• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1573
  • Last Modified:

Encrypt shared folder

I'm trying to find a simple solution to encrypt a drive/folder on a MS 2008 R2 server. (The root folder and it's contents are the only data on the drive).

Ideally I would like the users to be prompted for a password whenever they try to access that encrypted network share. (The encryption is for compliance purposes).

I tried BitLocker on a test drive I shared out, set up a password - But I'm not being asked for a password when opening the test file. I went into the local group policy and enabled everything I had to.

Is there a step I'm missing? or another program I can use?
0
RISLA
Asked:
RISLA
  • 5
  • 3
  • 3
1 Solution
 
serialbandCommented:
I haven't tried bitlocker yet, but the other whole drive encryption schemes (truecrypt, filevault) I've used only password protect the drive when you first attempt to mount it.  You don't have to enter a password after it's been unencrypted for mounting.
0
 
RISLAAuthor Commented:
Thanks serialband, I'll try TrueCrypt. Do you know how backups would behave trying to access a truecrypt drive?
0
 
serialbandCommented:
Once you enter the password, the drive is decrypted for mounting and it should behave as a normal drive.  I suspect that bitlocker would work the same way.
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
RISLAAuthor Commented:
Just so I'm clear:

It's normal behavior for all users to access the shared drive and it's contents without being asked for a password; If I have already entered the password on the server itself?

I encrypted the test drive (5GB with a text document shared out), entered the password to mount it to a new drive letter on the server. Now whenever someone accesses that share they're not asked for a password. Is this normal?

Thanks for bearing with me, I've never had to encrypt a network share before.
0
 
serialbandCommented:
Yes.  You only need to enter the password to mount the encrypted share.  Once it's mounted, it is accessible to everyone.  You're supposed to use ACLs to prevent network access.

Disk encryption is mainly designed to protect laptop users from data theft in addition to physical theft.  It could also protect against illegal LEO access when your equipment is confiscated.  It's not designed to protect against network access.
0
 
McKnifeCommented:
Encryption is not right here.
Please describe your scenario. In other words, why wouldn't NTFS permissions (the standard solution) suffice?
0
 
RISLAAuthor Commented:
It is to comply with SOC1, SOC2 and GLBA.
0
 
RISLAAuthor Commented:
Thank you. I finally implemented it on the production LUN and it was transparent to the users.
0
 
McKnifeCommented:
What did you implement and why is my comment chosen as solution?
0
 
RISLAAuthor Commented:
I meant to select serialband. Not sure there's a way to correct this, maybe a moderator will see this.

I wound up using bitlocker.
0
 
McKnifeCommented:
You will have to contact the mods if serial band should get the points. I wonder why you did not respond to my question. I am sure that encryption does not help you.
0

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

  • 5
  • 3
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now