Reporting on disk encryption for Linux systems can be a time-consuming manual process that makes regulatory compliance and data security more challenging for IT organizations. It’s not uncommon for small and medium-sized enterprises (SMEs) to have less visibility into their Linux systems, especially when the majority of their fleet is managed by Microsoft Active Directory.
The JumpCloud platform, which provides cross-OS compliance and governance of devices, now includes a Linux Check Disk Encryption policy. The policy automatically verifies whether systems’ storage media are encrypted with either LUKs and fscrypt, two of the most common disk encryption libraries for Linux. This helps to ensure the confidentiality and integrity of data.
This policy works for every Linux distribution that JumpCloud supports and provides the option to require managed home directories only or full disk encryption. JumpCloud will then notify IT admins if any of the targeted devices do not comply with the configured policy, and our reporting via System Insights will provide a full account of which devices aren’t within compliance.
The policy doesn’t automatically encrypt devices. Rather, we provide documentation on encryption methodologies and guided instructions to help SMEs manually encrypt devices, because of the characteristics of how Linux full disk encryption operates during the initial system configuration.
JumpCloud is extending its pre-built Linux policy library to make multi-platform compliance easier for IT organizations. We recently added the ability to enforce a Linux lock screen. JumpCloud features security commands to control systems as well as a sudo CLI for system and user management. These policies help SMEs to achieve parity with their Windows fleet for a secure configuration – an essential element of an effective cybersecurity program.
Linux management through the JumpCloud cloud directory platform is easy and free for up to 10 devices or users. The platform is also able to coexist within Active Directory domain to extend compliance and governance beyond Windows. Premium chat support is also offered over the first 10 days to assist with the initial implementation.