Manualshelf

Specifications

ManualsBrandsMcafee ManualsOtherOFFICE 3.1
21222324252627282930
Endpoint Encryption for Files and Folders Policy Settings
26 |
NOTE:iftheprevioussetting(AttemptlogonwithEndpointEncryptionforPCcredentials)isenabled,the
forcedlogonifenabledwillhappenautomatically.
CAUTION:Forthisoptiontowork,theinstallationsetmustbecreatedfromthepolicycontainingDisable
forcingoflogononfirstboot.
Attempt to change Endpoint Encryption password when Windows password
changes
This opti
on detects when the user changes the Windows password (on the client side).
If enabled, it will try to change the Endpoint Encryption password to the new password
selected by the user.
This is an example scenario:
The users exist in the database, imported from Active Directory using the
Endpoint Encryption AD Connector. The Endpoint Encryption user names are
set to be the AD standard “sAMAccountName”.
Endpoint Encryption for Files and Folders is deployed with the option Forced
logon after first reboot enabled.
In the Endpoint Encryption Managerthe users are set to use the default
password of ‘12345’, along with the password option Force change if
‘12345’ enabled.
The instructions to the users at the time of the roll-out of the Endpoint Encryption for
Files and Folders client have been: When prompted for Endpoint Encryption for Files
and Folders logon:
For User ID: enter your Windows user name.
For password: enter ‘12345’. When prompted to change, change to your
current Windows password.
The user will now have the same password in Windows as in Endpoint Encryption.
Now, with the ‘password change detection’ option enabled, when the user changes the
Windows password, the password change event triggers Endpoint Encryption to
capture the new Windows password. Endpoint Encryption will then automatically
change the Endpoint Encryption password to the captured (new) Windows password.
This keeps the passwords in synch and also eliminates the need to change the
password in two places (Windows and Endpoint Encryption).
CAUTION:Forthissettingtowork,thefollowingrequirementsapply:
TheEndpointEncryptionPasswordrestrictions,e.g.PasswordHistorymustbedisabledfortheuser.The
passwordqualitywillinsteadrelyonthecorresp
onding
settingswithinWindows.
TheEndpointEncryptionpasswordandtheWindowspasswordmustbethesame,priortotheautomatic
passwordchange.Pleaseseetheexampleaboveforhowtoaccomplishthisinauserconvenientmanner.