Software tips, techniques, and news.

By Michael Westendorf  Posted on  July 8th, 2015  in  Free Downloads, FileMaker

FileMaker Safety Checklist

FileMaker Security Checklist
The FileMaker platform does a great job providing native security features for your organization. While no organization can have too much security, the key is finding a comfort level that best fits your company. I always recommend organizations sit down and really think about one question: What would happen if your data were to be compromised? Once you know the answer you can begin to draft and implement a security policy that is right for your organization.

I offer up my own checklist as a way to guide your security discussions and a reference for protecting your data. Keep in mind most businesses do not implement everything on this list. It is meant as a quick reference to spur discussion and ensure your application is protected.

File Checklist

Enable Encryption At Rest, be sure to document password

Enable File Access Restrictions in Manage Security

Disable automatically opening the file with account credentials

Set the minimum required version in File Options

Use External Authentication when possible

Disable/Remove the default Admin account

Consider hiding your files from being shown when hosted

Enable disconnecting users from server when idle

Disable storing passwords in the Credential Manager

Consider requiring a minimum length password for all users

Consider requiring users to change their passwords

Server Checklist

Remove sample file from FileMaker Server

Disable unused technologies (XML, PHP, WebDirect)

Enable SSL on Server with a custom certificate

Enable HTTPS for Progressive Downloads (requires a custom cert)

Enable client timeout

Disable Installing Plug-ins on Server

Consider changing the default ports from 80 and 443 to non-standard ports

Restrict admin console access by IP Address

General Tips

Keep FileMaker up-to-date with the latest security patches

Block non full access accounts from using FileMaker Pro Advanced

Limit plugin usage with Get( InstalledFMPlugins )

Use guard clauses to ensure scripts run from correct platform

Send credentials via encrypted email using a service like Virtru.com


Watch on Youtube: FileMaker Security : Protect Your Data

Checkout our presentation on FileMaker Security with the FM Academy. Reach out to us when you are ready to implement your FileMaker Security Policy or to take your application to the next level.

Download
Download the FileMaker Security Checklist File
Please complete the form below to download your FREE FileMaker file.
FileMaker Experience *
Terms of Use *
OPT-IN: I agree that I am downloading a completely free FileMaker application file with no strings attached. This file is unlocked, and I may use it for my business or organization as I see fit. Because I am downloading a free file, I agree that I should receive occasional marketing. I understand that I can OPT-OUT of these emails at anytime.
Michael Westendorf thumbnail
Michael Westendorf

Michael is a FileMaker Certified Developer who joins DB Services with nearly a decade of experience as an Information Technology Manager in the printing industry. Originally from San Diego, he moved to Iowa during his teens and earned his Bachelor's Degree in Management Information Systems from Iowa State University.

FileMaker 18 Certified Developer
FileMaker 17 Certified Developer
FileMaker 16 Certified Developer
FileMaker 15 Certified Developer
FileMaker 14 Certified Developer
FileMaker 13 Certified Developer
FileMaker 12 Certified Developer
FileMaker 11 Certified Developer
"We were actually able to add more features than we thought would be possible within our budget. We always experienced a ‘can do’ attitude and DB Services was incredibly patient and easy to work with."
Courtney Hartman
Art Director
"The new FileMaker custom website interface is very user-friendly and easy to follow for our clients. In addition, it is much faster than the old Instant Web Publishing (IWP) interface. Thank you and all the others who have helped us out at DB Services. I am very grateful for the excellent service you provide us. Its nice to know we can call you for help if we have an issue."
Wayne Capek
President
"We needed a solution that would simplify the administration of our responsibilities under our contract with the State of Indiana. We have seen a dramatic increase across the state in the number of potential foster and adoptive parents that have begun the preparation and training process. This increase has resulted in a significant opportunity for children available for adoption. That’s a big win for everyone! And it’s all because we can refer potential parents to the proper state contacts efficiently and quickly."
Chris Morrison
Executive Director
"Thank you for all of your expertise and valuable help. I am so grateful to have found DB Services."
Linda Findlay
Owner
"Thank you for our new database system. We transitioned from a carbon copy paper based system to a digital database. The software has saved us time and money. We used to archive all our jobs in cabinets, now we can look up a job in seconds from anywhere. The software allows us to easily email estimates to our customers in pdf format. In a year there was a return on investment just from eliminating the purchasing of our carbon forms."
Todd Cartmel
Owner
"The new system allows us to create and track jobs for customers along with inventory, something we had been doing with separate word and spreadsheet files. Because it’s now so intuitive, new staff members are able to begin using the database immediately without our usual training session and ‘cheat sheets’ for getting around within the file."
Tom Andrews
President