Procedure

1. Create a new Endpoint Encryption policy.
   See Creating a Policy.
2. Click Users.
   The Users policy rules settings appear.

   

   Endpoint Encryption Users Policy Rules

3. Under Domain User Settings, select Enable domain authentication to specify whether users require domain authentication.

   Important Active Directory (AD) synchronization requires PolicyServer to have three enabled components: Configure the AD domain. Configure the policy group to point to the proper Organizational Unit (OU). Configure the policy group with appropriate credentials to access the AD domain that matches the policy group's Distinguished Name. To configure domain authentication, see PolicyServer Active Directory Synchronization in the Endpoint Encryption Installation and Migration Guide.

4. Under User Management, configure user access.
   • Select All Endpoint Encryption users to allow all users, domain and local accounts, to authenticate Endpoint Encryption devices.
   • Select Select specific users to specify which already added Endpoint Encryption users can authenticate to managed endpoints.

   Note Policy rules only affect existing user accounts. Before configuring policies, add new users with the Endpoint Encryption Users Widget. For more information, see Adding Users to Endpoint Encryption.