How to Ensure Users are Unable to Download Data from an Instance on to Personal Devices
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
a week ago
Good Morning Everyone, I am trying to implement a specific solution at my organization. We are trying to ensure that users are unable to download data from ServiceNow instances on to their personal devices. How would I go about implementing this? This is my current thought process so far:
1. Create IP address restrictions to company-managed devices for data exporting (I would still need to determine how exactly to get this list of valid IP ranges)
2. Limit the file types that are able to exported/downloaded (still would allow exporting, but only of certain file types)
I am curious if anyone else has implemented this type of solution before in their environment. Any help would be greatly appreciated.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
a week ago
Good Afternoon @Vijaya_Mnpram , Thank you for the response. That solution would appear to work if we were looking to completely remove the option to export data. However, our use case is to allow exporting of data on company machines and prevent exporting on personal mobile phones.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
a week ago
A. Virtual Desktop Infrastructure (VDI)
- Disable Local Mapping: Disable client drive mapping (CDM) in the VDI settings to prevent users from mapping local drives to the virtual instance.
- Disable Clipboard/Copy-Paste: Disable clipboard redirection to prevent users from copying text from the application to their personal device
- Disable Attachment transfer using MS teams using selecting external id
B. Browser-Only Access & Session Control
- Enable internal Data Loss Prevention (DLP) to scan files for sensitive data and block downloads automatically.
