Configuring generic account settings

In Policies > Accounts > Settings, configure the generic user account settings:

Account type

Select an SDS Enterprise account for the following user categories: Smart card, Password, Password and smart card, or Single Sign-on (SSO). For more information on how to use SSO mode, refer to the section Creating a Single Sign-On (SSO) account.

Encryption and signature
Encryption algorithm Algorithm used to encrypt the data. SDS Enterprise offers only the AES algorithm.
Signature algorithm Algorithm used to sign data. Choose SHA-256 or SHA-512.
Card or USB token accounts
Middleware

Middleware allows SDS Enterprise to communicate with all types of smart cards and USB tokens. Select the middleware to use on user workstations from the list of middleware supported by SDS Enterprise. Only one middleware solution can be selected for each policy. The Stormshield Data Security middleware is selected and installed by default.

In the security policy's .json configuration file, you can manually specify several middleware options to use (cardMiddlewares parameter). For more information, refer to the SDS EnterpriseAdvanced configuration guide.

The middleware must be installed beforehand on user workstations.

For more information, see section Configuring the middleware required for Card or USB token accounts.

Advanced settings Here, enable filtering by drive (card or token) when several types of drives are plugged into the same workstation at the same time. This option allows SDS Enterprise to know which drive is used to connect to an SDS Enterpriseaccount.
Password accounts
On automatic Windows session lock

These settings make it possible to define the behavior of the SDS Enterprise agent when the Windows session is locked.

  • No actions

  • Lock SDS session: Locking your session prevents access to your keys. This means that the user can no longer access encrypted data, but can continue to use files that are already open. You can choose to unlock SDS when the Windows session resumes.

  • Log out of SDS session: Logging out amounts to closing the SDS Enterprise account. As a result, SDS Enterprise features cannot be used.