|
 FAQs by Category
 Installation Guide
|
| FAQ No.: | 00322 |
| Category: | Sales & Marketing |
|
| | |
| Question: | Usage case of Curtain e-locker |
| | |
| Answer: | Curtain e-locker can be used to protect different kinds of server resources, such as share folders in Windows File Server, web application, or even self developed system. Your existing systems provide basic first tier controls, for example, who can Read, Edit and Delete the data stored in the systems. However, when a user has permission to access a piece of information, he/she can easily save/copy/send the information out of the company. That is why we need Curtain e-locker to provide second tier control for preventing data leakage. Curtain e-locker allows administrators to control how users use the protected data, such as saving and printing.
This FAQ describes the recommended settings/approaches for different scenarios.
P.S. For the basic components and architecture of Curtain e-locker, please refer to FAQ00052
Scenario 1 - Allow installation of Curtain Server Plug-in on the Data Server (e.g. Windows File Server)
If Curtain Server Plug-in can be installed in the Data Server, it will safeguard the protected information on the server (e.g. share folder). By default, when workstations without Curtain Client installed try to access the protected information, Curtain Server Plug-in will deny the access.
Scenario 2 - Disallow installation of Curtain Server Plug-in on the Data Server (e.g. NAS, Linux Server, or Multi-tenant Server)
Sometimes Curtain Server Plug-in cannot be installed in the Data Server, such as NAS. Then we can rely on Curtain Clients on user's workstations to prevent data leakage. For details, please refer to "Only protected by Curtain Client" under Scenario 1 in FAQ00085.
Since the protection has to rely on Curtain Client, there is a potential risk of data leakage when workstations without Curtain Client installed try to access the protected information on the server. Administrators can consider implementing other solutions to prevent this, for example, adding a firewall in front of the server to only allow workstations with Curtain Client installed to access the server.
Scenario 3 - Remote Users with VPN Connection
Due to COVID-19, more people work from home. Many companies allow users to connect with company's network through VPN. Curtain e-locker fully supports VPN. After connecting the VPN, users can use Curtain Client to access protected information in server under Curtain e-locker protection.
Scenario 4 - Remote Users without VPN Connection
By default, Local Protected Directory is created after installation of Curtain Client. (Please refer to FAQ 00037). Some companies allows users to download protected information to this Local Protected Directory in notebook and use the information off-site. Although the notebook is out of office, the information in Local Protected Directory is still protected by Curtain Client by using the last-known control policy to the user (e.g. disallow printing).
By default, Local Protected Directory is not encrypted. A function called Local Encrypted Drive can be enabled for enhancing the security, Please refer to FAQ 00181. |
| |
| |
| |
| |
| |
|
| |
| |
| |
| |
|
FAQ