Currently an administrator has to pre-fill the blacklist and whitelist for Files on Demand used in desktop clients.

As an administrator might not be able to know all applications and manage them - the user should have a chance to adjust the black- & whitelist on demand.

In addition to that the user and the administrator should have a log where he can see which files were downloaded due to access by which application.

Comments

  • You could create a pop-up window with "Notify Administrator" when someone tries to use an application that is not on the white-list. And then give the Administrator a one-click option : "Yes, put this app on the whitelist".

  • Hi Martin,

    The way to get this done would be: Administrators goes to Filr Administration Console > System > Desktop Application > Application Whitelist/Blacklist

    Here is what I would suggest:
    a) choose "Blacklist and Whitelist" option in the above setting. That should be the fourth option in available there.
    b) Administrator populates the Blacklist with names of process that should never be allowed to download files across organization (eg: Anti Virus, backup process etc)
    c) Administrator populates the Whitelist with process that should always be allowed to download files across the organization (eg: MS office, pdf viewer etc)

    Once it is setup this way: when a process which is not in the Administrators Whitelist or Blacklist lists tries to download a file - the end user would see a popup about such a process and will thus be prompted to act on if the process should be allowed.

    The optins are described as at https://www.novell.com/documentation/novell-filr-2/filr-2-admin/data/prevent-unwanted-downloads.html

  • Thanks for the feedback on this!

    Could we add a screenshot of the option in the filr console to the documentation where the user can adjust the whitelist and blacklist in this configuration? (Seems my Filr administrator does not allow that ATM :-))

    And - even if an administrator might have some apps in the blacklist - we should give users the possibility to override / modify that.
    In addition to that we should pre-populate the whitelist with the most common applications we know (optional)..

  • Thanks Martin, noted.

    On your first feedback: will get the documentation updated.

    On the second feedback: will think through and let know.