Enabling Secure Links for Users

Introduction

Beyond sharing with others inside the organisation, users are also able to securely share files and folders outside the organisation using short URLs.  The short URLs can either be open and require no authentication (called Public Links) or ‘Secure Links’ can be created which allows the user to restrict access to specific email addresses.  i.e. The recipient of the shared items is required to authenticate before they can access the shared items.

With Secure Links, external users receive email notifications as items are shared with them, and they will have an internal account automatically created on the Foldr appliance itself.  External users are prompted to create a password the first time they try to access a shared item from Foldr via a Secure Link.  External users can optionally be given the permission to be able to upload to shared folders.   External user password’s can be reset either by the administrator or by the user using a ‘forgot password’ link on the web app sign-in page.  Where a user requests a password reset, a verification code is sent to the external user’s email address which must be supplied when they go through the reset process.

Appliance Configuration Steps

1.  Ensure the appliance can send email successfully.

Configure your email server settings within Foldr Settings >> General >> Mail Settings.  Example given below:

Use the Send Test Message button once the mail server settings have been saved and verify the test email was received successfully.

Test Message:

2.  Enable Email Notifications

within Foldr Settings >> Notifications >> Email Notifications and click Save

3.  Allow the built-in Foldr External Users group to sign in.

Within Foldr Settings >> Security >> Use Foldr (top option) click + Add User or Group and search for Foldr External Users.  Select from the picker and choose Allow.

Click Save Changes.

4.  Enable the Secure Links permission

Within  Foldr Settings >> Shares, edit the share in question >> Access tab.

Edit an object in the permissions section and click the Sharing tab and enable the Create Secure Links permission for the users that require this permission (those who need to share files/folders).   In the example below, ‘Foldr Users‘ refers to everyone / all users however you can enable any sharing permission for specific Active Directory users or groups if required.

If the external users interacting with shared folders need to upload to the folder, also enable the permission Create Secure Writable Links.  If this permission is enabled, a toggle will be available to the user sharing the folder to allow uploads.

Note that by enabling Create Secure Links, the other sharing permissions are also enabled automatically.  These are required as a pre-requisite for the Secure Links feature.

Any Active Directory users that have been assigned the Create Secure Links permission, should now be able to share content from the web and iOS apps.

5.  For SMB shares, select a service account within the Access tab that has at least READ permission to the share (on the backend file server).  If you intend to allow external users to upload to shared folders, the service account also requires write permission.

6.  Click Save Changes.

Using Secure Links – Web App Example

To share a folder (or file) with an external user, use the context menu in the web app or click the inline sharing button to bring up the menu and select Public Link:

Enable the Create Public Link toggle.  Additional tabs will become accessible when this switch is enabled.

Click the External Users tab

Enter one or more external email addresses for external users that you wish to share the folder (or individual file) with.

Optionally enable the toggle External users can upload? if you’d like to grant the ability to upload back to a shared folder.  Note uploads are organised automatically within a dynamically generated Foldr Uploads directory in the root of a shared folder.  Additional subfolders are created for each external user that uploads files.

Click UPDATE.

An email will be sent immediately to the recipient containing a button (Click here to view it) that will take them  directly to the shared resource.

When the user clicks the button in the email they will be taken to the public link where they should sign in.  Note the username is their email address.

Enter the email address in the username field.  Click NEXT

If this is the first time the external user is signing into to access a shared item via a Secure Link they will be prompted to create a password.  First pass the captcha by selecting the correct image and click NEXT.

Another email will be sent to the external user’s email address containing a verification code.

The verification code should be entered into the password change field and a password chosen and entered.

Click NEXT and if the verification code is correct and the passwords match the user will see a success message.  They can now sign in using their username (Email address) and their password to access shared items.


(Note that all sub-folders inside the example folder ‘client proposal’ are navigable)

If the user has the ability to upload to the shared folder, the shared item will have a coloured banner at the top to show it is a submission.  To upload the user can drag files into the browser or use the Upload button (top right)

Resetting Users Passwords

Should an external user forgot their password, they can reset it using the ‘Forgot Password‘ link after supplying their email address.  Alternatively, the Foldr administrator can reset it within Foldr Settings >> Users & Groups.

The user will have to pass the captcha process again and provide the verification code that is sent to their email address before resetting the password.

Need more help?

Get in touch and we'll be happy to assist you, [email protected]

© Minnow IT. Registered in England and Wales with company number 07970411.

Made with in Bristol, UK

<