Novell ZENWORKS ENDPOINT SECURITY MANAGEMENT 3.5 - ADMINISTRATION Administration Manual page 92

Figure 6-13
To activate the individual controls, click the Enable Data Encryption check box.
NOTE: Encryption keys are distributed to all machines that receive policies from the Policy
Distribution Service, regardless of whether data encryption is activated or not. However, this control
instructs the Endpoint Security Client to activate its encryption drivers, which allows users to read
files sent to them without requiring the File Decryption Utility. See
ZENworks File Decryption Utility," on page 203
Determine what levels of encryption are permitted by this policy:
Policy password to allow decryption: Entering a password here to require all users using this
policy to enter this password prior to decrypting any encrypted files stored in their Safe Harbor
folders.
This is an optional setting, leave blank to not require the password.
Enable "Safe Harbor" encrypted folder for fixed disks: Generates a folder at the root of all
volumes on the endpoint, named
folder are encrypted and managed by the Endpoint Security Client. Data placed in this folder is
automatically encrypted and can only be accessed by authorized users on this machine.
The folder name can be changed by clicking in the Folder Name field, selecting the current
text, and entering the name you desire.
Encrypt User's "My Documents" Folder: Select this option to encrypt all files in the
user's My Documents folder. As with the Safe Harbor folder, data placed in this folder is
automatically encrypted and can only be accessed by authorized users on this machine.
92 ZENworks Endpoint Security Management Administration Guide
Data Encryption controls
for more details.
Encryption Protected Files
Section 9.1, "Using the
. All files placed in this