This answer describes a new feature that PGP administrators can enforce in PGP Desktop: encryption of removable media.
|Note: This answer pertains to PGP Desktop 9.5.2 (or higher) running in Windows 2000 or XP. Note that the ability to force encryption of removable media is only available in environments managed by PGP Universal Server 2.5.2 (or higher).|
Forced Encryption of Removable Disks Explained
If you are using PGP Whole Disk Encryption in a PGP Universal-managed environment, your security policy may require that removable disks be encrypted. In such an environment, the following PGP window appears when you insert an unencrypted removable device:
After the above window appears, you have 30 seconds before encryption begins automatically. Before the 30 seconds expires, you can do either of the following:
|Note: If your security policy requires that all removable disks be encrypted but your organization's PGP Universal Server is not available (for example, if you are on an airplane and not connected to your corporate network), a removable disk you insert cannot be encrypted. Under such circumstances, the disk will automatically be "locked" and read-only. The next time you connect to your PGP Universal Server, you will be able to encrypt the contents of the disk (if it hasnt already been encrypted).|
|Warning: If the removable device is a music device or digital camera, click Lock. These types of devices will not work if the contents of the device are encrypted. If you accidentally encrypt a music device or digital camera, you will need to decrypt it. Depending on your corporate security policy you may need to contact your IT department or PGP administrator for help with decrypting such devices.|