This answer describes a new feature that PGP administrators can enforce in PGP Desktop: encryption of removable media.
Note: This answer pertains to PGP Desktop 9.5.2 (or higher) running in Windows 2000 or XP. Note that the ability to force encryption of removable media is only available in environments managed by PGP Universal Server 2.5.2 (or higher).
Forced Encryption of Removable Disks Explained
If you are using PGP Whole Disk Encryption in a PGP Universal-managed environment, your security policy may require that removable disks be encrypted. In such an environment, the following PGP window appears when you insert an unencrypted removable device:
After the above window appears, you have 30 seconds before encryption begins automatically. Before the 30 seconds expires, you can do either of the following:
If the removable device is, for example, an external hard drive or a USB flash disk, click the Encrypt button. The removable disk will be automatically encrypted to your key and the above window will disappear.
Depending on the size of the removable disk, it may take some time for the encryption process to complete. While the removable disk is being encrypted you can use it like normal (if you remove the disk during encryption, PGP Desktop will automatically and safely pause the encryption). If the PGP Notifier is enabled in your PGP Desktop settings, it will appear at the beginning of the encryption process with the message:
Whole Disk Operation has started. Computer is on AC power.
Note: If your security policy requires that all removable disks be encrypted but your organization's PGP Universal Server is not available (for example, if you are on an airplane and not connected to your corporate network), a removable disk you insert cannot be encrypted. Under such circumstances, the disk will automatically be "locked" and read-only. The next time you connect to your PGP Universal Server, you will be able to encrypt the contents of the disk (if it hasnt already been encrypted).
Warning: If the removable device is a music device or digital camera, click Lock. These types of devices will not work if the contents of the device are encrypted. If you accidentally encrypt a music device or digital camera, you will need to decrypt it. Depending on your corporate security policy you may need to contact your IT department or PGP administrator for help with decrypting such devices.
Imported Document ID: TECH148990
Subscribing will provide email updates when this Article is updated. Login is required.
Thanks for your feedback. Let us know if you have additional comments below. (requires login)
Subscribed to the Article.
Unable to subscribe
Thanks for your additional feedback !!!
Enterprise Support Virtual Agent
Rate Me :
Tell us more:
Welcome! My name is Sami, the Enterprise Support Virtual Agent answering technical support questions.