I was recommended Bitlocker for Windows 7, not used it myself but good reviews.
I have used McAfee Endpoint Encryption (was Safeboot), once setup its quite a good product, have also used the Sophos one thats good too but would personally go down the TrueCrypt route if it was for a handful of laptops.
Sophos and Safeboot both integrate with AD.
Sophos do an encryption program which will allow a laptop disc to be encrypted. We have used it on XP only, not tried it on Windows 7.
We use Sophos Safeguard as its in the security suite and integrated into the console.
Works well on XP and 7.
Sophos usb encryption will encrypt any removable storage inserted. Correct? If not is there a policy to allow only read only access for non-encrypted storage?
I've found that the performance hit with TrueCrypt is larger than expected on a new dual core laptop. Windows experience index is unaffected however.
I agree, BitLocker here (Windows 7). SCCM Task Seq turns it on and backs up Recovery Key to AD. BLTG for USB pens also with Recovery Key backup to AD.
Originally Posted by Arthur