When multiple items are set to "Allow," the end user is presented a selection box to make their choice. When set to Allow, enable this setting as a selectable option to the end user. No prompt is given to the end user on an endpoint. When set to Required, this is the only option for end users.
When Enabled, ensures that older TPM models are supported, and enables the ability to escrow BitLocker keys to USB on devices without TPMs. This property enables the next five policies and enables for defined protectors to be enabled on managed endpoints.Īllow BitLocker Encryption Without a Compatible TPM. Require other Authentication at System Startup. Setting this to Turn Off Encryption forces a decryption of the volume and cannot be modified by local administrators. Setting this to Turn On Encryption forces encryption of the volume and cannot be modified by local administrators. When set to Do Not Manage, the local administrators of devices can modify BitLocker. When enabled, during encryption the device is not allowed to go into any sleep states. This plug-in activates the TPM if it is "On" but not properly activated. This plug-in is required for all Dell BitLocker manager policies to properly apply.Įnables/Disables the TPM Management Plugin. Enables/Disables the BitLocker Manager Plugin.
0 kommentar(er)
