Steven H. Blackwell

View File FileMaker18 Security Features The just-released new FileMaker® Pro 18 Advanced has two new security features about which developers should be aware. One of these is fairly straight-forward and extends functionality existing in earlier versions. The other is brand-new; it requires a nuanced understanding and careful consideration about its use. It allows management of certain Accounts by users who do not have [Full Access] Privileges, and thus it is a very significant change. Submitter Steven H. Blackwell Submitted 05/22/2019 Category White Papers FM Version Not Applicable  

Very good. Come back and ask more if you need to do so. That is why we are here. Steven H. Blackwell Platinum Member Emeritus, FileMaker Business Alliance

OK, first, are we talking about another FileMaker Pro file or some other type such as would be accessed via ESS? If this is a FileMaker Pro file, define a Privilege Set in it with appropriate controls. Then create an External Authenticated Account. Put users into a similarly named External Account in your file. Then place individual Accounts and passwords on the Domain Controller or in the Local Security Group area of your server. When you user logs in, the user gets rights to all files with matching group names. Steven H. Blackwell Platinum Member Emeritus, FIleMaker Business Alliance

View File SECURITY SCHEMA CHANGES IN FILEMAKER® PRO 11 AND FILEMAKER® PRO 11 ADVANCED The newly released versions of FileMaker Pro, FileMaker Pro Advanced, and FileMaker Server Advanced all have significant changes in their security features. The desktop client products have a new File Access Protection feature and new calculation functions related to Extended Privileges and Privilege Set Names. Additionally there is a change in the default Menu Commands option when developers create a new Privilege Set. FileMaker Server Advanced has some new features related to role-based administration of the FileMaker Server Advanced product; that is beyond the scope of this paper however. This paper will examine the new security features in FileMaker® Pro 11 and FileMaker® Pro 11 Advanced, with specific emphasis on the File Access Protection enhancements. Why were these changes needed? Why were they implemented? What are they? And, how do they work? Submitter Steven H. Blackwell Submitted 04/18/2019 Category White Papers FM Version 11  

Externally authenticated [Full Access] Accounts--and that is a bad idea--are not allowed to validate changes to the Security Schema. This is by design. Steven H. Blackwell Platinum Member Emeritus, FileMaker Business Alliance

Congratulations to Brad, and best wishes for an enjoyable retirement and many thanks for his years of service to Dominique P. Goupil. Steven H. Blackwell Platinum Member Emeritus, FileMaker Business Alliance

View File FileMaker Workplace Innovation Platform Security Building Blocks The FileMaker Workplace Innovation Platform has evolved over the past fifteen years since the release in 2004 of FileMaker® Pro 7 to encompass now a robust suite of security features to protect the Confidentiality, Integrity, Availability, and Resilience of organizational data. This same set of Security Building Blocks also helps to provide protection to organizations from a wide variety of risks including business continuity, regulatory sanctions, criminal and civil liability, and reputational damage. Submitter Steven H. Blackwell Submitted 02/26/2019 Category White Papers FM Version 17  

Here is a good starting place for Server version 17. https://community.filemaker.com/docs/DOC-8939 Then maybe look here: https://www.productivecomputinguniversity.com/courses/fm-server-manager And here is one more: https://www.soliantconsulting.com/blog Steven H. Blackwell

A Forward Look About FileMaker Platform Security Developers and users of the FileMaker Workplace Innovation Platform must be concerned about security of their deployed solutions. Likewise, they must have a forward-looking perspective about key issues in this arena. Security has its major purpose the preservation of Confidentiality, Integrity, Availability, and Resilience (CIAR) of their systems. Liabilities resulting from breaches can substantially affect continued business operations, continued business existence, imposition of civil or criminal sanctions, brand reputation, and customer or client confidence. I see at least ten security concerns that the FileMaker Developer Community must consider going forward for the next few years and development cycles: The Business of Security: What Is Security Supposed To Do? Zero Trust implementation for the FileMaker Platform [https://fmforums.com/blogs/entry/2047-federated-identity-management-zero-trust-and-the-filemaker-platform/] Federated Identity Management and the end of FileMaker Accounts in files Native Multi-Factor Authentication (not SMS) Further implementation of Secure by Default and Rule of Least Privileges for the FileMaker Platform Expansion of Roles-Based Construct in the FileMaker Platform SaaS Security Implementation for the FileMaker Platform Building a Culture of Security in the FileMaker Developer Community Building a Culture of Security among the FileMaker Customer Base The Coming Regulatory and Political Onslaught Against the Tech Sector So as we go through the just-started FileMaker, Inc. Fiscal Year running up to the next version release and the 2019 DevCon, we should keep these elements in mind. Steven H. Blackwell, Platinum Member Emeritus, FileMaker Business Alliance

Hello, Peter. Are you calling the machine by its IP address or by its Fully Qualified Domain Name? The latter is required to get a ConnectionStatus of 3 aka the "green lock" symbol. Steven H. Blackwell

The face of computing and data access has changed enormously over the past decade. In an always-on, connect-from-anywhere, mobile-device-driven world, the network perimeter has disappeared. With that disappearance has come a variety of new security and business process challenges to the Confidentiality, Integrity, Availability, and Resilience of organization digital assets. Coupled with growing regulatory strictures, business reputation management requirements, and customer or client trust, modern day information management challenges have multiplied. Verification of authenticity of users who seek to access these assets is now the major information security challenge. Federated Identity Management is one of the most important concepts in modern Information Security Services. What is it, and how do developers and administrators implement it? What problems does it solve? How does it relate to the FileMaker Platform? A new White Paper discusses this and the related concept of Zero Trust Security, something very important to the future of the FileMaker Platform in my view. You can download the White Paper here: https://fmforums.com/files/file/105-federated-identity-management-zero-trust-and-the-filemaker-platform/ Steven H. Blackwell Platinum Member Emeritus, FileMaker Business Alliance