With Revu 2015.1 and above, Administrators can deploy a registry key to Vu and Revu client systems to control Studio server access. This can be used to create a whitelist of allowed servers (e.g. Your Internal Server URL) while restricting access to external servers (e.g. studio.bluebeam.com), and optionally force users to login to Studio with Windows Authentication, preventing them from entering a username and password in the software. When configured, users will not be able to override these settings in Vu or Revu.
Creating a whitelist through a registry key
- Open the Registry Editor
- Navigate to HKEY_LOCAL_MACHINE\Software\Bluebeam Software\Revu
- Note: For new installations of Revu 2016 and above you will need to right-click and create a new Key named Revu in Bluebeam Software
- Right-click on the Revu folder and select New > Key and name it Studio
- Right-click on Studio and select New > String Value and name it AllowedServers
- Right click on AllowedServers and select Modify and enter YourServerURL as the Value data.
- DO NOT include https
- Separate multiple server URLs with a comma ‘,’ and no spaces (e.g. YourServerURL,studio.bluebeam.com)
- Users will not be able to create/delete servers in Vu/Revu
- All Fields in ‘Manage Server’ dialog in Vu/Revu will be disabled
- Resetting settings for Vu/Revu preserves the whitelist
- Accessing a Studio link for non-whitelisted servers generates error
Force Windows Authentication mode
- Start at the same Studio key created above, HKEY_LOCAL_MACHINE\Software\Bluebeam Software\Revu\Studio
- Right click on Studio and select New > DWORD(32-bit) Value
- Name it WindowsAuthenticationOnly (case sensitive)
- Right click on it and select Modify and set the Value to 1
- All fields of the login dialog are disabled and Windows Authentication is checked and cannot be un-checked.
- All fields in Edit server dialog are disabled. Windows Authentication is checked and cannot be un-checked.
- Generates error for servers which do not support Windows Authentication
Export this Studio Registry key and deploy it to client systems. Set permissions accordingly to prevent users from making changes to it.