In order to give you control and flexibility when setting up security, Laserfiche has several different types of permissions that you can configure. Two of those sets of permissions—feature rights and access rights—interact closely, and so understanding what each type of permission does, and how they interact, is very important to setting up and maintaining your repository’s security policy.
Full story »

In Laserfiche, privileges are a set of permissions that secure elements of your repository beyond the basic functions of feature rights or the object-specific functions of access rights. While some of these privileges may be appropriate for regular users, many are specifically administrative. For example, the Manage Entry Access privilege allows a user to see (although not open) every entry in the repository and set access right security for those entries, and the Manage Tags privilege allows the user to set, unset and grant all the tags in the repository. Because these rights are powerful, if your repository uses security to restrict access to the repository, it’s a good idea to only grant those privileges to trusted administrative users. Full story »

Entry Access rights allow you to control which users can see which documents, folders and shortcuts in your repository. They determine not only what documents users can see, but also when they can modify documents, add or change metadata, add new pages, add new documents to folders, move documents to different folders, or delete content, among other actions. Full story »

Nara Bank, a wholly owned subsidiary of Nara Bancorp, Inc. (Nasdaq: NARA), was founded in 1989 to serve the Korean-American business community in Southern California. Since its inception, the bank has grown to encompass 20 branches across three states, 350 employees and assets of more than $2 billion.

As a large community bank and federally-insured financial institution, Nara gets audited “all the time,” says IT Manager Mona Chui. “Keeping information secure and confidential is a top priority for us.”
Full story »

In Laserfiche 8, Windows Accounts offer an easy and powerful way to grant access to users and to administer your repository’s authentication. Using Windows Accounts, you don’t have to add every user to the repository individually: instead, you can add their Windows Accounts groups and allow the individual users to inherit access to the repository from their group membership. Full story »

Best practices in Laserfiche security are to apply security settings to groups rather than individual users, and to use scope and inheritance to set security on entries. These processes make administration simpler and faster than working with each user or entry separately. Effective rights are the cumulative security settings that determine what a particular user can do or see, based on all their group memberships and the security settings in the repository. Viewing the effective rights can be useful for managing security and for troubleshooting—for example, if a user cannot scan into a folder and you suspect rights to be the issue. Full story »

In a year marked with more bank failures than we’ve seen since the height of the savings-and-loan crisis, D.L. Evans Bank, a family-owned institution with 22 branches, 320 employees and $875 million in managed assets, has cause to celebrate. Its ten-year use of Laserfiche has netted the 105-year-old, Idaho-based bank a wealth of dividends, including:

• Faster audits.
• Streamlined lending.
• Improved business continuity planning.
• More efficient processes for opening new accounts.
• A 33% reduction in hard copy document production and an 85% reduction in paper storage.

Full story »

Bingo. Poker. Underwear with retention schedules. And of course, Laserfiche RME and Workflow. If it sounds like a fun way to learn about Laserfiche and share best practices, it was. For the almost 100 Laserfiche users and staff who attended the inaugural Virginia Statewide User Group Seminar December 1, the day-long experience was nothing short of amazing.

“Everyone contributed, everyone rose to their assignments and when someone asked the rest of the group for feedback, they got it and the end product ended up being even better,” says Laserfiche Luminary Rosalind Collins, Deputy Commissioner of the Revenue for Charlottesville, VA, who helped organize the event. “I’ve never been in a group that had all those ingredients plus excellent communication, a singular focus of outcome and FUN all together!” Full story »

Giving underprivileged children a head start in life is more difficult now than ever before. Broken homes, urban violence, poorly-funded school districts, inadequate access to health care and constant increases in the cost of living are making life more and more challenging for these kids every day. That’s why, for the disadvantaged youngsters in Los Angeles County, the Head Start-State Preschool program is so vital to their well-being and future success.

Created in 1965, Head Start is the most successful national school readiness program in the United States. It provides comprehensive education, health, nutrition and parent involvement services to low-income children and their families. All told, nearly 25 million preschool-aged children have benefited from the program nationwide.
Full story »

Even with a well-thought-out security policy, it can be difficult to remember exactly what rights a user or group has to a particular entry in Laserfiche–especially when you take inheritance and group membership into account. Laserfiche provides a tool for quickly viewing the effective rights that a particular trustee has to a folder or document, which you can use to verify that the correct rights have been set, to check whether a user has access to something, or to troubleshoot security problems.

To view a user’s effective rights, select the document or folder you want to check, right-click and select “Access Rights.” Go to the “Effective Rights” tab. By default, the dialog will display the effective rights for the trustee you are logged in as; to view the rights for another trustee, click “Choose” and then pick the trustee from the list. If a right has a check in the “Granted” box, the user has that right; if it is cleared, they do not have that right.

This dialog takes into account all entry access rights that affect this trustee and this folder. That means that entry access rights inherited from group membership will be reflected here, as will entry access rights inherited from farther up the folder tree. Note, however, that it does not take into account other types of rights. For example, if a user has the “Bypass Browse” privilege, they will be able to browse the contents of a folder even if they do not have the “Browse” right displayed; if a user does not have the “Delete” feature right, they will not be able to delete documents even if they have the “Delete Entry” access right.

• Important: You must have the “Read Entry Security” entry access right to view this dialog.

We’ve all seen them: the young man suffering from his first bout of bipolar mania—paranoid, delusional and unable to sleep; the 40-year-old veteran, injured in Iraq, addicted to painkillers and living on the streets; the single mother with schizophrenia—abused, uneducated and unconvinced that antipsychotic drugs will ease her pain.

For the people who struggle with these issues in southeast Texas, Spindletop Mental Health Mental Retardation (MHMR) Services has the resources to support their recovery and relieve their distress. But with over 8,000 patients every year and upwards of 400 employees, Spindletop’s ability to respond promptly to records requests—and, by extension, to patients—was being compromised.
Full story »