In order for users to be able to access the Disk Groups from OnBase, the Disk Group folders must be set with certain share/NTFS permissions, depending on a user's level of access. It is a best practice to give users or User Groups the minimum level of access required to perform the OnBase functions expected of them. In this way, if a user is able to access the Disk Group folders outside of OnBase, that user may be prevented from manually performing actions not granted in OnBase, such as editing documents.
Documents should not be edited, moved, copied, deleted, or otherwise managed in the physical Disk Group folder without using the OnBase interfaces. The OnBase clients and Configuration module provide the ability to fully manage documents stored in OnBase, as well as providing additional security, disk management, and backup benefits.
Refer to the Encrypted Disk Groups or Distributed Disk Services documentation for information on how to better secure files accessed outside of OnBase.