Skip to main content

 

Druva Documentation

Configure Geofencing policy for your organization

inSync Cloud Editions: File:/tick.png Elite Plus File:/tick.png Elite File:/cross.png Enterprise File:/cross.png Business

Overview

Geofencing policy empowers you to restrict access to inSync from outside your corporate network based on the user role. It helps you control, monitor, and protect your data from unauthorized access from outside the organization.

You can configure Geofencing policy by specifying your company's physical gateway IPs in the policy. Only the user devices that are connected to your corporate network can access inSync.

You can restrict access for all inSync users with defined roles as listed in the table.

Type of inSync user Restrict access to
inSync administrators inSync Master Management Console
inSync users
  • inSync Web
  • Restore data by using inSync Client

Notes:

  • Geofencing policy configuration does not affect the backup activity. inSync will continue to backup the data from the devices irrespective of the devices that are connected to your corporate network or are outside the corporate network.
  • If an administrator initiates a restore for a device outside the corporate network, device restore will be successful.
  • If a device restore is in progress, and the device moves outside the corporate network, the ongoing device restore will successfully complete, regardless the Geofencing policy is enabled.
  • While accessing inSync, if an inSync user switches to a different network from the corporate network, inSync will continue to remain accessible for approximately 5 minutes, after which the session will expire and the user will be logged out.

After implementing the Geofencing policy, if users try to log on to inSync from outside the corporate network, they are denied access to inSync based on the user type.

You can track unauthorized attempts made by inSync users to access inSync from outside the corporate network:

You can also configure the Geofencing policy by leveraging Active Directory Federation Services (ADFS) settings to restrict activation of the inSync Client and inSync Web access to corporate devices only. For more information, see Configure Geofencing by using ADFS.

Configure Geofencing policy for your organization

To configure Geofencing policy for your organization

  1. Configure public gateway IPs.
  2. Enable Geofencing policy for inSync users.
  3. Enable Geofencing policy for inSync administrators.