The following procedure explains the configurable options for policy rules affecting Full Disk Encryption devices.
Encryption Management for Microsoft BitLocker and Encryption Management for Apple FileVault do not require authentication and are not affected by authentication policies. Client, login, password, and authentication policies, or allowing the user to uninstall the Endpoint Encryption agent software only affects the Full Disk Encryption and File Encryption agents.
See Creating a Policy.
The Full Disk Encryption policy rules settings appear.
Do not deploy encryption to Full Disk Encryption agents without first preparing the endpoint's hard drive.
Select Bypass Full Disk Encryption Preboot to allow the user to authenticate directly into Windows without protection from preboot authentication.
Select Users are allowed to access system recovery utilities on the device to allow the user to access the Recovery Console.
Select If found, display the following message on the device to show a message when the If Found policy is active.
Select Display Technical Support contact information to show a message after the user logs on to the Full Disk Encryption agent.
Select Show a legal notice to show the specific legal message at start up or only after installing the Full Disk Encryption agent.