Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 1 reply
  • Subscribers 5 subscribers
  • Views 4549 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos FileShare Encryption Keys

b1nb4sh

Hello everyone,

i have a question about the Module File Share. In our company we have two kinds of groups. One is for Read access(Group 1) the other is for read write access (Group 2).

When we encrypt a folder through sophos, you can select which key you want to use for the encryption (Group 2). But what is if I want access the data with Group 1? Can I just add the key from group 2 to group 1 in shophos?

ty & best regards

:52259


This thread was automatically locked due to age.
Parents
  • 0

    So the key for File Share is just used to encrypt and decrypt the files - it does not control who can access or edit the data.

    In your example you should apply the key to both group 1 and 2 because read and write access would be handled by sharing or NTFS permissions and not by the FileShare module.

    In order for both groups to access the data, the File Share policy would need to be applied to both groups.

    Also worth knowing is that if a user has access to the share and not the key to decrypt the files they would still be able to see the files - however when they were opened they would not be see their contents. The user would still be able to overwrite the files though so Fileshare is not a replacement for NTFS permissions.

    :52327
Reply
  • 0

    So the key for File Share is just used to encrypt and decrypt the files - it does not control who can access or edit the data.

    In your example you should apply the key to both group 1 and 2 because read and write access would be handled by sharing or NTFS permissions and not by the FileShare module.

    In order for both groups to access the data, the File Share policy would need to be applied to both groups.

    Also worth knowing is that if a user has access to the share and not the key to decrypt the files they would still be able to see the files - however when they were opened they would not be see their contents. The user would still be able to overwrite the files though so Fileshare is not a replacement for NTFS permissions.

    :52327
Children
No Data
Unfiltered HTML