Configure encrypted drives settings

To configure the settings for encrypted drives, the following options are available:

  • Available recovery procedures for encrypted folders: To specify which recovery options are available to a user, click Set to Fixed Value and select among the options. If Not configured is selected, all options will be displayed.

  • Interval between certificate revocation checks: To set the period of time during which no rechecking of the user's certificate for a successful revocation of the same will take place, click Set to Fixed Value and select among the options. If Not configured is selected, the interval is 24 hours.

  • Access to files in encrypted folders: To specify how DriveLock File Protection should respond when a user does not have permission to encrypt / decrypt, click Set to Fixed Value and select among the options. If Not configured is selected, access to the directory is denied. The following options are available and respond as follows:

    • Deny: Users without permissions cannot access the directory, even if they had appropriate Windows permissions. The Windows message "Access denied" appears.

    • Allow for administrators: Users without permissions can access it only if they belong to the group of administrators

If access is enabled without permissions, the directory responds like a normal Windows directory, meaning that files are not decrypted when opened, but are not encrypted when written either. For authorized users, however, DriveLock File Protection always assumes an encrypted file within an encrypted directory and would also decrypt an unencrypted file, which means that an authorized user cannot do anything with this file and may render it completely unusable when writing.

  • Automatically connect encrypted folders: To specify how DriveLock File Protection should respond when connecting encrypted drives, click Set to Fixed Value and select among the options. The On option applies if Not configured is selected (show dialog if required). The following options are available and respond as follows:

    • On (show dialog if required): DriveLock File Protection attempts to connect the folder using the user certificate present in the certificate store or a previously saved password. If the user does not have authorization or the password is not correct, a window opens and the user can select an authentication method. This option is useful if passwords are not allowed to be stored, or user certificates are not stored in the Windows certificate store but on external media such as smartcards or tokens.

    • Display only fully automatic, no dialogs: DriveLock File Protection tries to connect the folder using the user certificate present in the certificate store or a previously stored password. If the user does not have authorization or the password is incorrect, the user will be considered as not authorized.

    • Off: There is no automatic connection to an encrypted directory. The user will be considered an unauthorized user until he right-clicks on the directory and selects the Connect Encrypted Folder menu item.