Page tree
Skip to end of metadata
Go to start of metadata

If a FIPS-enabled FileCloud license is installed, there is a new option in the Admin Portal to enable FileCloud to run in FIPS mode in FileCloud Server version 19.1 and later.

As an administrator, you can encrypt Managed Disk Storage for compliance and security reasons.

To enable storage encryption:

Before you can enable encryption, you must meet the following requirements:

1FileCloud Installation (v13 or higher)

2Memcached installation

Path to SSL configuration file. This can be set to custom path by overriding the config value SSL_CONF_FILE in cloudconfig.php.
By default, SSL_CONF_FILE is set to
Windows:  XAMP_HOME\php\extras\openssl\openssl.cnf (till v17.3)

Windows:  XAMP_HOME\php\extras\ssl\openssl.cnf (from v18.1)
Linux: /etc/ssl/openssl.cnf

In Windows, for example if you have XAMPP installed in D:\xampp, then you will be adding the following line to cloudconfig.php.

4Only in windows, php_com_dotnet.dll is needed, which will be installed automatically with FileCloud v9.0 installer onwards.

For Windows, if your xampp is installed in location other than C:\xampp, then add the following key in <WWWROOT>\config\cloudconfig.php
For example, if your xampp is in D:\xampp, then in file D:\xampp\htdocs\config\cloudconfig.php, add the following string (any location before the bottom "?>" line)


By default, encryption module is not enabled.

You can enable the encryption module in two ways:

  • If FIPS mode is active, use the Admin Portal.
  • If you don't use FIPS mode, edit the WEBROOT/config/localstorageconfig.php file

Enable Encryption Using the Admin Portal

Note: In order to ensure FIPS Mode is on you will need to enable the FIPS Admin Banner by accessing (WEBROOT/config/localstorageconfig.php file ) and add the following:

Enable Encryption by Editing the localstorageconfig.php File

Add a new line that reads as follows.

Additional Parameter To Enable Encryption



Expected Value

Additional Notes



1 to enable encryption for local managed storage

0 to disable encryption

After enabling the encryption module, the Admin Portal will display new options to manage the encryption.

Warning On Master Password

If an optional master password was specified, then you need to retain the password for future use.

Without this password the encryption module cannot encrypt or decrypt files in the FileCloud storage.

To manage encryption:

  1. Open a browser and log in to the Admin Portal
  2. From the left navigation pane, under SETTINGS, select Settings.
  3. On the Manage Storage screen, select the Storage tab and then the My Files sub-tab.
  4. You will see a new option called Encryption.

  5. To open the Manage Storage Encryption screen, click Manage


    You can set an optional password

    • When a password is set while enabling encryption, you will have the ability to create a recovery key.
    • This recovery key is a private key file, which can be used to reactivate encrypted filesystem, in the case of lost password.

    If the recovery key option is selected, the recovery key file will be available only once for download.

    • Once downloaded, the option to download the recovery key will not be shown again.

  6. To set an optional password, in Encryption Password, type in a strong password.
  7. To perform the necessary initialization of the encryption module, click Enable Encryption.

Once the encryption is successfully initialized, another step will be necessary depending on whether your FileCloud server had existing files in local storage or not.

If Your System Already Contains Files:

If there are unencrypted files that existing storage system, another screen will be shown.

  1. Click Encrypt All  to encrypt the existing files.

     2.  When all the existing files are encrypted, the status window provides you with a Note.


If Your System Doesn't Contain Any Files:

You will not see an Encrypt All button.

Your system is already in a fully-encrypted state.


  • No labels