Note that the Encryption Management Server does not record whether a client machine is encrypted with the AES-128 or AES-256 cipher.
PGP Desktop Whole Disk Encryption 10.0 and above.
Encryption Desktop Drive Encryption 10.3 and above.
Encryption Management Server 3.3 and above.
PGP Universal Server 3.0 and above.
This is by design.
1. Update the Disk Encryption policy on Encryption Management Server to use AES-256 or AES-128.
2. Right click on the Symantec Encryption Desktop tray and choose Update Policy to force a policy update.
3. Check that the policy has been updated by opening the file %appdata%\PGP Corporation\PGP\PGPprefs.xml in WordPad and searching for the second occurrence of
. You will see this for AES-256:
You will see this for AES-128:
4. Decrypt the disk using the Encryption Desktop user interface or, if decryption of internal disks is blocked by policy, use the pgpwde command line utility with, for example, the Disk Administrator passphrase. On Windows x64 use: