Security Configured in the Windows Client and the Laserfiche Web Client

Security determines who can log in to a repository and what actions they can perform once signed in. Most Laserfiche security is configured in the Laserfiche Administration Console; however, some aspects of security, like which trustees can access specific entries and what actions those trustees can do, are configured directly in the Laserfiche Windows client or the Laserfiche web client. Security has two purposes:

• To prevent unauthorized access to, or modification of, confidential information.
• To safeguard data against loss and corruption due to improper operation.

Note: Only users with appropriate privileges can manage these security features.

To learn more about security, including security administration, see the Laserfiche Administration Guide.

Security Feature	Description
Entry Access Rights	Entry access rights are the primary method of controlling security on documents stored in the repository. Entry access rights control what operations are possible on an entry, and you can allow or deny different rights to grant different levels of access to documents within a repository.
Entry Ownership	An entry's owner can set security for that entry and can manage the entry's annotations. This gives entry owners the ability to configure security for and otherwise manage their documents, without granting them larger-scale rights over the repository.
Security Tags	Security tags are metadata you can apply to a document which only allow users and groups who have been granted that tag to view the entry.
Classification Levels	Classifications levels provide a way for an organization to ensure that documents remain in folders of a similar or higher level of confidentiality. In most Laserfiche scenarios, and according to Laserfiche best practices, most documents will inherit entry access rights from their folders. This provides many benefits in terms of consistency and convenience, but can cause problems if documents are inadvertently moved to folders with less-restrictive security settings. Classification levels act as an extra check, preventing entries from being moved such that they will inherit less-restrictive security than is appropriate.
Folder Filter Expressions	Folder Filter Expressions are a dynamic form of security that uses an advanced syntax string to determine what users should be able to access which documents in a folder.

Free Training: Repository Security Certification Series in Aspire.