You are viewing limited content. For full access, please sign in.

Question

Question

Restrict access to Volume

Laserfiche Ideas
Updated August 9, 2017
asked on August 8, 2017

Dear all,

I have a client who will like to restrict access to the fixed path (C:\LFDEMO_REP\DEFAULT\DEFAULT000000\00\00\00) i.e. volume where documents/images are stored in a NTFS partition such that even Windows Administrator cannot access same these images.

 

Any help will be much appreciated.

 

Regards,

Vimal

 

 

0 0

Answer

SELECTED ANSWER
replied on August 8, 2017

So while you can do this, in my opinion it is a bad idea. As long as the user the Laserfiche Server is running as (Local System by default) has access to the files, you should be able to remove all other permissions including local administrators. The problem is that any local administrator can always gain access back to the files if they want to.

This leaves you with a few options and things to consider.

  • If the person who is maintaining the server is untrusted, why is he an administrator of the the server
  • We also assume they have access to backups, which would also have the same data
  • If any issues occur, how can someone verify the data is even there/viable

 

The other option you could look at and present are encrypted volumes which would likely solve much of what you are hoping to accomplish.

 

 

1 0

Replies

replied on August 9, 2017

Thank you John. Indeed, the local admin can eventually access the backup.

Any idea of performance issue it might create when enabling encryption? The volume size is expected to be above 2 TB.

 

 

0 0
You are not allowed to follow up in this post.

Sign in to reply to this post.

Details
Related Posts
Loading ...