Reference Guide
Security Management Server Virtual - AdminHelp v9.8
123
Application Data Encryption List
Managed Services
Removable Media Encryption > Windows Media
Encryption
EMS Device Whitelist
EMS Access Code Required Message
EMS Access Code Failed Message
Endpoints Level
Technology Group
Policy
Windows Encryption > Self
-Encrypting Drive (SED)
Support Information
Text
PBA Title Text
Legal Notice Text
Self Help Questions (Pre
-8.0 clients)
Windows Encryption > Policy
-Based Encryption
Common Encrypted Folders
OS Update Encryption Rules
Windows Encryption > BitLocker Encryption
Default Folder Location to
Save Recovery Password
Data Guardian > Cloud Encryption
Help File Name
Help File Contents
Excluded Folders
Excluded Files
Data Guardian > Protected Office Documents
Office Protected Clip Board Unauthorized Text
Office Protected Document Tamp
er Prompt
Offline Key Generation Escrow Reminder Text
Office Protected Files Cover Page Notice
Windows Encryption
Windows Encryption
A word about types of encryption: SDE is designed to encrypt the operating system and program files. In
order to accomplish this purpose, SDE must be able to open its key while the operating system is booting
without intervention of a password by the user. Its intent is to prevent alteration or offline attacks on the
operating system by an attacker. SDE is not intended for user data. Common and User key encryption are
intended for sensitive user data because they require a user password in order to unlock encryption keys.
Policy descriptions also display in tooltips in the Remote Management Console. In this table, master policies
are in bold font.