Tableau Password Recovery

USER GUIDE
Version 1.3
Copyright© 2017 Guidance Software, Inc. All rights reserved.

EnCase®, EnScript®, Tableau®, FastBloc®, Guidance Software® and EnCE® are registered trademarks or trademarks owned by
Guidance Software in the United States and other jurisdictions and may not be used without prior written permission. All other
marks and brands may be claimed as the property of their respective owners. Products and corporate names appearing in this
work may or may not be registered trademarks or copyrights of their respective companies, and are used only for identification
or explanation into the owners' benefit, without intent to infringe. Any use and duplication of this work is subject to the terms of
the license agreement between you and Guidance Software, Inc. Except as stated in the license agreement or as otherwise
permitted under Sections 107 or 108 of the 1976 United States Copyright Act, no part of this work may be reproduced, stored in a
retrieval system or transmitted in any form or by any means, electronic, mechanical, photocopying, recording, scanning or
otherwise. Product manuals and documentation are specific to the software versions for which they are written. For previous or
outdated versions of this work, please contact Guidance Software, Inc. at http://www.guidancesoftware.com. Information
contained in this work is furnished for informational use only, and is subject to change at any time without notice.
CONTENTS

CHAPTER 1 Overview 5
Overview 7
The Tableau Password Recovery System 7
The Tableau Password Recovery Software 7
Supported File Types 10

CHAPTER 2 Installation and Configuration 11

Overview 13
Product Licensing 13
Passware Kit Forensic License 13
Microsoft Windows License 13
Installing the Tableau Password Recovery System 14
Activating the Windows License 14
Installation Files 14
Installing Passware Kit Forensic 15
Installing the Passware Decryption Server 16
Creating a Passware Decryption Server Share Folder 17
Installing the Passware Decryption Server 22
Configuring the Passware Decryption Server 23
Installing the Password Recovery Assistant 26
Installing the Microsoft .NET Framework 26

- iii -
 Installing the Password Recovery Assistant 26
Verifying the Installation 27
Verifying Access to the Passware Decryption Server's Shared Folder 28
Installing Passware Kit Agent 29
Installing Passware Kit Agent 29
Configuring Passware Kit Agent 30
Verifying the Connection to the Passware Decryption Server 32
Verifying the Passware Kit Agent Hardware 33
Restoring Tableau Password Recovery to Factory Settings 34

CHAPTER 3 Recovering Passwords 37

Overview 39
Recovering Passwords from within EnCase 39
Viewing Recovered Files and Passwords 42
Linking to the Original File 44

CHAPTER 4 Support 47
Overview 49
Find Support Online 49
Access the Customer Community 50
View Customer Forums 51
Browse the Knowledge Base 51
Log and Track Issues 51
Register your Product 51
Register your Account 51
Contact Guidance Software 52
Contact Sales 52
Contact Customer Service 52
Contact Technical Support 53
Chat with a Technical Services Engineer 54

Index 55

- iv -
 CHAPTER 1   Overview 5

CHAPTER 1
OVERVIEW
In this chapter

Overview 7

The Tableau Password Recovery System 7

The Tableau Password Recovery Software 7

Supported File Types 10

6 Tableau Password Recovery User Guide Version 1.3
CHAPTER 1   Overview 7

Overview
Tableau Password Recovery (TPR) recovers passwords of protected (encrypted) files,
partitions, or entire drive volumes that are part of your case or investigation. It is an integrated
solution that uses Passware Kit Forensic software and Tableau Accelerator 2 (TACC2) hardware
on a dedicated system to unlock password protected files.  

TPR can also integrate directly with EnCase Forensic, EnCase Basic, EnCase Endpoint Security,
EnCase eDiscovery, and EnCase Endpoint Investigator. If your investigation includes a number
of files that are password protected, you can send one or more of these files, or their entire
Logical Evidence File (LEF), to the TPR server. After the passwords are recovered, the
passwords are returned to your EnCase Examiner computer, where they can be viewed along
with the original, encrypted files.

The TACC2 is an integrated circuit board that was purpose-built for accelerating password
decryption algorithms. Using the TACC2 hardware, TPR can decrypt passwords hundreds of
times faster than the process would take when using general purpose CPUs.

To further speed up the decryption process, you can add more TPR systems to your
configuration. Each additional TPR increases the speed of decryption linearly.

Note: If you are updating your TPR or TPR cluster to version 1.3, click here to
download the v1.3 installer and update instructions. To get full support for version
1.3, go to www.passware.com to update your licensed copy of PKF.

The Tableau Password Recovery System

TPR is a rack mountable system installed with a current version of Microsoft Windows,
optimized for dedicated password recovery. The system is equipped with:

l Four TACC2 PCIe cards

l Intel® Xeon® Processor E5-1620 v3 3.5Ghz, 4 Core Processor
l 16 GB ECC RAM
l 256 GB SATA III SSD
l Intel Dual Gigabit Ethernet Network Adapter

The Tableau Password Recovery Software

The TPR solution involves multiple software components. The tables below describe the
components used in two standard TPR configurations. The first configuration uses only TPR
and Passware. The second configuration is where TPR and Passware are integrated with
8 Tableau Password Recovery User Guide Version 1.3

EnCase.

Configuration 1: TPR and Passware

Component Runs on Function

Provides the user interface to configure and start attacks on
*Passware Kit Examiner encrypted files. Communicates with the Passware agents on TPR
Forensic Computer systems to decrypt passwords. Retrieves unlocked files and
recovered passwords.

Accepts jobs from Passware Kit Forensic on the Examiner com-

Passware Kit Each TPR
puter. Uses TACC2 hardware on TPR to accelerate the decryption
Agent system
process.

Configuration 2: TPR and Passware Integrated with EnCase

Component Runs on Function

Operates within EnCase. Provides the user interface to configure
Password EnCase
and start attacks on encrypted files. Communicates with the
Recovery Examiner
Passware Decryption Server to decrypt passwords. Retrieves
Assistant computer
unlocked files and recovered passwords.

EnCase
*Passware Kit Provides Passware license information to the Password Recov-
Examiner
Forensic ery Assistant.
computer

Passware Primary Acts as a proxy and communicates with the Password Recovery
Decryption TPR sys- Assistant on the EnCase Examiner computer, and the Passware
Server tem agents on secondary TPR systems to decrypt passwords.

Secondary Accepts jobs from the Passware Decryption Server on the

Passware Kit
TPR sys- primary TPR system. Uses TACC2 hardware on TPR to accelerate
Agent
tem the decryption process.
CHAPTER 1   Overview 9

*You must purchase a Passware Kit Forensic license in addition to TPR if you do not
already own a copy.

The following diagrams show the relationship between the components in each configuration.
10 Tableau Password Recovery User Guide Version 1.3

Supported File Types

TPR accelerates decryption for the following file types using TACC2 hardware:

l Android Image
l Apple FileVault 2
l Apple iOS Backup
l Apple OS X Keychain
l MS Office 2007, 2010, 2013, 2016
l PGP Disk 6
l PGP Self-Decrypting Archive (SDA)
l PGP Private Keyring
l PGP Whole Disk Encryption (WDE)
l RAR 3.x, 4.x, 5.x
l ZIP
l TrueCrypt
CHAPTER 2
INSTALLATION AND CONFIGURATION
In this chapter

Overview 13

Product Licensing 13

Installing the Tableau Password Recovery System 14

Installation Files 14

Installing Passware Kit Forensic 15

Installing the Passware Decryption Server 16

Installing the Password Recovery Assistant 26

Installing Passware Kit Agent 29

Restoring Tableau Password Recovery to Factory Settings 34

12 Tableau Password Recovery User Guide Version 1.3
CHAPTER 2   Installation and Configuration 13

Overview
This chapter contains information on installing and configuring TPR. This includes installing and
configuring some or all of the following components, depending on your desired
configuration.

Refer to The Tableau Password Recovery Software for more information on the components
used in the standard TPR configurations. This guide currently only describes how to configure
and use TPR when TPR is integrated with EnCase.

l The TPR system

l Passware Kit Forensic
l Passware Decryption Server
l Password Recovery Assistant
l Passware Kit Agent

Product Licensing
Before installing the TPR system and software, you need to obtain the product license keys for
Microsoft Windows and Passware.

Passware Kit Forensic License

Passware provides a product license key for Passware Kit Forensic via email. The license key is
required to install Passware Kit Forensic.

If you cannot find your Passware Kit Forensic license, you can request a product key from
Passware Support at http://www.lostpassword.com/support/lost.htm. Enter Passware Kit
Forensic as your Product Name and enter the order number you received from the vendor
(Guidance Software, Passware, or an authorized Passware reseller) as your Order Reference
Number.

Microsoft Windows License

A current version of Microsoft Windows is preinstalled on the TPR system. During the initial
boot you will be guided through the Windows setup process, which will require entry of the
Windows product key. The Microsoft Windows license key is located on the back of the TPR
LCD screen.
14 Tableau Password Recovery User Guide Version 1.3

Installing the Tableau Password Recovery System

TPR should be installed by a systems administrator. The initial setup of TPR requires
connection to a monitor and keyboard. To install the system:

1. Install the server rack rails to the sides of the TPR system and mount it into a rack or cab-
inet.
2. Connect power, network, and a monitor and keyboard.
3. Power on TPR.
4. Follow the steps of the Windows setup procedure, during which you need to enter the
Windows License Key.
5. Configure the TPR network settings according to the network requirements. TPR can
operate using standard network configuration (such as a manual or dynamic IP address)
and either a Microsoft workgroup or domain.

Activating the Windows License

A current version of Microsoft Windows is installed, but not activated on TPR. To activate the
Windows product key:

1. Click the Windows Start button, right click This PC, and click Properties.
2. Under Windows activation, select Change product key.
3. Enter the product key.

Installation Files
Files for the installable TPR software components are located under
C:\Windows\TPR\Installers on the TPR system.

The following table includes the installation program for each component.

Component Installation Program

Passware Kit Forensic passware-kit-forensic-64bit.msi

Passware Kit Agent passware-kit-agent-64bit.msi

Passware Decryption Server passware-decryption-server-64bit.msi

Passware Recovery Assistant Tableau Password Recovery Assistant.exe

CHAPTER 2   Installation and Configuration 15

Installing Passware Kit Forensic

Install Passware Kit Forensic on the Examiner computer used to recover passwords. Each copy
of Passware Kit Forensic requires its own license.

TO INSTALL PASSWARE KIT FORENSIC:

1. Copy passware-kit-forensic-64bit.msi to your Examiner computer.
2. On the Examiner computer, run passware-kit-forensic-64bit.msi.
3. When prompted, enter your Passware Kit Forensic product key to register the product.

4. Click Next. When the installation completes, Passware Kit Forensic opens.
16 Tableau Password Recovery User Guide Version 1.3

Note: The TACC acceleration units are not available until Passware Kit Forensic is
running as administrator.

Installing the Passware Decryption Server

To integrate TPR with your EnCase workflow, install the Passware Decryption Server on your
primary TPR system.

TO INSTALL THE PASSWARE DECRYPTION SERVER:

1. Create a Passware Decryption Server share folder and grant the Password Recovery
Assistant access to it.
2. Install the Passware Decryption Server on the TPR.
3. Configure the Passware Decryption Server.
CHAPTER 2   Installation and Configuration 17

Creating a Passware Decryption Server Share Folder

TO CREATE A FOLDER THAT THE PASSWARE DECRYPTION SERVER AND THE

PASSWORD RECOVERY ASSISTANT CAN SHARE:
1. On the TPR, create a folder, such as C:\DSShared.
2. Grant the EnCase user Read and Write access to the folder. To grant Share access using
the Windows Sharing Wizard:
o from Windows Explorer, right click the Passware Decryption Server folder you cre-
ated and select Properties.

o From the Sharing tab, click Advanced Sharing.

18 Tableau Password Recovery User Guide Version 1.3

o The Advanced Sharing dialog displays. Click Permissions to determine who has
access to the folder.
CHAPTER 2   Installation and Configuration 19

o The Permissions dialog displays. Click Add to add the EnCase user.
20 Tableau Password Recovery User Guide Version 1.3

o The Select Users or Groups dialog displays. Enter the name of your EnCase user. If
necessary, click Check Names to search through the list of Windows users. When
you finish, click OK.
CHAPTER 2   Installation and Configuration 21

o On the Permissions dialog, check Full Control, then click Apply. When you finish,
click OK.
22 Tableau Password Recovery User Guide Version 1.3

Refer to Microsoft documentation for more detailed information on configuring shared

folders.

Installing the Passware Decryption Server

1. On the TPR, run passware-decryption-server-64bit.msi. The installation setup
wizard displays.
2. Click Next on the initial screen. The End-User License Agreement dialog displays.
3. Accept the license agreement, then click Next. The Destination Folder displays.

o Specify the installation folder. By default, the Passware Decryption Server is

installed as a subfolder under Passware.

4. Click Next. A status dialog displays.

5. A confirmation dialog displays when the installation process completes.
CHAPTER 2   Installation and Configuration 23

Configuring the Passware Decryption Server

After installation, run Passware Decryption Server.
24 Tableau Password Recovery User Guide Version 1.3

1. Click Browse to select the Passware Decryption Server shared folder you created earlier. A
list of folders displays.
CHAPTER 2   Installation and Configuration 25

2. Select your shared folder from the list, then click OK. The dialog closes.
26 Tableau Password Recovery User Guide Version 1.3

3. Click Stop Server, then click Start Server to restart the Passware Decryption Server.

Locking the TPR System

Passware Decryption Server runs as an application, not as a Windows service. In order to leave
the Passware Decryption Server running, do not log off the TPR user after starting the
Passware Decryption Server. To secure the system and leave the process running, lock the
computer (Windows logo key + L).

Installing the Password Recovery Assistant

The Password Recovery Assistant is an EnCase plugin that communicates with the Passware
Decryption Server. Install it on the EnCase Examiner computer you will use to recover
passwords.

Before running the Password Recovery Assistant installation program, install Passware Kit
Forensic and the Microsoft .NET framework on the EnCase Examiner computer.

Installing the Microsoft .NET Framework

Install the Microsoft .NET framework on your EnCase Examiner computers before installing the
Password Recovery Assistant.

Select the following link to download the Microsoft .NET 4.5 installation program:
https://www.microsoft.com/en-us/download/details.aspx?id=30653.

Follow the steps of the installation program, which detects if the Microsoft .NET framework is
already installed.

Installing the Password Recovery Assistant

TO INSTALL THE PASSWORD RECOVERY ASSISTANT:

1. Copy the installation program Tableau Password Recovery Assistant.exe, to
the EnCase Examiner computer.
2. On the EnCase Examiner computer, run Tableau Password Recovery Assist-
ant.exe. The installation program opens.
CHAPTER 2   Installation and Configuration 27

3. Enter the EnCase installation directory as the Destination Location, then click Next.
4. The program installs the EnCase plugin.

Verifying the Installation

TO VERIFY THE PASSWORD RECOVERY ASSISTANT IS INSTALLED:

1. Launch EnCase.
2. Open an existing case or evidence folder.
3. Look for the Password Recovery Assistant option on the right side of the toolbar and
right click to see the Start Decryption and Display Status options.

4. Right click a document in your case or evidence folder. You should also see an option for
the Password Recovery Assistant.
28 Tableau Password Recovery User Guide Version 1.3

Verifying Access to the Passware Decryption Server's

Shared Folder
To verify that EnCase has access to the Passware Decryption Sever folder, map a network drive
from the EnCase Examiner computer to the shared folder on TPR.

1. Log on to the EnCase Examiner computer with the Windows credentials you granted
access to the shared folder.
2. Click the Windows Start button, then click Computer.
3. In the tools menu, click Map Network Drive.
4. In the Drive box, click the drive letter you want to use. You cannot select a drive letter
already in use by your computer.
5. In the Folder box, enter both the name of the Password Recovery server and the shared
folder you created. The format is \\ComputerName\ShareName. For example, if the
name of the TPR system is pass0123 and the folder is DSShared, enter
\\pass0123\DSShared.
CHAPTER 2   Installation and Configuration 29

6. If you are not logged on to the EnCase Examiner computer with the Windows credentials
you granted to the shared folder, click Connect using different credentials, then enter
the appropriate username and password.
7. Click Finish.

Installing Passware Kit Agent

Install the Passware Kit Agent on each of your additional TPR systems.

The Passware Kit Agent receives decryption requests from the Passware Decryption Server. It
runs a parallel set of decryption algorithms for each file you submit for password recovery.

Installing Passware Kit Agent

1. On each of your secondary TPR systems, run passware-kit-agent-64bit.msi.
2. Follow the steps of the installation program.

3. When the installation completes, check Run Passware Kit Agent and click Finish.
30 Tableau Password Recovery User Guide Version 1.3

Note: The TACC acceleration units are not available until Passware Kit Agent is
running as administrator.

Configuring Passware Kit Agent

After installation completes, the Passware Kit Agent opens. To connect the Passware Kit Agent
to the Passware Decryption Server:

1. Click the Settings tab.

CHAPTER 2   Installation and Configuration 31

2. The Passware Kit Agent attempts to connect to the Passware Decryption Sever. If it can-
not connect via auto discovery, click Manual connection and enter the hostname or IP
address of the Passware Decryption Server, then click Connect.
32 Tableau Password Recovery User Guide Version 1.3

When the Passware Kit Agent connects to the Passware Decryption Server, the status at the
bottom of the Settings dialog changes to Connected and idle.

Verifying the Connection to the Passware Decryption

Server
To verify that Passware Kit Agent is connected to the Passware Decryption Server, click the Log
tab. A message displays, indicating that the Passware Kit Agent is connected to the hostname
and IP address of the TPR system.
CHAPTER 2   Installation and Configuration 33

Verifying the Passware Kit Agent Hardware

To verify the Passware Kit Agent is configured to use the TACC units:

1. Click the Hardware tab.

34 Tableau Password Recovery User Guide Version 1.3

2. Under Acceleration Units, check GPU device and Tableau TACC hardware accelerator(s)
for best performance.

Locking the Passware Kit Agent's Server

In order to leave the Passware Kit Agent running, do not log off its computer after starting the
process. To secure the system and leave the process running, lock the computer (Windows
logo key+L).     

Restoring Tableau Password Recovery to Factory

Settings
If you encounter problems with TPR that cannot be resolved with the help of Guidance
Software technical support, technical support may ask you to restore the system to its original
image, using the Factory Restore Blu-ray disk.

1. Turn off TPR.

2. Connect an external USB Blu-ray drive to a USB port on the TPR.
CHAPTER 2   Installation and Configuration 35

3. Insert the Factory Restore Blu-ray disk into the drive.

4. Turn on TPR.
5. Press F8 during POST. The boot menu displays.
6. Select the external drive as the boot device from the boot menu.
7. Follow the prompts displayed on the LCD to revert your system to its original state.
36 Tableau Password Recovery User Guide Version 1.3
CHAPTER 3
RECOVERING PASSWORDS
In this chapter

Overview 39

Recovering Passwords from within EnCase 39

Viewing Recovered Files and Passwords 42

38 Tableau Password Recovery User Guide Version 1.3
CHAPTER 3   Recovering Passwords 39

Overview
This chapter describes how to use TPR to unlock files, partitions, and drive volumes (all of
which is simply referred to as "files" in this section), and recover passwords from EnCase.

1. Select the files you want to unlock from your EnCase investigation or case.
2. Invoke the Password Recovery Assistant to forward the request to Passware Kit Forensic
and the Decryption Server.
3. Monitor the progress of the password recovery.
4. Retrieve the output of the recovery process.
5. View the unlocked files and recovered passwords, along with the original, encrypted files.

Recovering Passwords from within EnCase

You can use the Password Recovery Assistant to unlock files from your EnCase case or
evidence folder. The following examples are from EnCase Endpoint Investigator, but the
process is similar for other EnCase products.

TO UNLOCK FILES FROM ENCASE:

1. From your evidence folder, click the files you want to unlock. You can select one or more
individual files, or an entire Logical Evidence File.

Note: If the Protected File Analysis option was used during processing, the
Protection complexity column displays information about whether the file is
protected and the complexity of its encryption.

2. Right click the selected files, then select Password Recovery Assistant.
40 Tableau Password Recovery User Guide Version 1.3

3. Click Start Decryption. The Start Decryption dialog displays.

CHAPTER 3   Recovering Passwords 41

o Password Recovery System URL is the URL of the Passware Decryption Server.
The format is http://<server_name>>:8000. Enter the host name or IP
address of the TPR system, followed by the Decryption Server's port number
(8000 by default).
o Dictionary Location allows you to specify a folder containing an encase-
4passware.xml file. You can create this file by using the Passware Export fea-
ture on the EnCase Tools menu. This option is available after the evidence has
been indexed, or after running Analyze EFS. You can create your own dictionary
or download a dictionary from the Internet. To add a custom dictionary, use the
Extra Data option in the Passware Export feature and browse to the location of
your custom dictionary.
o Attack Type specifies the thoroughness of the decryption process.

Quick is the shortest and least thorough attack type.

Normal is the default and recommended level for most documents.
Thorough is for your most critical documents.
o Language: Choose from Arabic, Dutch, English, French, German, Italian, Por-
tuguese, Russian, and Spanish.
o Output Location is where the output of the decryption process is written. By
default, it is the EnCase Export directory of the currently opened case or invest-
igation.
42 Tableau Password Recovery User Guide Version 1.3

4. Click OK to submit your request to the Passware Decryption Server. The files are sub-
mitted and the Display Status screen displays.

o The Display Status screen provides information about each of the files you select
for password recovery. Full Path is the original location of the file.
o Press Refresh to retrieve the latest status information.
o To cancel password recovery for one or more files, check the box to the left of the
filename, then click Cancel Selected.

5. When the decryption process completes, click Retrieve Results. The Retrieve Results dia-
log displays.

o Check Open folder location to open the EnCase export folder where the files
were copied.
o Check Add results to current case to add the recovered files and passwords to
your case.

Viewing Recovered Files and Passwords

EnCase creates a Logical Evidence File (LEF) for each of the files you submit for password
recovery. The LEFs are added to the case folder that contains the original, password protected
files.

In the example below, the document word.doc was selected for decryption from the
PasswareSamples LEF.
CHAPTER 3   Recovering Passwords 43

After the password recovery process completes, a new LEF is added to the case. To view the
LEF added to the case, click View > Evidence. The Evidence tab displays.

To display an unlocked file and its recovered password, click its LEF.

The contents of the LEF include:

l The status of the password recovery process.

l A log that includes the recovered password.
l The XML output of the processing from TPR.
l The path of the original password protected file.

If Passware is able to decrypt the file type, a copy of the unlocked/decrypted file is also present
in the LEF.
44 Tableau Password Recovery User Guide Version 1.3

Linking to the Original File

If Passware was able to decrypt your file and the unlocked file is present in your LEF, it is
automatically linked to the original, password protected file.

To display the original file, right click the unlocked file in the Evidence tab and select Go to file. 

The original file displays.

CHAPTER 3   Recovering Passwords 45
46 Tableau Password Recovery User Guide Version 1.3
CHAPTER 4
SUPPORT

Overview 49

Find Support Online 49

Contact Guidance Software 52

48 Tableau Password Recovery User Guide Version 1.3
CHAPTER 4   Support 49

Overview
Guidance Software is committed to providing our customers with the best user experience
possible. There are a variety of ways for you to get the help you need, when you need it.

This section provides information on our various support resources.

l Technical Support
l Customer Service
l Sales

Find Support Online

Guidance Software provides an array of resources to help you find answers to your questions
online.

To access online support, navigate to www.guidancesoftware.com and click Support.

SALES
Links under Sales enable you to:

l Contact sales by phone or form submission

l Request a demo
l Call a sales representative
l Request a quote
l Locate your nearest reseller

TECHNICAL SUPPORT
Links under Technical Support enable you to:

l Find contact hours, phone numbers, and hours of availability

l Browse FAQs
l Call a technical support agent
l Register your product to receive future downloads
l Access customer community forums
l Join the customer community where you can:
o Access forums
o Read knowledge base articles
o Log and track issues
50 Tableau Password Recovery User Guide Version 1.3

o Chat with a representative

o Download documentation
o Download products

l Register your account

CUSTOMER SERVICE
Links under Customer Service enable you to:

l Find contact hours, phone numbers, and hours of availability

l Browse FAQs
l Call a technical support agent
l Register your product to receive future downloads
l Receive help immediately in the event of a breach
l Access customer community forums
l Join the customer community where you can:
o Access forums
o Read knowledge base articles
o Log and track issues
o Chat with a representative
o Download documentation
o Download products

l Register your account

Access the Customer Community

The customer community is an online meeting place where you can:

l Register your product

l Access forums
l Read knowledge base articles
l Log and track issues
l Chat with a representative
l Download documentation
l Download products

To access the customer community navigate to www.guidancesoftware.com/community.

CHAPTER 4   Support 51

View Customer Forums

The Guidance forums provide a rich repository of information:

l EnCase App Central offers downloadable user-created applications

l General discussion forums provide information about products and specific issues
l Non-English language forums are also available

In these forums you can learn from community members, ask questions, and share your
expertise with others.

To access the forums navigate to www.guidancesoftware.com/commmunity.

Browse the Knowledge Base

The knowledge base consists of articles on a variety of topics about Guidance Software
products.

The knowledge base is part of the Customer Community and may be accessed by navigating to
www.guidancesoftware.com/community.

Log and Track Issues

You can create a new support case to log issues, track existing cases, or request a new feature
through the customer community at www.guidancesoftware.com/community.

Register your Product

Register your Guidance Software product to receive product updates.

To register your product, navigate to www.guidancesoftware.com/register.

If you have trouble registering your product, contact Customer Service.

If you have trouble downloading updates after registering, contact Technical Support.

Register your Account

Registered owners of Guidance Software products gain access to the forums, knowledge base
articles, and other support resources contained within the Customer Community.
52 Tableau Password Recovery User Guide Version 1.3

To register your account, navigate to www.guidancesoftware.com and click Support >

Technical Support > Register Product. A registration form displays.

Provide all requested information. This helps us identify you as a registered owner of a
Guidance Software product. 

After you complete the registration form, click Register.

After submitting your form, you will receive an email. Once you have verified your email
address, your account will be reviewed and approved within 24 business hours.

Once your registration is approved, you can access the Customer Community by navigating to
www.guidancesoftware.com and clicking Support > Technical Support >
Customer Community.

Contact Guidance Software

There are many ways to contact Guidance Software if you want help, more information, or to
provide feedback.

l Contact Sales
l Contact Customer Service
l Contact Technical Support

Contact Sales

BY TELEPHONE:
626-229-9191
888-999-9712

BY ONLINE REQUEST:
Navigate to www.guidancesoftware.com and click Support > Sales to request a demo, speak to
a member of our sales team, or request a quote.

Contact Customer Service

BY TELEPHONE:
626-463-7964 (Monday through Friday, 7 am to 5 pm, Pacific Time)
866-229-9199
CHAPTER 4   Support 53

BY ONLINE REQUEST:
Navigate to www.guidancesoftware.com and click Support > Customer Service > Contact.

Contact Technical Support

Guidance Software provides telephone technical support 24 hours a day, excluding weekends
and holidays, through the regional support numbers listed below. All technical support
inquiries are automatically routed to either our US or UK office, depending on the time of day.

UNITED STATES:
Phone: +1 (866) 973-6577 or (626) 463-7977
Fax: +1 (626) 229-9199
1055 E. Colorado Blvd.
Pasadena, CA 91106

UNITED KINGDOM:
Phone: +44 (0) 1753-552252, Option 4
Fax: +44 (0) 1753-552232
Thames Central, 5th Floor
Hatfield Road
Slough, Berkshire UK SL1 1QE

EMEA AND APAC:

+800-4843-2623
For customers in the following countries, use your country's local exit code and call:
+800-GUIDANCE (4843-2623). Do not dial US country code 1.

l Australia
l Belgium
l China-North
l China-South
l Denmark
l Finland
l France
l Germany
l Hong Kong
l Italy
l Japan
l Malaysia
l Netherlands
l New Zealand
l Norway
l Poland
54 Tableau Password Recovery User Guide Version 1.3

l Singapore
l South Korea
l Spain
l Sweden

If you do not know your exit code, refer to http://www.howtocallabroad.com/codes.html. Dial

your country's exit code, then dial 800-4843-2623.

Chat with a Technical Services Engineer

Live chat is available with technical service engineers from 10 pm Sunday to 6 pm Friday, Pacific
Time.

To chat, navigate to www.guidancesoftware.com and click Support > Technical Support

> Customer Community.

On the Customer Community home page, open the left sidebar with the ALT + S keyboard
command, or by clicking the arrow in the left margin.

In the Live Chat area, click Start Chat.

INDEX F

Find Support Online 49

A
I
Access the Customer Com-
munity 50 Installation and
Configuration 11
Activating the Windows
License 14 Installation Files 14

Installing Passware Kit

Agent 29
C
Installing Passware Kit
Chat with a Technical Ser- Forensic 15
vices Engineer 54
Installing the Microsoft .NET
Configuring Passware Kit Framework 26
Agent 30
Installing the Passware
Configuring the Passware Decryption Server 16, 22
Decryption Server 23
Installing the Tableau Pass-
Contact Customer Service 52 word Recovery
Assistant 26
Contact Guidance
Software 52 Installing the Tableau Pass-
word Recovery
Contact Sales 52
Server 14
Contact Technical
Support 53
L
Creating a Passware Decryp-
tion Server Share Linking to the Original File 44
Folder 17
Locking the Passware Kit
Agent's Server 34
E Locking the Tableau Pass-
word Recovery
EnScript ii
Server 26
Log and Track Issues 51 Support Overview 49

Supported Files 10
M

Microsoft Windows License 13 T

Tableau Password Recovery Over-

view 5
O
The Tableau Password Recovery
Overview 7, 13, 39
Server 7

The Tableau Password Recovery

P Software 7

Passware Kit Forensic License 13

Product Licensing 13 V

Verifying Access to the Passware

Decryption Server's Shared
R Folder 28
Reading the Knowledge Base 51 Verifying the Connection to the
Recovering Passwords 37 Passware Decryption
Server 32
Recovering Passwords from
EnCase 39 Verifying the Installation 27

Register your Account 51 Verifying the Passware Kit Agent

Hardware 33
Register your Product 51
View Customer Forums 51
Restoring Tableau Password Recov-
ery Server to Factory Viewing Recovered Files and Pass-
Settings 34 words 42

Support 47