Full-Disk Encryption Status report
The Full-Disk Encryption Status report includes information about the full-disk encryption products detected on your Windows and Mac devices. It also shows the encryption status of each device's system drive.
Full-disk encryption (FDE) is a software or hardware solution that secures, or encrypts, the entire contents of a physical drive. The Secure Endpoint Agent detects most FDE hardware (self encrypting drives) and software products installed on the hard drives of your devices.
On the Reports page, you can access this report from Absolute view or the Security category. You can also access it from the Encryption Status widget on the Dashboard.
FDE products detected by the Secure Endpoint Agent
The Full-Disk Encryption Status report applies only to supported Windows and Mac devices.
To detect the encryption status of your Windows and Mac devices you first need to activate the Full-Disk Encryption Status policy in one or more policy groups.
By default, the following filters are used to generate this report:
Agent status is Active and
Platform type is Windows or Platform type is Mac
The Full-Disk Encryption Status report includes a default collection of device information organized in the following columns:
- Device name, which includes the device's device name The name assigned to the device in the operating system. For Chromebooks, device name is not applicable and therefore shows as "Chrome" in the Secure Endpoint Console. and serial number The identification number assigned to the device by the device manufacturer. For Windows devices, this value may correspond to the serial number of the BIOS, the motherboard, or the chassis, depending on the manufacturer.
- Encryption columns, which show the following information about the full-disk encryption products installed on your devices:
Column
Details
The summarized encryption status of the device
Statuses- Encrypted: a full-disk encryption product is installed on the device and the system drive is fully encrypted
- Not Encrypted: a full-disk encryption product is installed on the device, but the system drive is not encrypted
- Not Detected: a full-disk encryption product is not detected on the device
- No Data: encryption status is not yet available (waiting for the device to check in to the Absolute Monitoring Center)
Additional statuses that apply only to Windows devices:
Used Space Encrypted: all disk space that contains data is encrypted by BitLocker Drive Encryption, but free space is not encrypted
NOTE This status indicates that the Used Disk Space Only encryption option is enabled in BitLocker. For more information about this option, see Microsoft BitLocker Drive Encryption documentation.
- Suspended: BitLocker Drive Encryption is suspended
- Encryption In Progress: the system drive is in the process of being encrypted by BitLocker Drive Encryption
- Decryption in Progress: the system drive is in the process of being decrypted by BitLocker Drive Encryption
Product name
The name of the full-disk encryption software detected on the device
Version
The version number of the detected full-disk encryption software
Algorithm
The detected algorithm used by the full-disk encryption software, if available
Most products use an Advanced Encryption Standard (AES) algorithm.
Comments
The text string provided by the encryption vendor that provides more information about the encryption status of the device's system drive
Key size
The number of bits in a key used by the detected algorithm
For products that use an AES algorithm, the key size is typically 128 or 256 bits.
SED capable
Indicates whether the encryption product is hardware- or software-based
Possible values are:
- Yes: an Opal compliant self encrypting drive (SED) is detected on the device
- No: the encryption product is software-based
Last updated
The date and time when a change in the device's encryption information was last detected
Each device's Secure Endpoint Agent performs an hourly ESP scan. If a change is detected, the new information is uploaded on the device's next agent connection, which is typically within the next 15 minutes if the device is online.
All drives encrypted A more detailed encryption status of the device's drives
Possible values are:
- All Drives Encrypted With Locked Drives
- All Drives Encrypted With No Locked Drives
- No Drives Encrypted
- Some Drives Encrypted
- Unknown
NOTE This column reports on the status of BitLocker Drive Encryption and FileVault only. For all other full-disk encryption products, Unknown is shown.
- Username Username of the user who was logged in to the device when an agent connection occurred. If no user was logged in during the most recent agent connection, the last detected username shows. If you are viewing a report and want to see if a user was logged in during the most recent connection, add the Current Username column to the report. If no user was logged in at the time of the connection, "No Data" or two em dashes (— —) show in the column.
- Make The manufacturer of a device.
- Model The manufacturer's designated name for the type of device.
You can use most of the device information as search criteria to search for a device, or a group of devices. You can also include other device information in the report, such as custom fields, by adding more columns. To refresh the report's data, click in the page footer.
NOTE If No Data shows in a column, the information was not detected on the device.
By default, the report data is not sorted. You can sort the report by clicking a column heading.
Depending on the Absolute licenses associated with your account, and your user role, you may be able to perform some or all of the following tasks on the Full-Disk Encryption Status report:
- Open and view the report
- Adjust the columns on the report
- Add or remove filters
- Export the report
- Email the report on a set schedule
- Favorite the report
- Save changes to report filters and columns to create a custom view or a new report
Depending on the Absolute licenses associated with your account, and your user role, you may be able to perform some or all of the following tasks on the devices in this report:
- Search for and view individual devices in the report
- View the location of your devices
-
Request any of the following actions on one or more devices: