|Synchronized Encryption / Requirements|
The Sophos SafeGuard Enterprise OS X endpoints can handle both Synchronized Encryption policies of type Application-based and File Encryption policies of type Location-based. Depending on which policies they receive, endpoints act either as a Synchronized Encryption endpoint or a File Encryption endpoint.
If you upgrade from version 6.1, the endpoints keep on working in the File Encryption location-based mode as in the previous version.
To switch to the Synchronized Encryption application-based mode, do the following:
Encrypted files covered by the Synchronized Encryption policies are re-encrypted with the Synchronized Encryption key.
Files created or modified by applications on the Synchronized Encryption Application list will be encrypted with the Synchronized Encryption key.
Encrypted files not covered by the Synchronized Encryption policies stay encrypted with the File Encryption key. Users who have the required key in their key ring can always decrypt files manually, even if files are no longer covered by encryption policies.