Access to local hard drives

Follow

Comments

7 comments

  • Avatar
    Tom Crispo

    Does this affect existing users who currently have mapped local drives

  • Avatar
    Lance

    Are you're talking about the "C$ on 'Client' (V:)"? This will impact some of us significantly that need to download MS office files from web browsers on local workstations, uploading media from flash-drives and CD/DVD's, and other files that are created on local workstations.

    Are there alternatives to using the C$: drive, e.g. dropbox, adding a minimal use web browser in Citrix to download banking templates, etc?

  • Avatar
    Lance

    Ah! What about using a ftp client to put local files into the share drives?

  • Avatar
    Keely Coulter

    How about restricting only those customers that don't have adequate protection and allow those that do? The more we have to install and maintain locally, the less we can substantiate the argument for using the cloud.

  • Avatar
    Emily Orndorff

    I have finally trained the staff on how to move items in and out of "Citrix" drives to the hard drive. flash drives etc.  Will we need to create a  ticket for each user, each instance? I don't see a way for that to be manageable. Do we have any alternatives? 

  • Avatar
    Wayne Meadows

    Hi guys - let me clear up some things since it seems I caused some confusion. ...


    All - You can still continue to give your users local access; however, it will not be the default state for any user.  Meaning, you need to request it for whatever user needs it.  Then they will have it.  The intent is to limit it as much as possible while giving those who need it access.  Think of it like any other drive. If you want a user to have the Finance drive, you request that they have it.  The V drive will be the same.   SO THE GIST IS, YOU CAN STILL HAVE IT BUT THE RESPONSIBILITY FOR MANAGING IT WILL BE SHIFTED TO YOU TO DETERMINE WHO SHOULD AND SHOULD NOT HAVE IT.


    Keely - our member (who has a large IT staff and budget) who just got hit with a worm has all of the appropriate protections including up to date Symantec AV.   Neither Symantec or Trend Micro (what we use) was able to detect the variant they had.  The simple fact is, AV isn't perfect.  Also - the users don't just have access to it one their office PC.  They have access to it on their home PCs which may not have the same protections as the office pc. 


    We will be putting out an updated USER GUIDELINES document pursuant with our agreement with you.  The guidelines already specify that we can cut off your access for virus activity until that is remediated. We will be clarifying that as well as your responsibility to manage and train who has access to their local drives.

  • Avatar
    Chris Brady

    Hi Wayne and all,

    We're in the midst of moving to Windows 7.  I'm finding that Citrix reads 3 local folders / directories for anyone using a PC logged onto the network: one representing c:\ (to which users won't have access), the "Media" folder (a Win 7 default), and one representing the user's personal folder on the domain server (e.g., u:\chris.brady). 

    I've begun instructing users to dedicate the U:\ drive for their "local access" or "transfer files w/cloud" folder" and to ignore the other two directories.

    Will the permission you grant on Jan 2 be local folder- or drive-specific?  If so, perhaps I can limit risk to UWITC's environment by requesting John Doe be granted permission only to u:\john.doe, eliminating any vulnerability from home PC environment.

    We use local access liberally, I'm afraid.  So I fear you'll see a flood of requests for it in early January. 

Please sign in to leave a comment.