Manuals / Microsoft / Computer Equipment / Computer Accessories

Microsoft QLF-00195 manual Easier Deployment and Management of BitLocker, Managing BitLocker To Go

Models: QLF-00195

1 140
Download 140 pages 60.83 Kb
Page 101
Image 101

Windows 7 for IT Pros:

Manage Risk Through Enhanced Security and Control

Protect Data on PCs and Devices

Easier Deployment and Management of BitLocker

In Windows 7, we enhanced core BitLocker functionality in many ways. One improvement is the ability to right-click a drive to enable BitLocker protection. With Windows Vista, if you deploy BitLocker after the operating system is installed, you may have to repartition the hard disk drive on each worker’s PC to create the second, hidden boot partition required by BitLocker. Windows 7 creates that second partition automatically upon installation, which makes deploying BitLocker much easier.

Based on your requests, we’ve also added Data Recovery Agent (DRA) support for all protected volumes. In Windows Vista, you have to maintain a unique recovery key for each BitLocker-encrypted volume. With DRA support, you can dictate that all BitLocker-protected volumes (operating system, fixed data, and the new removable volumes) are encrypted with an appropriate DRA, so you get a single key with which to recover data on any BitLocker-encrypted volume.

Note: For more information on this feature, please see the “Windows 7 for You” section of this document.

Managing BitLocker To Go

Misplaced USB drives often go unreported—or even unnoticed. Yet prohibiting the use of USB storage devices is often impractical. Employ- ees have valid business reasons to store data on removable USB stor- age devices—from sharing large files with a trusted partner to taking work home.

With BitLocker To Go, you get more

control over how removable storage devices can be used and the strength of protection required. Now you can require data protection for writing to any removable storage device while still allowing unprotected storage devices to be used in a read- only mode. You can also use Group Policy to require strong passwords or a smart card for protected removable storage devices. Additionally, BitLocker To Go provides configurable read-only support for removable devices on older versions of Windows, so that users running Windows 7 can share BitLocker- protected files with people who are still running Windows Vista and Windows XP.

Note: For more information on this feature, please see the “Windows 7 for You” section of this document.

BitLocker To Go

100 101

Page 100 Page 102
Page 101
Image 101
Microsoft QLF-00195 manual Easier Deployment and Management of BitLocker, Managing BitLocker To Go
Page 100 Page 102