What is Roxio Secure Burn Plus?
Roxio Secure Burn Plus is a version of Roxio Burn that allows PCs within designated groups or departments to read encrypted discs without a password. Access to the encrypted data on PCs outside of designated groups is restricted. This makes it very convenient to share data on departmental PCs while preventing unauthorized access outside of the organization.
When Roxio Secure Burn Plus is installed on a PC, it configures the PC as follows:
- It grants a 'Group Key', i.e. group membership to the PC. For example, all the PCs in the finance department that include Secure Plus can be granted membership to a group called 'Finance'. All discs written with Secure Plus on a Finance PC will belong to this group.
- It grants 'Read Permission' to the PC. 'Read Permission' means that this PC can read encrypted discs burned on PCs within permitted groups without a password.
What if I want to be able to read the discs outside of permitted groups? What if I want to be able to take the disc home to work on it?
An optional password can be added to the disc so it can be read outside of permitted groups. If someone steals the disc when I am underway, they will not be able to access the data without the password. If I choose not to add a password, then the discs can't be read outside of permitted groups at all.
Can I create non-encrypted discs with Roxio Secure Burn Plus?
What if a system administrator doesn't want to allow discs to be read outside of permitted groups at all?
The password is optional in the base configuration of Roxio Secure Burn Plus. If a customer requires the password option to be removed, a configuration can be created that supports this.
For example, imagine a company with 5 departments, and 5 groups of PCs. These PCs could be set up as follows:
|Sales PCs||Engineering PCs||Finance PCs||Contractor PCs|
|Can read discs burned on:||Can read discs burned on:||Can read discs burned on:||Can read discs burned on:||Can read discs burned on:|
How many groups can be included in Read Permission?
Roxio Secure Burn Plus allows a PC to read discs burned on up to 5 departmental groups of PCs.
How do I read an encrypted disc if my PC has Read Permission?
When Roxio Secure Burn Plus is installed, it also installs the Roxio Burn Disc Viewer plugin. To read the files on the disc, click on the Viewer in My Computer.
Note: Although it is possible to explore the disc using Windows Explorer,
the files will not be readable because they are encrypted.
Is it difficult to set up?
It is easy to set up. There are 2 ways to do it:
- It can be done at installation via a command line. There are command lines to define group membership (Group Key), and Read Permission. These command lines are described in the System Administrator's Deployment Guide.
- If Roxio Secure Burn Plus is already installed, Group Key and Permission can be changed using a small application called the Roxio Permissions Manager. This application can run from a memory stick without needing installation, so it is easy for a system administrator to run it on several PCs.
Roxio Permissions Manager
How do I set up Group Keys and Read Permission on multiple PCs on my organization?
There are 2 easy ways to do it:
- Install Roxio Secure Burn Plus via network deployment using a command line. Decide what Groups you want. Then, select your first Group of PCs and Read Permission settings and deploy. Repeat the process with the other Groups.
- You can also use Roxio Permissions Manager to set a Group Membership and Read Permission on one PC. Export the settings, and then copy the exported file (.pmf file) to a second PC in the same group. Use Roxio Permissions Manager to import this file (Import Settings), and apply the changes. Repeat this process on all the PCs that you want to have the same settings.
Are end users able to use Roxio Permissions Manager to make changes?
Roxio Permissions Manager is installed separately from the Roxio Burn application, and is installed in a directory in Program Files that requires administrator privileges: ÒC:\Program Files\Roxio\Roxio Burn Administration\Permissions Manager.exeÓ. The system administrator can optionally uninstall the applet after the Group Key and Read Permissions are set.
Alternatively, the system administrator can run Permissions Manager from a USB stick or disc. Copy the entire Roxio Burn Administration directory to a USB stick or disc, and you will be able to run the Permissions Manager executable. Using this method, you will not need to install Permissions Manager on every PC in the group, just the first one.
Where are the Group ID and Read Permissions stored? Is it possible to change these without authorization from the system administrator?
For Roxio Secure Burn Plus, group policy parameters are stored locally in a hidden encrypted file. One benefit of this is that no network access is required, and this is desirable in some situations.
This encrypted file is associated with the computer ID. A very clever user may be able to find and copy this file to another PC and assign the same computer ID to that PC, though there is no obvious way to do this. If an organization requires a solution for group policy management that requires non-local authorization, Roxio Secure Managed is recommended.