- 2 Minutes to read
- Print
- DarkLight
- PDF
Compliance mode
- 2 Minutes to read
- Print
- DarkLight
- PDF
FenixPyre Compliance Mode has been introduced to enable seamless achievement of CMMC (Cybersecurity Maturity Model Certification) compliance on Windows desktops. This mode strengthens data protection by ensuring that encryption policies are consistently applied in accordance with CMMC guidelines. Administrators can enforce specific encryption policies to specific users and specific applications to safeguard sensitive data, providing control over how files are managed within the system.FenixPyre Compliance Mode allows administrators to define policies which ensures that files opened and saved through designated applications are always encrypted.
How to enable compliance mode for an application?
Admin can enable Compliance Mode for an application by adding it as a PxP (Protect By Process) application and checking the box for Compliance Mode in the config rules(user roles). Read more about Protect By Process in this article.
When Compliance Mode is Enabled:
All files, whether previously encrypted or unencrypted, opened by designated applications will be automatically encrypted upon saving, regardless of whether the file is stored in a protected or non-protected folder. This ensures that any sensitive or unclassified information is protected according to CMMC guidelines.
When Compliance Mode is Disabled:
Designated applications will not be able to open encrypted files from any folder, protected or non-protected. Unencrypted files will still be accessible and can be opened by the applications, but they will not be encrypted when saved.
Windows Endpoint Settings
Once an administrator enables Compliance Mode for specific Protect by Process Collections assigned to a user role in the Admin Dashboard, users assigned to that role can manage Compliance Mode on their system. These users can turn Compliance Mode on or off through the "Enable/Disable Compliance Mode" option in the FenixPyre system tray application.
FAQs
Q1: Who can enable or disable FenixPyre Compliance Mode
A: For the Protect by Process Collections, only admins can enable or disable FenixPyre Compliance Mode through the admin dashboard settings for any user roles. Once it is enabled, the end users which belongs to that user role will gain the ability to control Compliance Mode on their system using FenixPyre’s system tray application.
Q2: What happens if FenixPyre Compliance Mode is Disabled and a user tries to open an encrypted file?
A: FenixPyre will deny access to the encrypted file using PXP application(Eg. Revit files using Auto-cad application), ensuring that sensitive data is protected. However users can open encrypted files using admin approved applications from designated protected folders.
Q3: Does this mode encrypt all file types?
A: Yes, Compliance Mode applies to all files opened and saved by the specified applications, regardless of the file type.
Q4: Can unencrypted files be accessed when FenixPyre Compliance Mode is Enabled?
A: Yes, unencrypted files can still be opened and worked on when FenixPyre Compliance Mode is enabled. However, after being edited and saved, they will be automatically encrypted.