We have a need for files that are uploaded by the user to be encrypted "at rest" to prevent system administrators from accessing those documents. Does anyone have experience with this? We are interested in any options, disk encryption, plugins, calls to command line tools. In particular we're interested in a) how, and b) how were the keys stored.
Thanks
Discussion posts and replies are publicly visible
Hi Richard,
Did you consider the approach of removing System Admins from the Designer role in Production to prevent them from accessing documents from the Design interface? By doing this, you may also have to setup a basic user with Designer access for Import of applications and Monitoring of process issues, if any. But, this approach would mean that System Admins wouldn't have access to Design interface, and hence wouldn't have access to documents.
@Eliot - is your recommendation from 2017 above still the same?