You can increase the security in your system by configuring the document policy. The document policy controls which file types a user can open, save, and import.
You configure the document policy by determining the permitted file extensions for the Building Operation system. A user cannot open, save, or import files with file extensions that are not on the list. A user can save a file without any file extension.
A user who browses the system to create or edit a document object can only see files with permitted file extensions and files without any file extension.
By default, the list of permitted file extensions contains the following file extensions:
avi
dfx
doc
docx
dwg
gif
htm
html
jpg
mp4
mpg
odt
pdf
png
rtf
txt
xls
xlsx
The permitted file extensions list configuration on an Enterprise Server is distributed to all SmartStruxure Server devices in the Building Operation system.
You can add file extensions to, and delete file extensions from, the permitted file extensions list. If you have configured the list, it is preserved when you upgrade the Building Operation system.
If a file extension is not on the permitted file extensions list and a user performs a restore operation, the operation succeeds and the document object is restored, but it is no longer possible to open the document file. If the document file extension is added to the permitted file extensions list, it is possible to open and save the restored document file.
If you upgrade an older Building Operation system without a document policy, the upgraded system gets the default document policy.
In Project Configuration Server, if you have not added a SmartStruxure server to your project, the default permitted file extensions list is applied. When you have added a SmartStruxure server to your project and edited the permitted file extensions list for that server, the changes are applied on Project Configuration Server as well.