Encryption Management Agent Policy Limitations

The following table explains the policy limitations for Encryption Management for Apple FileVault and Encryption Management for Microsoft BitLocker. To use all policies, install the Full Disk Encryption agent instead.

Note:

Encryption Management for Apple FileVault and Encryption Management for Microsoft BitLocker do not require authentication and are not affected by authentication policies. Client, login, password, and authentication policies, or allowing the user to uninstall the Endpoint Encryption agent software only affects the Full Disk Encryption and File Encryption agents.

The following table explains the policies affecting each agent. Use it to understand the policy limitations of third-party agents.

Table 1. Policies Affecting Full Disk Encryption Agents

Policy

Full Disk Encryption

Encryption Management for Apple FileVault

Encryption Management for Microsoft BitLocker

Allow User Recovery

Allow User to Uninstall

Encrypt Device

Account Lockout Action

Account Lockout Period

Dead Man Switch

Device Locked Action

Device Killed Action

Failed Login Attempted Allowed

If Found

Legal Notice

Lock Device Time Delay

Preboot Bypass

Support Info

Token Authentication

Authentication Methods Allowed

Sync Interval