Reference Guide
Manage Policies
130
(PIN) and a USB drive containing
the startup key.
Encryption Method and Cipher
Strength (OS Volumes)
XTS-AES-128
AES
-128
AES
-256
XTS
-AES-128 (for use with
Windows 10 Anniversary Edition
and later)
XTS
-AES-256 (for use with
Windows 10 Anniversary Edition
and later)
Algorithm and cipher strength
used by BitLocker Drive
Encryption for OS Volumes.
Encryption Method and Cipher
Strength (Removable Volumes)
AES-128
AES
-128
AES
-256
XTS
-AES-128 (for use with
Windows 10 Anniversary Edition
and later)
XTS
-AES-256 (for use with
Windows 10 Anniversary Edition
and later)
Algorithm and cipher strength
used by BitLocker Drive
Encryption for Removable
Volu
mes.
To encrypt removable drives that
will be used with older versions
of Windows as well as with
Windows 10 Anniversary Edition
and later, use AES
-128 or AES-
256.
Encryption Method and Cipher
Strength (Fixed Volumes)
XTS-AES-128
AES
-128
AES
-256
XTS
-AES-128 (for use with
Windows 10 Anniversary Edition
and later)
XTS
-AES-256 (for use with
Windows 10 Anniversary Edition
and later)
Algorithm and cipher strength
used by BitLocker Drive
Encryption for Fixed Volumes.
See advanced settings
Policy Default Setting
Description
Server Encryption
This technology manages Dell's data centric encryption using certificate-based authentication instead of the
typical user-based authentication instead of the typical user-based authentication. This technology allows
for protection of devices such as Windows Servers that do not commonly have users logged in.
Server Encryption Off
On
Off
This policy enables or disables
System Data Encryption (SDE) and
Common Encryption on the client
server.
Changing the value of this policy
triggers a new sweep to