Security & Compliance Page

This article describes the Security & Compliance page of the Datto appliance's Remote Web. This page allows you to customize the security options for your business continuity device.

Environment

  • Datto SIRIS
  • Datto ALTO
  • Datto NAS

Description

To access the Global Device Settings page, connect to the Datto Remote Web. From the Configure drop-down, select Security & Compliance.

The following configuration options are available.

Forced login requires all users to enter their local login credentials when accessing the Remote Web from the Partner Portal.

The SMB setting allows users to set the set the minimum SMB (SAMBA) protocol version to be used for all shares on the device. This includes any File shares. The default (and recommended ) setting is 2, unless there are protected devices still using the ShadowSnap Agent, or if you have an older SMB Client that requires access to the shares, in which case setting to allow use of the older, and less secure protocol (1 ), may be required.

NOTE   The ShadowSnap Agent is End of Life and no longer supported. If you are still using the ShadowSnap Agent, you should update to the Datto Windows Agent.

FIPS mode may be enabled for supported devices from the Security & Compliance page. If the device does not support FIPS mode, then the FIPS card will not be displayed. For more information on this feature, refer to: Federal Information Processing Standards (FIPS) .

Disables or enables LAN access to the device. Disabling local network access will require device operators to use the Datto Partner Portal to access the device's Remote Web.

Disabling local management does not prevent IPMI access or local console management.

Additionally even when enabled, some operations are only available to users logged into the Remote Web through the Partner Portal. These include significant and destructive actions such as agent, share, dataset removal.

IMPORTANT  By default, Datto disables local network access to the Remote Web. You can enable local access under Configuration > Security & Compliance > Local Access Control in the Datto Remote Web.

The Local Users control panel lets you assign role-based feature and functionality access to local user accounts on the Datto appliance. This control makes it possible to define which people in your organization have administrative access to your devices, and which functions they are allowed to perform. For more information about managing local users, see the Local Users article.