Location-based Protection

You can configure the location-based policy settings on the Location-based Protection policy page.

Local/Network Folders

Option Definition
Add Click Add/+ to specify the folders to be encrypted.
Path Specifies the path of the folder to be encrypted.

Specify the path of the folder by selecting from the list or typing it in the text box.

Note: The folder can be local or on a network share.

Make sure that you don't setup conflicting paths to prevent system and network abuse. For example, "\\abserver.com\" and "P:\" are both resolving to the same location, but different keys are specified.

Action Specifies the encryption key to be assigned to the policy. Browse to select the key.
Note: You can also configure this as Decrypt to maintain a plain text only folder.

Cloud Sync Folder

Option Definition
Add Click Add/+ to specify protection options for cloud sync folders. By default, all supported providers are in report mode and information collected from systems are accessible through the Cloud: Protection State FRP query.
Provider Specifies the list of cloud providers namely Dropbox, Box, Google Drive, and OneDrive to be encrypted.
Protection Level Specifies the protection level of the cloud providers as follows:
  • Audit — Enabling this option allows capturing additional details related to cloud sync folder such as number of files and folder size.
  • Allow Encryption — Creates an encrypted sub-folder named "McAfee Protected Folder" by default in the sync folders for cloud providers. The name of the sub-folder can be customized. Any data in this sub-folder will be synchronized in its encrypted form while still available transparently from the FRP client like other encrypted files.
  • Enforce Encryption — Encrypts all the files and folders in the sync folder that will be synchronized in its encrypted form while still available transparently from the FRP client like other encrypted files.
Action Specifies the encryption key to be assigned to the policy. Browse to select the key.
Note: You can also configure this as Decrypt to maintain a plain text only folder.
Introductory Message Displays the introductory message on the client system, if at least one policy protection level is set to Allow Encryption or Enforce Encryption. It is also displayed on the client system when a policy is changed and the related cloud provider is detected.
Allow-Level Message If Allow Encryption protection level is selected for any of the Cloud providers, the text configured as part of this field is appended to the introductory message (followed by the Enforce-Level Message, if relevant), and a consolidated message is shown along with the details of the associated cloud provider.
Enforce-Level Message If Enforce Encryption protection level is selected for any of the Cloud providers, the text configured as part of this field is appended to the introductory message (and Allow-Level Message, if relevant), and a consolidated message is shown along with the details of the associated cloud provider.