Enhancements made to Endpoint Security Management include the new Microsoft Data Encryption policy, IPv6 support in the Firewall Policy, and additional support for Endpoint Security audit events.
Endpoint Security introduces the Microsoft Data Encryption policy, which gives you the capability to manage Microsoft BitLocker encryption of removable data drives using ZENworks. With the Microsoft Data Encryption policy, you will be able to do the following on ZENworks 2017 Update 2 managed devices:
Configure and manage BitLocker encryption of removable drives in your zone
Transition removable drives encrypted with BitLocker out of the zone to ZENworks managed BitLocker encryption.
Transition removable drives encrypted with ZENworks Data Encryption to ZENworks managed BitLocker encryption
For more information, see Microsoft Data Encryption Policy in the ZENworks Endpoint Security Policies Reference.
With added support for IPv6 in the Firewall Policy, all security policies now support IPv6 addressing and usage.
Endpoint Security includes the following enhancements for audit events:
Endpoint Security Zone Policy Assignment Modified - Change Event: Endpoint Security Zone Policy Assignment Modified is a new change event. When configured, it generates an Audit event any time a zone Security policy is assigned or removed.
ZESM Effective Policy- Agent Event: When configured, the ZESM Effective Policy agent event is generated anytime a Security policy changes on a device. An enhancement to the event adds more details about which policies are effective on the device.