How Group Policy is Assigned to PGP Desktop Installers


Article ID: 181226


Updated On:


Symantec Products




 PGP Desktop deployments installers are created in the Consumers > Groups section of the PGP Universal Server administrative interface.


Create PGP Desktop installers for consumers with one of three available policy settings:

  • No policy settings. Create a PGP Desktop installer with no policy settings, which means that the PGP Universal Server administrator has no way to control how users use PGP Desktop on their systems.(Similar to a standalone PGP Desktop installation and you will have to license PGP Desktop on the client)
  • Auto-detect Policy Group. PGP Desktop coordinates with the PGP Universal Server to identify the correct policy group for the consumer. Sort consumers into groups by user type, or by matching consumer attributes to domains, dictionary entries or through LDAP values. Based on these attributes, the appropriate policy is applied. If you later create a new group and the user’s attributes match that group, the policy for the consumer switches to the policy for that new group. If you have not created any custom groups, the consumer policy for the default Everyone group applies.
  • Preset policy. Select a consumer policy to apply to the installer you are creating. All users who get this installer are bound to the selected policy. If you change the settings of the policy later, those settings that are not implemented at installation (such as creating a PGP Virtual Disk volume) are modified for the PGP Desktop users who are bound to this policy. If you have not created any custom consumer policies, the default policy is the only user policy you can apply to the installer.