Encryption at Rest

Intermediate

Enable FileMaker's built-in file encryption to protect data when the database file is offline or physically stolen.

What you'll learn

  • What encryption at rest protects against (and does not protect against)
  • How to enable encryption on a FileMaker file
  • Managing the encryption password securely
  • Opening an encrypted file on FileMaker Server

FileMaker Pro and FileMaker Server support database encryption at rest -- the file on disk is encrypted using AES-256. Without the encryption password, the .fmp12 file is unreadable, even if someone has direct filesystem access to the server. This protects against physical theft of drives and unauthorized access to backups.

1/4
1

What encryption at rest protects

Encryption at rest protects the .fmp12 file when it is not open -- if someone steals a drive, copies a backup, or accesses the filesystem directly, they cannot read the data without the encryption password. It does NOT protect data from users who have valid FileMaker accounts once the file is open.

Account Management Best PracticesSSL/TLS on FileMaker Server

Sign in to track your progress and pick up where you left off.

Sign in to FM Dojo