Citrix Endpoint Management

Storage encryption device policy

You create storage encryption device policies in Endpoint Management to encrypt internal and external storage, and, depending on the device, to prevent users from using a storage card on their devices.

To add or configure this policy, go to Configure > Device Policies. For more information, see Device policies.


For Samsung SAFE devices, make sure the following requirements are met before you configure this policy:

  • Set the Screen Lock option on user devices.
  • Plug in users devices and charge them to at least 80%.
  • Make sure that the devices require a password containing both numbers and letters or symbols.

Samsung SAFE settings

  • Encrypt internal storage: Select whether to encrypt internal storage on users’ devices. Internal storage includes device memory and internal storage. The default is On.
  • Encrypt external storage: Select whether to encrypt external storage on users’ devices. The default is On.
Storage encryption device policy