Table of Contents
Advertisement
Advertisement
Table of Contents
Subscribe to Our Youtube Channel
Related Manuals for Kingston Technology IRONKEY Vault Privacy 50
Summary of Contents for Kingston Technology IRONKEY Vault Privacy 50
- Page 1 IRONKEY™ Vault Privacy 50 (VP50) SECURE USB 3.2 Gen 1 FLASH DRIVE User Guide...
-
Page 2: Table Of Contents
Contents Introduction ................................3 Vault Privacy 50 Features ................................4 About this Manual ..................................4 System Requirements ..................................4 Recommendations ..................................5 Using the Correct File System ................................ 5 Usage Reminders ................................... 5 Best Practices for Password Setup ..............................6 Setting Up My Device ............................... -
Page 3: Introduction
Figure 1: IronKey VP50 Introduction The Kingston IronKey Vault Privacy 50 (VP50) is a premium USB drive that provides business-grade security with FIPS 197 certified AES 256-bit hardware-encryption in XTS mode including safeguards against BadUSB with digitally-signed firmware, and against Brute Force password attacks. VP50 is also TAA compliant and assembled in the U.S.A. Because it is encrypted storage under the user’s physical control, VP50 series is superior to using the internet and Cloud services... -
Page 4: Vault Privacy 50 Features
• Small and Medium businesses can locally manage drives using the Admin role • Windows or macOS compatible (consult datasheet for details) About This Manual This user manual covers the IronKey Vault Privacy 50 (VP50) and is based on the factory image with no implemented customizations. System Requirements... -
Page 5: Recommendations
Recommendations To ensure there is ample power provided to the VP50 device, insert it directly into a USB port on your notebook or desktop, as seen in Figure 1.1. Avoid connecting the VP50 to any peripheral device(s) that may feature a USB port, such as a keyboard or USB-powered hub, as seen in Figure 1.2. -
Page 6: Best Practices For Password Setup
Best Practices for Password Setup Your VP50 comes with strong security countermeasures. This includes protection against Brute Force attacks that will stop an attacker guessing passwords by limiting each password attempt to 10 retries. When the drive’s limit is reached, VP50 will automatically wipe out the encrypted data – formatting itself back to a factory state. Multi-Password VP50 supports Multi-Passwords as a major feature to help protect against data loss if one or more passwords are forgotten. -
Page 7: Setting Up My Device
Setting Up My Device To ensure there is ample power provided to the IronKey encrypted USB drive, insert it directly into a USB 2.0/3.0 port on a notebook or desktop. Avoid connecting it to any peripheral devices that may feature a USB port, such as a keyboard or USB-powered hub. -
Page 8: Device Initialization (Windows & Macos Environment)
Device Initialization (Windows & macOS Environment) Language and EULA • • Select your language preference from the drop- down menu and click Next (See Figure 4.1) Figure 4.1 – Language Selection • Review the license agreement and click Next. Note: You must accept the license agreement before continuing;... -
Page 9: Password Selection
Device Initialization Password Selection On the Password prompt screen, you will be able to create a password to protect your data on the VP50 using either the Complex or Passphrase password modes (Figures 4.3- 4.4). Additionally, the Multi-password Admin/User options can also be enabled on this screen. Before proceeding with Password Selection, please review Enabling Admin / User Passwords below for a better understand of these features. - Page 10 Device Initialization Valid and Invalid Passwords For valid passwords, the Password Criteria Boxes will highlight green when the criteria are met. (See Figures 4.6a-b) Note: Once the minimum of three password criteria are met, the fourth criteria box will become gray, indicating that this criterion is not optional (Figure 4.6b) Figure 4.6a –...
-
Page 11: Virtual Keyboard
Device Initialization Virtual Keyboard The VP50 features a Virtual Keyboard that can be used for Keylogger protection. • To utilize the Virtual Keyboard, locate the keyboard button on the upper-right side of the Device Initialization screen and select it. Figure 4.8 – Activating the Virtual Keyboard •... -
Page 12: Password Visibility Toggle
Device Initialization Password Visibility Toggle By default, when you create a password, the password string will be shown in the field as you type it in. If you wish to ‘hide’ the password string as you type, you can do so by toggling the password ‘eye’ located on the upper- righthand side of the Device Initialization window. -
Page 13: Admin & User Passwords
Device Initialization Admin and User Passwords By enabling Admin and User Passwords, you can leverage multi-password functionality, in which the Admin Role can manage both accounts. Selecting ‘Enable Admin and User passwords’ allows for an alternative method of drive access in case one of the passwords is forgotten. With Admin and User passwords enabled, you can also access: •... - Page 14 Device Initialization Admin and User Passwords • If Admin Role was enabled in the previous screen, the following screen will prompt for the User Password (Figure 4.13) The User Password will have limited capabilities compared to Admin and will be discussed in further detail later in this User Guide (see Page Figure 4.13 - User Password (Admin and User Enabled) Note: The chosen Password Option (Complex or Passphrase) criteria will carry over to the User Password, One-Time...
-
Page 15: Contact Information
Device Initialization Contact Information Enter your contact information into the text boxes provided (see Figure 4.14) Note: The information you enter in these fields may NOT contain the password string you created in Step 3. However, these fields are optional and can be left blank, if so desired.) The ‘Name’... -
Page 16: Device Usage (Windows & Macos Environment)
Device Usage (Windows & macOS Environment) Login For Admin & User (Admin Enabled) If the device is initialized with Admin and User Passwords (Admin Role) enabled, the IronKey VP50 application will launch, prompting for the User Password login screen first. From here you can login with the User Password, view any entered contact Information, or Login as Admin (Figure 5.1). -
Page 17: Unlocking In Read-Only Mode
Device Usage Unlocking in Read-Only Mode You can unlock your drive in a read-only state so that files cannot be altered on your IronKey drive. For example, when using an untrusted or unknown computer, unlocking your device in Read-Only Mode will prevent any malware on that computer from infecting your device or modifying your files. -
Page 18: Brute-Force Attack Protection
Device Usage Brute-Force attack protection Important: During login, if an incorrect password is entered, you will be given another opportunity to enter the correct password; however, there is a built-in security feature (also known as Brute Force attack protection) that tracks the number of failed login attempts. -
Page 19: Device Options
Device Options - (Windows Environment) While you are logged into the device, there will be an IronKey icon located in the right-hand corner the window. Right-clicking on the IronKey Icon will open the selection menu for available drive Options (Figure 6.2). Details about these device options can be found on Pages 19-23 of this manual •... - Page 20 Device Options • VP50 Settings: Change login Password, Contact Information, and other settings. (More details about device settings can be found in the ‘VP50 Settings’ section of this manual). • Browse VP50: Allows you to view your secure files. Format VP500: Allows you to format the secure data partition.
-
Page 21: Vp50 Settings
VP50 Settings Admin Settings The Admin Login allows access to the following device settings: • Password: Allows you to change your own Admin password and/or hint (Figure 7.1) • Contact Info: Allows you to add/view/change your contact information (Figure 7.2) •... -
Page 22: User Settings: Admin Enabled
VP50 Settings User Settings: Admin Enabled The User Login limits access to the following settings: Password: Allows you to change your own User password and/or hint (Figure 7.5) Figure 7.5- Password Options (Admin Enabled: User Login) Contact Info: Allows you to add/view/change your contact information (Figure 7.6) Figure 7.6- Contact Information (Admin Enabled: User Login) Language:... -
Page 23: User Settings: Admin Not Enabled
VP50 Settings User Settings: Admin Not Enabled As mentioned previously on Page 12, initializing the VP50 without enabling ‘Admin and User’ passwords will configure the drive up in a Single Password, Single User setup. This configuration does not have access to any Admin options or features. -
Page 24: Changing And Saving Vp50 Settings
VP50 Settings Changing and Saving settings • Whenever settings are changed in the VP50 Settings (e.g.) Contact information, language, Password changes, Admin options etc..), the drive will prompt to enter your password in order to accept and apply the changes (see Figure 7.11) Figure 7.11- Password Prompt screen to save VP50 setting changes Note: If you are at the Password prompt screen above and would like to cancel or modify your changes, you can do so by simply making sure the password field is blank and Click ‘OK’. -
Page 25: Admin Features
Admin Features Options Available to Reset the User Password The features of Admin configuration allow multiple ways to securely reset the Users Password, should it be forgotten, or if a temporary User password is created and you would like to enforce a password change upon next login for the User Login. -
Page 26: One-Time Recovery Password
Admin Features One-Time Recovery Password This section will discuss the process to enable and use the One-Time Recovery password feature. One-Time Recovery password Step 1: The One-Time Recovery password feature is a very useful, single-use password that can be enabled to help recover and reset the User password should the user password be forgotten. - Page 27 Admin Features Using One-Time Recovery Password Step 1: After the One-Time Recovery password has been created, a new button will appear on the User Password login screen upon next login. Click on the Recovery Password button to start the process. Figure 8.6- Recovery Password Button Step 2: The Recovery Password screen will appear where you can enter in the Recovery...
-
Page 28: Force Read-Only User Data
Admin Features Force Read-Only User Data The Forced Read-Only mode feature can be enabled to restrict write access to the drive for the User. This feature is useful if files on the drive are needed for read access-only. • To enable Force Read-Only for the User data, Click on the box and click ‘Apply’. - Page 29 Help and Troubleshooting Device Lockout The VP50 includes a security feature that prevents unauthorized access to the data partition once a maximum number of consecutive failed login attempts (MaxNoA for short) has been made. The default “out-of-box” configuration has a pre-configured value of 10 (no. of attempts.) for each Login method (Admin/User/One-Time Recovery Password) The ‘lock-out’...
-
Page 30: Help And Troubleshooting
Help and Troubleshooting Device Lockout Important: After a 10 and final failed login attempt, depending on how the device was set up and Login method used, (Admin, User or One-Time Recovery Password) The device will either Lock down, requiring you to login with an alternate method (If applicable), or a Device Reset which will format the data and all data on the drive will be lost forever. -
Page 31: Vp50 Device Reset
Help and Troubleshooting Reset Device If you forget your password or need to reset your device, you can click on the ‘Reset Device’ button that appears in one of two places depending on how the drive is set up(either on the Admin Login Password menu If Admin/User is enabled, or on the ‘User Password’... -
Page 32: Drive Letter Conflict: Windows Operating Systems
Help and Troubleshooting Drive Letter Conflict: Windows Operating Systems • As mentioned in the ‘System Requirements’ section of this manual (on page 3), the VP50 requires two consecutive drive letters AFTER the last physical disk that appears before the ‘gap’ in drive letter assignments (see Figure 9.10.) This does NOT pertain to network shares because they are specific to user- profiles and not the system hardware profile itself, thus appearing... -
Page 33: Error Messages
Help and Troubleshooting Error Messages Unable to create file: This error message will appear when attempting to CREATE a file or folder ON the secure data partition while logged in under read-only mode. Figure 9.11 – Unable to Create File Error Error Copying File or Folder: This error message will appear when attempting to COPY a file or folder TO the secure data partition while... - Page 34 © 2022 Kingston Digital, Inc. All rights reserved. NOTE: IronKey is not liable for technical or editorial errors and/or omissions contained herein; nor for incidental or consequential damages resulting from the furnishing or use of this material. The information provided herein is subject to change without notice.
Need help?
Do you have a question about the IRONKEY Vault Privacy 50 and is the answer not in the manual?
Questions and answers