Deployment Guide
Table Of Contents
- Dell Encryption Personal Installation Guide v11.1
- Contents
- Overview
- Requirements
- Download the Software
- Installation
- Advanced Authentication and Encryption Personal Setup Wizards
- Configure Console Settings
- Uninstall the Master Installer
- Uninstall Using the Child Installers
- Data Security Uninstaller
- Policies and Template Descriptions
- Policies
- Template Descriptions
- Aggressive Protection for All Fixed Drives and External Drives
- PCI Regulation Targeted
- Data Breach Regulation Targeted
- HIPAA Regulation Targeted
- Basic Protection for All Fixed Drives and External Drives (Default)
- Basic Protection for All Fixed Drives
- Basic Protection for System Drive Only
- Basic Protection for External Drives
- Encryption Disabled
- Extract Child Installers
- Troubleshooting
- Glossary
Policy Aggre
ssive
Protec
tion
for All
Fixed
Drives
and
Extern
al
Drives
PCI
Regula
tion
Data
Breac
h
Regula
tion
HIPAA
Regula
tion
Basic
Protec
tion
for All
Fixed
Drives
and
Ext
Drives
(Defau
lt)
Basic
Protec
tion
for All
Fixed
Drives
Basic
Protec
tion
for
Syste
m
Drive
Only
Basic
Protec
tion
for
Extern
al
Drives
Encry
ption
Disabl
ed
Description
Applicatio
n Data
Encryptio
n List
winword.exe
excel.exe
powerpnt.exe
msaccess.exe
winproj.exe
outlook.exe
acrobat.exe
visio.exe
mspub.exe
notepad.exe
wordpad.exe
winzip.exe
winrar.exe
onenote.exe
onenotem.exe
String - maximum of 100
entries of 500 characters
each
Dell recommends not
adding explorer.exe or
iexplorer.exe to the
ADE list, as unexpected
or unintended results
may occur. However,
explorer.exe is the
process used to create
a new Notepad file
on the desktop using
the right-click menu.
Setting encryption by file
extension, instead of the
ADE list, provides more
comprehensive coverage.
List process names
of applications (without
paths) whose new files you
want encrypted, separated
by carriage returns. Do not
use wildcards.
Dell recommends
not listing applications/
installers that write
system-critical files. Doing
so could result in
encryption of important
system files, which
could make a computer
unbootable.
Common process names:
outlook.exe, winword.exe,
powerpnt.exe,
msaccess.exe,
wordpad.exe, mspaint.exe,
excel.exe
The following hard-coded
system and installer
process names are ignored
if specified in this policy:
hotfix.exe, update.exe,
setup.exe, msiexec.exe,
wuauclt.exe,
wmiprvse.exe, migrate.exe,
unregmp2.exe, ikernel.exe,
wssetup.exe, svchost.exe
Policies and Template Descriptions
45