cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Scanning for disk encryption, missing results

miek_g
Engaged Sweeper III
Hi, All

I have been banging my head against the wall on this, if I remove the McAfee tblRegistry, I get the expected 36 assest, however, I only get 29 assets with the table in there.

is there a way to have the report include the missing systems?

I added an or 'HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\McAfee EndPoint Encryption\Endpoint Encryption for PC' as several of the systems do not have it activated


Select Top (1000000) tblAssets.AssetID,
tblAssets.AssetName,
tsysAssetTypes.AssetTypeIcon10 As icon,
Case
When tblRegistrySB.Value Is Null Then 'BIOS'
Else 'UEFI'
End As BootMode,
Case
When tblRegistrySB.Value = 1 Then 'ON'
Else 'OFF'
End As SecureBoot,
tblEncryptableVolume.ProtectionStatus,
tblRegistry.Value As [McAfee Encryption],
tblAssets.Lastseen,
tblAssets.Lasttried
From tblAssets
Inner Join tblAssetCustom On tblAssets.AssetID = tblAssetCustom.AssetID
Left Outer Join (Select tblRegistry.RegistryID,
tblRegistry.AssetID,
tblRegistry.Regkey,
tblRegistry.Valuename,
tblRegistry.Value,
tblRegistry.Lastchanged
From tblRegistry
Where
tblRegistry.Regkey =
N'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecureBoot\State'
And tblRegistry.Valuename = N'UEFISecureBootEnabled') As tblRegistrySB On
tblAssets.AssetID = tblRegistrySB.AssetID
Left Outer Join tsysAssetTypes On tsysAssetTypes.AssetType =
tblAssets.Assettype
Inner Join tblComputersystem On tblAssets.AssetID = tblComputersystem.AssetID
Inner Join tblDomainroles On tblDomainroles.Domainrole =
tblComputersystem.Domainrole
Left Join tblADComputers On tblAssets.AssetID = tblADComputers.AssetID
Inner Join lansweeperdb.dbo.tblEncryptableVolume On tblAssets.AssetID =
tblEncryptableVolume.AssetId And tblEncryptableVolume.DriveLetter = 'C:'
Inner Join lansweeperdb.dbo.tblRegistry On tblAssets.AssetID =
tblRegistry.AssetID
Where
tblRegistry.Regkey =
'HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\McAfee EndPoint Encryption\MfeEpePc\Status' And tblRegistry.Valuename = 'Activated' And tsysAssetTypes.AssetTypename = N'Windows' And tblAssetCustom.State = 1
1 REPLY 1

miek_g
Engaged Sweeper III
I have removed a little and have better results, however; I am still missing a couple of computers, any ideas?



Select Top (1000000) tblAssets.AssetID,
tblAssets.AssetName,
tsysAssetTypes.AssetTypeIcon10 As icon,
Case
When tblRegistrySB.Value Is Null Then 'BIOS'
Else 'UEFI'
End As BootMode,
Case
When tblRegistrySB.Value = 1 Then 'ON'
Else 'OFF'
End As SecureBoot,
tblEncryptableVolume.ProtectionStatus As [Bitlocker Status],
tblRegistry.Value As [McAfee Encryption],
tblAssets.Lasttried,
tblRegistry.Lastchanged
From tblAssets
Inner Join tblAssetCustom On tblAssets.AssetID = tblAssetCustom.AssetID
Left Outer Join (Select tblRegistry.RegistryID,
tblRegistry.AssetID,
tblRegistry.Regkey,
tblRegistry.Valuename,
tblRegistry.Value,
tblRegistry.Lastchanged
From tblRegistry
Where
tblRegistry.Regkey =
N'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecureBoot\State'
And tblRegistry.Valuename = N'UEFISecureBootEnabled') As tblRegistrySB On
tblAssets.AssetID = tblRegistrySB.AssetID
Left Outer Join tsysAssetTypes On tsysAssetTypes.AssetType =
tblAssets.Assettype
Inner Join tblComputersystem On tblAssets.AssetID = tblComputersystem.AssetID
Inner Join tblDomainroles On tblDomainroles.Domainrole =
tblComputersystem.Domainrole
Left Join tblADComputers On tblAssets.AssetID = tblADComputers.AssetID
Inner Join lansweeperdb.dbo.tblEncryptableVolume On tblAssets.AssetID =
tblEncryptableVolume.AssetId And tblEncryptableVolume.DriveLetter = 'C:'
Inner Join lansweeperdb.dbo.tblRegistry On tblAssets.AssetID =
tblRegistry.AssetID
Where (tblRegistry.Value Is Null) Or
(tblRegistry.Regkey =
'HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\McAfee EndPoint Encryption\MfeEpePc\Status' And tblRegistry.Valuename = 'Activated')