We've added a new logic that verifies that the client process that's querying iManage Drive for Mac is owned by the same user or port forwarding service by adding an admin setting in enable_local_rest_service_port_ownership_verification in admin_setting.yaml file. When this setting is set to true, iManage Drive for Mac verifies that any local REST API calls to the iManage Drive for Mac are from a process that's owned by the same user or from a drive port forwarding service, if it is enabled. If there are any issues with this verification, then this setting can be used to disable the check. This setting is set to true, by default.

There's the additional enable_root_access_to_local_rest_service_port admin setting, which when set to true, specifies whether the root user is allowed to call the drive local rest api. Although enabled by default, administrators can disable this setting so that any root owned process isn’t allowed to call the drive local rest api on iManage Drive for Mac.