I have some usb sticks encrypted with Endpoint Encryption for Files and Folers. When applying a Device rule in DLP that makes all usb drives read-only with an exclusion of "Content Encrypted by McAfee Encryption" the EEFF encrypted sticks are still read-only. Using EERM to read the usb drives as the EEFF client is not on the pc. Any ideas why they are still read-only?
Is there any specific exe file from McAfee that resides in those USB keys. If yes - try whitelisting that application in the DLP device management section. Thanks!
"Content encrypted by EEFF" means the file level content - files protected using the NON EERM features of EEFF will be permitted.
EERM content will also be allowed, but not random unprotected files stored on the stick - the rule is there to stop leakage of plain-text data onto unprotected sticks.
Sorry for digging up an old post but I'm currently in the same situation, trying to block all USB memory devices excluding devices protected with EERM.
Can you explain what you mean by: "EERM content will also be allowed, but not random unprotected files stored on the stick"?
Our rules have the enture USB device protected by EERM so there are no unprotected files on the key but it still will not allow us to add files. The EERM exe is also whitelisted.
Thanks for any info