If I add a drive to a device after it has been encrypted, I want the drive to be encrypted (provided the policy specifies the drive should be encrypted).

Currently, when I add a drive, I have to remove the policy so that the drive is decrypted, and then reassign the policy so that the old and new drives are encrypted. This takes time for the decryption/encryption cycle.