Understanding Security Practices in Laserfiche

Slide Note
Embed
Share

Explore different aspects of security in Laserfiche software, including types of security, authentication techniques, authorization methods, entry access rights, and proper order of precedence for inherited and explicit rights. Learn best practices to ensure robust security measures are in place.

braxtin
braxtin Follow

Uploaded on Sep 17, 2024 | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. Download presentation by click this link. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

E N D

Presentation Transcript

  1. Security in Laserfiche Jason Rothenberg Presales Engineer

  2. Agenda Types of security How to apply security Best practices

  3. Authentication Who are you?

  4. Authentication Laserfiche Users Windows Accounts LDAP

  5. Authorization What can you do?

  6. Authorization Privileges Feature Rights Access Rights Security Tags

  7. Authorization Group 1 Group 2

  8. Entry Access Rights

  9. To Allow or Not To Allow Allow Not Allow (Blank) Deny Deny overrides Allow Tip Use Not Allow instead of Deny

  10. Scope Access Inherited This folder, subfolder and documents This folder and subfolders Subfolders and documents only Documents only This entry only

  11. Order of Precedence Inherited rights vs. Explicit rights Allow (Folders, subfolders and docs) Allow (inherited) Allow (inherited) Allow (inherited)

  12. Order of Precedence Inherited rights vs. Explicit rights Allow (Folders, subfolders and docs) Allow (inherited) Allow (inherited) Denied (Explicit) Allow (inherited) Denied (Explicit) Explicit rights will take precedence over inherited rights

  13. Making sense of Inherited vs. Explicit Rights

  14. Inherited Allow, Explicit Deny Inspector allowed at Justice folder, subfolders and docs Inspector denied at Judge s folder

  15. Inherited Allow, Explicit Deny Inspector allowed at Justice folder, subfolders and docs Inspector denied at Judge s folder Conclusion: Inspector cannot see Judge s folder

  16. Inherited Deny, Explicit Allow Inspector denied at Justice Folder Inspector allowed at his folder

  17. Inherited Deny, Explicit Allow Conclusion: Inspector cannot browse to his folder. But he can search for his folder.

  18. Scope Best Practices

  19. Order of Precedence Goal: Let each user see their own folder

  20. Order of Precedence Justice group is allowed at Justice Folder, and scope is This Entry Only

  21. Order of Precedence Justice group is allowed at Justice Folder, and scope is This Entry Only Inspector allowed at his folder Judge allowed at his folder Lawyer allowed at his folder Rambo allowed at his folder

  22. Order of Precedence Justice group is allowed at Justice Folder, and scope is This Entry Only Inspector allowed at his folder 5 steps Judge allowed at his folder Lawyer allowed at his folder Rambo allowed at his folder

  23. Clashing Access Rights Group and User Order of Precedence Deny overrides Allow/NotAllow Allow overrides Not Allow

  24. Order of Precedence Which right takes priority? - Explicit Access Rights Deny, Allow, or None - User allowed and group denied = user denied

  25. Order of Precedence Which right takes priority? - Explicit Access Rights Deny, Allow, or None - User allowed and group denied = user denied - User denied and group allowed = user denied

  26. Order of Precedence Which right takes priority? - Explicit Access Rights Deny, Allow, or None - User allowed and group denied = user denied - User denied and group allowed = user denied - User allowed, group not allowed = user allowed

  27. Order of Precedence Which right takes priority? - Explicit Access Rights Deny, Allow, or None - User allowed and group denied = user denied - User denied and group allowed = user denied - User allowed, group not allowed = user allowed - User allowed, group allowed = user allowed

  28. 2 Methods for Security 1. Allow all, then deny 2. Not allow, then allow Tip Not allow, then allow Use Scope and This Entry Only

  29. Security Tags

  30. Security Tags Security tags offer flexible security Tags must be assigned to user Users can only use assigned tags Only users with tag can see document

  31. Security Tags

  32. Security Tags

  33. Security Tags

  34. Security Tags

  35. Security Tags

  36. Security Tags

  37. Metadata Access Rights

  38. Field Security Rights Read Create Applicable to filling out fields Edit Modify Field Delete Field Read Security Modify Security } Access management } Field management

  39. Template Security Rights Read Template Modify Template Delete Template Read Template Security Change Template Security

  40. Volume Security Rights

  41. Volume Security Rights Manage Volumes Delete Volume Read Volume Security Change Volume Security

  42. Takeaways Use groups efficiently Easily administer security Don t get deny happy Successfully secure your repository

  43. Questions?

  44. Security Resources Online Help Files: Security Administration White Papers: Best Practices in Laserfiche Security

Related


Purchasing Card Policy Training Overview

Purchasing Card Policy Training Overview

olym_283
Understanding the Role of Security Champions in Organizations

Understanding the Role of Security Champions in Organizations

irvin
Understanding the Roles of a Security Partner

Understanding the Roles of a Security Partner

zaara
Evolving Security Practices in DevOps: A Holistic Approach

Evolving Security Practices in DevOps: A Holistic Approach

madisyn
Understanding Computer Security Principles and Practices

Understanding Computer Security Principles and Practices

jos_o
BCA 601(N): Computer Network Security

BCA 601(N): Computer Network Security

danna
AEP Enterprise Security Program Overview - June 2021 Update

AEP Enterprise Security Program Overview - June 2021 Update

aubriella
International Approaches to Enhance Nuclear Safety and Security

International Approaches to Enhance Nuclear Safety and Security

mazarine
Understanding Security Onion: Network Security Monitoring Tools

Understanding Security Onion: Network Security Monitoring Tools

sadhbh
Understanding Transport Layer Security (TLS)

Understanding Transport Layer Security (TLS)

amabel
Understanding Cyber Security and Risks

Understanding Cyber Security and Risks

kathryn
Understanding Provable Security Models in Cryptography

Understanding Provable Security Models in Cryptography

donoghue_e
Understanding Security Threats and Countermeasures

Understanding Security Threats and Countermeasures

grob_aid
Enhancing Security Definitions for Functional Encryption

Enhancing Security Definitions for Functional Encryption

kalila
TSA Updates on Security Training Rule for OTRB Companies

TSA Updates on Security Training Rule for OTRB Companies

aziza
Certification and Training in Information Security

Certification and Training in Information Security

buck
Overview of Social Security and Health Care System in Turkey

Overview of Social Security and Health Care System in Turkey

violeta
Legal Framework on Information Security in the Ministry of Trade, Tourism, and Telecommunication

Legal Framework on Information Security in the Ministry of Trade, Tourism, and Telecommunication

joso_597
Enhancing SWIFT Security Measures for ReBIT: March 2018 Update

Enhancing SWIFT Security Measures for ReBIT: March 2018 Update

grajales_i
Comprehensive Guide to Designing Physical Security and Security Planning by Susan Lincke

Comprehensive Guide to Designing Physical Security and Security Planning by Susan Lincke

jes_mcg
Understanding PeopleSoft Security: A Comprehensive Guide

Understanding PeopleSoft Security: A Comprehensive Guide

kylen
Understanding Wireless Security Audits and Best Practices

Understanding Wireless Security Audits and Best Practices

muriel
Deploying Secure Applications on Azure PaaS

Deploying Secure Applications on Azure PaaS

keahi
Data Storage, Backup, and Security Essentials

Data Storage, Backup, and Security Essentials

mortenson_j

More Related Content

OWASP Bricks - Web Application Security Learning Platform
OWASP Bricks - Web Application Security Learning Platform
Cyber Security Toolkit for Boards: Comprehensive Briefings and Key Questions
Cyber Security Toolkit for Boards: Comprehensive Briefings and Key Questions
Understanding Security Reports and Hospital Security Services
Understanding Security Reports and Hospital Security Services
Understanding Security Management in an ICT Environment
Understanding Security Management in an ICT Environment
Cyber Threat Detection and Network Security Strategies
Cyber Threat Detection and Network Security Strategies
Understanding LXI Network Security in Industrial Environments
Understanding LXI Network Security in Industrial Environments
Understanding Information Security Basics
Understanding Information Security Basics
Understanding Information Security Policies for Effective Cybersecurity
Understanding Information Security Policies for Effective Cybersecurity
Understanding Homeland Security Stakeholders and Preparedness
Understanding Homeland Security Stakeholders and Preparedness
Securing Protocols with Fully Encrypted Protocols (FEPs)
Securing Protocols with Fully Encrypted Protocols (FEPs)
Modernizing Personnel Security Vetting for National Intelligence and Security
Modernizing Personnel Security Vetting for National Intelligence and Security
CAMPUS SECURITY AUTHORITY (CSA) TRAINING CAMPUS SECURITY AUTHORITY (CSA) TRAINING
CAMPUS SECURITY AUTHORITY (CSA) TRAINING CAMPUS SECURITY AUTHORITY (CSA) TRAINING
Mobile Device and Platform Security in Spring 2017: Lecture Highlights
Mobile Device and Platform Security in Spring 2017: Lecture Highlights
Securing IT Infrastructure at Exeter University
Securing IT Infrastructure at Exeter University
Enhancing Rail Security in the European Union
Enhancing Rail Security in the European Union
Comprehensive Overview of E-Commerce Application Development and Computer Security
Comprehensive Overview of E-Commerce Application Development and Computer Security
Test Security Guidelines for 2015-16 CAASPP Administration
Test Security Guidelines for 2015-16 CAASPP Administration
Real-Time Data-Driven Network Security Workshop by Joe St. Sauver
Real-Time Data-Driven Network Security Workshop by Joe St. Sauver
Enhancing Browser Security for Mobile Devices Using Smart CDNs
Enhancing Browser Security for Mobile Devices Using Smart CDNs
Hardware Security and Trusted Platform Module Overview
Hardware Security and Trusted Platform Module Overview
Understanding Data Governance and Security in Higher Education Institutions
Understanding Data Governance and Security in Higher Education Institutions
Understanding PeopleSoft Security: User ID Creation and Role Administration
Understanding PeopleSoft Security: User ID Creation and Role Administration
Software Security Principles and Practices: Enhancing Program Code Security
Software Security Principles and Practices: Enhancing Program Code Security
Expert Security Tips and Hacks for D365FO by Alex Meyer
Expert Security Tips and Hacks for D365FO by Alex Meyer