Specifications
Endpoint Encryption for Files and Folders Policy Settings
32 |
Deleting extensions
It is important to notice that deleting a file extension does not initiate any decryption
of files with the particular extension. To decrypt files encrypted with a file extension
encryption policy, you need to do a manual search-and-decrypt action using the
corresponding context menu options from a client with Endpoint Encryption for Files
and Folders installed. More about searching-and-decrypting encrypted files is
presented in the Search encrypted… secti
on of this guide.
Folders
This section lets you specify what folders shall be encrypted for users that are
assigned this policy. You may either specify folders on local drives or network drives
using direct addressing or UNC paths. It is also possible to fetch a path from the user’s
environment variables by typing, e.g. C:\%user%.
Add
Let’s you specify a new folder to encrypt.
Figure13:EndpointEncryptionforFilesandFoldersPolicy–Folderselection
You may choose from the drop-down menu a list of predefined folders for local drives.
These will be resolved properly, independent of what language the client operating
system is using. Note the following folders:
[DESKTOPDIRECTORY] = The working desktop of the user, i.e.
[SYSDRIVE:\Documents and Settings\{USER}\Desktop]
[TEMP] = The user’s directory for Temporary files being created,
i.e.
[SYSDRIVE:\Documents and Settings\{USER}\Local Settings\Temp]
[MYDOCUMENTS] = The “My Documents” folder for the user, i.e.
[SYSDRIVE:\Documents and Settings\{USER}\My Documents]
[APPDATA] = The Application Data directory for the user, i.e.
[SYSDRIVE:\Documents and Settings\{USER}\Application Data]
[LOCAL_APPDATA] = The user’s local Application Data directory,
i.e.
[SYSDRIVE:\Documents and Settings\{USER}\Local
Settings\Application Data]