Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 7 replies
  • Answers 1 answer
  • Subscribers 8 subscribers
  • Views 21623 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Device encryption is not yet enabled by policy

Phil Ruelle

Hi,

Possibly the same issues as a previous post (https://community.sophos.com/products/sophos-cloud/f/sophos-central/92583/encryption---device-encryption-is-not-yet-enabled-by-policy) but there was no resolution posted to that.

  1. I've signed up for a Sophos Central Trial
  2. I've installed the Sophos Endpoint software onto a laptop
  3. The laptop is registered in Sophos Central
  4. I've created an encryption policy and applied it to the device
  5. The device says 'Device encryption is not enabled' and Sophos Central says the device encryption is 'unmanaged'.

Can anyone help me resolve this?

Many thanks,

Phil



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to Phil Ruelle

    Hi Phil,

    Please find below the screenshot which shows that Device Encryption is disabled.

     

    Haridoss Sreenivasan
    Technical Support Engineer | Sophos Technical Support
    Knowledge Base  |  @SophosSupport  |  Video tutorials
    Remember to like a post.  If a post (on a question thread) solves your question use the 'This helped me' link.

  • 0 in reply to Haridoss Sreenivasan

    Hi Haridoss,

    I deliberately avoided turning that on because it says 'ignore the settings in this policy' and on the policy page it shows this policy as being 'enforced', so my assumption was it is used to turn the policy off! Plus underneath is a setting that says 'Enable encryption of endpoints' which sounds a lot like the setting you need to turn it on

    Based on your advice I have selected it. The policy page still says 'enforced' and the client device, despite being restarted twice, and leaving it for a couple of hours still hasn't shown any signs of trying to encrypt. If I check the Computer page it shows that the device last activity was 3 minutes ago (following another restart) and it has updated 3 times this afternoon.

     

    Thanks,

    Phil

     

     

  • +1 in reply to Phil Ruelle

    Hi Haridoss,

    We have it sorted. We clicked the 'Manage Endpoint Software' button on the computers tab and for some reason our test device appeared under 'eligible computers' rather than 'assigned computers'. Once we selected the device and moved it into the assigned column it caused the laptop encryption to start.

    I think there are some UI and process improvements that would help circumvent these issues but thank you for your help, and I'm pleased to be able to finally test the product.

     

    Best regards,

    Phil

Unfiltered HTML