Work Folders Encryption in Windows 11/10
Your IT administrator will normally set it up for you on your device. You just need your company email ID or the URL of the work folders to set it up. You will also require login credentials which could be same for the entire device or for accessing the particular folders. The work folders in Windows 10 inherit encryption features from the server. That is, if the server is encrypted and enforces encryption, the work folders on your device will automatically be encrypted when the device syncs with the organization server. If the IT admin later revokes encryption, the new files on your device will not be encrypted. But the older ones will still remain encrypted unless you manually remove encryption. If the server does not enforce encryption, after one sync with such server, you can manually remove the work folder encryption in Windows 10. You just have to right click on each encrypted file and select Remove Enterprise Control from the context menu. In case the user employs the above method (removing enterprise control) on work folders in Windows 10 while the server requires/forces encryption, the work folders and files within will automatically be re-encrypted when the client device talks (syncs) with the organization server.
Revoking Folder Encryption by Admins
If an employee was using his or her own device before leaving the organization, if the device is lost, or compromised, the IT admins of the organization can remotely revoke the key required for encryption of the work folders. With no key, other people cannot access the work folders and thus, data would be safe even if the device is lost or the employee leaves the organization. They will receive a message saying the key was revoked and hence they cannot access the work folders in Windows 11/10. If you need more information, please visit Technet.
