Skip to content

Endpoint Security

Does Coro have the capability to auto-enforce hard drive encryption without allowing the end user to disable it?

While Coro can perform hard drive encryption, there is no method to ensure this functionality is auto-enforced.

Where are encryption keys stored?

Encryption keys are stored on both the device (by Bitlocker) and on the Coro servers.

When an employee or contractor leaves the company, can an Admin user remove the endpoint linked to that employee, or does Tamper Protection prevent this?

Tamper Protection is typically used to prevent the Coro application from being corrupted or uninstalled on the devices of users. The setting is shared by the entire workspace. If clients want their employees to uninstall the app on their own, an admin must disable Tamper Protection for the specific device rather than the entire workspace.

To disable Tamper Protection, the admin must open the Devices view from the Coro console, locate the user's device, and select the Actions button. After the set Heartbeat Interval, this device's Tamper Protection will be disabled. The Coro application can now be uninstalled by the user.


Tamper Protection is disabled on the specific device until the first reboot. Rebooting the device will re-enable Tamper Protection.

Should the user decide not to uninstall Coro, an admin can locate the device from the Devices view, and select the Actions button > Disable Protection. With this option, the user can prevent the Coro client from monitoring vulnerabilities and reporting them to the server on their device.

The Coro console's Devices list will no longer display the device. The user's device will not launch the endpoint client. To restart monitoring, you must undo this action (Disable Protection) from the Activity Log of the Coro console.

How do I disable Coro app notifications?

Although app notifications cannot be configured directly from the Coro Console, they can be configured from the device itself as follows.


  1. Select the Apple menu > System Settings
  2. Click Notifications in the sidebar. (You may need to scroll down)
  3. Select the app or website on the right
  4. Disable Allow notifications

Notifications are disabled and will not be received until Allow notifications is re-enabled


  1. Open Windows Settings by pressing the Win + I keys simultaneously
  2. From the System page, select Notifications
  3. Disable the Notifications toggle for the app

Notifications are disabled and will not be received until Notifications is re-enabled