SecureCloud automatically applies a default policy to all unallocated machines and devices that are in the inventory.
The default policy specifies that encryption key requests must be approved manually. However, administrators can create new rules for the default policy to change how the policy responds to encryption key requests.
Administrators are not allowed to delete the default policy or remove machines and devices from the default policy if no other policy exists.
Note: If administrators create a policy but do not define any rules, all encryption key requests for machines and devices assigned to that policy must be manually approved.
- On the Policies screen, click Add Policy.
- Supply a descriptive policy Name. If desired, provide a Description of the policy.
- Define rules for encryption key requests.
- Define what action SecureCloud takes for encryption key requests based on the rule criteria.
- If you select the action Manual approve, you have the option to automatically approve key requests after a specified period of time has passed.
- If desired, select Enable Integrity Check. If you select this option, SecureCloud can perform on-demand or scheduled perform integrity checks.
- At this point in the policy creation process you have two options:
- Click Finish to save the policy.
- Click Next and assign the policy to machines currently assigned to the default policy.
- On the Policies screen, click the hyperlinked policy name.
- On the Policy Information area, modify the policy name, description, policy rules, the key encryption request actions, or the machines assigned to the policy.
The option to enable integrity checking is on the Actions tab.
On the Policies screen, select the policy to delete and click Delete.