Dealing with Work Folders encryption in Windows 10

Work folders are basically the folders that your organization shares with you so that you can work on the files using your own device or on the device the organization gave you. It is not necessary that you have a wired networking always on. You just have to join the domain of your organization and then you can get access to the work folder. The work folders are normally encrypted for security issues. The article talks about work folder encryption in Windows 10 – how it works and how to deal with work folders on lost devices, etc.

Work Folders encryption in Windows 10

Work Folders Encryption in Windows 10

Your IT administrator will normally set it up for you on your device. You just need your company email ID or the URL of the work folders to set it up. You will also require login credentials which could be same for the entire device or for accessing the particular folders.

The work folders in Windows 10 inherit encryption features from the server. That is, if the server is encrypted and enforces encryption, the work folders on your device will automatically be encrypted when the device syncs with the organization server. If the IT admin later revokes encryption, the new files on your device will not be encrypted. But the older ones will still remain encrypted unless you manually remove encryption.

If the server does not enforce encryption, after one sync with such server, you can manually remove the work folder encryption in Windows 10. You just have to right click on each encrypted file and select Remove Enterprise Control from the context menu.

In case the user employs the above method (removing enterprise control) on work folders in Windows 10 while the server requires/forces encryption, the work folders and files within will automatically be re-encrypted when the client device talks (syncs) with the organization server.

Revoking Folder Encryption by Admins

If an employee was using his or her own device before leaving the organization, if the device is lost, or compromised, the IT admins of the organization can remotely revoke the key required for encryption of the work folders. With no key, other people cannot access the work folders and thus, data would be safe even if the device is lost or the employee leaves the organization. They will receive a message saying the key was revoked and hence they cannot access the work folders in Windows 10.

If you need more information, please visit Technet.

Posted by on , in Category Windows with Tags
Anand Khanse is the Admin of, a 10-year Microsoft MVP Awardee in Windows (2006-16) & a Windows Insider MVP. Please read the entire post & the comments first, create a System Restore Point before making any changes to your system & be careful about any 3rd-party offers while installing freeware.