To enable Removable Media Encryption:
- Log on to the console of your PolicyServer for Endpoint Encryption.
- Go to the group where you want to enable the Encryption for Removable Media.
- Open the group and go to Policies > File Encryption > Encryption > Removable Media.
- Select one of the following options:
Only one of these options can be active in a policy group at a time.
This option encrypts every content that is copied and/or created on the removable media.
Do the following:
- Double-click FullyEncryptDevice.
- On the next window that opens, set the Policy Value to Yes.
If you want the Subgroups of this group to inherit this policy, mark the Save to subgroups checkbox. - After setting the policy that you want, click OK.
This option enables you to specify a folder(s) or path on a removable media that should encrypt its content. If the folder(s) or path does not exist on a device, it automatically creates a folder or path once it is plugged into a computer running File Encryption with this policy set.
Do the following:- Right-click FoldersToEncryptOnRemovableMedia and select Add.
- On the next window that opens, enter the name of your desired folder to be created on the removable media. This will be used by the File Encryption client to encrypt the content.
- After setting the policy that you want, click OK.
You will now see the folder that you have entered.
To remove or edit the policy, right-click the policy and select any of options below:
- Remove: This removes the policy selected.
- Properties: This opens the edit policy window where you can review or edit the folder/path name.
- Double-click FullyEncryptDevice.
The policies for removable drives can be deployed from Apex Central. For information refer to Chapter 28 of the Widget and Policy Management Guide.