{"id":45820,"date":"2020-04-16T15:00:00","date_gmt":"2020-04-16T21:00:00","guid":{"rendered":"https:\/\/jumpcloud.com\/?p=45820"},"modified":"2020-04-15T14:39:29","modified_gmt":"2020-04-15T20:39:29","slug":"set-up-fde-remote","status":"publish","type":"post","link":"https:\/\/jumpcloud.com\/blog\/set-up-fde-remote","title":{"rendered":"Set Up Full Disk Encryption for Remote Systems"},"content":{"rendered":"\n<p>Now that much of the world works remotely, IT admins have their hands full. A key part of their job now is to secure remote systems. Out of the many problems involved with securing remote systems, one issue in particular is how to set up full disk encryption (FDE) for remote systems.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Securing Remote Systems with FDE<\/h2>\n\n\n\n<p>IT admins always want to be sure that their corporate data is safe, but with a fully remote workforce, IT has less control over the systems that have access to that data. After all, systems <a href=\"https:\/\/jumpcloud.com\/blog\/enforce-fde-hipaa-compliance\">can be easily stolen or compromised<\/a>, and when they are outside of IT\u2019s sphere of influence, that risk is multiplied.<\/p>\n\n\n\n<p>A best practice to enforce when IT admins are unsure of their systems\u2019 security is full disk encryption. FDE \u2014 called <a href=\"https:\/\/jumpcloud.com\/blog\/policies-bitlocker-filevault\">BitLocker on Windows<sup>\u00ae<\/sup> machines and FileVault 2 on macOS<sup>\u00ae<\/sup><\/a> systems \u2014 uses system software components to ensure that hard drives are encrypted when at rest.<\/p>\n\n\n\n<p>With FDE, a hard drive is constantly encrypted until a user logs in to the system. That means that if the user\u2019s system is stolen, the data stored inside is inaccessible unless the user\u2019s identity is compromised as well. If the user forgets their password, the drive can only be decrypted through its unique recovery key, which IT needs to store in escrow for safekeeping.<\/p>\n\n\n\n<p>In order to implement FDE, IT organizations often need to be able to remotely activate system-level configurations through a group policy tool or similar solution. This can often be accomplished through a directory service or a <a href=\"https:\/\/jumpcloud.com\/blog\/remote-user-device-management\/\">device management tool<\/a>, although remote workers add another layer of complexity if those solutions aren\u2019t cloud-based, since they fall outside of the immediate domain of on-prem tools.<\/p>\n\n\n\n<p>Of course, the issue isn\u2019t just enabling FDE but also managing the entire process. Although FDE is great to protect against data loss via hard drive theft, it can also lead to data loss if users forget their passwords. Thus, IT admins want to ensure that each system has a recovery key that\u2019s stored securely and accessible to the IT admin in the case of an issue.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Leveraging the Cloud to Set Up FDE Remotely<\/h2>\n\n\n\n<p>With a cloud directory service, or <a href=\"https:\/\/jumpcloud.com\/product\">Directory-as-a-Service<sup>\u00ae<\/sup><\/a>, IT admins can apply system security policies, including FDE, through a web-based admin console. Using an agent downloaded to the Windows\/Mac system, this Directory-as-a-Service remotely updates the requisite settings to enable FDE on that system. Directory-as-a-Service then stores recovery keys in escrow, keeping them safe until they\u2019re needed by the IT admin.<\/p>\n\n\n\n<p>Check out this blog to learn more about <a href=\"https:\/\/jumpcloud.com\/blog\/policies-secure-remote-systems\">using a cloud directory service to remotely enforce Policies<\/a> to manage systems.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Now that much of the world works remotely, IT admins need to secure their remote system fleets and set up full disk encryption across them.<\/p>\n","protected":false},"author":70,"featured_media":45821,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_oasis_is_in_workflow":0,"_oasis_original":0,"_oasis_task_priority":"","inline_featured_image":false,"footnotes":""},"categories":[23,2337],"tags":[],"collection":[2778],"platform":[],"funnel_stage":[3016],"coauthors":[],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v22.9 (Yoast SEO v22.9) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Set Up Full Disk Encryption for Remote Systems - JumpCloud<\/title>\n<meta name=\"description\" content=\"Now that much of the world works remotely, IT admins need to secure their remote system fleets and set up full disk encryption across them.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/jumpcloud.com\/blog\/set-up-fde-remote\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Set Up Full Disk Encryption for Remote Systems\" \/>\n<meta property=\"og:description\" content=\"Now that much of the world works remotely, IT admins need to secure their remote system fleets and set up full disk encryption across them.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/jumpcloud.com\/blog\/set-up-fde-remote\" \/>\n<meta property=\"og:site_name\" content=\"JumpCloud\" \/>\n<meta property=\"article:published_time\" content=\"2020-04-16T21:00:00+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2020-04-15T20:39:29+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/04\/set-up-fde-remote.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"780\" \/>\n\t<meta property=\"og:image:height\" content=\"520\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Zach DeMeyer\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Zach DeMeyer\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/set-up-fde-remote#article\",\"isPartOf\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/set-up-fde-remote\"},\"author\":{\"name\":\"Zach DeMeyer\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/5b2c563fb7404910e9be96e7d4e7828d\"},\"headline\":\"Set Up Full Disk Encryption for Remote Systems\",\"datePublished\":\"2020-04-16T21:00:00+00:00\",\"dateModified\":\"2020-04-15T20:39:29+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/set-up-fde-remote\"},\"wordCount\":453,\"publisher\":{\"@id\":\"https:\/\/jumpcloud.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/set-up-fde-remote#primaryimage\"},\"thumbnailUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/04\/set-up-fde-remote.jpg\",\"articleSection\":[\"Best Practices\",\"Remote Work\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/set-up-fde-remote\",\"url\":\"https:\/\/jumpcloud.com\/blog\/set-up-fde-remote\",\"name\":\"Set Up Full Disk Encryption for Remote Systems - JumpCloud\",\"isPartOf\":{\"@id\":\"https:\/\/jumpcloud.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/set-up-fde-remote#primaryimage\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/set-up-fde-remote#primaryimage\"},\"thumbnailUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/04\/set-up-fde-remote.jpg\",\"datePublished\":\"2020-04-16T21:00:00+00:00\",\"dateModified\":\"2020-04-15T20:39:29+00:00\",\"description\":\"Now that much of the world works remotely, IT admins need to secure their remote system fleets and set up full disk encryption across them.\",\"breadcrumb\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/set-up-fde-remote#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/jumpcloud.com\/blog\/set-up-fde-remote\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/set-up-fde-remote#primaryimage\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/04\/set-up-fde-remote.jpg\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/04\/set-up-fde-remote.jpg\",\"width\":780,\"height\":520},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/set-up-fde-remote#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/jumpcloud.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Set Up Full Disk Encryption for Remote Systems\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/jumpcloud.com\/#website\",\"url\":\"https:\/\/jumpcloud.com\/\",\"name\":\"JumpCloud\",\"description\":\"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.\",\"publisher\":{\"@id\":\"https:\/\/jumpcloud.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/jumpcloud.com\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/jumpcloud.com\/#organization\",\"name\":\"JumpCloud\",\"url\":\"https:\/\/jumpcloud.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"width\":598,\"height\":101,\"caption\":\"JumpCloud\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/5b2c563fb7404910e9be96e7d4e7828d\",\"name\":\"Zach DeMeyer\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/image\/d1d6602d927eb5a16b1dfd4ba6b4c219\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/2145e4e676784129043e5eec7c4e41e6?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/2145e4e676784129043e5eec7c4e41e6?s=96&d=mm&r=g\",\"caption\":\"Zach DeMeyer\"},\"description\":\"Zach is a Product Marketing Specialist at JumpCloud with a degree in Mechanical Engineering from the Colorado School of Mines. He loves being on the cutting edge of new technology, and when he's not working, he enjoys all things outdoors, music, and soccer.\",\"sameAs\":[\"http:\/\/www.jumpcloud.com\"]}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Set Up Full Disk Encryption for Remote Systems - JumpCloud","description":"Now that much of the world works remotely, IT admins need to secure their remote system fleets and set up full disk encryption across them.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/jumpcloud.com\/blog\/set-up-fde-remote","og_locale":"en_US","og_type":"article","og_title":"Set Up Full Disk Encryption for Remote Systems","og_description":"Now that much of the world works remotely, IT admins need to secure their remote system fleets and set up full disk encryption across them.","og_url":"https:\/\/jumpcloud.com\/blog\/set-up-fde-remote","og_site_name":"JumpCloud","article_published_time":"2020-04-16T21:00:00+00:00","article_modified_time":"2020-04-15T20:39:29+00:00","og_image":[{"width":780,"height":520,"url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/04\/set-up-fde-remote.jpg","type":"image\/jpeg"}],"author":"Zach DeMeyer","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Zach DeMeyer","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/jumpcloud.com\/blog\/set-up-fde-remote#article","isPartOf":{"@id":"https:\/\/jumpcloud.com\/blog\/set-up-fde-remote"},"author":{"name":"Zach DeMeyer","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/5b2c563fb7404910e9be96e7d4e7828d"},"headline":"Set Up Full Disk Encryption for Remote Systems","datePublished":"2020-04-16T21:00:00+00:00","dateModified":"2020-04-15T20:39:29+00:00","mainEntityOfPage":{"@id":"https:\/\/jumpcloud.com\/blog\/set-up-fde-remote"},"wordCount":453,"publisher":{"@id":"https:\/\/jumpcloud.com\/#organization"},"image":{"@id":"https:\/\/jumpcloud.com\/blog\/set-up-fde-remote#primaryimage"},"thumbnailUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/04\/set-up-fde-remote.jpg","articleSection":["Best Practices","Remote Work"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/jumpcloud.com\/blog\/set-up-fde-remote","url":"https:\/\/jumpcloud.com\/blog\/set-up-fde-remote","name":"Set Up Full Disk Encryption for Remote Systems - JumpCloud","isPartOf":{"@id":"https:\/\/jumpcloud.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/jumpcloud.com\/blog\/set-up-fde-remote#primaryimage"},"image":{"@id":"https:\/\/jumpcloud.com\/blog\/set-up-fde-remote#primaryimage"},"thumbnailUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/04\/set-up-fde-remote.jpg","datePublished":"2020-04-16T21:00:00+00:00","dateModified":"2020-04-15T20:39:29+00:00","description":"Now that much of the world works remotely, IT admins need to secure their remote system fleets and set up full disk encryption across them.","breadcrumb":{"@id":"https:\/\/jumpcloud.com\/blog\/set-up-fde-remote#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/jumpcloud.com\/blog\/set-up-fde-remote"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/blog\/set-up-fde-remote#primaryimage","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/04\/set-up-fde-remote.jpg","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/04\/set-up-fde-remote.jpg","width":780,"height":520},{"@type":"BreadcrumbList","@id":"https:\/\/jumpcloud.com\/blog\/set-up-fde-remote#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/jumpcloud.com\/"},{"@type":"ListItem","position":2,"name":"Set Up Full Disk Encryption for Remote Systems"}]},{"@type":"WebSite","@id":"https:\/\/jumpcloud.com\/#website","url":"https:\/\/jumpcloud.com\/","name":"JumpCloud","description":"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.","publisher":{"@id":"https:\/\/jumpcloud.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/jumpcloud.com\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/jumpcloud.com\/#organization","name":"JumpCloud","url":"https:\/\/jumpcloud.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","width":598,"height":101,"caption":"JumpCloud"},"image":{"@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/5b2c563fb7404910e9be96e7d4e7828d","name":"Zach DeMeyer","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/image\/d1d6602d927eb5a16b1dfd4ba6b4c219","url":"https:\/\/secure.gravatar.com\/avatar\/2145e4e676784129043e5eec7c4e41e6?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/2145e4e676784129043e5eec7c4e41e6?s=96&d=mm&r=g","caption":"Zach DeMeyer"},"description":"Zach is a Product Marketing Specialist at JumpCloud with a degree in Mechanical Engineering from the Colorado School of Mines. He loves being on the cutting edge of new technology, and when he's not working, he enjoys all things outdoors, music, and soccer.","sameAs":["http:\/\/www.jumpcloud.com"]}]}},"_links":{"self":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/45820"}],"collection":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/users\/70"}],"replies":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/comments?post=45820"}],"version-history":[{"count":1,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/45820\/revisions"}],"predecessor-version":[{"id":45822,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/45820\/revisions\/45822"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/media\/45821"}],"wp:attachment":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/media?parent=45820"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/categories?post=45820"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/tags?post=45820"},{"taxonomy":"collection","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/collection?post=45820"},{"taxonomy":"platform","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/platform?post=45820"},{"taxonomy":"funnel_stage","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/funnel_stage?post=45820"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/coauthors?post=45820"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}