You can now determine which applications can access and open files in iManage Drive. This feature lets you to allow or deny certain applications from accessing content in iManage Drive. You can also take a more conservative approach if required and only grant select applications the rights to access iManage Drive content by using the following configuration setting: 

  • hydration_allow_list_enabled: administrators must set this configuration setting to true if they want only the applications defined in the hydration_allow_list configuration setting to open files from iManage Drive directory.

  • hydration_allow_list: allows administrators to specify the list of applications that can open documents from the iManage Drive working directory. If an application isn't specified in this configuration setting, when the hydration_allow_list is enabled, then the application can't open the documents from the iManage Drive directory. 

    NOTE:

    The explorer.exe process is responsible for copying files using Microsoft Windows Explorer. We recommend that you add explorer.exe to the hydration_allow_list configuration setting to make sure that no errors are displayed when copying files from Microsoft Windows Explorer. 


    Example: 

    hydration_allow_list:
    - winword.exe
    - excel.exe
    - acrord32.exe
    - powerpnt.exe
    - explorer.exe

  • hydration_deny_list: specify the list of applications that you do not want open or access documents from iManage Drive directory at any given point of time. 
    Example: 

    hydration_deny_list:
    - cmd.exe
    - explorer.exe

    The following programs are denied access to files in iManage Drive, by default and iManage recommends that these settings should not be modified. 

    - imanagedrive.exe
    - imanagedriveconsole.exe
    - msmpeng.exe

    If users attempt to open a document from iManage Drive using an application listed in hydration_deny_list, then an error message is displayed indicating that the application can't open the document.

    For example, if Microsoft Word is added to the deny list as follows, hydration_deny_list: winword.exe, then when users open any document using Microsoft Word, they get the following error. 

    Figure: Error displayed when Microsoft Word is in deny list

  • system_hydration_deny_list: In some circumstances, the Microsoft Malware Protection Engine executable (msmpeng.exe) ‌doesn't allow you to open documents from iManage Drive although the executable is added to the deny list. To troubleshoot this issue, remove msmpenge.exe from the system_hydration_deny_list admin setting available in the admin_settings.yaml file as shown below. 

    Example:

    system_hydration_deny_list:
    - imanagedrive.exe
    - searchprotocolhost.exe
    - ccmexe.exe