Disable the non-secure server port
Transmissions to and from the secure server port are protected by encryption. Disabling the non-secure server port will force all clients to connect to the secure port.
See Options: Web Access for details.
Secure the server machine
A user with physical or remote access to the machine that Express Delegate is installed on can potentially access any dictation or user data, or modify server options or user accounts in a way that could expose data to non-approved users.
Take care to:
Disable the administrator account when not needed
Ideally, the administrator account should only be used to create, modify, or delete other user accounts. When not performing these tasks, consider disabling this account to prevent unwanted access to all the dictations in the database.
See Options: Administration for details.
Choose user roles carefully
The manager role gives a user access to all dictations in the database. Attempt to give this role to as few users as possible.
See Concepts: Users for details.
Check the event log for suspicious activity
The event log keeps a record of what actions have been performed on the dictations and which users performed them. Use this information to check for suspicious activity.
See Web Control Panel: Event Log for details.