A Smartpoint combines a Smartcrypt TDE key and Smartcrypt TDE Smartpoint policy and applies this combination to one agent in one specific path. You may add, edit, or delete Smartpoints within the Smartcrypt Enterprise Manager (SEM).
Note: Before creating a Smartpoint, you must first define the agent you wish to use the Smartpoint. To learn how to Add a TDE Agent, see TDE Agent.
Adding a Smartpoint
To add a Smartpoint to your system:
- Go to TDE > Smartpoints. Any existing Smartpoints will display in a list.
- Click Add.
- Use the Search to find the desired Smartcrypt Agent Device on the Windows platform. Leave the search fields empty to display all existing agents.
- Click Add to set up a Smartpoint on this Agent.
Type the Path to the volume you want to encrypt.
Use the TDE Key drop-down menu to select an active key.
- (Optional) Check Learn Mode to identify and report which users and locally installed applications are accessing data in a defined Smartpoint. Checking this box disables all other options on the page.
- (Optional) Check Reporting to include this Smartpoint in Data Security Intelligence (DSI) Reporting.
Click Save to return to the Smartpoints list for this device. You may add more Smartpoints, or click Done to identify another device.
Caution: Do not create a Smartpoint pointing to the Path of Smartcrypt Enterprise Manager's own database directory.
A TDE agent is simply a server. The list of available TDE agents appears after you select Add Smartpoint(s). You may select any TDE Agent listed under Device.
When adding a Smartpoint, you must select a path within the selected TDE agent. Now when any additional files are added to this path, the files will be transparently encrypted as defined by the created Smartpoint.
The TDE key represents the key that will be used for encryption. The user's list of available keys will appear in the drop down menu. TDE keys are defined within the Keys tab.
See Keys for more information.
The final aspect of a Smartpoint that must be defined is the Smartpoint policy you wish the Smartpoint to follow. A Smartpoint Policy is a list of rules that control the transparent encryption applied to the Smartpoint. Smartpoint polices may be used by multiple Smartpoints. Any changes made to a Smartpoint policy will be reflected in existing Smartpoint(s).
See Smartpoint Policies for more information.
Editing a Smartpoint
You may edit a Smartpoint at any time by selecting Edit next to the Smartpoint you wish to edit. From here you may edit the path**, TDE key, and Smartpoint policy that apply to the Smartpoint.
** IMPORTANT: If you choose to edit the path, it will not decrypt any existing files within the Smartpoint.
Deleting a Smartpoint
A Smartpoint may be deleted by selecting Delete located to the right of the Smartpoint you wish to delete.
** IMPORTANT: If you choose to delete a Smartpoint, it will only remove it from being protected by the agent. It will not decrypt any existing files within the Smartpoint.