Security and Privacy
The security and privacy settings allow you to password protect exported reports, anonymize data, secure access to SharePoint Manager Plus, and more.
Privacy Settings
In the Privacy Settings tab, you can enable password protection for exported reports and data anonymization for personally identifiable information (PII).
Follow these steps to modify the privacy settings:
- Log in to SharePoint Manager Plus and navigate to the Admin tab > General Settings > Security and Privacy.
- Under the Privacy Settings tab, enable the Privacy settings for GDPR compliance option if you'd like to enable data anonymization.
- Under the Data Security section, check the Protect export files with password option to password protect reports that are exported from SharePoint Manager Plus and set the password that must be used to view the reports.
- Check the Mask during export option to hide sensitive information like emails in the reports.
- Check the Usage Statistics Gathering option to forward anonymous usage stats to ManageEngine to help us serve you better.
- Enable the checkbox under the Auto-Install Hotfixes section to auto-download and install hotfixes. The scheduler will run at 11pm every day to check and apply hotfixes.
- Click Save.
Security Hardening
In the Security Hardening tab, you can view and configure the various security settings that enhance product security from a single location. To help you easily understand how secure your SharePoint Manager Plus instance is, a Product Security Hardening score is calculated based on the configured security settings and displayed in the Security Hardening dashboard.
Follow these steps to configure the security hardening settings:
- Log in SharePoint Manager Plus and navigate to the Admin tab > General Settings > Security and Privacy.
- Under the Security Hardening tab, click the Configure button next to the respective security settings to configure them. The following security configurations are available to harden the security of SharePoint Manager Plus:
- Change Default Admins Password: Change the default password to a stronger one to strengthen the security of the Admin account.
- Auto-Install Hotfixes: Automatically download and deploy hotfix updates whenever a hotfix update is available. Click Configure, and check the Enable this option to auto-download and install hotfixes option to download automatically and install hotfix updates. SharePoint Manager Plus will restart automatically to finish installing the update.
- SharePoint Manager Plus will check for hotfix updates at 11pm every day by default.
- To get a detailed list of the hotfix updates that were downloaded and installed, click the View History option.
- Ensure that the creator.zoho.com endpoint is allow-listed in your environment to auto-install SharePoint Manager Plus hotfix updates.
- Enforce HTTPs: Establish a secure connection between the web browsers and the SharePoint Manager Plus web server. Click here to learn how to enable HTTPS.
- Enable IP restriction: Allow communication from only known or authorized sources, or block requests from unauthorized or unknown sources. Click here to learn how to enable IP restriction.
- Enable Multi-Factor Authentication: Add an additional layer of security while logging in to SharePoint Manager Plus. Click here to learn how to enable MFA.
- Block Invalid Login Attempts: Block a technician's account from logging in once a specific number of consecutive unsuccessful login attempts have been made. Click here to learn how to block invalid user login attempts.
- Enforce Secure LDAP: Set up an LDAP over SSL connection to secure the information exchange between SharePoint Manager Plus and the LDAP servers.
- Enforce Secure TLS: Ensure older TLS versions are disabled. SharePoint Manager Plus supports TLS versions 1.0, 1.1, and 1.2.
- Enable the Don't show alerts even if the recommended settings are not configured option to hide alerts on security hardening, regardless of the state of the recommended settings.