Dell Data Protection | Encryption Installationshandbuch PDF herunterladen (Seite 91)

Installation Guide 91

EMS

Encryption

Rules

Encryption rules to be used to encrypt/not encrypt certain

drives, directories, and folders.

A total of 2048 characters are allowed. “Space” and “Enter”

characters used to add lines between rows count as characters

used. Any rules exceeding the 2048 limit are ignored.

Storage devices which incorporate multi-interface connections,

such as Firewire, USB, eSATA, etc. may require the use of both

EMS and encryption rules to encrypt the endpoint. This is

necessary due to differences in how the Windows operating

system handles storage devices based on interface type.

To ensure encrypting an iPod via EMS does not make the device

unusable, use the following rules:

-R#:\Calendars

-R#:\Contacts

-R#:\iPod_Control

-R#:\Notes

-R#:\Photos

You can also force encryption of specific file types in the

directories above. Adding the following rules will ensure that

ppt, pptx, doc, docx, xls, and xlsx files are encrypted in the

directories excluded from encryption via the previous rules:

^R#:\Calendars;ppt.doc.xls.pptx.docx.xlsx

^R#:\Contacts;ppt.doc.xls.pptx.docx.xlsx

^R#:\iPod_Control;ppt.doc.xls.pptx.docx.xlsx

^R#:\Notes;ppt.doc.xls.pptx.docx.xlsx

^R#:\Photos;ppt.doc.xls.pptx.docx.xlsx

Replacing these five rules with the following rule will force

encryption of ppt, pptx, doc, docx, xls, and xlsx files in any

directory on the iPod, including Calendars, Contacts,

iPod_Control, Notes, and Photos:

^R#:\;ppt.doc.xls.pptx.docx.xlsx

These rules disable or enable encryption for these folders and file

types for all removable devices - not just an iPod. Use care when

defining rules to exclude an iPod from encryption.

These rules have been tested against the following iPods:

iPod Video 30gb fifth generation

iPod Nano 2gb second generation

iPod Mini 4gb second generation

We do not recommend the use of the iPod Shuffle, as

unexpected results may occur.

As iPods change, this information could also change, so caution

is advised when allowing the use of iPods on EMS-enabled

computers.

Because folder names on iPods are dependent on the model of

the iPod, we recommend creating an exclusion encryption policy

which covers all folder names, across all iPod models.

EMS Block

Access to

UnShieldabl

e Media

Tru e False

Block access to any removable storage that is less than 17 MB

and thus has insufficient storage capacity to host a Removable

Media Shield (such as a 1.44MB floppy disk).

All access is blocked if Encrypt External Media and this policy

are both True. If Encrypt External Media is True, but this policy

is False, data can be read from the unencryptable removable

storage, but write access to the media is blocked.

If Encrypt External Media is False, then this policy has no effect

and access to unencryptable removable storage is not impacted.

Policy

Aggress

Protect

for All

Fixed

Drives

and Ext

Drives

PCI

Reg

Data

Breach

Reg

HIPAA

Reg

Basic

Protect

for All

Fixed

Drives

and Ext

Drives

(Def)

Basic

Protect

for All

Fixed

Drives

Basic

Protect

for Sys

Drive

Only

Basic

Protect

for Ext

Drives

Enc Dis Description

Port Control Policies

Port Control

System

Disabled

Enable or Disable all Port Control System policies. If this policy

is set to Disable, no Port Control System policies are applied,

regardless of other Port Control System policies.

Note: PCS policies require a reboot before the policy takes

effect.

Port: Express

Card Slot

Enabled

Enable, Disable, or Bypass ports exposed through the Express

Card Slot.

1 2 ... 86 87 88 89 90 91 92 93 94 95 96 ... 101 102

Kommentare zu diesen Handbüchern

Keine Kommentare

Dell Data Protection | Encryption Installationshandbuch Seite 91

Kommentare zu diesen Handbüchern

Verwandte Produkte und Handbücher für Softwarelizenzen / Upgrades Dell Data Protection | Encryption