System Overview |
Organizations have traditionally relied on Virtual Private Network (VPN) technology to secure access to corporate resources (such as M-Files vaults) from outside the private network of the organization. M-Files versions 10.2 and later enable you to provide secure access to the M-Files system without the downsides of the traditional VPN-based approach.
The security of this approach is based on encrypting all network traffic between client devices and the server with HTTPS (SSL/TLS) and on using a pre-shared key as an additional "shared secret" in authentication to ensure that only authorized devices can attempt to connect to the system.
Together, the HTTPS encryption and the use of a pre-shared key as a second factor in authentication provide similar security as VPN but without the complexity and compatibility challenges of VPN. However, it needs to be noted that the approach is not identical to VPN from the security point of view, and that each organization needs to determine if granting access to M-Files vaults without VPN is appropriate considering the organization's business needs and security requirements.
For more information about using pre-shared keys for secure M-Files access, please refer to Securing Access to M-Files Vaults with a Pre-Shared Key.