{"id":20422,"date":"2024-02-16T16:01:28","date_gmt":"2024-02-16T15:01:28","guid":{"rendered":"https:\/\/help.openbee.com\/open-bee-portal\/administrators-guide\/secure-storage-area\/"},"modified":"2024-02-16T16:01:28","modified_gmt":"2024-02-16T15:01:28","slug":"secure-storage-area","status":"publish","type":"page","link":"https:\/\/help.openbee.com\/en\/open-bee-portal\/administrators-guide\/secure-storage-area\/","title":{"rendered":"Secure Storage Area"},"content":{"rendered":"<div id=\"main-content\" class=\"wiki-content group\">\n<p>The folder permissions system in Open Bee\u2122 Portal&nbsp;is designed to allow members of the &#8220;Administrators&#8221; group to view all folders and documents.<\/p>\n<p>This behavior is sometimes problematic, for example in the case of archiving sensitive documents that an administrator should not view.<\/p>\n<p>The Secure Storage&nbsp;Space has been designed to address this issue.&nbsp;A&nbsp; &#8220;Secure Storage Area&#8221; is a folder that is no longer accessible by the &#8220;Administrators&#8221;&nbsp; group. &nbsp;It is also the main component for the use of the Open Bee\u2122 Portal&nbsp;<a href=\"251003327.html\">within the framework of the NFZ42-020 standard<\/a>.<\/p>\n<style type=\"text\/css\"><![CDATA[\/*<![CDATA[*\/ div.rbtoc1648215957939 {padding: 0px;} div.rbtoc1648215957939 ul {list-style: disc;margin-left: 0px;} div.rbtoc1648215957939 li {margin-left: 0px;padding-left: 0px;} \/*]]]]><![CDATA[>*\/]]><\/style>\n<div class=\"toc-macro rbtoc1648215957939\">\n<ul class=\"toc-indentation\">\n<li><a href=\"#EspaceS%C3%A9curis%C3%A9deConservation-Cr%C3%A9eruntrue\">Create a&nbsp;Secure Storage Space<\/a><\/li>\n<li><a href=\"#EspaceS%C3%A9curis%C3%A9deConservation-V%C3%A9rifierl'int%C3%A9grit%C3%A9d'untrue\">Verify the integrity of a&nbsp;Secure Storage Area<\/a><\/li>\n<li><a href=\"#EspaceS%C3%A9curis%C3%A9deConservation-Consulterlesjournauxd'untrue\">View logs from a&nbsp;Secure Storage Area<\/a><\/li>\n<\/ul>\n<\/div>\n<h1 id=\"EspaceS\u00e9curis\u00e9deConservation-Cr\u00e9eruntrue\">Create a&nbsp;Secure Storage Space<\/h1>\n<p><u>Prerequisites<\/u>&nbsp;:<\/p>\n<ul>\n<li>A user account with the &#8220;Administrator&#8221; role<\/li>\n<li>A user who will become the manager of the Secure Storage Area<\/li>\n<li>The Open Bee\u2122 Portal&nbsp;license&nbsp;includes the &#8220;Secure Storage Area&#8221; option<\/li>\n<\/ul>\n<p>A&nbsp;Secure Storage Space requires that only a user defined as the manager of the Secure Storage&nbsp;Area (and any guest(s)) can access its content. This behavior is&nbsp;provided&nbsp;by the notion of Secure Storage&nbsp;Space in the Open Bee\u2122 Portal.<\/p>\n<p>Log in with an &#8220;<strong>Administrator<\/strong>&#8221; account.<\/p>\n<ol>\n<li>From the &#8220;<strong>Secure Storage&nbsp; Area Administration<\/strong>&#8221; section, click on &nbsp;&#8220;<strong>Add a Secure Storage Area<\/strong>&#8220;.<\/li>\n<li>Select the manager of the &#8220;Secure <strong>Storage<\/strong> Area&#8221; (the owner of the <strong>Secure Storage Area<\/strong>)<\/li>\n<li>Choose the folder that will be transformed into a &#8220;<strong>Secure Storage Area<\/strong>&#8220;. It is possible to create this folder at this step if it does not already exist.<br \/>\nIn the screen below, we have chosen an &#8220;HR&#8221; folder at the root of the tree.<\/li>\n<li>Set the permissions that the manager will have on the <strong>Secure Storage<\/strong> folder&nbsp;.<\/li>\n<\/ol>\n<p><img decoding=\"async\" class=\"confluence-embedded-image\" src=\"https:\/\/help.openbee.com\/wp-content\/uploads\/2026\/03\/273356350-translated.jpg\" data-image-src=\"https:\/\/help.openbee.com\/wp-content\/uploads\/2026\/03\/273356350-translated.jpg\"><\/p>\n<p><strong>Once this operation has been carried out, the manager of the <strong><br \/>\n  <strong>Secure Storage&nbsp;Area becomes the one and only user who can access the file.&nbsp;<\/strong><br \/>\n<\/strong><\/strong><\/p>\n<div class=\"aui-message warning shadowed information-macro\">\n<div class=\"message-content\">\n<p>Once a &#8220;<strong>Secure Storage Area<\/strong>&#8221; created, it cannot be modified or deleted by an &#8220;administrator&#8221;. This limitation, which may appear to be a functional failure, is in fact the absolute guarantee that administrators of the solution will not be able to consult the content of the &#8220;<strong>Secure Storage Area<\/strong>&#8220;.<\/p>\n<p>The manager&#8217;s permissions can therefore only be changed by the manager himself, provided that he has the necessary permissions to do so.<\/p>\n<p>If you don&#8217;t grant it the necessary permissions when creating the <strong>Secure Storage Space<\/strong>, make sure that this configuration will not be a problem because it is <strong>irreversible<\/strong>.<\/p>\n<\/div>\n<\/div>\n<p>The creation of the Secure Storage&nbsp;Space also has the effect of automatically activating:<\/p>\n<ul style=\"list-style-type: square;\">\n<li>Encryption of documents stored in the <strong>Secure Storage Area<\/strong>, even if this option is not enabled in the general configuration of Open Bee\u2122 Portal<\/li>\n<li>A second factor of authentication by email when authenticating the manager of the <strong>Secure Storage Area<\/strong><\/li>\n<li>Prevent administrators from changing the password of the managing user.<\/li>\n<\/ul>\n<h1 id=\"EspaceS\u00e9curis\u00e9deConservation-V\u00e9rifierl'int\u00e9grit\u00e9d'untrue\">Verify the integrity of a&nbsp;Secure Storage Area<\/h1>\n<p>Although an administrator&nbsp;cannot view the documents, they have the ability to verify the integrity of the documents stored in a <strong>Secure Storage Area<\/strong>.<\/p>\n<p>This function can be accessed via the context menu associated with each <strong>Secure Storage Area<\/strong>in the &#8220;<strong>Administration &nbsp;Secure Storage<\/strong>&nbsp; Areas&#8221; section&nbsp;.<\/p>\n<p>The operation carried out is identical to that which a manager of the <strong>Secure Storage<\/strong>&nbsp;Space can perform. <a class=\"createlink\" href=\"\/pages\/createpage.action?spaceKey=OBPDOC&amp;title=Int%C3%A9grit%C3%A9+et+gestion+group%C3%A9e+d%27objets+num%C3%A9riques&amp;linkCreation=true&amp;fromPageId=251920826\">In particular, for the result of the operation, which will be displayed in the notifications<\/a>.<\/p>\n<p><img decoding=\"async\" class=\"confluence-embedded-image\" src=\"https:\/\/help.openbee.com\/wp-content\/uploads\/2026\/03\/273356351-translated.jpg\" data-image-src=\"https:\/\/help.openbee.com\/wp-content\/uploads\/2026\/03\/273356351-translated.jpg\"><\/p>\n<h1 id=\"EspaceS\u00e9curis\u00e9deConservation-Consulterlesjournauxd'untrue\">View logs from a&nbsp;Secure Storage Area<\/h1>\n<p>An administrator can view the logs of operations performed in a&nbsp;<strong>Secure Storage Area<\/strong>.<\/p>\n<p>This function can be accessed through the context menu associated with each&nbsp;<strong>Secure Storage<\/strong>&nbsp; Areain the &#8220;<strong>Administration &nbsp;of Secure Storage Areas<\/strong>&#8221; section&nbsp;.<\/p>\n<p><strong><img decoding=\"async\" class=\"confluence-embedded-image\" src=\"https:\/\/help.openbee.com\/wp-content\/uploads\/2026\/03\/273356353-translated.jpg\" data-image-src=\"https:\/\/help.openbee.com\/wp-content\/uploads\/2026\/03\/273356353-translated.jpg\"><\/strong><\/p>\n<p>The same result can be achieved by navigating to the &#8220;<strong>Administration &nbsp;Logs<\/strong>&#8221; section&nbsp; and selecting a&nbsp;<strong>Secure Storage<\/strong>&nbsp; Areain the filter at the top of the table.<\/p>\n<p><img decoding=\"async\" class=\"confluence-embedded-image\" src=\"https:\/\/help.openbee.com\/wp-content\/uploads\/2026\/03\/273356352-translated.jpg\" data-image-src=\"https:\/\/help.openbee.com\/wp-content\/uploads\/2026\/03\/273356352-translated.jpg\"><\/p>\n<p><strong>&nbsp;<\/strong><\/p>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>The folder permissions system in Open Bee\u2122 Portal&nbsp;is designed to allow members of the &#8220;Administrators&#8221; group to view all folders and documents. This behavior is sometimes problematic, for example in the case of archiving sensitive documents that an administrator should not view. The Secure Storage&nbsp;Space has been designed to address this issue.&nbsp;A&nbsp; &#8220;Secure Storage Area&#8221; [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"parent":20157,"menu_order":20,"comment_status":"closed","ping_status":"closed","template":"templates\/ob-help-products.php","meta":{"footnotes":""},"class_list":["post-20422","page","type-page","status-publish","hentry"],"_links":{"self":[{"href":"https:\/\/help.openbee.com\/en\/wp-json\/wp\/v2\/pages\/20422","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/help.openbee.com\/en\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/help.openbee.com\/en\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/help.openbee.com\/en\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/help.openbee.com\/en\/wp-json\/wp\/v2\/comments?post=20422"}],"version-history":[{"count":0,"href":"https:\/\/help.openbee.com\/en\/wp-json\/wp\/v2\/pages\/20422\/revisions"}],"up":[{"embeddable":true,"href":"https:\/\/help.openbee.com\/en\/wp-json\/wp\/v2\/pages\/20157"}],"wp:attachment":[{"href":"https:\/\/help.openbee.com\/en\/wp-json\/wp\/v2\/media?parent=20422"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}