Skip to main content

 

Druva Documentation

Configuring access and privacy policies for users

Overview

This topic explains about how to configure access and privacy policies for an existing user. Access policies include the ability of users to restore data using a Web browser, using Active Directory to authenticate their inSync access, and forcing them to follow system password policy when selecting inSync password. Privacy policy includes the ability of users to prevent administrators from accessing their data.

Allowing users to restore data using a web browser

Note: This feature can only be controlled through profiles. Any change to an existing profile is applicable for all users of that profile. 

Before you begin: Identify the profile assigned to the users whom you want to allow data restore using any Web browser.

 

To allow users to restore their data using any Web browser

  1. On the menu bar, click Manage > Profiles.
  2. Click the profile assigned to the users.
  3. Click the Backup Policies tab.
  4. Under Retention and Access Policies, click Edit. The edit window appears.

    clipboard_1376458216108.png

  5. Select Allow restore from a Web browser.
  6. Click Save.

Using Active Directory to authenticate user's inSync access

Note: This feature can only be controlled through profiles. Any change to an existing profile is applicable for all users of that profile.

Active Directories (AD) are used centrally manage authentication and authorization of users and computers on a Windows domain type network. You can configure inSync to use AD to authenticate users. If activated, inSync users can use their email ID and password registered with the AD to:

  • Activate inSync client
  • Log on to inSync mobile app
  • Log on to inSync Web

 

Before you begin: Identify the profile assigned to the users whom you want to authenticate through AD.

 

To enable inSync user authentication through AD

  1. On the menu bar, click Manage > Profiles.
  2. Click the profile assigned to the users.
  3. Click the Backup Policies tab.
  4. Under Retention and Access Policies, click Edit. The edit window appears.
  5. Select Use Active Directory password. Additional fields are displayed.

    clipboard_1376458324605.png

  6. Enter the following details:
    • Active directory host IP / FQDN: Enter the IP address of the server that hosts the AD.
    • Active directory port: Enter the port number used to communicate with the AD.
    • Use secure connection: Select if the AD allows communication only through HTTPS.
  7. Click Save.

Forcing users to follow system password policy for inSync

Note: This feature can only be controlled from profiles. Any change to an existing profile is applicable for all users of that profile.

Your organization may have system password policy that forces users to employ strong passwords by dictating the password length and formation. The same can be forced on users when they are assigning a password for their inSync account.

 

Before you begin: Identify the profile assigned to the users on whom you want to force the system password policy.

 

To force users to follow system password policy

  1. On the menu bar, click Manage > Profiles.
  2. Click the profile assigned to the users.
  3. Click the Backup Policies tab.
  4. Under Retention and Access Policies, click Edit. The edit window appears.
  5. CLEAR Ignore system password policy for users.
  6. Click Save.

Allowing users to prevent administrators from accessing their data

Note: This feature can only be controlled from profiles. Any change to an existing profile is applicable for all users of that profile.

By default, inSync administrators can restore data backed up by users on the inSync server. However, for certain users you may not want the administrators to have any access to the data. In such cases you can allow the users to decide if they want administrators to restore their data on the inSync server.

Note: Once a user has selected to prevent administrators from accessing data, administrators will not be able to restore data on a server for that user even after changing the profile settings or moving the user to a different profile.

Before you begin: Identify the profile assigned to the users whom you want to allow the choice of preventing administrators from accessing their data.

 

To allow users to prevent administrators from accessing their data

  1. On the menu bar, click Manage > Profiles.
  2. Click the profile assigned to the users.
  3. Click the Backup Policies tab.
  4. Under Retention and Access Policies, click Edit. The edit window appears.
  5. Select Allow users to disallow admin access to data.

    clipboard_1376470164021.png

  6. Click Save.

Allowing users to access backed up data from mobile devices

Note: This feature can only be controlled from profiles. Any change to an existing profile is applicable for all users of that profile.

You can allow users to access their backed up data by installing the inSync companion app on their mobile devices.

To allow users to access their data from mobile device

  1. On the menu bar, click Manage > Profiles.
  2. Click the profile you want to modify.
  3. Click the Mobile Policies tab.
  4. Under Mobile Access and Backup, click Edit. The edit window appears.

    mobile access policy

  5. Select Allow access from mobile devices
  6. Click Save.

Forcing users to use security code for mobile access

Note: This feature can only be controlled from profiles. Any change to an existing profile is applicable for all users of that profile.

You can force users to use a four digit security code every time they access their data on inSync server using the inSync companion app on their mobile devices.

To force users to use security code for mobile access

  1. On the menu bar, click Manage > Profiles.
  2. Click the profile you want to modify.
  3. Click the Mobile Policies tab.
  4. Under Mobile Access and Backup, click Edit. The edit window appears.

    mobileaccesspolicypin.png

  5. Select Enforce PIN for mobile access.
  6. Click Save.
  • Was this article helpful?