Default behavior when saving files

Since applications behave differently when saving files, SafeGuard Enterprise offers two ways for handling encrypted files that have been modified.

If a file is encrypted with a different key than the default key of the volume and you edit the file and save it, you may expect the original encryption key to be preserved, since you are editing a file, not creating a new one. But many applications save files by performing a combination of save, delete, and rename operations (for example Microsoft Office). If they do so, the default SafeGuard Enterprise setting is to use the default key for this encryption task and therefore change the key used for encryption.

If you want to change this behavior and preserve the key used for encryption in any case, you can modify a registry key on the endpoint.

To always use the same key as before when saving modified files:

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\UTIMACO\SGLCENC]
"ActivateEncryptionTunneling"=dword:00000001

To revert to the default setting that allows the use of a different key (default key) when saving modified files, use the following:

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\UTIMACO\SGLCENC]
"ActivateEncryptionTunneling"=dword:00000000
Note: Changes in this setting require a restart of the endpoint to become active.