Deployment Guide
Policy Aggre
ssive
Protec
tion
for All
Fixed
Drives
and
Extern
al
Drives
PCI
Regula
tion
Data
Breac
h
Regula
tion
HIPAA
Regula
tion
Basic
Protec
tion
for All
Fixed
Drives
and
Ext
Drives
(Defau
lt)
Basic
Protec
tion
for All
Fixed
Drives
Basic
Protec
tion
for
Syste
m
Drive
Only
Basic
Protec
tion
for
Extern
al
Drives
Encry
ption
Disabl
ed
Description
Applicatio
n Data
Encryptio
n List
winword.exe
excel.exe
powerpnt.exe
msaccess.exe
winproj.exe
outlook.exe
acrobat.exe
visio.exe
mspub.exe
notepad.exe
wordpad.exe
winzip.exe
winrar.exe
onenote.exe
onenotem.exe
String - maximum of 100
entries of 500 characters
each
Dell recommends not
adding explorer.exe or
iexplorer.exe to the ADE
list, as unexpected or
unintended results may
occur. However,
explorer.exe is the process
used to create a new
Notepad file on the
desktop using the right-
click menu. Setting
encryption by file
extension, instead of the
ADE list, provides more
comprehensive coverage.
List process names of
applications (without
paths) whose new files you
want encrypted, separated
by carriage returns. Do not
use wildcards.
Dell recommends not
listing applications/
installers that write
system-critical files. Doing
so could result in
encryption of important
system files, which could
make a computer
unbootable.
Common process names:
outlook.exe, winword.exe,
powerpnt.exe,
msaccess.exe,
wordpad.exe, mspaint.exe,
excel.exe
The following hard-coded
system and installer
process names are ignored
if specified in this policy:
hotfix.exe, update.exe,
setup.exe, msiexec.exe,
wuauclt.exe,
wmiprvse.exe, migrate.exe,
unregmp2.exe, ikernel.exe,
wssetup.exe, svchost.exe
44
Policies and Template Descriptions