1 of 1 people found this helpful
The policy is dynamic and can be changed whenever you see fit to do so (as long as the client system is able to communicate to the EPO server). In regard to your questions:
"I wanted to change the policy from Boot Disks only to All Disks encrypted."
--This will encrypt any additional disks on the drive and will be transparent to the user.
"Secondly, I wanted to drag OPAL above Software so OPAL would kick in instead of software."
--Someone else recently requested information on OPAL encryption; you can refer to the below post for additional considerations before using OPAL provider on systems. If the system is already activated with the software provider it will need to be deactivated and re-activated to utilize the OPAL provider. Any newly deployed system would attempt to use the OPAL provider first. There is no impact on end users in either scenario.
Thank you for the reply, appreciated!