Configuring Encryption Container Settings; Password Constraints For Offline Access - Check Point HARMONY R81 Administration Manual

Working with Advanced Actions in a Media Encryption & Port Protection Rule
Setting
Copy utility to media
to enable media
access in non-
protected
environments
Protect media with
password for read-
only access in
offline mode
Allow user to
change read-only
password

Configuring Encryption Container Settings

Configure options for setting the encrypted space on storage devices.
To configure encryption settings for users on storage devices:
1. In the SmartEndpoint Policy tab, select a Media Encryption & Port Protection rule.
2. Clone the Offline access to encrypted storage devices action.
3. in the cloned action, under Allow offline access to encrypted storage devices, select
Allow user to change the size of encrypted media.
4. Set the Minimum percentage and Default percentage of free space - how much of the
device's free space can be use
Or set the Minimum percentage and Default percentage of media capacity -how much
of the device's total capacity can be used.
To force encryption of all media:
1. Do not select Allow user to change the size of encrypted media.
2. Set the Minimum percentage and Default percentage of media capacity to 100.

Password Constraints for Offline Access

In the Properties of the Offline Access action, click Configure password constraints to set the
requirements for password used to access encrypted devices.
These Actions define the requirements for user passwords for Media Encryption & Port
Protection:
Description
Copies the Explorer utility to the storage device. This utility lets
users access the device from computers that are not connected to
an Endpoint Security Management Server.
Lets users assign a different password that gives read-only access
to a storage device.
Lets users change a previously defined read-only password.
R81 Harmony Endpoint Server Administration Guide | 265