Hello,
I am a trade manager in local business and I would like to know possibilities only, [currently I have a problems with
my IT administraor.] I would like to know securing possibilities of the servers where I am storing confidential files and databases with sensitive personal info.
In my organisation I have an Windows 2008 R2 file server with other services also running (DBs).
I have a server in central point of my office, without specific physical access control.There is possibility to come up to server and make a changes - e.g. remove the hard disk or restart it with any livecd and copy data from current partitions. There is also possible to take out machine and get out.
I know that we haven't any encryption active on our servers. But long time ago [about release the Server 2003]
I have heard about something similar as a privacy protection possible to run on Windows Server:
1. Server is running with encyption, there is any solution which encrypt data placed on its hdds,
2. Encryption needs a certficate renewal on fixed time - e..g two weeks [ if I did not update certfifcates by two weeks
machine will not decrypt files, so then will be unusable ] Renewal of key is needed in case the authorized person will be out of my company. I would like to be pushed to manually renew the certfifcate - e.g. put the keys into appropiate catalog or reconfigure
something.
3. If I update certs I will have more time and good, authorized access. If not data will remain encrypted.
Is it possible on Windows Server 2008 R2 ?
If not, what solution should I looking for? I need to encrpyt data on Windows 2008 R2 machine.
Thank you for your time to read this :)