Users are rapidly introducing consumer file-sharing tools such as Dropbox into the enterprise. To the user, these are useful tools that enable files to be synchronised across devices and shared with partners and customers. But they can create compliance and data security problems for the organisation. What is the best way to address these organisational requirements while meeting end user needs? Learn why Citrix ShareFile is good for end users and good for IT.
4. “This [Dropbox security issue] should never have
happened. We are scrutinizing our controls…to
prevent this from happening again.”
- Arash Ferdowsi – CTO of Dropbox, June 20, 2011
Following a security lapse with the Dropbox service
7. ShareFile Authentication Options
• Built-in Authentication
○ Uses combination of email address and password
• SAML 2.0
○ Broad Identity Provider Support, including ADFS
• Citrix CloudGateway
○ Offers user provisioning functionality
○ Receiver integration
8. Enterprise Active Directory Options
SAML 2.0 Support
• Requires SAML provider, such as: • Unified storefront for apps & data
○ Microsoft ADFS • Instant user provisioning, de-provisioning
○ PingIdentity PingFederate • Fully integrated with Receiver
○ OneLogin
○ CA SiteMinder
○ SalesForce
9. Hidden
SAML Client Client requests ShareFile SSO login URL
How it works Client discovers identity provider
Client redirected to identify provider
Client requests identity provider URL
Identity Provider identifies the user
User is authenticated and is redirected to
Assertion Consumer Service URL with SAML
response
User has access User agent requests ACS URL
ACS validates SAML response and redirects
user agent to ShareFile URL
User agent requests ShareFile URL
Service Provider Identity Provider
(sharefile.com) (e.g. CloudGateway,
ADFS)
10. ShareFile User Management Tool
• For use with SAML-based AD integration
• Bulk create ShareFile users and groups
• Mirrors AD based users / groups
• Ability to select user’s default StorageZone
11. ShareFile User Management Tool
• For use with SAML-based AD integration
• Bulk create ShareFile users and groups
• Mirrors AD based users / groups
• Ability to select user’s default StorageZone
13. ShareFile with StorageZones
Compliance Performance
Ensures compliance with Placing files closer to users
national or industry regulations enhances performance
14. ShareFile Cloud Architecture
*.sharefile.com *.sharefile.eu
Control Plane
• Web application
• Brokering
• Reporting
DB • Access Control
Client
Storage Center (EC2) Storage Plane
• Storage Centers
• Backend Storage
• Locations WW
S3
15. ShareFile StorageZone Architecture
*.sharefile.com *.sharefile.eu
Control Plane
• Web application
• Brokering
• Reporting
DB • Access Control
Client
StorageZone
Storage Center (Windows IIS)
• In customer Datacenter(s)
• Hybrid option with cloud
Storage Center (EC2)
NAS NAS
S3
Citrix Confidential - Do Not Distribute Customer Datacenter
17. Benefits of Software-as-Service
Always
Lower Costs
up-to-date
No need to buy servers or storage Citrix keeps the ShareFile
Citrix bears costs of managing the application up-to-date with the
service latest features.
18. ShareFile StorageZones Connect
*.sharefile.com *.sharefile.eu
Control Plane
• Web application
• Brokering
• Reporting
DB • Access Control
Client
StorageZone
Storage Center (Windows IIS)
• Provide mobile access to
files in existing CIFS shares
CIFS
NAS
Share
Citrix Confidential - Do Not Distribute Customer Datacenter
19. ShareFile StorageZones Connect
ShareFile Personal Folder
ShareFile Team Folder
ShareFile Team Folder
Existing Network Share
19
20. Pricing
ShareFile Enterprise Product SRP per user, per year
including support
ShareFile Enterprise with 0 GB storage* $83
ShareFile Enterprise with 1 GB storage $100
ShareFile Enterprise with 20 GB storage $198
*For fully “customer-managed” StorageZones scenarios
Enterprise, Education, and Government licensing discount programs available
Citrix
Confiden-al
-‐
Do
Not
Distribute
29. ShareFile App for iPad
Key Features for IT
Poison Pill interval
Enhanced Security policies
Logging/Audit offline access
AD/SAML authentication
Key Features for Users
Refreshed user interface
Enhanced offline folder support
Support for shared devices
Citrix
Confiden-al
–
Subject
to
NDA
30. Broad Device, Workflow, and Protocol Support
Desktop Apps Alternative Protocol / Automation
Outlook Desktop
Plug-in Widget
Command
Desktop Enterprise Drive
Line
Sync Sync Mapping
Interface
Mobile Apps
Mobile Windows 7 Android
Site iPhone Android BlackBerry Phone iPad Tablet