| Author |
Message |
achan_cc
Joined: 19 Sep 2016
Posts: 23
|
 Posted: Mon Apr 16, 2018 7:11 pm Post subject: Encrypted file transfer over SMB 3.0 |
 |
|
Hello,
Was wondering if it's possible to encrypt the files being transferred? e.g. using SMB 3 encryption?
thanks,
Alice |
|
| Back to top |
|
 |
TGRMN Software
Site Admin
Joined: 10 Jan 2005
Posts: 8763
|
|
| Back to top |
|
|
achan_cc
Joined: 19 Sep 2016
Posts: 23
|
| Posted: Tue Apr 17, 2018 3:20 pm Post subject: |
|
|
Thank you for the link! 
Please bear with me, as I am not very knowledgeable about encryption or SMB.
Please correct me if my understanding is wrong ...
- VVEngine syncs files via a file share
- file share transfers, by default, are done via the SMB protocol
- Windows 8 and above support SMB 3 protocol, which has the ability to encrypt data
- if we enable this encryption feature on the source server, then when VVEngine syncs a file, that file will be encrypted during transfer
Can you think of anything we would need to be aware of before implementing this? Any changes required in the ViceVersa configuration/profile? Or are there other options available through VVEngine to provide encryption during file transfer?
Thanks!
AC |
|
| Back to top |
|
|
TGRMN Software
Site Admin
Joined: 10 Jan 2005
Posts: 8763
|
| Posted: Wed Apr 18, 2018 12:27 am Post subject: |
|
|
There are now several different versions (or dialects) of the SMB protocol that were introduced with different versions of Windows:
SMB 1 - Windows 2000
SMB 2 - Windows Server 2008 and WIndows Vista SP1
SMB 2.1 - Windows Server 2008 R2 and Windows 7
SMB 3.0 - Windows Server 2012 and Windows 8
The version of SMB used between two computers will be the highest dialect supported by both.
This means if a Windows 8 machine is talking to a Windows 8 or Windows Server 2012 machine, it will use SMB 3.0. If a Windows 8 machine is talking to Windows Server 2008 R2, then the highest common level is SMB 2.1.
To check which dialect version is being used, run the the PowerShell command:
Get-SmbConnection
which will show the SMB connections and the dialect that is being used.
| Code: |
PS C:\Windows\system32> Get-SmbConnection
ServerName ShareName UserName Credential Dialect NumOpens
---------- --------- -------- ---------- ------- --------
ser08r2 c$ SAVILLTEC... SAVILLTEC... 2.10 1
ser01 c$ SAVILLTEC... SAVILLTEC... 3.00 1
ser01101 soft SAVILLTEC... SAVILLTEC... 3.00 1
|
To check if encryption is enabled or not you can use this:
| Code: | PS C:\Users\Administrator> Get-SmbConnection | Select-Object -Property *
ContinuouslyAvailable : False
Credential : domain\administrator
Dialect : 3.00
Encrypted : False
NumOpens : 3
ServerName : server1
ShareName : test
UserName : SERVER1\Administrator
PSComputerName :
CimClass : ROOT/Microsoft/Windows/SMB:MSFT_SmbConnection
CimInstanceProperties : {ContinuouslyAvailable, Credential, Dialect, Encrypted...}
CimSystemProperties : Microsoft.Management.Infrastructure.CimSystemProperties |
Once you know a connection to a share in SMB3 and encrypted you know ALL traffic will be encrypted between the two computers via that share, including ViceVersa and VVEngine. There is nothing special needed to be enabled in ViceVersa + VVEngine.
_________________
--
TGRMN Software Support
http://www.tgrmn.com
http://www.compareandmerge.com |
|
| Back to top |
|
|
|
|
You can post new topics in this forum
You can reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
Powered by phpBB © phpBB Group
|
ViceVersa HOME 
Forum FAQ
Search Forum
Register
Profile
Log in
