For the organization-wide security settings, there is a new component called “Security” within the DocuWare Configuration.
Corresponding settings are no longer part of the component “Organization Settings”.
The security settings include a new option: You can whitelist URL domains to make URLs clickable that are used as index entries.
Other settings have been changed:
For all DocuWare organizations created from version 7.12 onwards, a secure password policy is activated by default: passwords must be at least 10 characters long and contain at least one lower case letter, one upper case letter and one number.
The passphrase is no longer displayed in plain text to protect against visual hacking, and it can be easily transferred using a copy button if needed.
“Guest login” has been renamed ‘Restrict public access’ to emphasize the security aspect.
There is a new category in “Restricted file types”, called “security-related files”. It contains executables and scripts. If this category is activated, it prevents potentially dangerous executable files to be imported into DocuWare. For new organizations, the category is activated by default; for existing organizations, an administrator needs to activate it.
Applications
Manage all organization-wide security settings within one component
Manage login security, exclude file types from being imported to DocuWare and whitelist URL domains
Benefits
Clear separation between organizational and security settings
Easily implement security policies
Here's how
The “Security” component is part of the “General” section of the DocuWare configuration.
The new overview of all security settings. Click on the individual entries to define the details.
Role required for accessing this component: Organization Administrator.