I have been asked to look into an encryption policy for our Laptop users who are all using Windows XP. My IT Director believes that Windows XP encryption will probably do what we want. I have read the following Microsoft Documents:-
But I am a bit confused by it all. We are moving to Active Directory in the coming months so am happy to disregard settings for an NT4 Domain.
Which folders cannot be encrypted?
As a Domain Administrator how can I ensure that I can always access encrypted files?
How does encryption handle offline synchronised files, I don't mind if the files are not encrypted on the server?
How does encryption handle roaming profiles on the server, again I don't mind if the files are not encrypted on the server?
I would prefer to use Group Policy in Active Directory.
All I want to achieve is if the laptop is stolen that User Data cannot be accessed even if they reset the local administrator password.