Hi,
I've installed the 30 days test-version of PGP Whole Disk Encryption. If the encryption is working the way our company wants it to work, we will buy the product for all of our laptops.
So far, I was able to encrypt the whole harddrive of the laptop the test-installation is on. When I start the laptop, the user has to unlock the system with the password. So far, so good.
What I want, on the other hand, is this: I want the key-file or something stored in a file on a USB-stick. The user has to plug in his USB-stick when he starts the laptop, and the laptop will search for the key-file. As soon as it finds the keyfile, the user has to unlock the laptop with his password. Only then should the user get access to the laptop. This means, the user should ONLY be able to use the laptop when he has got the USB-stick with him. Without the USB-stick, the laptop is encrypted and no one can unlock it.
Of course, our IT department should be able to have copies of those keyfiles stored on our servers in case of loss of the USB-stick or password.
I didn't find a way to encrypt the laptop the way I described. Is it possible to do it?
thanks in advance for reading
JN Eberle