Configuring generic account settings
In Policies > Accounts > Settings, configure the generic user account settings:
| Account type |
Select an SDS Enterprise account for the following user categories: Smart card, Password, Password and smart card, or Single Sign-on (SSO). For more information on how to use SSO mode, refer to the section Creating a Single Sign-On (SSO) account. |
| Encryption and signature | |
| Encryption algorithm | Algorithm used to encrypt the data. SDS Enterprise offers only the AES algorithm. |
| Signature algorithm | Algorithm used to sign data. Choose SHA-256 or SHA-512. |
| Card or USB token accounts | |
| Middleware |
Middleware allows SDS Enterprise to communicate with all types of smart cards and USB tokens. Select the middleware to use on user workstations from the list of middleware supported by SDS Enterprise. Only one middleware solution can be selected for each policy. The Stormshield Data Security middleware is selected and installed by default. In the security policy's .json configuration file, you can manually specify several middleware options to use (cardMiddlewares parameter). For more information, refer to the SDS EnterpriseAdvanced configuration guide The middleware must be installed beforehand on user workstations. For more information, see section Configuring the middleware required for Card or USB token accounts. |
| Advanced settings | Here, enable filtering by drive (card or token) when several types of drives are plugged into the same workstation at the same time. This option allows SDS Enterprise to know which drive is used to connect to an SDS Enterpriseaccount. |
| Password accounts | |
| On automatic Windows session lock |
These settings make it possible to define the behavior of the SDS Enterprise agent when the Windows session is locked.
|