Trellix: Drive Encryption - SaaS 8.1.1 Now Available

We are proud to announce the General Availability of Trellix Drive Encryption (TDE) - SaaS 8.1.1 released on April 15, 2026.

The TDE - SaaS 8.1.1 update addresses the upcoming expiration of the Microsoft Unified Extensible Firmware Interface (UEFI) 2011 Certificate Authority (CA), and the upgrade to the MS UEFI 2023 Certificate Authority (CA). 

In June 2026, Microsoft plans to expire the 2011 Certificate utilized by customers of TDE for pre-boot in Windows 10 and later. While the existing certificates may not be revoked immediately, it is recommended that customers update the impacted systems and transition to TDE 8.1.1 as soon as possible.

When the certificates are revoked by Microsoft or hardware vendors, this could cause significant operational impacts for organizations that have not upgraded.   

This upgrade ensures hardware compatibility with modern UEFI requirements, protects data integrity, and eliminates the risk of system failures associated with the retiring certificate.

Important: 

• Before deploying TDE - SaaS 8.1.1, administrators must update the Secure Boot database with "Microsoft UEFI CA 2023" and "Microsoft Option ROM UEFI CA 2023" on all Windows 10 and later systems. If the UEFI secure boot database is not updated with the CA 2023 certificate, the upgrade to TDE 8.1.1 will intentionally abort.
   
• Important note for customers also using Trellix Native Drive Encryption (TNE): Prior to initiating any certificate updates, it is strongly advised to verify that recovery keys are accessible in every system. Customers may be impacted by a known issue when a Cloud Native Identity Management system is in use on the endpoint, such as EntraID (AzureID).  
  
  Note: Endpoints with an Active Directory ID are not affected. Key availability can be verified in ePolicy Orchestrator.
  
  For more details, see the Knowledge article Important update for Trellix Native Drive Encryption for Cloud Identity Managed users.

See the following documentation for additional information and detailed instructions:

• ​​​​​​​Release Notes and product documentation
  • Release Notes
  • Installation Guide
  • Product Guide
     
• Knowledge articles and FAQ link:
  • Supported platforms for Trellix ePolicy Orchestrator - SaaS
  • Supported platforms for Trellix Drive Encryption - SaaS
  • Trellix Drive Encryption 8.1.1 On-Prem and SaaS FAQ​​

Note: To receive information about product updates, sign up for the Support Notification Service.
For instructions, see the Thrive Portal User Guide and navigate to Profile and Settings > My Settings > Manage Support Notification Services (SNS) subscription preferences.