Hard Drive Encryption
Here are step-by-step instructions for setting up hard drive encryption on a device.
Windows:
To enable device encryption, please complete the following instructions from Microsoft:
- Select Start > Settings > Privacy & security > Device encryption.
- If Device encryption is turned off, turn it On.
- If Device encryption doesn't appear, it isn't available for your device.
Mac:
In order to pass this check, FileVault must be enabled.
To enable Filevault (instructions from here):
- On your Mac, choose Apple menu > System Settings, click Privacy & Security in the sidebar, then click FileVault on the right. (You may need to scroll down the right-side list.)
- Click Turn On. You might be asked to enter your password.
- Choose how to unlock your disk and reset your login password if you forget it:
- iCloud account: Click “Allow my iCloud account to unlock my disk” if you already use iCloud. Click “Set up my iCloud account to reset my password” if you don’t already use iCloud.
- Recovery key: Click “Create a recovery key and do not use my iCloud account.” Write down the recovery key and keep it in a safe place.
- Click Continue.
Linux:
This checks for the following configurations for the hard drive:
- The drive mounted as
root
needs to be encrypted. The encryption process will vary based on the flavor of Linux being used. - ZFS encryption is not currently supported because of a limitation in osquery.
- *If your Linux device is not 'checking in' after restarting, please refer to this article.
Related to
Comments
0 comments
Article is closed for comments.