SafeGuard Enterprise 550 questions

Question

Hi All,

I am new to SafeGuard, i still have many things which i am unclear of now.

1) Active Directory. If i do not synchronize my AD with the SGN, and i just create a domain myself. How do i add users to it? I assume when a new user connects to SGN, he will be added to auto.registered container.. how to do i move this user to the domain i created? I noticed the Move button is greyed out.

2) Local Storage Encryption. I configured a local storage encyption policy with the purpose of encypting our notebooks (HDD). But i recieved feedback that the policy is encrypting mobile devices that are detected as usb storage by Windows. Is there any way i can prevent this?

This thread was automatically locked due to age.

DSchwartzberg · Accepted Answer

ivanwee wrote: 
 Hi, this is very helpful, thanks alot!

Another question, it seems after i have encrypted a harddrive, UNCs to the its share drive starts to fail. Tech support told me if i need to access shares of the encrypted volumes, i need to have their keys. This sounds fine as i can assign my admins all the machine keys in my company.

But i have been thinking about this.. why is it that my managed applications are still running fine? Apps like anti-virus, inventory agents, etc. Why is it that my remote management servers are still able to connect to agents running in the encypted, whereas if i connect to a share, i need to supply the keys..

Hi ivanwee,

The issue you are experiencing is generally related to the IRPStack. The network resources can become unavailable if there are enough 3rd party drivers accessing the stack. So, to fix this we have a KBA which identifies the registry change to make.

I'm a bit confused about the answer Tech Support provided. That response sounds like the response to read an encrypted drive that's in an enclosure. With SGN DE, to access a FDE encrypted share you only need authentication credentials and not the encryption key. :3821