Skip to main content
Code42 Support

Endpoint monitoring not compatible with upgraded encryption settings

Applies to:
  • Code42 CrashPlan (previously CrashPlan PROe)


Attempting to enable endpoint monitoring in an organization that uses enhanced archive encryption key security results in one of the following error messages:

  • Your changes cannot be applied because one or more organizations use upgraded encryption settings.
  • Your changes cannot be applied because this organization or child organizations use upgraded encryption settings.

Endpoint monitoring and enhanced archive security cannot be used at the same time. Enhanced archive security settings prevent access to a user's archives from any external source, including a Code42 server attempting to perform endpoint monitoring functions.


Code42 server version 5.2.x and later


  • When inheritance is enabled, these archive security settings apply to child organizations and the user accounts within those organizations.
  • Enhanced archive security may be enabled by:

Recommended solution

Do not use endpoint monitoring for organizations or user accounts that use enhanced archive security settings.

Alternative solution

Starting backups over
Since endpoint monitoring cannot be enabled for users with enhanced archive security, you must perform a new backup with standard archive encryption for each affected user (see steps below).
  1. Sign in to the administration console.
  2. Select Users > Add A New User to create a new account for each user with enhanced archive security.
  3. Lock the archive encryption key setting:
    • System-wide: Go to Settings > Device Backup > Security.
    • Single organization:
      1. Go to Organizations.
      2. Select An Organization.
      3. In the upper-right corner, click the action menu.
      4. Select Device Backup Defaults.
      5. Select Security.
  4. From Archive Encryption Security, select Standard.
  5. Click the lock icon.
    This prevents users from changing this setting.
  6. Instruct each user to sign in to the CrashPlan app using the new account and click Start Backup.
  7. Wait for the new backups to be 100% complete.
  8. Deactivate the user accounts with enhanced security.
    After deactivation, the files backed up by these accounts cannot be restored, so it is important to make sure the backups for the new users are complete.
  9. Enable endpoint monitoring.