What is Forced Enrollment
Generally speaking, the weakest links in any data security plan are the access codes or PINs. It’s common knowledge that PINs that are too simple are about as effective as having no PIN at all. Forced Enrollment focuses on a different PIN weakness. One that stems from devices shipped with factory preset PINs. While factory preset PINs are common and widely used, there exists a very real opportunity to skip the factory PIN replacement step and put these drives into service with publicized PINs still enabled to authenticate them. Most people know that the preset PIN has to be changed at initial setup, but surprisingly, there are a few who don’t. To ease the minds of CISOs everywhere, we’ve sidestepped this potential vulnerability by eliminating the factory-preset PIN on the Secure Key 3.0 altogether. And since all of the Secure Key’s use and setup requires a 7-16 digit PIN to unlock it, the establishment of a unique admin PIN has to happen first, which is exactly what Forced Enrollment ensures. Simply put, we’ve taken the critically important security measure of unique PIN creation a step further by forcing this process to the very front of the Secure Key’s setup.