IT admins in the enterprise that wrestle with Dropbox and BYOD know that “dude, just go cloud!” is not as simple as it sounds.
One Does Not Simply Move 2 PB of Files
Any savvy IT architect knows that it’s not simply about moving the bits across a wire. For many companies, uprooting their file share data means pulling the plug on tried and true systems for disaster recovery, access provisioning, malware detection, identity management, encryption, auditing, change control, and more.
With millions of dollars invested in technology and infrastructure that make their enterprise run, many CIOs and CTOs have been searching for an alternate path to secure, efficient, Dropbox-style data access.
It’s not uncommon to have petabytes of file share data in multiple datacenters behind the firewall
When it comes to file sharing, many enterprise users still operate like this:
- Connect to the VPN
- Access mapped network drives (or FTP *shudder*)
- Do some work locally and their upload changes
Not terrible…for 1999. By today’s standards, this simply will not cut it.
This process is inefficient because:
- Employees can’t work without an Internet connection
- They can’t access the files on their iPhone, Android, or via the web
- They can’t securely share files with third parties
- It’s slow because the files aren’t storied locally
- It’s annoying because VPN software is…how do I put this lightly…cumbersome?
In the past, there hasn’t been an easy-to-implement solution for companies in this boat. IT had to tell users to sit tight. Now, there’s Varonis DatAnywhere.
DatAnywhere enables file sync and mobile access on your existing network file shares with the flip of a switch.
In fact, with DatAnywhere you can go from zero to cloud-enabling petabytes of data in about 30 minutes.
This is a really bold, too-good-to-be-true statement, so I’m going to take you through the questions we typically get when demoing DatAnywhere.
Do I have to move my data?
With DatAnywhere, you don’t have to move data. Your files can stay exactly where they are right now, on the existing SMB file servers or NAS. No changes necessary. You don’t have to modify or install anything on your file servers.
Your other applications and processes will keep chugging along. They won’t even realize DatAnywhere is there.
Some of our files are ultra-sensitive and confidential.
You can pick and choose which servers and folders are eligible for access via DatAnywhere. It’s easy to change your mind, too.
Oh, and by the way, we can use our IDU Classification Framework to help identify folders that should be kept internal-only. Coupled with DatAdvantage, you can audit every file access event for forensic investigations or detection of anomalous behavior, as well as run permissions reports for auditors.
What about platform support?
DatAnywhere has mobile clients for iOS and Android (with more on the way). There’s a desktop client for Windows and Mac OS X as well. And of course, you can always access files in a browser via DatAnywhere’s web interface.
What about permissions and access control? I have thousands of users.
DatAnywhere uses your existing Active Directory to authenticate and supports two-factor authentication. No separate user repository necessary. Also, DatAnywhere obeys existing NTFS and share permissions, so you don’t need to reconfigure any access controls.
Red flag! Many private cloud vendors will require that you relocate data within your datacenter to a dedicated server or appliance. Not only is migrating a pain, but you’ll probably have to decide all over again who should get access to which data, and rethink all the processes and supporting technologies—backup, data classification and tagging, entitlement reviews, e-discovery, and so on.
What if our existing permissions are not exactly…accurate?
Yikes! We should get that fixed up first. Luckily, there’s an app for that.
Do I have to create an Active Directory account for external people?
Nope. External users will access files through web links, which you can set to auto-expire or enable a one-time pin code for an extra layer of security.
So is DatAnywhere sort of a reverse proxy?
Yes, it is! Think of it like Outlook Web Access for your company’s internal Exchange, but for your file shares, and even more powerful.
In fact, this analogy is a good one. When people wanted to start checking their email on their mobile phones, did companies say, “Bring Your Own Email. Everyone sign-up for Hotmail!” No. Rather, they made their email servers talk to the outside world. That’s what we’re doing with DatAnywhere.
What about remote wipe?
Yup. DatAnywhere can remotely wipe data from mobile devices and laptops whenever necessary, and IT can decide which devices are allowed to connect via DatAnywhere in the first place.
What if we want to stop using DatAnywhere?
First, don’t do that! 😉
Second, just turn it off and everything keeps working as it always has. Since DatAnywhere is a transparent data routing layer atop your existing infrastructure, it doesn’t change anything and can be easily turned off.
Give DatAnywhere a try. You can download our free version instantly. It takes about 30 minutes to install, it’s fully featured, the first 5 users are free, and you can upgrade any time.