Skip to Content

EMBASSY® Remote Administration Server Remote Policy Management for Trusted Drives and Trusted Platform Modules

Wave Systems' EMBASSY Remote Administration Server (ERAS) enables centralized IT administration to remotely deploy and manage PC clients that are equipped with Trusted Platform Modules (TPM) and/or Seagate Momentus® 5400 FDE.2 drives.

ERAS-enabled Trust Network

Embedded TPM technology puts a hardware root-of-trust in each individual TPM-enabled PC. The TPM root-of-trust enables unprecedented levels of security across a wide range of applications.

ERAS provides enterprise wide management of distributed TPM-enabled PC platforms. This means that all the distributed TPM root-of-trust platforms in the organization can be managed and controlled from a central location. All of the individual root-of-trust platforms can be melded into a unified trust network.


Click to View

ERAS reduces the cost and complexity of deploying TPM-enabled PCs and Seagate Trusted Drives.


ERAS Key Features

  • Centralized control of distributed TPM systems to provision identities and authorizations from Active Directory.
  • Remote ownership and automatic management of TPMs that are already present in enterprise PCs.
  • Server-based scripting for configuration and routine management.
  • Remote administration of Seagate Trusted Drives for management and control of hardware-based full disk encryption.


ERAS Key Benefits

  • Enables IT Administrators to remotely control security for enterprise deployment of TPM systems and Trusted Drives.
  • Removes complexity of providing a totally secure environment for enterprise productivity.
  • Facilitates easy deployment of TPM systems and Trusted Drives.
  • Provides significant cost savings for deployment of advanced security.
  • Boosts productivity of network administrators for dealing with TPMs and Trusted Drives.
  • Provides a consistent management interface for systems containing secure hardware.
  • Aids in proving regulatory compliance.


ERAS Key Components

  • Remote management of TPM systems and Trusted Drives.
  • Integrated with Active Directory.
  • Centralized security policy control and auditing for risk assessment and regulatory compliance purposes.
  • MMC, scripting, or command line operations.
  • TPM remote management including:
    • TPM enrollment, ownership, and enablement
    • TPM user management
    • Password management and reset
    • Delegation of owner rights to users
    • Detailed TPM system information
  • Trusted Drive remote management including:
    • Initialization and administration
    • Password management, control and recovery
    • User management
    • Pre-boot authentication setup
    • Re-commissioning and de-commissioning of drives
    • Trusted Drive recovery