Reference Guide
Manage Policies
250
External Media is True, but this
policy is False, data can be read
from the unencryptable media, but
write access to the media is blocked.
If EMS Encrypt External Media is
False, then this policy has no effec
t
and access to unencryptable media is
not impacted.
See advanced settings
Policy Default Setting Description
Media Encryption Settings
This technology allows definition of what media encryption events to retain in logs.
Event Retention
"security", "fail", "30"
"security", "success", "30"
"application", "error", "30"
"application", "warn", "15"
"application", "info", "5"
"application", "debug", "5"
Defines the amount of time (in days)
that Encryption External Media, and
PCS event types are maintained in the
event log.
Each event type is defined by
category and level. You may set
different retention times for each
event level in each category.
The Security category represents
events related to user
authentication, authorization, or
encryption. This includes events for
Dell-encrypting devices, updating
security policies, or failed
authentication attempts. Security
events are further differentiated by
a fail or success indicating the
outcome of the event.
The Application category (application
type event, rather than a security
type event) represents events related
to general application actions. These
events are further differentiated by
a set of severity levels - error,
warn, info, and debug.
You should use
longer retention times for more
severe levels.
Removable Media Policies that Require Logoff
• Windows Media Encryption
• EMS Scan External Media
• EMS Encryption Algorithm
• EMS Exclude CD/DVD Encryption
• EMS Data Encryption Key