Summary

By default, a fresh and newly created repository (version 7) contains few security measures.

More Information

Be aware of the following default security settings before configuring Laserfiche security to suit your needs. The default Laserfiche security settings on a newly created repository are as follows:

• The ADMIN user is granted all privileges and feature rights. The Admin user does not have a password.

  Important: When the ADMIN user has no password, no authentication is performed on users logging on to the repository. Users automatically log on to the repository as the ADMIN user. Assign a password to the Admin user to enable authentication.

• The EVERYONE group has no privileges or feature rights.
• The EVERYONE group is granted all field access rights on the General template.
• The EVERYONE group is granted all volume access rights on the DEFAULT volume.
• The EVERYONE group is granted all entry access rights on the root folder of the repository using the This folder, subfolders and documents scope.

Tip: You can directly remove the EVERYONE entry from the root folder before assigning additional entry access rights. This means that instead of every user having access to the repository by default, no user will have access. Then, by granting rights, you ensure that users only have access to those items they are allowed to access. If you do not remove the default EVERYONE entry on the root folder, you can progress to a situation where you are required to constantly deny rights on specific items further down the folder structure. This situation can unnecessarily complicate your security setup.