Shadow copies

Shadowing creates copies of files transferred to or from removable media to allow administrators to review what data users accessed. DriveLock can store these shadow copies on client computers and a server. You can define which files DriveLock shadows.

Example: If you enable shadow copies for USB drives, DriveLock will create an ISO image of each USB drive and save this file to the location you configure.

There is a special setting for creating shadow copies. To enable shadow copies, a file filter template must first be created, which can then be used for individual whitelist rules as well as for drive classes (settings on the Filter / Shadow Copy tab).

Shadow copies can be viewed using the DriveLock Management Console. For this purpose, the Shadowed files option is available in the Operating node. Open the context menu of the respective shadow copy and select Choose folder / agent.... After a successful connection, the shadow copies are listed in the Management Console. Double-click to display the properties of the respective file; use the Extract shadowed files command to store the shadow copy in a different location. If you have set up a password or certificates to protect the shadow copies, you must now authenticate with the appropriate keys.