Sage 100

 View Only

  • 1.  Bit Locker on Sage 100 Application Server

    Posted 04-29-2021 14:28
    My common sense response is "no" this will not work.  But I thought I would check with you all.  @Venessa Griffin has a client that is wanting to turn on "Bit Locker" on their Application Server.  Our Client has a new customer that is requiring all data resting on their Sage 100 Application Server be encrypted.  Does anyone have any experience with this?  I can't find anything in SPM, on Sage City, nor the Knowledgebase.

    ------------------------------
    Madeline Stefanou
    RKL eSolutions, LLC
    ------------------------------


  • 2.  RE: Bit Locker on Sage 100 Application Server

    Posted 04-29-2021 15:36
    I'll give you my 1 cent opinion / gut feel about all Full-disk Encryption (FDE) products like BitLocker or 3rd party ones. Since the encryption is at the hardware level and can be applied to an entire hard drive volume, it would be theoretically compatible with Sage. However, it's drawback would be performance during WRITEs, especially if it's a RAID-5 array where there are least 3 drives to write to and every drive is BitLocker encrypted. This could be mitigated with faster SSD drives, which is probably why you see BitLocker used more on laptops for organizations that store sensitive data on laptops. Easier to steal a hard drive out of a laptop than a server, especially in a data center.

    Guessing it will behave like DEP (Data Execution Prevention). You'll definitely have to put many disclaimers about Sage performance and compatibility, and to mitigate performance loss, recommend SSD drives and RAID-10 or RAID-1 arrays if all drives are BitLocker encrypted. I would mention possibility of lock-ups, data corruption, and Sage not explicitly deeming it supportable on the SPM.  

    ** Having said all that, it would be good if any IT people in the group weighed in. Nothing like real life experience. Hopefully they'll refute everything I mentioned.

    ------------------------------
    Alnoor Cassim

    Email: alnoor@asifocus.com
    Ph: 949-689-9887
    Orange County, CA
    ------------------------------



  • 3.  RE: Bit Locker on Sage 100 Application Server

    Posted 04-29-2021 16:16
    I understand this is a customer rrequirement.
    Would SQL not be a good "plan b"?

    I believe once you touch this Bit-Locker you're going to own the Sage 100 install no matter what the customer says or signs off on.

    ------------------------------
    Wayne Schulz - Schulz Consulting - 860-516-8990
    ------------------------------



  • 4.  RE: Bit Locker on Sage 100 Application Server

    Posted 04-29-2021 16:27
    I'd never go straight to a Live implementation for anything like this without testing absolutely everything in a parallel system first.

    ------------------------------
    Kevin Moyes
    Technical Systems Analyst
    Munjal White Consulting Co.
    Toronto ON
    ------------------------------

    Original Message


  • 5.  RE: Bit Locker on Sage 100 Application Server

    Posted 04-29-2021 16:58
    The big risk is not knowing what this type of system will look like under a full group of users and postings/updates, etc. It's very tough to simulate the daily login and usage. I feel like even my customers who are diligent at testing usually get less than 1/2 of their people to test these types of things.

    ------------------------------
    Wayne Schulz - Schulz Consulting - 860-516-8990
    ------------------------------

    Original Message


  • 6.  RE: Bit Locker on Sage 100 Application Server

    Posted 04-29-2021 17:08
    A customer that requires bit locker would probably require SQL TDE transparent data encryption.  I believe Sage will cooperate but the encryption certificate needs to be dropped from the SQL instance to get Sage 100 to migrate data. Subsequent to the migration you need to generate a new certificate.

    ------------------------------
    Doug Higgs
    Midwest Commerce Solutions, Inc
    (312) 315-0960
    Assistant to the Traveling Secretary
    ------------------------------

    Original Message


  • 7.  RE: Bit Locker on Sage 100 Application Server

    Posted 04-29-2021 17:23
    With Premium, SQL running on another machine (encrypted), and peripheral files (Paperless...) on a network drive (encrypted), all the encryption load could be passed off to other servers, leaving the Sage server with no real "data"... just the programs / settings.

    ------------------------------
    Kevin Moyes
    Technical Systems Analyst
    Munjal White Consulting Co.
    Toronto ON
    ------------------------------

    Original Message


  • 8.  RE: Bit Locker on Sage 100 Application Server

    Posted 05-03-2021 13:08
    Thank you all for the notes and detail suggestions.  It is much appreciated.

    ------------------------------
    Madeline Stefanou
    RKL eSolutions, LLC
    ------------------------------



Related Content