What is the {4bb8218c-aebf-4113-882f-b10ae15c8218} directory?

  • 7009965
  • 09-Jan-2012
  • 30-Aug-2016

Environment

Novell ZENworks 11 Configuration Management Support Pack 1 - ZCM 11 SP1

Situation

What is the directory in C:\Windows\system32\drivers\{4bb8218c-aebf-4113-882f-b10ae15c8218}?

Resolution

C:\Windows\system32\drivers\{4bb8218c-aebf-4113-882f-b10ae15c8218} is an encrypted folder that is used to store ZESM (ZENworks Endpoint Security Management) policies. 

The folder contains the latest security enforcement policies used by the ZESM drivers that need to be enforced at boot time/ before the ZESM Agent is up and able to decide the security policies.
 
Agent Self Defense default is off, so this directory does not get File Access Protection and can therefore be deleted. Causing a unseen by the user, loss of functionality.  If Agent self defense is on, this can't be deleted.

Additional Information

Due to an issue with Windows system restore ZESM File System Driver Secure Store  “{4bb8218c-aebf-4113-882f-b10ae15c8218}” was  moved  from "C:\Windows\system32\drivers\"  to "C:\".