Archive for the ‘FileCloud’ Category

Announcing FileCloud Product Update (Version 17.3)

We have just announced our next version of FileCloud (version 17.3). The new update includes hundreds of new features, improvements, and bug fixes. The release notes page contains the complete list of features and bug-fixes in this release.

This update is available for all licensed FileCloud customers. Please refer to our upgrade notes for the steps to upgrade.

Key Features:

  • ServerSync – Cloud File Server Enablement

    • Modernize Infrastructure: Synchronize your on-premise file servers to the cloud without losing the folder hierarchy and NTFS permissions.
    • Enable Hybrid Cloud: Provide traditional LAN access when on-premise and switch to cloud access when outside.
    • Migrate File Server to the Cloud: Migrate Windows file servers to FileCloud with no major migration process.
  • Global Search

    Administrators can now search across all of their users’ content from a single access point. FileCloud’s search not only searches file and folder names, but also content within the files. In a world where regulations are becoming stringent, FileCloud’s Global search will help you meet regulations such as FINRA and GDPR.

  • Centralized App Management

    Administrators can monitor the health of all the instances of FileCloud mobile apps, Sync and Drive desktop apps across all your users. Administrators can push configuration, download logs and execute commands on FileCloud apps remotely, simplifying the management of large deployments, directly from FileCloud’s Admin Portal.

  • More Sharing Capabilities to Desktop Apps

    Users can share files with a specific user or set password while sharing from Outlook Add-on, FileCloud Sync or FileCloud Drive.

  • User Policy Management

    Currently, many settings are set globally or overridden on a per-user basis, which is hard to manage across hundreds of users. To simplify the user policy management, we are introducing the concept of ‘policies’ – a collection of rules and settings that can be applied to a specific user or sets of users.

  • WaterMarking

    FileCloud can automatically add customizable watermarks to all document previews. Whenever user previews any document, they will see the watermark text embedded in the preview.

  • Features to Comply with GDPR

    We are announcing a set of features in this FileCloud update (17.3) to help you meet European General Data Protection Regulation (GDPR). GDPR is one of the strictest regulations passed to protect consumer privacy. It impacts any business that handles EU residents’ data and the data protection rules become enforceable from May 2018.

    Additional resource: FileCloud documentation has more details on the GDPR related features.

  • Integrates with Microsoft Office 365

    In today’s mobile-first world, employees and customers want to access, edit and collaborate on files from any device. Users can’t remotely co-author or edit Microsoft Office files that are behind a firewall, unless the organization moves the files to a cloud storage service such as Dropbox, OneDrive. FileCloud has joined Microsoft Cloud Storage Partner program and integrates with Microsoft Office 365 to offer browser-based editing and collaboration. With this integration, you can remotely coauthor and collaborate on Office documents even if they are stored behind a firewall.

Click here for the release notes, which contains the complete list of features and fixes.

Announcing FileCloud ServerSync – Synchronizes Files and Permissions From Local Windows File Servers With the Cloud

ServerSync Enables Cloud Access for On-Premise Windows File Servers

FileCloud, a cloud-agnostic Enterprise File Sharing and Sync (EFSS) platform, today announced that it is the first enterprise file services platform to integrate branch-office Microsoft Windows file servers with any IaaS cloud. This enhanced product offering, ServerSync, can replicate files and permissions on any local Microsoft Windows file servers and sync with the cloud to enable teams to store, share and access files seamlessly.

“Over 80 percent of businesses still run on-premise Microsoft Windows file servers to store their files,” said Madhan Kanagavel, CEO, FileCloud. “There is no easy way for team members to access these files remotely, greatly inhibiting the speed at which business can be conducted. With FileCloud’s ServerSync, customers can access their data locally from the file server and remotely from the cloud.”

Hybrid Cloud Approach Compatible with Microsoft Azure, Amazon AWS Cloud Infrastructures

FileCloud ServerSync enables a hybrid cloud approach that uses traditional LAN access when on-premise and cloud access when off-site, while allowing customers to employ their cloud infrastructure of choice—Azure, AWS, etc. Customers can migrate data without disrupting operations and synchronize on-premise file servers to the cloud without losing folder hierarchy or NTFS permissions. ServerSync also consolidates Microsoft Windows file servers across branch offices to the cloud and simplifies adding new branch-office file servers.

To provide remote access and collaboration of files stored on-premise, enterprises employ cumbersome strategies that rely on archaic VPN or EFSS solutions that force migration of files to cloud or require proprietary appliances. FileCloud ServerSync integrates with existing Windows file servers without the need for proprietary appliances or requiring migration of files to the cloud. By providing local access, FileCloud ServerSync removes latency, ensuring the highest performance while providing cloud flexibility, which is critical for collaborating on large files e.g. CAD files.

“FileCloud helps businesses modernize their IT infrastructure and adopt the cloud for digital transformation without disrupting their current operations,” said Venkat Ramasamy, COO, FileCloud. “Customers can leave their files on existing Microsoft Windows file servers while FileCloud synchronizes files and permissions between on-premise and the cloud. Our product simplifies the role of IT administrators by managing all files and permissions and handling the technical complexities of sharing.”


FileCloud Brings Browser-Based Editing and Coauthoring to On-Premises Microsoft Office Files

FileCloud Microsoft Cloud Storage Partner

We are excited to announce that FileCloud has officially joined the Microsoft Cloud Storage Partner Program. As part of Microsoft’s Cloud Storage Partner Program, FileCloud will enable Office 365 business users to open, edit and save changes to remote Office files stored in FileCloud using a web browser. Importantly, users can co-author and collaborate on documents in real time on Office documents stored in FileCloud from anywhere.

Even today, when we claim ubiquitous Cloud adoption, billions of files are on-premise, behind a firewall. In today’s mobile-first world, employees and customers want to access, edit and collaborate on files from any device. Currently, users can’t remotely co-author or edit  Microsoft Office files that are behind a firewall, unless the organization moves the files to a cloud storage service such as Dropbox, OneDrive.  FileCloud has joined Microsoft Cloud Storage Partner program to integrate with Office 365 to offer a simpler solution. With this integration, users can remotely coauthor and collaborate on Office documents that are even stored behind a firewall.

Since its inception, FileCloud continues to break barriers and offers unique customer choices. FileCloud gives Office customers a seamless experience when working with Office documents regardless of how they are accessed or where they are stored.

“We are excited to be part of the Microsoft Cloud Storage Partner Program and to use the Microsoft Office 365 capabilities for our customers across the globe,” said Madhan Kanagavel, CEO of CodeLathe. “Browser-based editing of Microsoft Word, Microsoft PowerPoint and Microsoft Excel files, as well as working simultaneously on a document via co-authoring features of Office 365, will allow our customers to be instantly more productive and will be a great addition to many existing integrations we have developed for Office, including Microsoft Outlook and mobile apps.”

Even when files and workloads are rapidly moving to the cloud, the majority of organizations continue to store significant portions of their data on-premises. FileCloud offers flexible options where customers can pick a storage model (on-premises, the cloud or a hybrid option) that suits their business needs. With this new Office integration, FileCloud brings real-time collaboration and remote co-authoring to any file regardless of where it is stored.

Rob Howard, Director, Microsoft Office Ecosystem at Microsoft Corp. said, “We are excited to have FileCloud’s participation in the Cloud Storage Partner Program to further extend the availability of Microsoft Office 365 to FileCloud’s users. It’s a unique integration that connects FileCloud’s technology directly to Office Online, so that customers have a great experience for reading and editing Office documents stored within their environment.”


FileCloud Unveils ‘Breach Intercept’ to Safeguard Organizations Against Ransomware

FileCloud, the cloud-agnostic EFSS platform, today announced FileCloud Breach Intercept. The newest version of FileCloud offers advanced ransomware protection to help customers handle every phase of a cyberattack: prevention, detection and recovery.

FileCloud is deployed across 90 countries and has more than 100 VARs and Managed Service Providers across the world. Deployed by Fortune 500 and Global 2000 firms, including the world’s leading law firms, government organizations, science and research organizations and world-class universities, FileCloud offers a set of unique features that help organizations build effective anti-ransomware strategies.

Global ransomware damage costs are expected to total more than $5 billion dollars in 2017, compared to $325 million dollars in 2015. Ransomware is growing at an estimated yearly rate of 350 percent with business enterprises becoming the priority target for hackers. Enterprise File Sharing and Sync (EFSS) solutions have seen an increase in ransomware attacks with 40 percent of spam emails containing links to ransomware. Whereas public cloud EFSS solutions such as Box and Dropbox offer centralized targets for ransomware attacks, FileCloud’s decentralized private cloud reduces your company’s exposure to potential attacks.

“Anyone with access to a computer is a potential threat, and the cloud their personal armory,” said Venkat Ramasamy, COO at FileCloud. “Why rummage through hundreds of houses when you can rob a bank? Hackers target centralized storage such as Dropbox or Box rather than self-hosted FileCloud solutions. The freedom to choose the cloud platform that best meets the unique dynamics of each business is our line in the sand of competitive differentiation.”

Breach Intercept

Cyberdefense via customization

The best defense against a phishing attack is to make sure your employees can differentiate genuine communication from malicious spoofing. Hackers can easily spoof email from public SaaS products, which have a standardized, easily falsifiable format. FileCloud offers unparalleled branding and customization tools, allowing you to set your own policies, and design your own emails and broadcast alerts. Customized emails and UX significantly reduce spoofing risk as hackers can’t run a mass spoofing unless they have an exact copy of an email from one of your employees.

Granular controlled folder access

With FileCloud Breach Intercept, you can set different levels of access between top-level folders and sub-folders. Administrators can set read/write/delete/share permissions for any user at any folder level, and permissions are not necessarily inherited according to folder structure, limiting propagation.

Real-time content / behavior heuristic engine

State-of-the-industry heuristic analysis works to detect threats in real time and suspicious content and user activity will activate security protocols and prevent ransomware from taking hold. For example, if FileCloud detects a file posing as a Word document, the system halts the upload and sends an alert to the administrator, preventing propagation of an attack.

Unlimited versioning and backup to rollback

Unlimited versioning and server backup helps companies recover from any data loss accident, including ransomware. FileCloud can roll back not only employee files but also entire server files to any specific date and time before the attack.
FileCloud is available for immediate download from our customer portal. For more information or to download FileCloud Breach Intercept, please visit


FileCloud Cited in Gartner’s 2017 Magic Quadrant for Content Collaboration Platforms

Austin-based CodeLathe, the maker of FileCloud — a leading enterprise file sharing, sync and backup software — has received an honorable mention in Gartner’s July 2017 Magic Quadrant for Content Collaboration Platforms.

Gartner defines Content Collaboration Platforms (CCP) market “as a range of content-centric platforms enabling secure file productivity and content collaboration for individuals and teams as well as supporting the creation of a modern digital workplace…” According to the report, “Content Collaboration Platforms are the evolution of the EFSS (Enterprise File Synchronization and Sharing) destination products and address digital workplace enablement strategies.”

FileCloud offers a rich set of features that are well beyond the basic file sharing and synchronization features. FileCloud enables content-driven collaboration among teams, business workflow automation, brand office synchronization, full-text search, and many hybrid scenarios that involve a mix of on-premises and cloud infrastructure.

“Unlike most of our competitors, who are focused on expanding usage of their own repository, our vision is to build a unified enterprise file services platform that offers Content Collaboration across Public, Private and Hybrid Clouds,” said Venkat Ramasamy, COO of CodeLathe. “World renowned organizations like NASA, Swiss Federal Institute of Intellectual Property, and US Army Engineering Laboratory use FileCloud to organize their files. We feel it validates our unique vision and the value we bring to the market.”

FileCloud differentiates itself from other popular enterprise file sharing and sync products by offering complete control over data, unparalleled branding options, variety of deployment models, and easy integration with existing corporate repositories and IT systems. FileCloud can be deployed as on-premises servers, private clouds and public clouds from AWS or Azure marketplaces. These deployment options help organizations select a right cloud model for them and adopt cloud at a pace that is right for them.

FileCloud is used by Fortune 500 companies; Global 2000 firms; world’s leading law firms; city, state and federal organizations; world-class universities; and renowned science and research organizations. FileCloud is deployed in over 90 countries and has more than 100 VARs and Managed Service Providers across the world.

Try FileCloud for free!

Gartner Disclaimer
Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.


Announcing FileCloud 15 – Team Folders, Enterprise Search and Facebook Style Notifications to Make Organization Wide File Sharing Easy

The function of good software is to make the complex appear simple – Grady Booch, Creator of Unified Modeling Language (UML)

We are super thrilled to announce the launch of FileCloud 15.  It is a monumental release with big bang feature sets. With FileCloud 15, we have completely reimagined every aspect of the document sharing process. We have fine-tuned the user experience and functional architecture in every step of our design process to make organization wide file sharing simple, intuitive, and secure. Contrary to public perception that a system can’t have both a strong data security and an uncomplicated design, FileCloud 15 has introduced team folders, which offer simple file sharing yet with ironclad security.

Our Team Folder implementation is the best in the industry for organization wide file sharing. You don’t need to take our word for it. Please register for a free trial and check it out for yourself.

FileCloud 15 also boasts a powerful enterprise search, Facebook style notifications, completely redesigned user dashboard, @mention support, new outlook and sync app, mass deployment support, share analytics, and php7 support.

Here is the summary of major capabilities offered by FileCloud 15.

Team Folders Support – Organization wide file sharing made easy

A collaborative team environment and powerful knowledge sharing tools are important for building effective teams in an organization. FileCloud’s Team Folders make knowledge sharing seamless by offering collaborative folders that organizations can use to share and manage documents among team members easily.

Team Folders can be shared with everyone in the organization or with a sub set of people grouped by function or any other criteria (Ex: Marketing, Finance, Head office). Team Folders can automatically sync content across team members’ devices. Further, Team folders can be shared beyond organization boundaries and be extended to vendors, partners, and customers.

Many of our competitors in the EFSS market use waterfall permissions model in their Team Folder Implementation i.e. Team members have the same permission level in sub folders as they do in the top level folders. This kind of rigid sharing model doesn’t fit the majority of enterprise’s information sharing needs and increases data leak risks. On the contrary, FileCloud’s Team Folder system offers a granular sharing model for folders and subfolders i.e. Administrators can limit team member access to any sub folder independent of top level folder permissions.

The objectives of FileCloud’s Team Folders system:

Centralized Content Management: Instead of creating multiple individual file shares among users, Team Folders facilitate organizing files and folders in a centralized place.
Easy Provisioning of Users, Files, and Folders: Provision new users quickly with access to specific files and folders through team folders. Similarly, grant immediate access to new files for all relevant users by uploading the file to the right team folder.
Granular Control of Folders: Team Folders and their sub folders can be given granular permissions for users with Read, Write, Share and Sync access.
Manage Selective Sync: Admins can select specific team folders and enable or disable sync permissions on an easy to use user interface.
You can read more about How to use FileCloud Team folders for organization wide file sharing in our admin documentation.

Enterprise File Search – A single text box to rule them all

The ultimate goal of any enterprise information management system is to make it easy for users to find their content. We have delivered that goal with our new powerful enterprise file search. When enabled, FileCloud Search ingests and indexes every piece of content irrespective of where the content is stored (Managed Storage, Network Shares, and S3). With FileCloud 15, users don’t need to navigate the directories to find the content. They can just simply type what they are looking for and FileCloud Search will find the relevant documents in a matter of seconds.

FileCloud Enterprise Search is the big first step in our journey to build the industry’s most powerful, intelligent, context aware enterprise search system that will make content discovery dead simple for end users. Please see FileCloud Enterprise Search in action below,

Brand new user dashboard  – Access relevant files at your fingertips

FileCloud 15’s completely redesigned user dashboard makes sure all the relevant files are just one single click away for users. Using the new dashboard, users can create shortcuts for frequently used folders. The dashboard also presents the recently accessed files and the recent activities for quick access.


Facebook style notifications on user and system activity

Facebook style notification is a powerful UI design pattern to present contextual information. This UI design pattern helps end users to grasp the changes happening in their network quickly. With FileCloud 15, we have implemented a similar notifications design that allows users to quickly glance and grasp what is happening in their files, shares, and the FileCloud system.

Share Analytics –  Share Activity, Number of activities and Last Access time

FileCloud 15 brings powerful share analytics and insights for end users. Now users can see their popular files, last access time, and number of views and downloads at one place. This new functionality is great for sales organizations, startups, marketing, and legal departments. Further, share activity gives detailed information on Who did What action, When, How, and from Where (location).

Brand New Outlook Add-in

FileCloud Outlook Add-in is widely used by our customers. With FileCloud 15, we have further improved the capabilities of FileCloud Outlook Add-in. Now the Add-in offers the same advanced sharing options as our web interface. Users will now be able to decide between public and private shares, set password, share name, share permissions, expiry date, and much more. For more details, please check the FileCloud Add-in information presented in our admin documentation.


Web Browser upload progress bar improvements

FileCloud 15 brings a new browser upload widget that shows the upload progress and remaining files in queue. Ability to look at progress is great when uploading multiple files or a large file. See below new upload widget in action.

Speedup Network Folders  with NTFS permissions – Turbocharge your access speed

One of the unique selling propositions (USP) of FileCloud is that it enables access to existing file shares while enforcing the NTFS permissions in place. Many of our enterprise customers utilize this functionality and share files directly from their existing file shares. With FileCloud 15, we are speeding up the access performance 3-5 times especially in large file shares with thousands to 100K files. Please go to Settings –>Network Shares and “Enable Caching for NTFS Permissions”. Memcache is a prerequisite to enable this functionality.

Updated Sync app with new management UI

With FileCloud 15, we have refreshed the UI of the FileCloud sync client, and made several product improvements and bug fixes. The new sync client enables users to navigate different configuration options, activity logs, and settings screen easily.

Mass Deployment Default Configuration Support for Sync, Drive and Outlook Add on

Mass deployment support is one of the popular requests from our bigger customers. FileCloud 15’s mass deployment support helps enterprises in rolling out FileCloud desktop clients across enterprises easily. With this current release, Administrators can set default configuration values (Server URL, user profile, http proxy info, and etc.) for FileCloud desktop clients across the enterprise.

For more details on mass deployment support and default config values please refer to our administrator guide.

Seeding functionality for quick loading of files into Managed Storage from Local and S3

In recent times, many customers are moving from Box and Egnyte to FileCloud. To make these file migration tasks easier, FileCloud 15 now supports importing files (Pre-seeding) to user accounts and team folders. This will also help onboarding users easily in large enterprise deployments where user home folders and file servers are used for file sharing. To find more information on how to pre-seed files please refer to our admin documentation here.

Support for PHP 7.0, Ubuntu 16.04, New MongoDB Driver

FileCloud 15 brings support for php 7.0 on Ubuntu 16.04 to deliver better performance and increased security. It also requires a new MongoDB driver to function.

NOTE 1: UPGRADING FROM AN OLDER FILECLOUD VERSION– Unlike our previous updates, FileCloud 15.0 is not available through the Admin portal and upgrading requires some additional steps. Please follow the upgrade instructions provided in this link.

Integrated FileCloud Windows Installer with Content Search, Document Preview and Helper

We are also releasing a new windows installer for FileCloud Server. The installer now includes installation of content search, document preview and FileCloud NTFS helper modules.  With the new installer, it will take less than 10 minutes to completely install FileCloud server on Windows servers.

Apart from the major features listed above, FileCloud 15 offers tons of significant product improvements, bug fixes, and enhancements. Please find the complete FileCloud 15 release notes here.

FileCloud 15 is a big step in our vision to build the world’s most powerful, unified file services platform that organizes enterprise data, enhances collaboration and productivity while providing iron clad data protection. We are happy with what we have delivered. We hope you will like it too!


Introducing Enterprise Search in FileCloud Version 15

Our vision is to build an intelligent enterprise collaboration platform that organizes your data across repositories and makes them universally accessible. When our vision is fully realized, the interface could be as simple as just a search box to which you can type or say your intent and FileCloud will bring relevant enterprise data, as quickly as possible to you. FileCloud will be smart enough to know the context, understand what you are looking for and provide right set of data.

Enterprise Search in FileCloud Version 15 – A Step Towards Our Vision

With FileCloud version 15, we are taking another step towards our vision by introducing enterprise search. FileCloud Version 15 makes searchbox more prominent by placing it at the top of the user home page. Having a search box simplifies navigation, you can find relevant files without browsing through many deep directories. We hope, as users find relevant content faster using a Searchbox, users will shift their behavior to search vs. navigating through folders. Here are some key highlights of FileCloud’s enterprise search.

  • Preserves Access control – Only displays results that match with user’s permissions, as determined by access control lists
  • Searches File Name and Content – Searches the search keywords in file names as well as in the actual content of the file and surfaces comprehensive search results
  • Shows Content Preview Snippets – Since FileCloud searches file content, filenames may not look relevant hence FileCloud gives a snippet with content that has the search key words
  • Caches Results for Better Performance – FileCloud saves previous search results to give faster response. Saves time for most users, since many of our queries are repeat queries that we search frequently. (users have a choice to refresh the search or just use the cache)
  • Centralizes Data – Provides a unified search to find content across data ‘my files’, shared and network files while honoring security policies
  • Supports Wildcard Search– If you don’t know the exact spelling, you can search by a few letters plus a wildcard character *
  • Offers Filters to Narrow Results – You can easily narrow down a large set of results by adding additional filters such as date and scope

Please refer FileCloud version 15 release notes for detailed list of all features in version 15.

FileCloud - The fastest growing enterprise file sharing and sync solution!

IT Admin Guide to NTFS File and Folder Permissions

New Technology File System (NTFS)

One of the most important and often misunderstood pieces of functionality in Microsoft Windows is the File and Folder security permissions framework. These permissions not only control access to all files and folders in the NTFS file system, it also ensures the integrity of the operating system and prevents inadvertent and unauthorized changes by the non-admin users as well as by malicious programs and applications.

So let’s begin at the very beginning, the NTFS file system can be considered as a hierarchical tree structure, with the disk volume at the top level and with each folder being a branch off the tree. Each folder can have any number of files and these files can be considered as leaf nodes. i.e. there can be no further branches off that leaf node. Folders are therefore referred to as Containers, ie objects that can contain other objects.

So, how exactly is access to these sets of hierarchical objects controlled exactly? That is what we will talk about next. When the NTFS file system was originally introduced in Windows NT, the security permissions framework had major shortcomings. This was revamped in Windows 2000 onwards and is the basis of almost all the file permission security functionality present in modern day Windows OS.

To begin, each object in the file hierarchy has a Security Descriptor associated with it. You can consider Security Descriptors as an extended attribute to the file or folder. Note that Security Descriptors are not only limited to files but also apply to other OS level objects like Processes, Threads, Registry keys etc.
At the basic level, a security descriptor contains a bunch of flags in the Header, along with the Owner information as well as the Primary Group information, followed by a set of variable lists called a Discretionary Access Control List (DACL) as well as a System Access Control List (SACL).

Any File or Folder will always have an associated Owner associated with it and no matter what, that Owner can always perform operations to it. The Primary Group is just enabled for compatibility with POSIX standards and can be ignored. The SACL is for specifying which users and groups get audited for which actions performed on the object. For the purposes of this discussion, let’s ignore that list as well.

The DACL is the most interesting section of any Security Descriptor. You can consider a DACL to define a list of users and groups that are allowed to or denied access to that file or folder. So to represent each user or group with the specific allowed or denied action, each DACL consists of one or more Access Control Entries (ACE). An Access Control Entry specifies a user or group, what permissions are being allowed or denied and some additional attributes. Here’s an example of a simple DACL.

So far, if you have been following along, this seems pretty straightforward and it mostly is, but the practical way how this is applied to folders introduces complexity especially if you are unclear how the permissions interact with each other.

Inheritance of Security Descriptors

If every object had its own unique copy of the Security Descriptor associated with it, things would be pretty simple but impossible to manage practically. Imagine a file system with thousands of folders used by hundreds of users. Trying to set the permissions on each and every folder individually will simply break down quickly. If you needed to add or modify the permissions on a set of folders, you will have to individually apply the change to each and every file and folder in those set of folders.

Thus was born the notion of inheritance. Now, not only is it possible to apply a permission (ACE) to a folder, it is also possible to indicate if the permissions should “flow” to all children objects. So if it is a folder, all subfolders and files inside that folder should have the same permissions “inherited”. See below for an example:

Here, when Folder 3 has some permissions setup, these permissions by default are inherited by its children objects which includes SubFolder1, SubFolder2 and so on. Note that this inheritance is automatic, ie if new objects are added to this section of the tree, those objects automatically include the inherited permissions.

The DACL of any subfolder item now looks like the following, assuming this was set as the permissions for Folder 3.

You can see inherited permissions on any security dialog by the grayed out options seen. To edit these options, you have to traverse up to the tree till you reach the object where the items are actually setup (which in this case is Folder 3, where you can actually edit the permissions). Note that if you ever edit the permissions in Folder3, the new permissions automatically re-flow to the child objects without you having to set them one by one explicitly.

So if inheritance is such a cool thing, why would you ever want to disable inheritance? That’s a good question and it brings us to setting up folder permissions for a large organization. In many organizations which have groups and departments, it is pretty common to organize the folders by groups and then just allow permissions to the folders based on the groups the users belong to.

In most cases, this kind of simple organization works fine, however, in some cases, there will be some folders that belong to a group or department which absolutely need complete security and should only be accessed by a select handful of people. For example: consider SubFolder1 as a highly sensitive folder that should be fully locked down.

In this case this subset of folders should be setup without inheritance.

Disabling Inheritance at Sub Folder 1 helps change a few things. Permission changes happening at parent folders like Folder 3 will never affect Sub Folder 1 under any conditions. It is impossible to give access to Sub Folder1, by someone adding a user or group at Folder 3. This now effectively isolates the SubFolder 1 into its own permission hierarchy disconnected from the rest of the system. So IT admins can setup a small handful of specific permissions for Sub Folder1 that are applicable to all the contents inside it.

Order of Permission Evaluation

Having understood Security Descriptors and Inheritance (as well as when inheritance should be disabled), now it is time to look at how all this comes together. What happens when mutually exclusive permissions are applicable to a file or folder, how does the security permissions remain consistent in that case?

For example, consider an object (File 1) where at a parent level folder (Folder 3), say JOHN is allowed to READ and WRITE a folder and these permissions are inherited to a child object in the hierarchy.

Now, if JOHN is not supposed to WRITE to this child item and you as an IT admin add DENY WRITE to JOHN to the File1 item how does this conflicting permissions make sense and get applied?

The rules are pretty simple in this case, the order of ACE evaluation is
• Direct Deny or Disallowed Permission Entries applied directly on the object
• Direct Allowed Permission Entries applied directly on the object
• Inherited Negative Permission Entries from Parent Objects
• Inherited Parent Permission Entries from Parent Objects

The Windows OS will always evaluate the permissions based on this order, so any overrides placed on that object directly or explicitly will be considered first before any inherited permissions. The first rule that denies permissions for a user under consideration is applied and evaluation is stopped, otherwise evaluation continues till required permissions are allowed and then evaluation is stopped. Note that even with inherited permission entries, the permission entries from the nearest parent are evaluated first before the evaluation continues to the farther parent. ie the distance from the child to the parent matters in the evaluation of the permissions.

Applying Folder Security inside the network

If you thought that setting up permissions on folders is all that you need for a network share you are mistaken, you also need to create a folder share and specify permissions for the share. The final permissions for a user is a combination of the permissions applied in the share as well as the security permissions applied to the folders. The minimum permissions applicable is always applied.

So it is always the best practice to create a share and choose Everyone Full access at the share level and let all the permissions be managed by the Security permissions.

Applying NTFS folder security outside the network

It is simple to provide network folder access over the LAN and apply these folder permissions efficiently, however if you want to allow users to access these files outside the LAN via the web browser, mobile apps etc and still enforce NTFS file and folder permissions, then consider using FileCloud (our Enterprise File Sharing and Sync product) that can effortlessly enforce these permissions and still provide seamless access.

Try FileCloud for Free!

Enterprise File Sharing and Sync Platform FileCloud Launches Industry’s First Microsoft Office Online Server Integration

FileCloud is the only EFSS platform for Windows Servers that brings seamless browser-based document editing to on-premise file servers.

AUSTIN, TEXAS – March 23, 2017 – Today, CodeLathe launched the integration of Office Online Server with FileCloud, the IT Industry’s one and only Enterprise File Sharing and Sync platform for on-premise Windows Servers. This new integration brings powerful Office document (Word, Excel, PowerPoint) web editing capabilities to on-premise Windows file servers. Microsoft Office Online Server enables organizations to deliver browser-based versions of Word, PowerPoint, Excel and OneNote behind their firewall. FileCloud expands the capability by allowing users to edit files through a browser, even from outside the firewall.

Users can select any file stored in FileCloud, open it via the Office Online Server, edit it, and then save it back to FileCloud without ever leaving the browser. This industry leading integration supports Microsoft Office documents (.docx, .xlsx, .pptx) and offers significant benefits for firms that use file servers as their common file repository. More details on FileCloud and Office Online can be found here:

We recently deployed the new browser-based document editing capabilities (offered by FileCloud and MS Office Online Server Integration) on our platform, and we have got a tremendous response from our customers. This new integration allows our customers to access their documents on the road, which makes it so much easier to work flexibly. It definitely makes FileCloud one of the most powerful EFSS in the market – said OfficeBox, a private cloud provider from the Netherlands.

According to the survey conducted by Spiceworks, a community of system administrators,  more than 87% of on-premise, physical and virtual servers run the windows server operating system. It is a well-known fact that Windows file servers are the primary component in any enterprise file sharing infrastructure. Many organizations use Windows file servers as an organization’s central repository to store and share files among employees, partners, and customers.

Even though file servers are well known for their utility and can be deployed easily, they have limitations when it comes to organization-wide file sharing.  The limitations of file servers include:

  • Lack of simple mobile and web access
  • No file versioning or recycle bin support to retrieve older versions
  • Requires VPN for remote access
  • No audit trail/access logs
  • Can’t share files as a link

Using Filecloud, organizations can easily convert their existing Windows file servers to a powerful enterprise file sharing and sync solution that addresses these limitations. FileCloud offers web and mobile access, unlimited file versioning, detailed audit trail, private, as well as temporary and password protected shares. FileCloud also adheres to the existing file access controls (ACLs) and doesn’t require VPN access.

FileCloud is the first Enterprise File Sharing solution to bring browser-based document editing to on-premise file servers. FileCloud helps organizations to extract more value from their on-premise file storage infrastructure by bringing powerful enterprise file sharing features to their windows file servers – said Venkat Ramasamy, COO of CodeLathe.

FileCloud is the fastest growing enterprise file share, sync, and mobile access solution. FileCloud is used by thousands of organizations around the world including Fortune 500 companies, governments, educational institutions, non-profit organizations, and managed service providers. FileCloud can either be self-hosted or subscribed to as a SaaS service, giving customers the flexibility to pick a cloud deployment model that is perfect for them.  FileCloud is widely recognized for delivering 5x more value than the competition – in addition to file sharing and sync, the FileCloud base product includes endpoint backup, data leak prevention (DLP), unparalleled customization options and HIPAA compliant auditing.

For more information or to download FileCloud, please visit

Dropbox Business price increase in 2017 – Why FileCloud Online can be a powerful alternative?

As IPO pressures mount, Dropbox has resorted to the familiar tactics to shore up their revenue – increase the price substantially and pray customers will not notice. In some scenarios, the price has gone up by 75% (fr0m 12.50$ to 20$). The long time customers who put their faith in Dropbox are getting the short end of the stick.  You can find disappointed Dropbox customers are venting over the new price increase  in dropbox forums and in spiceworks. It seems like Dropbox has also dramatically rearranged their feature set and removed features from their base plans.

Here is the summary of Dropbox Business pricing plans (Based on Annual Pricing)

Standard – $12.50/per user/ per month

  • 2 terabytes total storage cap.
  • 120-day history cap.
  • NON-HIPAA compliant servers.
  • Team folder.
  • Admin console (many features of current base plan are removed).

Advanced – $20/per user/per month

  • Unlimited storage.
  • Advanced admin controls.
  • SSO.
  • HIPAA compliant.
  • Tiered-admins (still no separate one for billing only).
  • Device approvals.
  • Audit logs.
  • Business hours only support.

Enterprise – $56/per user/per month (Oops!)

  • Unlimited storage.
  • Basic EMM support.
  • Domain insights and account control (turn off personal accounts at work).
  • 24/7 support,
  • Account manager, developer + training help.

Typically companies tend to grandfather pricing for their long term customers and don’t take the features out that are available already to a new plan. It seems like Dropbox has dropped the ball on this one. Fortunately the Enterprise File Sharing and Sync market is a very competitive one and customer has many choices to choose from.  There is no need for IT managers and CIOs to accept dropbox’s skyrocketing pricing and deal with the uncertainty.

FileCloud Online is one such powerful alternative for Dropbox Business. FileCloud is currently used by 1000+ enterprises across 90 countries from SMBs to Fortune 500 companies . It powers organizations like NASA, US Army ERDC, Sanderson Farms, Stewart Title, D.R.Horton and many others. FileCloud is IT industry’s most versatile  enterprise file sharing and sync platform and in many metrics it is the fastest growing player in the market. Recently, FileCloud is Honored as a 2017 Coolest Cloud Software Vendor by CRN.

For 100 users, FileCloud Online can save you  14000$ over Dropbox Business.  FileCloud Online comes with free, unlimited client accounts. If your company has small employee base and work with lot of external partners and customers. This features itself can save a ton of money for your organization. In addition, FileCloud comes with a lot of enterprise features like branding, endpoint backup, workflows and admin reports which are not offered by Dropbox business. The following table offers the features and pricing comparison between FileCloud Online and Dropbox Business.

Dropbox Business vs FileCloud Online – Features and Pricing Comparison

Features FileCloud Online  Dropbox Business 
Enterprise File Sync and Share
Single Sign-On Integration (SSO)
Audit Logs
Role Based Administration
Endpoint Backup
Takeout guarantee – export files anytime
Branding – domain, login page, emails, logos, ToS
Free unlimited vendors and partner accounts
Automated Workflows and Admin Reports
Advanced training for end users and admins Upgrade
Mobile Device Management Upgrade
Pricing for 100 users/ year $9600 $24000

If you are  currently looking for a powerful dropbox business alternative, please try FileCloud Online. It will take less than 10 minutes of your time and you may end up saving thousands of dollars. If you have any questions or need technical assistance please feel free to contact us at