Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

Encrypt shared folder

Posted on 2014-04-30
13
1,345 Views
Last Modified: 2014-06-07
I'm trying to find a simple solution to encrypt a drive/folder on a MS 2008 R2 server. (The root folder and it's contents are the only data on the drive).

Ideally I would like the users to be prompted for a password whenever they try to access that encrypted network share. (The encryption is for compliance purposes).

I tried BitLocker on a test drive I shared out, set up a password - But I'm not being asked for a password when opening the test file. I went into the local group policy and enabled everything I had to.

Is there a step I'm missing? or another program I can use?
0
Comment
Question by:RISLA
  • 5
  • 3
  • 3
13 Comments
 
LVL 29

Expert Comment

by:serialband
ID: 40032812
I haven't tried bitlocker yet, but the other whole drive encryption schemes (truecrypt, filevault) I've used only password protect the drive when you first attempt to mount it.  You don't have to enter a password after it's been unencrypted for mounting.
0
 

Author Comment

by:RISLA
ID: 40032831
Thanks serialband, I'll try TrueCrypt. Do you know how backups would behave trying to access a truecrypt drive?
0
 
LVL 29

Expert Comment

by:serialband
ID: 40033830
Once you enter the password, the drive is decrypted for mounting and it should behave as a normal drive.  I suspect that bitlocker would work the same way.
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 

Author Comment

by:RISLA
ID: 40034351
Just so I'm clear:

It's normal behavior for all users to access the shared drive and it's contents without being asked for a password; If I have already entered the password on the server itself?

I encrypted the test drive (5GB with a text document shared out), entered the password to mount it to a new drive letter on the server. Now whenever someone accesses that share they're not asked for a password. Is this normal?

Thanks for bearing with me, I've never had to encrypt a network share before.
0
 
LVL 29

Accepted Solution

by:
serialband earned 500 total points
ID: 40034942
Yes.  You only need to enter the password to mount the encrypted share.  Once it's mounted, it is accessible to everyone.  You're supposed to use ACLs to prevent network access.

Disk encryption is mainly designed to protect laptop users from data theft in addition to physical theft.  It could also protect against illegal LEO access when your equipment is confiscated.  It's not designed to protect against network access.
0
 
LVL 54

Expert Comment

by:McKnife
ID: 40040945
Encryption is not right here.
Please describe your scenario. In other words, why wouldn't NTFS permissions (the standard solution) suffice?
0
 

Author Comment

by:RISLA
ID: 40081890
It is to comply with SOC1, SOC2 and GLBA.
0
 

Author Comment

by:RISLA
ID: 40081895
Thank you. I finally implemented it on the production LUN and it was transparent to the users.
0
 
LVL 54

Expert Comment

by:McKnife
ID: 40082034
What did you implement and why is my comment chosen as solution?
0
 

Author Comment

by:RISLA
ID: 40085303
I meant to select serialband. Not sure there's a way to correct this, maybe a moderator will see this.

I wound up using bitlocker.
0
 
LVL 54

Expert Comment

by:McKnife
ID: 40089314
You will have to contact the mods if serial band should get the points. I wonder why you did not respond to my question. I am sure that encryption does not help you.
0

Featured Post

Optimizing Cloud Backup for Low Bandwidth

With cloud storage prices going down a growing number of SMBs start to use it for backup storage. Unfortunately, business data volume rarely fits the average Internet speed. This article provides an overview of main Internet speed challenges and reveals backup best practices.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
what about DCpro 2 36
Oracle encryption 12 48
Robocopy all drives in windows 2 37
Windows 10 BitLocker 3 14
The recent Microsoft changes on update philosophy for Windows pre-10 and their impact on existing WSUS implementations.
A safe way to clean winsxs folder from your windows server 2008 R2 editions
To efficiently enable the rotation of USB drives for backups, storage pools need to be created. This way no matter which USB drive is installed, the backups will successfully write without any administrative intervention. Multiple USB devices need t…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

840 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question