I don't want to allow users once they create files in to PDM they cant take it back to local drive by just copy & paste any tool is there to restrict this action.
As far as I know you cannot. You can only log some event using API. There is event named EdmCmd_PreCopy.
You have access to Source and Destination path so you can check if user copy file outside the vault however user can copy file using command prompt or file managers like Total Commander and this event will not be triggered.
Out of interest, why would you want to prevent this? There are numerous cases where this can be useful, for instance using an existing model as the starting point for a new one.
in order for files to open, they need to be cached. to be cached means exist in their local drive. By local drive do you mean to a location outside the vault view like the desktop? If so, there is no way to control this when you are giving permission to see the file. if you are worried about references outside the vault, restrict with group/user warning settings set to STOP for check-in if reference is "Outside SOLIDWORKS PDM". this way you can enforce that all references exist within the vault.
I hope this helps!
Francisco Guzman | CSWS-DMA
Thank you for your response
Actually this is a requirement as many of customers currently working at home from their workstation or pc so its a matter of data security of companies, if using PDM, users can allow to copy & paste data out of PDM then there isn't any security of data we can only have traceability of user login, Check in Check out details so for this kind of scenario it is required that users not allow to copy data out of PDM vault, anyway if there isn't feature available in PDM so how we can restrict users to do so, can we make some API or extra Program which is not allow to copy data out of PDM I am just asking if any body have tried something.
JAYMIN J. C | CSWE-DMA
To enforce compliance, you may be looking for "audit logs" from an IT security tool that logs copying as opposed to a PDM feature. I have never used one, we don't sell them, but a customer of mine made me aware such a tool exists. I recommend doing some research on that.
You might look at Curtain e-locker by Coworkshop. I saw this 8-10 years ago and looked interesting.
Coworkshop Solutions Limited – Curtain e-locker
Here is demo of the product.
If company don't want data outside, set user up to something like Remote Desktop or virtual machine.
So use only see what they're doing. None of the files are ever outside the network.
I don't think I would want to run SOLIDWORKS by Remote Desktop. I have done testing on VDI and that is acceptable, but expensive for companies that have recently purchased expensive desktop computer to run and now have to purchase VDI hardware.
There are other options to Remote Desktop. The company I was contracting for, before the contact was terminated a couple of weeks ago, used Beyond Trust' Privileged Remote Access. This allows secure access to remote computers without having to VPN into the network. Again, you would want to have dual monitors at home if you want to be productive running SOLIDWORKS.
I think you're kind of into Cloud-based territory at this point.
I've seen a variation of this question.. how do I prevent users from copying files from the PDM vault into emails and sending them out?
The reality is that: yes, it can be done. It is not a function of PDM though. I haven't seen any CAD file management system with this feature and most other acronym named systems don't have this feature either.
This can be easily controlled by Windows system/file/folder permissions, usually deployed through Active Directory. There may be third-party tools that do this as well but I can't name any off the top of my head.
I've heard of government contractors being allowed to take machines home during this pandemic that are normally sequestered in high-security environments. These machines have access cards, unable to access internet, and went through some kind of scrub process before leaving the facility and will go through it again upon re-entry. IT professionals may also be able to give you advice as well.
The reality is, access to sensitive data always requires some kind of trust. Anyone who wants to share will find a way around any system. I would balance restriction efforts against the trust level. When it gets to this level, it may be easier to require your employees to sign liability waivers.
The most difficult part of a PDM admin's job is the users in the system. There isn't a good way to truly stop them from copying files outside PDM. Soooo......
Over the last 14 years managing SW PDM, I've enabled this warning to STOP the users from being able to check in files if they are referenced outside PDM. This by nature, forces them to fix the "Outside SOLIDWORKS PDM" reference before they can check the file in, then you can apply pressure in meetings to highlight the activity. Your company pays lots of money for PDM, the users need to use it for its intended purpose. Of course, with remote working, self-quarantining, working from home, etc. the users may have to go outside the vault but that is another scenario.
Hope this helps,
Believe in The Q!
I am going to try this. Thank you for the information.
That's excellent! Post back and let us know how it goes.
This blog is really old but still pertinent... 10 ways to make sure your data doesn't walk out the door: UPDATED - TechRepublic
Retrieving data ...