Reference Guide

ManualsBrandsDell ManualsConverged InfrastructureData Guardian

101

102

103

104

105

106

107

108

109

110

Dell Security Center v10.2.7 AdminHelp

powerpnt.exe:NoRename.png.jpg.jpeg.jpe.jfif.gif.tif.tiff.bmp

Note: Do not add Office file extensions to this policy configuration.

• NoNetwork – if users io to a network and files hang when users close them, add this

to the application to prevent network save.

8. Before deploying Basic File Protection to the enterprise, be sure to test applications and file

extensions in a test environment to ensure that the intended file types remain encrypted. Also,

you can download procmon (process monitor) to determine file types that might create an issue

for that application.

9. Inform users:

• Which applications and file types your enterprise encrypts

• Which operating systems can be used and whether files are read only or can be edited

• Files sent to external users or to devices that do not have Data Guardian installed

Configure policy to exclude folders for Basic File Protection (Windows and Mac)

After you enter file types, like .txt or .png, in the Basic File Protection Configuration policy field, a sweep

will encrypt those files on the client computers.

You may want to exclude some of those file types, for example:

• To prevent files needed by the system from being encrypted

• To create a folder where users can place files of that type that do not require encrypting

In the Folder Exclusions for Basic File Protection policy, enter the path for a folder on client computers

to exclude files from a Basic File Protection sweep.

Note: You cannot exclude the Secure Documents folder.

Windows example

Enter the string in one of these formats based on type:

• C:\Program Files, System, or a subfolder in those paths - for files needed by the system

• Variables with a %VALUE% format

• KNOWNFOLDERID - for Windows-specified known-folder ID mappings. For example, enter a

string for a uniquely named folder like My Excluded Basic File Types and then tell users to

create that folder in their User Profile. Here are examples of supported formats for Known

Folder ID mappings:

• GUID with dashes:

D0384E7D-BAC3-4797-8F14-CBA229B392B5

• GUID without dashes:

D0384E7DBAC347978F14CBA229B392B5

• GUID with dashes and curly brackets:

{D0384E7D-BAC3-4797-8F14-CBA229B392B5}

If the computer has more than one user, only the current logged-in user can place files in that folder and

have them excluded from the sweep. Any files that another user has placed in that folder will be swept

and encrypted.