Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 1 reply
  • Answers 1 answer
  • Subscribers 8 subscribers
  • Views 900 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Central Encryption - user based policy??

Pavel Vanek

Hallo,

I test Sophos Central Encryption software. I see that it desnt do much more than manages Bitlocker in certain way. It turns on the encryption, stores keys, forces PIN and prevents user from switching it off. OK it is what I need and all is computer realted business.

What I dont get is "User Based Policy". I would say that Encryption must be asociated to computer therefore the policy is suposed to be device related one. The encryption is supposed to take place before the computer even starts.

Why there is "User Based Policy"?

Thank you much for pointing the direction. Pavel



This thread was automatically locked due to age.
Parents
  • 0

    Hi  

    Central device encryption supports both Windows and MAC machines to manage BitLocker and FileVault encryption for respective machines.

    As you mentioned above Device encryption just manages these two encryptions on the respective operating system.

    BitLocker is device-specific irrespective of numbers of user profiles on the machine, While FileVault is user-specific.  

    FileVault stores user profile's password as the passphrase to unlock the hard drive while BitLocker uses the unique key to unlock the hard drive, irrespective of users.

    For more information on the FileVault, please refer to this link.

    Because of FileVault and BitLocker support, we have provided two types of policy for device encryption, please refer the setting section in this link.

    Regards,

    Jasmin
    Community Support Engineer | Sophos Support
    Sophos Support VideosKnowledge Base  |  @SophosSupport | Sign up for SMS Alerts |
    If a post solves your question use the 'This helped me' link

Reply
  • 0

    Hi  

    Central device encryption supports both Windows and MAC machines to manage BitLocker and FileVault encryption for respective machines.

    As you mentioned above Device encryption just manages these two encryptions on the respective operating system.

    BitLocker is device-specific irrespective of numbers of user profiles on the machine, While FileVault is user-specific.  

    FileVault stores user profile's password as the passphrase to unlock the hard drive while BitLocker uses the unique key to unlock the hard drive, irrespective of users.

    For more information on the FileVault, please refer to this link.

    Because of FileVault and BitLocker support, we have provided two types of policy for device encryption, please refer the setting section in this link.

    Regards,

    Jasmin
    Community Support Engineer | Sophos Support
    Sophos Support VideosKnowledge Base  |  @SophosSupport | Sign up for SMS Alerts |
    If a post solves your question use the 'This helped me' link

Children
No Data
Unfiltered HTML