Reference Guide

ManualsBrandsDell ManualsConverged InfrastructureData Guardian

121

122

123

124

125

126

127

128

129

130

Dell Security Center v10.2.7 AdminHelp

117

Protected Office Documents is On

Cloud Encryption is Off

Office documents are protected based on policies.

No DDG VDisk virtual drive is created. Non-Office

documents are not impacted.

If Force Protected Files Only is selected, an

Unprotected folder is added to the root of the

user's Documents folder.

N/A

Cloud Encryption is On

Protected Office Documents is Off

Office and non-Office documents are protected as

.xen files based on policies set.

A DDG VDisk virtual drive displays in the client's

Windows Explorer.

Office and non-Office documents are protected as

.xen files based on policies set.

Both are On

Non-Office documents are protected as .xen files if

in the DDG VDisk virtual drive.

A DDG VDisk virtual drive displays in the client's

Windows Explorer.

Office documents have different levels of security

based on policy. If protected, the Office document

retains its extension in the cloud but unauthorized

users cannot access it.

Additional policies impact Office documents.

Non-Office documents are protected as .xen files.

Office documents are protected based on

Protected Office policies.

Neither is On

Files are not protected. If opened, content displays

in cleartext.

Files are not protected. If opened, content

displays in cleartext.

Enable Both Cloud Encryption and Protected Office Documents (Windows 2.3 and earlier)

If you enable both policy groups, Protected Office documents differ from non-Office documents in some

areas:

• If the Cloud Storage Protection Providers policy is set to Allow and does not encrypt non-Office

files, protected Office documents still maintain any protection status.

• If the Excluded Folders policy excludes a particular folder from encryption, protected Office

documents still maintain any protection status if copied to those folders.

Configure Access Groups

Data Guardian's Access Groups (formerly Circle of Trust) enhance security by creating user groups that

can collaborate on encrypted data. Users outside a group cannot access or view the data unless the

owner of the file grants access. Access Groups can include internal and external users. You can use

Access Groups with Windows, Mac, mobile, and web portal.

Data Guardian encrypted files:

• Internal users within an access group have access to encrypted data.

• Internal users outside an access group or external users do not have access but can request

access.

Important: Currently, if you enable Access Groups in the Management Console, you cannot disable it.

To configure access groups, complete the following:

• Set up Access Groups

• Determine whether the enterprise already has Data Guardian installed. Implementation will be

easier if you have a brief transition period where you allow users with shared files to prepare a

plan for shared files. Do one of these:

o Enterprise_does_not_yet_have_Data_Guardian - Transition time differs based on

Force-Protected or Opt-in mode. Instruct users to process shared files.