DriveLock - Features
Comprehensive Device Control
Dynamically locks removable devices (USB memory sticks, floppy disks, CD-ROM, etc.)
Locks most types of devices (Bluetooth, Palm, Windows Mobile, Smartphones, card readers, imaging devices,
network adapters, modems, sound, video and game controllers, cameras, printers and more)
Locks most types of ports, including USB controllers, 1394/Firewire controllers, PCMCIA controllers,
infrared controllers, serial (COM) and parallel (LPT) ports
Configurable whitelists to allow access to devices (device type or device model)
Specific storage devices can be controlled based on their serial numbers
Separate access lists can be defined for every single device or group of devices
Access can be granted to any user or group
Fully integrated with Active Directory and Group Policy
Also supports most other network operating systems, including Novell NetWare and Linux
Policy enforcement dynamically adjusts permissions when another user logs on
Assign drive letters to removable drives to avoid conflicts with network drives
File filter to allow or deny coping of specific file types
Auditing of files that are read from or written to removable drives
Shadowing of files keeps a full record of the content of files that are copied to or from removable drives
Separate configuration of Read and Write access for removable drives
Drive access rules can be based on drive size or encryption status
Encrypt data with state-of-the-art encryption (up to 256-bit encryption strength)
Choice of industry-standard encryption algorithms (AES, 3DES, Blowfish, etc.)
Encrypt data on mobile devices or hard disks
Automatic and transparent encryption of data copied to mobile devices
Wizard for burning encrypted CDs and DVDs
Ability to decrypt data on computers without requiring installation of DriveLock
DriveLock Mobile for encrypting data on Windows Mobile devices
Secure deletion of your data to prevent data disclosure
Encrypt entire hard drives, including system partition
FIPS140-2 encryption
Pre-boot authentication with single sign-on
Mature tools to decrypt damaged drives
One-time logon options for users who forgot a password
Support for token and smartcard logon
Central administration and monitoring of encryption status
Security Reporting Center: a central reporting console for all DriveLock events
Build extensive reports based on collected data
Multiple alerting mechanisms for DriveLock events
All configuration is done using a Microsoft Management Console (MMC) snap-in
Device Scanner allows you to find out which devices are or were ever connected to all computers in your network and simplifies the creation of rules
Easy client deployment using Group Policy or other software deployment system
Central configuration using Active Directory and Group Policy
Alternate configuration mechanism using configuration files via UNC path, HTTP or FTP
Supports Group Policy Management Console (GPMC) and NetIQ Group Policy Administrator
Remote connection to Client computers to temporarily unlock devices and to troubleshoot policy enforcement
Remote identification of devices connected to clients
Quick policy deployment using templates for common computer models (Dell, HP, IBM, etc.)
Deployment Wizard
Customizable taskbar notification with HTML text
Multilingual user interface (MUI), supporting 6 languages, more to be added soon
Anti-tampering mechanisms, such as an optional password for uninstalling DriveLock to prevent unauthorized disabling of the system protection
Comprehensive control over who can start which programs
Flexible combination of whitelists and blacklists
Auditing of all application usage
Easy implementation using application templates
Windows Vista, Windows XP SP2 or Windows Server 2003 SP1
Windows 2000 Active Directory (or higher) with Group Policy recommended for central configuration
Removable Media Encryption
Full Disk Encryption
Reporting and Auditing
Administration
Application Launch Filter
System requirements
BACK
