Coming Soon: GET:IT Endpoint Management 1-Day Conference on September 28th at 9:30 AM ET Coming Soon: GET:IT Endpoint Management 1-Day Conference on September 28th at 9:30 AM ET
Security

Create a mountable virtual encrypted hard drive in Windows Vista using TrueCrypt

TrueCrypt is a free, open-source application for Windows XP and Windows Vista that will create a mountable, virtual, encrypted, hard disk. The encrypted files can be easily transported to mobile media including thumb drives, CDs, external hard drives, etc. The entire process is graphical and can be completed by users of any experience level. TrueCrypt accepts command line parameters which allows you to create a batch file to automatically mount your encrypted virtual hard disk. TrueCrypt will dynamically increase the size of your partition if you run out of drive space.

Install TrueCrypt

The first step is to download and extract TrueCrypt from the project homepage. Double click TrueCrypt Setup to begin.

If you are prompted for an administrator password or confirmation, type the password or provide confirmation. Leave the default installation path and leave all five text boxes selected and click Install.

Sponsored Content

Say Goodbye to Traditional PC Lifecycle Management

Traditional IT tools, including Microsoft SCCM, Ghost Solution Suite, and KACE, often require considerable custom configurations by T3 technicians (an expensive and often elusive IT resource) to enable management of a hybrid onsite + remote workforce. In many cases, even with the best resources, organizations are finding that these on-premise tools simply cannot support remote endpoints consistently and reliably due to infrastructure limitations.

TrueCrypt will create a system restore point and begin the installation process. It will take several minutes, click Ok.

TrueCrypt Setup will prompt you to review the documentation. The documentation is very thorough and well worth the read, however, for the purposes of this tutorial click No.

In the TrueCrypt Setup dialog, choose Exit.

Create A TrueCrypt Encrypted Volume

Launch TrueCrypt from the Start menu (Start >> All Programs >> TrueCrypt >> TrueCrypt)

Click Create Volume.

Leave the default selection as “Create a standard TrueCrypt Volume” and click Next.

Click Select File…

Create a file at C:’Users’USERNAME’Encryption and click Save.

Click Next.

Leave the default Encryption Algorithm as AES and the Hash Algorithm as RIPEMD-160 and click Next.

Select a size for your volume. I will select 200 MB and click Next.

Enter a password and click Next.

If you do not enter a password 20 or more characters in length, TrueCrypt will suggest that you increase the strength of your password, click Yes.

Leave the Filesystem as FAT, the Cluster as Default, leave the Random Pool check box selected and click Format.

Congratulations, the TrueCrypt volume was successfully created. Click Ok.

On the Volume Created prompt click Exit.

Your volume is completely created. However, before you can begin creating encrypted files, you need to mount the encrypted volume.

Mount a TrueCrypt Encrypted Volume

Select any drive letter and click Select File… navigate to the C:’Users’USERNAME’Encryption file we created previously and click Mount.

Enter your password and click Ok. Your new encrypted volume should be visible in your Computer.

Anything you save to this newly mounted drive will be encrypted and stored in the C:’Users’USERNAME’Encryption file. If you would like to transport your encrypted files, just take the C:’Users’USERNAME’Encryption file with you. To unmount your encrypted drive click Unmount.

In order to automatically mount your hard drive with a script, copy the truecrypt.sys and truecrypt-x64.sys files into C:’Windows. Open Notepad (Start >> All Programs >> Accessories >> Notepad) and copy and paste the following into the file:

​@echo off

cls

Set /P pw=”Password: “

truecrypt /v C:'Users'USERNAME'Encryption /l i /m /a /p %pw% /q

cls

Remember to replace “USERNAME” with your username. Save the file as C:’Windows’System32’Encryption.bat and whenever you launch the batch file and enter your password, your encrypted volume will mount.

Note: Your password will be displayed briefly as you type it. The most secure way to mount your drive would be to manually do it through TrueCrypt.

Recent Security Forum threads

Got a question? Post it on our Security Forums!

Related Topics:

Live Webinar: Active Directory Security: What Needs Immediate Priority!Live on Tuesday, October 12th at 1 PM ET

Attacks on Active Directory are at an all-time high. Companies that are not taking heed are being punished, both monetarily and with loss of production.

In this webinar, you will learn:

  • How to prioritize vulnerability management
  • What attackers are leveraging to breach organizations
  • Where Active Directory security needs immediate attention
  • Overall strategy to secure your environment and keep it secured

Sponsored by: