McAfee DFFCDE-AA-DA - Endpoint Encryption For Files Скачать руководство пользователя страница 33 | Manualshive

Страница: 33 / 44

background image

4

Click Import Keys.

How user personal keys work

User personal key gives you ability to create user-specific encryption keys. These keys are
created at the ePO server when the user logs on to the client system for the first time after the
policy is enforced. User personal keys are assigned to Grant key policy as a single key, but
creates individual user personal keys when assigned. If the policy is assigned at the system
level, users using that system will have individual user personal keys. When assigned at user
level, these keys can be used on any system within the same domain.

The user personal key is enabled and assigned to Grant Key policy using ePO. The Grant key
policy can be assigned to specific users using Policy Assignment Rules and specific system or
system group using Assigned Policies page. Enforcing the Grant key policy on the managed
node creates a user personal key at the first log on of the user. User personal keys can be used
as recovery key for user local keys and EERM.

Best Practice

Assigning a user personal key as a recovery key for EERM, the administrator can ensure that
the removable media can be recovered only by the assigned user on any system in the same
domain.

Working with user personal keys

Use these tasks to create and recover user personal keys.

Tasks

Assigning a user personal key

Recovering user personal keys

Assigning a user personal key

Use this task to create a user personal key.

Task

For option definitions, click ? in the interface.

1

Click Menu | Data Protection | EEFF keys. The EEFF Key Management page appears.

2

Click Edit next to User Personal Keys. The Configure User Personal Keys page appears.

3

Select Enable User Personal Keys, then click Save.

4

Click Menu | Policy | Policy Catalog, then select Endpoint Encryption for Files and
Folders from the Product drop-down list.

5

Select Grant Keys (UBP) as policy Category, then click Edit Settings next to the
required policy.

6

Select and move the User Personal Key to Selected Keys table, then click Save.

7

Click Menu | Policy | Policy Assignment Rules, then click New Assignment Rule.
The Policy Assignment Builder wizard appears.

8

Type the Name and Description, then click Next. The user Selection Criteria page opens.

Managing EEFF keys
How user personal keys work

33

McAfee Endpoint Encryption for Files and Folders version 4.0.0 Product Guide

«
...
31
32
33
34
35
...
»

Содержание DFFCDE-AA-DA - Endpoint Encryption For Files

Страница 1: ...McAfee Endpoint Encryption for Files and Folders 4 0 0 Product Guide...

Страница 2: ...d and unregistered trademarks herein are the sole property of their respective owners LICENSE INFORMATION License Agreement NOTICE TO ALL USERS CAREFULLY READ THE APPROPRIATE LEGAL AGREEMENT CORRESPON...

Страница 3: ...from managed nodes using ePO 4 6 12 Removing the EEFF extension 13 Removing EEFF deployment package 14 Uninstalling EEFF from managed nodes using command prompt 14 Uninstalling EEFF from managed nodes...

Страница 4: ...policy 31 Editing a key 31 Deleting keys 32 Exporting keys 32 Importing keys 32 How user personal keys work 33 Working with user personal keys 33 Managing EEFF Reports 35 Creating EEFF custom queries...

Страница 5: ...be viewed only by those who have been granted access Endpoint Encryption for Files and Folders is a Persistent Encryption engine when a file has been encrypted and has been moved or copied to another...

Страница 6: ...bled When a file that is encrypted with key A is moved to a folder where files are encrypted with key B the file encrypted with key A will immediately be re encrypted with key B This behavior is known...

Страница 7: ...Policy Orchestrator 4 5 and 4 6 Installation Guide Microsoft MSXML 6 for ePO Operating system requirements Software Systems See McAfee ePolicy Orchestrator 4 5 and 4 6 Installation Guide ePO Server Sy...

Страница 8: ...on Installing the ePO help extension Registering an LDAP Server Deploying EEFF on managed nodes using ePO 4 5 Deploying EEFF on managed systems using ePO 4 6 Checking in the EEFF deployment package Us...

Страница 9: ...box appears 3 Click Browse then select the extension file help_eeff_400 ZIP then click OK The Install Extension page appears with the extension name and version details 4 Click OK Registering an LDAP...

Страница 10: ...as Product Deployment then click Next 4 In the Configuration page select Target Platforms as Windows Products and components as McAfee Endpoint Encryption for Files and Folders 4 0 0 0 Action as Inst...

Страница 11: ...izard appears 9 On the Select Task page select Product as McAfee Agent and Task Type as Product Deployment then select the task you created for deploying product 10 Next to Tags select the desired opt...

Страница 12: ...Tree then click Actions New Task The Client Task Builder wizard appears 3 In the Description page type a Name for the task Notes optional select the Type as Product Deployment then click Next 4 In th...

Страница 13: ...ct Task page select Product as McAfee Agent and Task Type as Product Deployment then select the task you created for uninstalling EEFF from managed nodes 10 Next to Tags select the desired option then...

Страница 14: ...rom a managed node using MfeFfShell command Before you begin You should have administrator rights to run this command on the managed node Task For option definitions click in the interface 1 On the co...

Страница 15: ...s 2003 C ProgramData in Windows Vista Windows 2008 and Windows 7 2 Run the following commands to uninstall EEFF You will be prompted to restart the system after uninstallation 1 msiexec q norestart I...

Страница 16: ...olicy Catalog page you can view policy assignments where they are applied and if they are enforced You can also lock policy enforcement to prevent changes to enforcement below the locked node Contents...

Страница 17: ...e supported by the process Multiple file extensions can be specified using a space semi colon or colon as separators Key Specifies the encryption key which will be assigned to the policy Browse to sel...

Страница 18: ...Removes device ID from exemption list Edit Edits the ID of the device that will not be updated with the changes in encryption policies CD DVD Encryption None Selected Does not encrypt while burning fi...

Страница 19: ...Edit Edits the process that will be excluded File Extension Exclusion Excludes the specified file extension from encryption Add Adds the file extension that will be excluded Remove Removes file exten...

Страница 20: ...When you create a policy you are adding a custom policy to the Policy Catalog You can create policies before or after the EEFF software is deployed Task For option definitions click in the interface 1...

Страница 21: ...e System The Policy Assignment page for that system appears 3 Select Endpoint Encryption for Files and Folders 4 0 0 from the product drop down list The policy categories under Endpoint Encryption for...

Страница 22: ...g next to Enforcement status The Enforcement page appears 4 If you want to change the enforcement status select Break inheritance and assign the policy and settings below 5 Select Enforcing or Not enf...

Страница 23: ...es can be prioritized to simplify maintenance of policy assignment management When you set priority to a rule it is enforced before other assignments with a lower priority In some cases the outcome ca...

Страница 24: ...gnment Rules then click Actions New Assignment Rule The Policy Assignment Builder wizard opens with Details page 2 Type the Name and Description then click Next The user Selection Criteria page opens...

Страница 25: ...cy setting needs to be shared among users or system groups Grant Key policy is a multi slot policy An ePO administrator can add multiple grant key policies to users or system groups restricting the as...

Страница 26: ...multiple instances of Grant Key policy to system s based on the tags applied to them NOTE When assigning Grant key policy using ePO 4 6 policy assigned to a system based on the tags you have applied t...

Страница 27: ...the Name and Description then click Next The User Selection Criteria page opens 3 Select the user by choosing the selection criteria then click Next The Assigned Policies page opens 4 Click Add The C...

Страница 28: ...ble to the system and the policies to which they are associated Task For option definitions click in the interface 1 Click Menu Systems System Tree Assigned Policies then select the Product as Endpoin...

Страница 29: ...policy category then click View Effective Policy The View Effective Grant Keys Policy page appears with the list of keys available to the user and the policies to which they are associated Configurin...

Страница 30: ...d user local keys Regular keys are created by ePO administrators and can be used in any policy User personal keys are generated in ePO when a key is granted to a user through Grant Key policy These po...

Страница 31: ...re information Use this task to assign keys to a Grant Key policy NOTE You can assign only active keys to a Grant Key policy Task For option definitions click in the interface 1 Click Menu Policy Poli...

Страница 32: ...ys Use this task to export keys The keys will be exported to a password protected bin file Task For option definitions click in the interface 1 Click Menu Data Protection EEFF keys The EEFF Key Manage...

Страница 33: ...EERM the administrator can ensure that the removable media can be recovered only by the assigned user on any system in the same domain Working with user personal keys Use these tasks to create and rec...

Страница 34: ...en the user logs into the client system Recovering user personal keys Use this task to recover a user personal key Displaying the user personal keys as regular keys enables administrator to recover fi...

Страница 35: ...monitor except those using a table to display the initial results Dashboard monitors are refreshed automatically on a user configured interval five minutes by default Exported results Query results c...

Страница 36: ...ny available actions on items in any tables or drill down tables NOTE Selected properties appear in the content pane with operators that can specify criteria used to narrow the data that is returned f...

Страница 37: ...list 4 Click Actions Run The query results appear Drill down into the report and take actions on items as necessary Available actions depend on the permissions of the user NOTE The user has an option...

Страница 38: ...Editing EEFF Key Server permissions Creating permission sets for user accounts Use this task to create a permission set Only global administrators can create permission sets Task For option definition...

Страница 39: ...ys Task For option definitions click in the interface 1 Click Menu User Management Permission Sets New Permission Set The New Permission Set page appears 2 Click Edit next to EEFF Key Server The Edit...

Страница 40: ...HKLM System CurrentControlSet Services MfeEEFF called RelaxedRemovableMediaDefinition 2 Set the registry value as required 0 Default definition same as not having this registry value 1 Only disks rep...

Страница 41: ...registry value must be manually set on each client system It can also be remotely distributed with a systems management tool When enabled it will not be possible to read decrypt any existing encrypted...

Страница 42: ...of the files to be encrypted Set in the Encryption options policy Explicitly encrypt large shares in advance Use a manual explicit encryption method for large network folder s encryption rather than e...

Страница 43: ...8 multi slot policy Grant Key 25 multiple instance policy assigning to system 25 26 assigning to user 27 P Permission sets 38 39 EEFF key management 39 EEFF policy 38 Persistent Encryption 5 policies...

Страница 44: ...for a product 22 U Uninstall deployment package 14 from ePO 13 Uninstall continued from managed nodes 12 updates PC client 10 User personal keys about 33 best practices 33 create 33 enable 33 grant k...

Отзывы:

Нет отзывов

Похожие инструкции для DFFCDE-AA-DA - Endpoint Encryption For Files

S08 Voice Editor

Бренд: Yamaha Страницы: 26

MOTIF RACK Music System

Бренд: Yamaha Страницы: 37

TOOLS for MY16-mLAN

Бренд: Yamaha Страницы: 50

FLASH MEDIA SERVER 2-INSTALLING FLASH MEDIA SERVER...

Бренд: MACROMEDIA Страницы: 16

Бренд: Casio Страницы: 68

Бренд: Avaya Страницы: 286

BACKUP AND RECOVERY 10 SERVER FOR LINUX -

Бренд: ACRONIS Страницы: 14

Backup & Recovery 10 Advanced Editions

Бренд: ACRONIS Страницы: 10

DVD MOVIEFACTORY 5

Бренд: Ulead Страницы: 72

one-X Deskphone Edition

Бренд: Avaya Страницы: 74

Vox Continental

Бренд: Hollow Sun Страницы: 9

Бренд: DCP Productions Страницы: 76

Бренд: Nikon Страницы: 240

Бренд: FieldServer Страницы: 11

AutoCAD Design Suite 2013

Бренд: Autodesk Страницы: 138

FLASH MX 2004-DATA

Бренд: MACROMEDIA Страницы: 20

PCM NATIVE DUAL DELAY

Бренд: Lexicon Страницы: 36

PCM NATIVE CHORUS

Бренд: Lexicon Страницы: 36

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды