Getting started

Welcome to the SDS Encryption Portal Administration user guide.

This guide is intended for SDS Encryption Portal administrators.

SDS Encryption Portal allows users in your organization to protect (encrypt) and download (decrypt) confidential documents using a web browser. They can exchange these documents within their organization or with external partners, thus guaranteeing the protection of sensitive data. SDS Encryption Portal can be accessed from workstations or mobile devices.

To use the portal, you must ask Stormshield to create a tenant for your organization.

Your tenant members can then protect documents not only for themselves, but also for anyone else, whether a Stormshield tenant member or not.

NOTE
A user who does not have a tenant, and therefore no encryption keys, can only use SDS Encryption Portal to decrypt documents that have been encrypted for him/her. In this case, SDS Encryption Portal is free.

The portal security administrator holds the helpdesk and recovery roles. He/she can also delegate these roles to other users.

SDS Encryption Portal offers two modes:

  • “External PKI” mode. This mode lets you use users' existing encryption keys if your organization has a PKI solution. In this mode, user authentication to the portal works exclusively with the Microsoft Entra ID identity management solution.
    This mode is currently available as a Beta version. Contact your Stormshield sales representative if you would like to implement this solution.

    This mode is compatible with the Stormshield Data Security solution.

  • “Internal PKI” mode. If your organization does not have a PKI solution for generating encryption keys for your users, this mode enables keys to be generated automatically when users use the portal for the first time. The keys remain stored in the portal database and cannot be retrieved. In this mode, users log in to the portal using their email address and a specific password.

    This mode is not compatible with the Stormshield Data Security solution.

For more information on these modes, see Selecting SDS Encryption Portal usage mode.

You choose how to use it when Stormshield creates the tenant for your organization. Once the tenant has been created, it is not possible to change the usage mode.

  • Stormshield must first create a tenant for your organization, by configuring the “External PKI” or “Internal PKI” mode.
  • You need a web browser, an Internet connection and an e-mail address. The browser must support TLS 1.2 or higher.
  • Traffic to https://sds.stormshieldcs.eu must be allowed.
  • JavaScript must be allowed to run for the server https://sds.stormshieldcs.eu or the domain stormshieldcs.eu.
  • The size of the documents to be protected must not exceed 20 MB. To view or protect larger documents, users need the Stormshield Data Security solution.

  • You will be receiving e-mails from the address noreply@stormshieldcs.eu. Allow this address in your mail account so that these e-mails will not be considered spam.