Users in the DOC

Configuration: Security Controls -> Encryption -> File Protection -> Centrally managed folders or Users

Once you have created centrally managed folders in your environment (either via the agent or in the DMC), these are displayed in the list in the DOC. You can also see the corresponding users in the details of the respective folders.

To add users to a folder (or to remove them or edit their permissions), the required permissions must be available. This is checked by the DOC Companion, which searches for the required certificate in the certificate store to ensure that the permission is available.

In the list of users, you will see all authorized users with their respective certificates. You can add users from the AD inventory to create 'File Protection users'. These are special users who have a certificate that is required when working with centrally managed folders.

In the user's detail view, you can also see which centrally managed folders the user has access to.

User certificate exchange in the DOC

It is also possible to swap certificates of File Protection users, i.e. to select a different certificate for a user. This is necessary, for example, if the user certificate has been updated in the AD and the new certificate is to be used in future. In the Certificate status column, the old certificate is then displayed as revoked and the new one as valid. The next time the user logs on to the agent, the DES checks the existing certificates and the agent automatically replaces them in the centrally managed folders.

We recommend exchanging the certificate only via the DOC and not via the DMC.