The following table explains the policy limitations for Encryption Management for Apple FileVault and Encryption Management for Microsoft BitLocker. To use all policies, install the Full Disk Encryption agent instead.
Encryption Management for Apple FileVault and Encryption Management for Microsoft BitLocker do not require authentication and are not affected by authentication policies. Client, login, password, and authentication policies, or allowing the user to uninstall the Endpoint Encryption agent software only affects the Full Disk Encryption and File Encryption agents.
The following table explains the policies affecting each agent. Use it to understand the policy limitations of third-party agents.
Policy |
Full Disk Encryption |
Encryption Management for Apple FileVault |
Encryption Management for Microsoft BitLocker |
---|---|---|---|
Allow User Recovery |
|
||
Allow User to Uninstall |
|
||
Encrypt Device |
|
|
|
Account Lockout Action |
|
||
Account Lockout Period |
|
||
Dead Man Switch |
|
||
Device Locked Action |
|
||
Device Killed Action |
|
|
|
Failed Login Attempted Allowed |
|
||
If Found |
|
||
Legal Notice |
|
|
|
Lock Device Time Delay |
|
||
Preboot Bypass |
|
||
Support Info |
|
||
Token Authentication |
|
||
Authentication Methods Allowed |
|
||
Sync Interval |
|
|
|