1863

  • Updated on Feb 6, 2026
  • 1 minute(s) read
  • VN
 Prev Next

Title: How to open setup file encrypted by SFE Persistent encryption

Affected Version:

SecureDoc 8.5 SR1, 8.3

Environment:

Client which is deployed by SFE RMO Package with some settings at below is existing.

  • RMO is checked
  • SFE is enabled
  • Active "persistent encryption" is checked
  • Users may manage list of Applications that access encrypted files is checked

Summary: Unable to open a setup file which is encrypted by SFE Persistent encryption.

Issue: On the client device, right click on setup file (e.g. proxyi.exe) and encrypt it by using SFE Utility (user's key or device's key are accepted in this case). Setup file is encrypted successfully (e.g. proxyi-encrypted.exe). Try to open the encrypted setup file but unable to open with an error below.

Right click on SDPin, select Application Access Lists the SFE Global Application Access Lists windows will show. Move explorer.exe from Gray List to White List and Save Changes/ All changes are saved. Try to open setup file once again. Still unable to open the encrypted File.

Note:

  • Try adding that exe application to the White List, the issue still occurs.
  • This issue also occurs in case encrypting SFE folder containing exe file. Failed to open the setup file after encrypted.
  • This issue also occurs on SES 8.5.000.480
  • Running some file displayed the error message "The setup files are corrupted. Please obtain a new copy of the program." - starwindconverterError.JPG or "Cannot open virtual app data.
  • Please check that file isn't corrupted" - cameyoError.JPG
  • This issue NOT occurs with non-setup execute file (e.g. [ Guru3D]-InSpectre.exe_)

Workaround: The setup.exe is trying to read (extract) itself and rejected by SFE (process accessing encrypted file must be in white-list). If process is reading itself image - auto-white list it. However, some setups acts differently, e.g. create temp process with random name and trying to extract .exe. E.g. starwindconverter-encrypted.exe created and run process STARWINDCONVERTER-ENCRYPTED.TMP in temp folder.

Note: The user still able to decrypt setup.exe by SFE utility (if available).

Related articles