Start FileCloud FREE Trial
Log in

Enabling S3 Storage Encryption

In FileCloud Server version 19.1 and later, if a FIPS-enabled FileCloud license is installed, there is an option in the Admin Portal to enable FileCloud to run in FIPS mode. 


As an administrator, you can encrypt Managed Disk S3 Storage for compliance and security reasons.



To enable storage encryption:

Before you can enable encryption, you must meet the following requirements:

OrderRequirements
1FileCloud Installation (v13 or higher)

2Memcached installation
3

Path to SSL configuration file. This can be set to custom path by overriding the config value SSL_CONF_FILE in cloudconfig.php.
By default, SSL_CONF_FILE is set to
Windows:  XAMP_HOME\php\extras\openssl\openssl.cnf (till v17.3)

Windows:  XAMP_HOME\php\extras\ssl\openssl.cnf (from v18.1)
Linux: /etc/ssl/openssl.cnf

In Windows, for example if you have XAMPP installed in D:\xampp, then you will be adding the following line to cloudconfig.php.
define("SSL_CONF_FILE","D:\\xampp\\php\\extras\\ssl\\openssl.cnf");

4Only in windows, php_com_dotnet.dll is needed, which will be installed automatically with FileCloud v9.0 installer onwards.
5

For Windows, if your xampp is installed in location other than C:\xampp, then add the following key in <WWWROOT>\config\cloudconfig.php
For example, if your xampp is in D:\xampp, then in file D:\xampp\htdocs\config\cloudconfig.php, add the following string (any location before the bottom "?>" line)

define("PHPBIN_PATH","D:\\xampp\\php\\php.exe");

After S3 encryption is enabled, the Admin Portal will display new options for managing it.

Warning On Master Password

If an optional master password was specified, retain the password for future use.

Without this password the encryption module cannot encrypt or decrypt files in FileCloud storage.

To manage S3 encryption:

  1. Open a browser and log in to the Admin Portal
  2. From the left navigation pane, under SETTINGS, select Settings.
  3. On the Manage Storage screen, select the Storage tab and then the My Files sub-tab.
  4. You will see a new option called S3 Encryption.
  5. To open the Manage S3 Encryption screen, click Manage

    The Manage S3 Encryption dialog box opens:
  6. To perform the necessary initialization of the encryption module, click Enable Encryption.

    You are prompted to confirm encryption.
  7. Click OK.
    The dialog box displays the encryption progress.

    When it is complete, it displays Encryption is enabled.