Overview
Windows Server users can screen files by their extension in selected folders in order to prevent the files from being copied into the folder. The File Server Resource Manager (FSRM) role must be installed on the Windows Server.
To restrict document upload for a specific file extension, create a custom file group to meet requirements and specify the exact file extensions. Optionally, you may use a delivered file group.
Install the File Server Resource Manager Role
If the FSRM role is not available on the server, be sure to install it.
To install the FSRM role:
- Navigate to Start Menu > Server Manager.
- Select Manage > Add Roles and Features.
- Click Next.
- Select the Role-based or feature-based installation radio button (if it is not already selected).
- Click Next.
- Click Next on the Select destination server screen.
- Expand the File and Storage Services option.
- Expand the File and iSCSI Services option.
- Click File Server Resource Manager; the Add Roles and Features Wizard displays.
- Click Add Features.
- Click Next.
- Click Next.
- Click Install; it takes a few moments for the FSRM role to install.
Create a Custom File Group
To create a custom file group in order to restrict document upload for a specific file extension:
- Open the File Server Resource Manager role by clicking the Start menu and entering “File server.”
- Navigate to File Screening Management > File Groups.
- NOTE: If using a delivered file group, select the group here then skip down to step 7 to create file screens.
- Click the Create File Groups button to create a new file group and to specify the extensions to include in the screening in order to fit your requirements.
- Enter a File group name.
- Add the Files to include.
- Click OK.
- Right-click File Screens.
- Select Create File Screens to create a new screening on any folder used by the Stewardship Tier.
- Click the Define custom file screen properties radio button.
- Click the Custom Properties button to set the file path..
- Click the Active screening: Do not allow users to save unauthorized files radio button.
- Click the check box that corresponds to the File Group you created.
- Click the E-Mail Messages tab to add a distribution list (such as administration or security users) who are notified when files with forbidden extensions are added to the selected folders.
- Click the Event Log tab.
- Click the Send warning to event log check box to enable it. If forbidden files are attempted to be put into the selected file paths, the event is recorded in the Event Log.
- Click OK.