Manualshelf

Reference Guide

ManualsBrandsDell ManualsConverged InfrastructureEncryption
71727374757677787980
Security Management Server Virtual v10.2.10 AdminHelp
65
4. Click Modify.
5. Make changes as desired.
6. Click Update Group.
VDI Endpoint Groups
Upon activation, a VDI endpoint is added to the appropriate VDI Endpoint Group on Dell Server, and
policies are sent to the endpoint. Persistent VDI Endpoint Groups and Non-Persistent VDI Endpoint
Groups are System Endpoint Groups, which are maintained by Dell Server.
Policy settings differ, based on whether persistent or non-persistent VDI is deployed in the environment.
For an explanation of the differences between persistent and non-persistent VDI, see
Persistent vs.
Non-Persistent VDI.
Policy and Configuration Requirements for VDI Endpoint Groups
The policy requirements below are for VDI endpoints running Advanced Threat Prevention. The list
includes only policies that are significant for VDI endpoints. VDI User policy settings must also meet
certain requirements. See Policy and Configuration Requirements for VDI Users
.
Note: Ensure that you turn off Advanced Threat Prevention Agent Auto Update. In the left pane of the
Management Console, select Management > Services Management > Advanced Threats - Agent
Auto Update, then select Off.
Note: With Persistent VDI Groups, ensure that roaming user profiles are configured.
These policy and configuration settings for VDI Endpoint Groups must be configured before VDI client
activation:
Technology Category
Policy or
Setting
Persistent VDI
Group setting
Non-
Persistent VDI
Group setting
Windows Encryption
Self-Encrypting Drive
(SED)
Self
-Encrypting Drive
(SED)
Off Off
Windows Encryption
Hardware Crypto
Accelerator (HCA)
Hardware Crypto
Accelerator (HCA)
Off Off
Windows Encryption
Policy-Based
Encryption
SDE Encryption Enabled
Not Selected Not Selected
Windows Encryption
Policy-Based
Encryption
Common Encrypted
Folders
<retain default
settings>
<retain default
settings>
Windows Encryption
Policy-Based
Encryption
Encrypt Windows Paging
File
Not Selected Not Selected
Windows Encryption
Policy-Based
Encryption
Secure Windows
Credentials
Not Selected Not Selected
Windows Encryption
Policy-Based
Encryption
Block Unmanaged Access
to Domain Credentials
Not Selected Not Selected
Windows Encryption
Policy-Based
Encryption
Secure Windows
Hibernation File
Not Selected Not Selected
Windows Encryption
Policy-Based
Encryption
Prevent Unsecured
Hibernation
Not Selected Not Selected