Unencrypted Endpoint Drive
An unencrypted endpoint drive refers to a Windows or macOS device drive that does not have data encryption applied. Data on such drives is not protected by encryption, making it vulnerable to unauthorized access if the device is lost or stolen.
Creating a new Unencrypted Endpoint Drive policy
To create a new Unencrypted Endpoint Drive policy:
-
From the
Device Posture
tab, select
+ ADD
:
-
Select
Add to Windows
or
Add to macOS
.
Coro displays the Add new device policy dialog.
-
Select
Unencrypted Endpoint Drive
from the
Select policy type
dropdown:
-
Select the policy
Action
:
- Review : No auto-remediation is performed and a ticket is raised and classified as requiring review. The ticket remains open until either the admin user closes it manually or the vulnerability is observed by the Coro endpoint agent as being resolved.
-
Enter label names (predefined or custom) to the
Labels
field listed under
Apply policy to devices with these labels
to apply the new policy to specific groups of devices.
-
Select
SAVE
.
Coro creates the policy with the configured settings.
note
When encryption is disabled on a device drive, Coro creates an Unencrypted endpoint drive ticket.
Select the dropdown next to Unencrypted Endpoint Drive on the Device Posture tab to view the policy. See Device posture configuration overview.
Coro displays the following policy details:
- Device labels applicable to the policy.
-
The action(s) applicable to the policy, for example,
Review
.