Stormshield Data Security Enterprise 11.0 features and enhancements
Stormshield Data Management Center (SDMC)
SDS Enterprise administration
SDS Enterprise can now be managed in the 11.3 web administration interface, which includes the following features:
-
Centralized definition of LDAP directories so that they can be used when policies are created,
-
Centralized definition of authority certificates, as well as data recovery certificates so that they can be used when policies are created,
-
Configuration of security policies for SDS Enterprise agents, and then generating them in .json format. Through these policies, you can configure the use of SDS Enterprise features.
-
Downloads of the latest version of the SDS Enterprise agent and the security policy signature tool. Signatures make it possible to guarantee the authenticity and integrity of policies,
-
Access management for administrators of a corporate account: you can invite or delete administrators or modify their permissions.
You can also manually configure security policies directly in .json configuration files. These files enable the same level of configuration as Stormshield Data Authority Manager.
For more information on configuring policies and deploying agents in a pool, refer to
SaaS mode
11.3 is in SaaS mode; new features and fixes are continuously provided, regardless of the SDS Enterprise agent version. Following the commercial release of SDS Enterprise version 11, a page listing the latest enhancements to 11.3 will be available on the Stormshield Technical Documentation website and continuously updated.
Authenticating administrators with SAML
You can now choose between two connection modes to access SDMC: the standard mode with an e-mail address and password, and SAML mode, which makes it possible to delegate the authentication of administrators to an identity provider.
SDS Enterprise agent
Sign-On (SSO) connection
Through Windows SSO mode, SDS Enterprise users can now connect directly to the agent via their Windows sessions. Users' encryption and signature keys are saved in the Microsoft certificate manager.
Automatic folder and sub-folder protection locally or in a synchronized space
The Stormshield Data Share feature allows users to enable automatic protection on a local folder or shared space. It also allows administrators to configure automatic protection of all or some synchronized shared spaces for all users. OneDrive, DropBox, SharePoint and Oodrive are supported.
The Stormshield Data Connector component, which drives the features of the SDS Enterprise solution through a PowerShell module or .NET APIs, now makes it possible to enable and disable the automatic protection of synchronized spaces via Stormshield Data Share.
Updating security policies
When a security policy update is available on a distribution point, SDS Enterprise agents now apply it automatically when the user's workstation starts.
Selecting co-workers
When using File, Team, Share and Virtual Disk, users can now select groups of users with whom they work. These groups can be selected from the local trusted address book or from an LDAP directory (Active Directory).
Improved agent pop-up menus
Menus that enable the use of the File, Team and Share features have been reorganized to facilitate their use.
SDS Enterprise Documentation
SDS Enterprise technical documentation has been restructured as follows:
| Document | Contains |
|---|---|
| Version release notes |
|
| Administration Guide |
|
| Advanced configuration guide |
|
| Advanced user guide |
|
| User guide |
|
| Stormshield Data Connector |
|
| Architecture and security guide |
|
Information contained in former Stormshield Data File, Team, Mail, Shredder, Sign and Virtual Disk guides have been spread out among the administration guide, advanced configuration guide and advanced user guide.