File Encryption Agent GUI Reference
The File Encryption Agent GUI enables you to use a lightweight application to configure the agent on a single server. The changes made in the GUI are saved to a configuration file used by the file encryption agent, which runs either as a standalone application on Windows or Linux, or as a Windows service.
Summary of File Encryption Agent configuration:
- Servers: Settings that define connection details for the remote servers that handle cryptographic key management.
- TLS: Settings and files related to mutual authentication with the remote servers that handle cryptographic key management.
- Auth: Settings for authentication credentials with the remote servers.
- Logging: Settings related to the logs generated by the File Encryption Agent including their verbosity, file size, location, and more.
The File Encryption Agent GUI is not a required component of the file encryption functionality. Administrators can also configure the agent by manually editing a configuration text file. You can find more details about the configuration file in the File Encryption Agent Configuration Reference section of this administrative guide.
To access the File Encryption Agent GUI, perform the following steps:
Locate and run fenca-gui.exe, which is contained in the main fenca directory. This location is defined during the installation process.
In the Futurex File Encryption GUI, select [ Configure ] to open the configuration menu. Until you complete this step the first time, no remote servers appear in the Server drop-down list.
In the Servers tab, configure the devices used to encrypt files.
In the TLS tab, define the PKI parameters for the TLS connection to the device.
In the Auth tab, configure authentication parameters for connecting to the device.
In the Log tab, configure where and how the agent and GUI save application logs.
Select [ Save ] when finished to save the configuration changes to the fenca.cfg file.
If the agent is configured correctly, the main File Encryption Agent GUI window should indicate successful connection and authentication to the .
The value in the Profiles field indicates that the authenticated identity has permission to view 1 or more managed profile(s). Selecting View shows information about that File Encryption Profile, which the agent pulls from the .
You cannot modify File Encryption Profiles from the File Encryption GUI. Instead, you must modify them from the application interface.
To manually encrypt files using the File Encryption Agent GUI, perform the following steps.
Locate and run fenca-gui.exe, which is contained in the main fenca directory. This location is defined during the installation steps.
In the Futurex File Encryption GUI, select [ Open File ] at the bottom of the window. T will open.
In the File Details window, select [ Browse ] to locate and select the file to be encrypted.
Define a Name for the file in the encrypted file header. Note that this is different from the file name.
Select either HSM or Application as the Key Mode.
HSM corresponds with File Encryption v1 keys, and Application corresponds with File Encryption v2 keys.
If the identity does not have access to any File Encryption Profiles that use File Encryption v1 keys, the system returns an error if the user selects the HSM radio button. If the identity does not have access to any File Encryption Profiles that use File Encryption v2 keys, the system returns an error if the user selects the Application radio button.
The Profile Key drop-down list automatically populates with all the keys the identity has access to. The keys are represented as the input directory configured for the File Encryption Profile that the key is used with.
Use the up and down arrows to define the file version. You can use this to manually set the version. In contrast, files placed directly into the File Encryption Agent's input directory have their version automatically created based on files already in the output folder.
Select [ Encrypt ], choose a location to save the encrypted file, and select [ Save ].
A message confirms that the file has been successfully encrypted.
When prompted about deleting the original file, select [ Yes ] or [ No ].
When a new version of the File Encryption Agent is released, it is typically packaged along with a new application version of the . Similar to initial deployment, the end user can distribute this agent by using their normal OS file management infrastructure.