SafeGuard LAN Crypt Client - Perfomance loss when booting a machine with installed SafeGuard LAN Crypt Client.

  • Article ID: 107360
  • Updated: 22 Jun 2011

SafeGuard LAN Crypt v 3.51 and above.

Client OS

Windows 7, Windows Vista, Windows XP

How and when should you use the Default Ignore Rules on the SafeGuard LANCrypt Client?

As the SafeGuard LAN Crypt driver is always loaded when you boot a workstation, all the files have already been checked to see if they are encrypted and therefore also to see that they have the appropriate access rights even if no user-specific encryption profile has yet been loaded. This may slow down performance in this phase.

However, if you make a machine-specific setting in SafeGuard LAN Crypt’s configuration you can tell the SafeGuard LAN Crypt driver to ignore specific directories until the user’s encryption profile has been loaded.

Double-click on Default Ignore Rules in the Client Settings to open a dialog where you can specify the directories (for example, "c:\*.*;d:\*.*" or "*") that SafeGuard LAN Crypt’s driver is to ignore.
If you enter more than one path, each path must be separated by a semicolon.

You could also set the default Ignore Rules via a Registry entrie:

Key: System\CurrentControlSet\Control\Utimaco\SGLCENC
Value Name: DefaultIgnoreRules
Value Type: REG_SZ
Value: Example: "DefaultIgnoreRules"="c:\*.*; \\server\plain\*.*"
Or "DefaultIgnoreRules"="*"

However, if you use this rule you must take into account that SafeGuard LAN Crypt’s specific access check will not be carried out until the user’s encryption profile is loaded.

If you enter "c:\*.*;d:\*.*" as the Default Ignore Rules, the driver will ignore all directories on the C and D drives until the user’s encryption profile is loaded.

Even if you use SafeGuard LAN Crypt on a terminal server, you can speed up performance by using the Default Ignore Rules setting. If, for example, several users are working on a terminal server, but only one of them uses SafeGuard LAN Crypt, you can tell the driver to ignore all the other users’ sessions. Because no encryption profile has been loaded for them. only the Default Ignore Rules apply to them.

If you need more information or guidance, then please contact technical support.

Rate this article

Very poor Excellent