In Elastic Desktop Service (EDS), basic policies can be associated with cloud computers to manage the security and user experience for end users when they use the cloud computers. This topic describes the scenarios, application scope, and configurations of a basic policy.
Scenarios
A basic policy mainly involves the following parameters to ensure security and user experience for end users.
Parameters to prevent data leaks: Watermark and Anti-screenshot
Parameters to ensure file transfer security: Clipboard and Web Client File Transfer
Parameters to configure networks and image quality: Bandwidth Limit, Network Transmission, Max. Retry Period, Image Display Quality, and Image Quality Control
Data leak prevention
Applicable scope
Parameter | Image version | Client version |
Enhancement | V1.8.0 or later | N/A |
Anti-Screen Photo | V1.8.0 or later | V6.7.0 or later |
Anti-screenshot | N/A | Windows client and macOS client V5.2.0 or later |
Parameters
Parameter | Description |
Watermark | This feature is used to prevent data leaks before an event occurs and help to audit after the event occurs. Visible watermarksVisible watermarks can be clearly seen. You can specify the watermark content and display styles.
When you configure watermarks, you can preview the watermark display style in the lower part of the watermark configuration section. Invisible watermarksInvisible watermarks are hidden. EDS provides the default invisible watermark algorithm that can encrypt watermark information for different Alibaba Cloud accounts to prevent tampering. You can configure the following parameters for invisible watermarks:
|
Anti-screenshot | This feature is suitable for data leak prevention scenarios. If this feature is enabled, end users cannot use snipping tools on local terminals to capture or record the screens of cloud computers. Note
|
File transfer security
Applicable scope
For the Web Client File Transfer parameter, even if you set this parameter to Allow Upload/Download, this setting does not take effect for high-definition experience (HDX)-based Linux cloud computers. If you want to apply this feature to the cloud computers, use the default policy named All enabled policy.
Parameters
Parameter | Description |
Clipboard | Specifies whether end users can copy and paste texts, images, and files between local devices and cloud computers. |
Web Client File Transfer | Specifies whether files can be transferred between cloud computers and local devices from the web client. |
Network and image quality
Applicable scope
Parameter | Image version | Client version |
Network Transmission (UDP and TCP) | V1.0.0 or later | V5.2.0 or later |
Network Transmission (AUTO and AST) | V1.5.0 or later | V6.5.0 or later |
Parameters
Parameter | Description |
Bandwidth Limit | Specifies whether to limit bandwidth of cloud computers. If you enable this feature, you can set the value in a range from 2,000 to 50,000 Kbit/s. |
Image Display Quality | Specifies the display quality of cloud computer screens. Valid values: LD, SD, HD, and Lossless. |
Network Transmission | Specifies the network transmission mode. Valid values:
Note
|
Image Quality Control | This feature improves the image quality of cloud computers. If your end users use Enterprise Graphics cloud computers in design scenarios, we recommend that you enable this feature to improve the performance and user experience of cloud computers. Note This feature applies only to HDX-based cloud computers accelerated with GPUs. |
Max. Retry Period | Specifies the maximum period of time required for the system to reconnect to cloud computers that fail to be connected by end users. Valid values: 30 to 7200. Unit: seconds. |