Dell Data Protection | Encryption Manual de instalación descargar pdf (Pagina 93)

Installation Guide 93

Template Descriptions

Aggressive Protection for All Fixed Drives and External Drives

This policy template is designed for organizations with a primary goal of enforcing strong security and risk avoidance

across the entire enterprise. It is best used when security is significantly more important than usability and the need for

less secure policy exceptions for specific users, groups or devices is minimal.

This policy template:

• is a highly restricted configuration, providing greater protection.

• provides protection of the System Drive and all Fixed Drives.

• provides Hardware Crypto Accelerator encryption (when a compatible Hardware Crypto Accelerator is detected on the

client computer).

• encrypts all data on Removable Storage devices, and prevents the use of non-encrypted Removable Storage devices.

• provides read-only optical drive control.

Class:

Windows

Portable

Device

(WPD)

Enabled

PARENT to the next policy. Set this policy to Enabled to use the

Subclass Windows Portable Device (WPD): Storage policy.

Setting this policy to Disabled disables the Subclass Windows

Portable Device (WPD): Storage policy - no matter what its

value.

Control access to all Windows Portable Devices.

Subclass

Windows

Portable

Device

(WPD):

Storage

Enabled

CHILD of Class: Windows Portable Device (WPD)

Class: Windows Portable Device (WPD) must be set to Enabled

to use this policy.

Full Access: Port does not have read/write data restrictions

applied.

Read Only: Allows read capability. Write data is disabled.

Blocked: Port is blocked from read/write capability.

Class:

Human

Interface

Device

(HID)

Enabled

Control access to all Human Interface Devices (keyboards,

mice).

Note: USB port-level blocking and HID class-level blocking is

only honored if we can identify the computer chassis as a

laptop/notebook form-factor. We rely on the computer's BIOS

for the identification of the chassis.

Class: Other Enabled Control access to all devices not covered by other Classes.

Policy

Aggress

Protect

for All

Fixed

Drives

and Ext

Drives

PCI

Reg

Data

Breach

Reg

HIPAA

Reg

Basic

Protect

for All

Fixed

Drives

and Ext

Drives

(Def)

Basic

Protect

for All

Fixed

Drives

Basic

Protect

for Sys

Drive

Only

Basic

Protect

for Ext

Drives

Enc Dis Description

User Experience Control Policies

Suppress

File

Contention

Notification

False

This policy controls whether users see notification pop-ups if an

application attempts to access a file while the client is processing

it.

Allow

Encryption

Processing

Only When

Screen is

Locked

False User-Optional False

True, False, User-Optional

When True, there will be no encryption or decryption of data

while the user is actively working. The client will only process

data when the screen is locked.

User-Optional adds an option to the system tray icon allowing

the user to turn this feature on or off.

When False, encryption processing will occur any time, even

while the user is working.

Enabling this option will significantly extend the amount of

time it takes to complete encryption or decryption.

1 2 ... 88 89 90 91 92 93 94 95 96 97 98 ... 101 102

Comentarios a estos manuales

Sin comentarios

Dell Data Protection | Encryption Manual de instalación Pagina 93

Comentarios a estos manuales

Relacionado con productos y manuales para Las licencias de software / actualizaciones Dell Data Protection | Encryption