When the default security settings do not match your own security policy, you can easily request your own, custom security policy which is then applied to your encrypted machines.

Settings which can be changed by using a custom security policy include;

• Additional Local Admin users.  A good idea for perhaps customers who want to give their laptop to their Internal IT Helpdesk, but do not want to give up their UserID and Password.
• Password policy rules (length of password, complex password, maximum age etc.)
• Screensaver lock
• Time before inactivity lock
• Lockout rules - number of incorrect attempts
• Single sign-on to the OS
• Windows Integrated login (for smartcards, USB tokens, fingerprint reader pre-boot auth)
• Branded, customised login screen.

We have a document outlining the items which can be modified in full available here.

Default Security Policy

The default client security policy is as follows;

• Password Length: 6 digits minimum.
• Password Content: Upper AND lower case AND number(s).
• Time before password expiration: 120 days.
• No. of log-on attempts: Five attempts before lock-out.
• Password history: Not to re-use any of the last 4 passwords used.