Policy types and their fields of applications

SafeGuard Enterprise policies include all settings needed to implement a company-wide security policy on endpoints.

SafeGuard Enterprise policies can incorporate settings for the following areas (policy types):

• General Settings

  Settings for transfer rate, customization, logon recovery, background images, and so on.

• Authentication

  Settings for logon mode, device lock, etc.

• PIN

  Defines requirements for used PINs.

• Password

  Defines requirements for used passwords.

• Passphrase

  Defines requirements for passphrases used for SafeGuard Data Exchange.

• Device Protection

  Settings for volume- or file-based encryption (including settings for SafeGuard Data Exchange, SafeGuard Cloud Storage and SafeGuard Portable): algorithms, keys, the drives on which data is to be encrypted, and so on.

• Specific Machine Settings

  Settings for SafeGuard Power-on Authentication (activate/deactivate), secure Wake on LAN, display options, and so on.

• Logging

  Defines events to be logged and their output destinations.

• Configuration Protection

  Note Configuration Protection is only supported for SafeGuard Enterprise Clients up to Version 6.0.

  Settings (allow/block) for the usage of ports and peripheral devices (removable media, printers, and so on.).

• File Encryption

  Settings for file-based encryption on local drives and network locations, especially for work groups on network shares.

In the SafeGuard Management Center, default policies are available for all policy types. For Device Protection policies, policies for full disk encryption (target: mass storage), Cloud Storage (target: DropBox) and Data Exchange (target: removable media) are available. The options in these default policies are set to the relevant values. You can modify the default settings according to your requirements. The default policies are named <policy type> (Default).