patch 2 (7.0.2) or Patch 3 (7.0.3), upgrade the EEAdmin extension to 7.0.4, and follow the procedure described in PD26653. |
Upgrading Windows operating systems
There is a process to refresh the Windows operating system without having to decrypt the hard drive and uninstall DE.
Refer to the required articles for detailed instructions:
- To upgrade a Windows operating system with DE installed (Not including Windows 10 or later), see KB79908.
- For how to upgrade to Windows 10 Creators Update with Drive Encryption 7.2.1 or later, see KB89000.
- For how to upgrade the operating system to Windows 10 Anniversary Update (Build 1607) with Drive Encryption 7.1 Patch 3 or later, see KB87909.
- To view the Windows 10 compatibility with McAfee products, see KB85784.
- To view the Windows Server 2016 compatibility with McAfee products, see KB87945.
