Stormshield Data Security Enterprise 11.0 features and enhancements

Stormshield Data Management Center (SDMC)

SDS Enterprise administration

SDS Enterprise can now be managed in the 11.0 web administration interface, which includes the following features:

  • Centralized definition of LDAP directories so that they can be used when policies are created,

  • Centralized definition of authority certificates, as well as data recovery certificates so that they can be used when policies are created,

  • Configuration of security policies for SDS Enterprise agents, and then generating them in .json format. Through these policies, you can configure the use of SDS Enterprise features.

  • Downloads of the latest version of the SDS Enterprise agent and the security policy signature tool. Signatures make it possible to guarantee the authenticity and integrity of policies,

  • Access management for administrators of a corporate account: you can invite or delete administrators or modify their permissions.

You can also manually configure security policies directly in .json configuration files. These files enable the same level of configuration as Stormshield Data Authority Manager.

For more information on configuring policies and deploying agents in a pool, refer to the Administration guide and the SDS Enterprise Advanced configuration guide.

SaaS mode

11.0 is in SaaS mode; new features and fixes are continuously provided, regardless of the SDS Enterprise agent version. Following the commercial release of SDS Enterprise version 11, a page listing the latest enhancements to 11.0 will be available on the Stormshield Technical Documentation website and continuously updated.

Authenticating administrators with SAML

You can now choose between two connection modes to access SDMC: the standard mode with an e-mail address and password, and SAML mode, which makes it possible to delegate the authentication of administrators to an identity provider.

Find out more

SDS Enterprise agent

Sign-On (SSO) connection

Through Windows SSO mode, SDS Enterprise users can now connect directly to the agent via their Windows sessions. Users' encryption and signature keys are saved in the Microsoft certificate manager or on TPM chips.

Find out more

Automatic folder and sub-folder protection locally or in a synchronized space

The Stormshield Data Share feature allows users to enable automatic protection on a local folder or shared space. It also allows administrators to configure automatic protection of all or some synchronized shared spaces for all users. OneDrive, DropBox, SharePoint and Oodrive are supported. 

The Stormshield Data Connector component, which drives the features of the SDS Enterprise solution through a PowerShell module or .NET APIs, now makes it possible to enable and disable the automatic protection of synchronized spaces via Stormshield Data Share.

Find out more

Updating security policies

When a security policy update is available on a distribution point, SDS Enterprise agents now apply it automatically when the user's workstation starts.

Find out more

Selecting co-workers

When using File, Team, Share and Virtual Disk, users can now select groups of users with whom they work. These groups can be selected from the local trusted address book or from an LDAP directory (Active Directory).

Improved agent pop-up menus

Menus that enable the use of the File, Team and Share features have been reorganized to facilitate their use.

SDS Enterprise Documentation

SDS Enterprise technical documentation has been restructured as follows:

Document Contains
Version release notes
  • New firewall behavior,

  • New features and enhancements,

  • Bug fixes,

  • Compatibility,

  • Explanations on usage.

Administration Guide
  • Installing and uninstalling the solution,

  • Configuration and administration via SDMC,

  • Configuration of File, Team, Share, Mail and Virtual Disk features.

Advanced configuration guide
  • Configuration and administration via a security policy's configuration file in .json format,

  • Configuration via the SBox.ini file and the advanced parameters of the registry base,

  • Configuration of File, Team, Share, Mail and Virtual Disk features.

Advanced user guide
  • Advanced use of the File, Team, Share, Mail, Shredder, Sign and Virtual Disk features, intended for solution administrators.

User guide
  • Daily use of the File, Team, Share, Mail, Shredder, Sign and Virtual Disk features, intended for solution end users.

Stormshield Data Connector
  • Configuration and use of Stormshield Data Connector.

Architecture and security guide
  • Technical information regarding the confidentiality, integrity and availability of our users’ data.

Information contained in former Stormshield Data File, Team, Mail, Shredder, Sign and Virtual Disk guides have been spread out among the administration guide, advanced configuration guide and advanced user guide.