What exactly are you trying to accomplish with endpoint encryption? i.e. what risks are you trying to mitigate? If you're worried about stolen laptops, your best bet IMHO is probably full disk encryption. If there is some very specific data you're trying to protect or if you can trust your users to encrypt everything that needs encrypting, then consider file/folder encryption. There are lots of solutions to do either, even some free ones. see:
I believe, in this case, there will be two pieces involved for the encryption, CSA and TrueCrypt or other similar app.
We are trying to prevent remote users from abusing/losing the sensitive data as they work off-site and would like to have it accomplished (secure data) without too much user's action involved and no education or training on how to operate. We were hoping that the software/agent can take care of everything. But I don't think we could in this case.
I will have to get back to the planning game again. Do you have any suggestions on how to best use of available CSA policies and rules combining with TrueCrypt or will they be just two separate process with more user's action?
Sorry, just noticed your other question in there about CSA and truecrypt. I'm pretty ignorant of the CSA product at that level, but there are some really sharp folks in this forum that are all over it. You may have better luck reposting as its own topic.
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...