Remote File System

A remote file system via SSHFS establishes a connection between a drive on your local machine and your virtual machine.

Once connected, any data written to the virtual drive is mirrored on the local machine, and vice versa.
This provides an efficient way to transfer data from your local machine and integrates seamlessly with tools like external SFTP.

Mount Remote File System via SSHFS in MAC OS

Prerequisites

• Ensure your MAC OS is updated to the latest version before starting.
• Install both MacFuse and SSHFS to your local machine.
• A separate license may be required for non-personal or commercial use for "MacFuse" and "SSHFS".
• Your Linux VM must be properly configured for SFTP to work.

Download macFUSE

1. Open the MacFUSE Stable Release download link in your browser.
2. In the pop-up, click Save to download the macFuse.dmg installer locally.
3. In your downloads directory, click to open the macFUSE installer.

Install macFUSE

5. Double-click the icon Install macFUSE.
6. In the prompt, click Allow.
7. Click Continue to proceed.
8. View the licence agreement, then click Continue.
9. In the pop-up, click Agree.
10. Click Install.
11. In the pop-up, enter your Mac password.
12. Click Install Software.

Enable System Extension in Mac

13. In the new pop-up, click Open System Settings.
14. Once in settings, navigate to Privacy & Security section.
15. Under the Security subsection, click Enable System Extensions....
16. Enter your password to confirm.
17. In the new pop-up, click Shut Down.

Set Security Utility at Startup

18. Once your Mac is shut down, hold the Start button until you see "Additional Startup Options" on the screen.
19. Click the icon Options from the boot list.
20. Select your user account in Mac.
21. Click Next.
22. In the prompt, enter your Mac password.
23. Click Continue.
24. In the new window, navigate to Utilities in the top taskbar.
25. Select Startup Security Utility.

Set Security Policy for kernel Extensions

25. Next, select your Macintosh HD where your macOS is located.
26. Click the Security Policy button in the bottom right.
27. In the prompt, tick the Reduced Security option.
28. Tick the box to Allow user management of kernel extensions from identified developers.
29. Click OK to restart your Mac.

note

As long as you set up the security policy, you can also manually restart your Mac afterwards.

Download SSHFS

30. Once restarted, open the SSHFS Stable Release download link in your browser.
31. In your downloads directory, click to open the SSHFS installer.

Install SSHFS

32. In the installer prompt, click Continue.
33. View the licence agreement, then click Continue.
34. In the pop-up, click Agree.
35. Click Install.
36. In the pop-up, enter your Mac password.
37. Click Install Software.
38. Once installed, click Close.
39. In the pop-up, click Move to bin to delete the installer locally.
40. Go to Apps and open Terminal.

Copy-paste SFTP Command from your Virtual Machine

41. Navigate to Apps and open the Connect Application.
42. Log into your institution's secure enclave.
43. Go to the Virtual Machines icon in the top left taskbar.
44. Click the Virtual Machines Table Overview section in the top left panel.
45. In the left panel, select the virtual machine you want to mirror files to.
46. Next, click the SFTP to VM card.
47. In the pop-up, click the Copy button next to Mac/Linux SSHFS field.

caution

Do not close the Connect Application pop-up.

48. Paste the SSHFS command into your local machine's terminal.
49. Press Enter.
50. A message of authenticity will be displayed following an SHA256 key fingerprint.
51. Type yes and press Enter to proceed.
52. Go to the Connect Application pop-up.
53. Click the Copy button next to the Password field.
54. Paste the password into the local machine's terminal and press Enter.
55. A system extension block pop-up may be displayed.
56. Click Allow.
57. Restart your local machine if asked.

info

If the terminal fails to connect your local drive to your VM drive after pasting the password, close the connection pop-up in the secure enclave interface, reopen it by clicking SFTP to VM, and enter the newly generated password into the terminal.

58. Go to Finder.
59. Locate the virtual drive in your drives directory.
60. Double-click the virtual drive to open it.
61. Drag-and-drop files from your local machine to the virtual drive.

info

If you do not find the virtual drive in your Mac:

1. Open Finder from your dock (the smiley face icon).
2. Click Finder in the top-left corner of your screen in the menu bar (this only appears when Finder is active).
3. Select Settings... (older Mac OS versions say Preferences...).
4. In the settings prompt, under Locations check YOUR NAME's Mac Book. (eg: John's Mac Book Air)
5. Navigate to YOUR NAME's Mac Book location in Finder in the left panel.
6. Locate your mirrored virtual drive.

info

If you see the pop-up warning Not enough disk space to copy "Your-File-Name.xyz" when performing the transfer from your Mac to your VM:

1. Navigate to Start menu.
2. Search and open the Connect Application.
3. Log into your institution's secure enclave.
4. Go to the Virtual Machines icon in the top left taskbar.
5. Click the Virtual Machines Table Overview section on the top left panel.
6. In the left panel, select the virtual machine you are using for the transfer.
7. Ensure you are connected via SFTP to VM transfer locally.
8. Next, click the Open Terminal card.
9. In the VM terminal, run dp -h to view the avialable space in the VM.
10. Click Exit in the top left corner.
11. Contact your administrator to allow you more space for your files in your transfering VM.

If you see the pop-up warning Not enough disk space to copy "Your-File-Name.xyz" when performing the transfer from your Mac to your VM:

1. Navigate to Start menu.
2. Search and open the Connect Application.
3. Log into your institution's secure enclave.
4. Go to the Virtual Machines icon in the top left taskbar.
5. Click the Virtual Machines Table Overview section on the top left panel.
6. In the left panel, select the virtual machine you are using for the transfer.
7. Ensure you are connected via SFTP to VM transfer locally.
8. Next, click the Open Terminal card.
9. In the VM terminal, run dp -h to view the avialable space in the VM.
10. Click Exit in the top left corner.
11. Contact your administrator to allow you more space for your files in your transfering VM. :::

note

You may have to approve macFUSE in System Preferences > Security & Privacy after installation — Mac might block it until you allow it.

note

To save data in other parts of your directory tree, use symlinks.

The Mac/Linux SSHFS Command Mechanism Explained

The Mac/Linux SSHFS command creates a virtual drive but does not run it for security reasons.

Syntax:

mkdir -p ~/ _ticrypt_vm_drive; unmount ~/_tiCrypt_vm_drive; sshfa -o volname="YOUR VM NAME" -o follow_symlinks -p YOUR_PORT USER@localhost: /DRIVE_PATH ~/_ticrypt_vm_drive

Parameter	Description
mkdir	Makes a local directory where you will save your research data in your local machine.
unmount ~/_tiCrypt_vm_drive	Unmounts the previous virtual drives mounted in your local machine to allow a new virtual drive mount.
sshfa -ovolname="EL"	Accessing your VM named "EL" in this example.
-o follow_symlinks	This is for file management, it allows the use of symlinks to move data into specific access directories of the VM besides the home directory.
-p 12345 john@localhost: /User/John/Drives	Accessing your VM port, username from your local machine using the correct drive path.
~/_ticrypt_vm_drive	Names the drive a standard name for improved user experience purposes.

caution

The remote system file only allows you to write files; it does not allow viewing or reading them.
This feature is designed to allow you to only transfer files into your VM from your local machine. It is not a bug but a feature to prevent data exfiltration.

Debug

Error "zsh:command not found: sshfs" or "sshfs:Unsatisfied requirements failed to build."

If zsh:command not found: sshfs you must install brew and sshfs on your local machine;

1. Run /bin/bash -c "$(curl -fsSL https://raw.githubusercontent.com/Homebrew/install/HEAD/install.sh)".
2. Enter your password in terminal if requested to check for 'sudo' access.
3. Hit Enter.
4. Wait for homebrew to install.
5. Next run brew install sshfs.

Error "brew:not found" or "macfuse:not found"

If brew:not found you must install it.

1. Run eval "$(/opt/homebrew/bin/brew shellenv)".
2. Then run echo 'eval "$(/opt/homebrew/bin/brew shellenv)"' >> ~/.zprofile to set the installation paths correctly.
3. Verify the paths by running brew --version.
4. You should see your installed brew version below.
5. Once done, run brew install macfuse.

note

If brew install macfuse fails, go to System Settings > Privacy & Security and select Allow to load macFUSE. You may be asked to enter your password in terminal upon installation.

tip

SFTP is configured by default to follow symlinks, which are pointers linking one part of the system to another. The system defaults to your home directory, but if you prefer to store data elsewhere, create a symlink to point to the desired location.

Unmount local drive from Remote File System in Mac OS

note

Previously mounted local drives are automatically unmounted by tiCrypt when the Linux/Mac SSHFS command is executed in the terminal.

Method One

1. Go to Finder.
2. Locate the virtual drive in your User directory.
3. Right-click the virtual drive.
4. From the options, select Eject.

tip

For best practice, you should eject your virtual drive from the remote file system after each session.

Method Two

1. Go to Apps in Mac.
2. Open a local terminal.
3. In the terminal, run diskutil umount force NAME_OF_VIRTUAL_DRIVE. (eg: diskutil unmount force my-virtual-drive-name)
4. Check for the terminal message unmount successful for my-virtual-drive-name.

tip

If you cannot unmount your local drive, verify the directory path provided in the terminal and retry using a path variation such as diskutil umount force Users/John/my-virtual-drive.

Mount Remote File System via SSHFS in Windows

Prerequisites

• Ensure your Windows is updated before starting.
• Install either WinSFTP and SSHFS or SFTP Drive and SSFHS to your local machine.
• A separate license may be required for non-personal or commercial use for "WinSFTP", "SFTP Drive 2024" and "SSHFS".
• Your Windows VM must be properly configured for SFTP to work.

Method One

Download WINFSP

1. Open the WINFSP download link in your browser.
2. Navigate to Downloads in your browser, and click to open the WINSFSP.exe installer.

Install WINFSP

4. In the new prompt, click Next.
5. View the installation path and click Next.
6. Click Install.
7. In the pop-up, click Yes to allow WINFSP to make changes to your device.
8. Once installed, click Finish.

Download SSHFS

9. Open the SSHFS download link in your browser.
10. Navigate to Downloads in your browser, and click to open the SSHFS.exe installer.

Install SSHFS

11. In the new prompt, click Next.
12. View the installation path and click Next.
13. Click Install.
14. In the pop-up, click Yes to allow SSHFS to make changes to your device.
15. Once installed, click Finish.

Map Network Drive

16. Go to file explorer in This-PC.
17. Right-click on This-PC icon in the left panel.
18. From the options, select Map network drive....
19. A prompt will show up.

Copy-paste SFTP Command from your Virtual Machine

20. Navigate to Start menu.
21. Search and open the Connect Application.
22. Log into your institution's secure enclave.
23. Go to the Virtual Machines icon in the top left taskbar.
24. Click the Virtual Machines Table Overview section on the top left panel.
25. In the left panel, select the virtual machine you want to mirror files to.
26. Next, click the SFTP to VM card.
27. In the pop-up, click the Copy button next to Windows SSHFS field.

caution

Do not close the Connect Application pop-up.

28. Paste the SSHFS command into your local Map network drive prompt, in the Folder field.
29. Click Finish.
30. A new prompt will require your local host password.

Login to your Local Host

31. Go to the Connect Application pop-up.
32. Click the copy button next to Password field.
33. Paste the password into the local host prompt.
34. Click OK.
35. Your secure VM directory will open in File Explorer, and any changes made there will be mirrored in your secure enclave VM.

Method Two

Download SFTP Drive

1. Open the SFTP Drive download link in your browser.
2. Navigate to Downloads in your browser, and click to open the SFTPDrive2024.exe installer.

Install SFTP Drive

4. In the new prompt, click Yes to allow the app to make changes to your device.
5. Then, click Next.
6. View the license agreement and click I Agree.
7. View the installation path and click Next.
8. Click Next.
9. Click Install.
10. Once installed, click Finish to run the SFTP Drive.

Open New Connection

11. In the new prompt, click New in the top right.
12. In the pop-up, under Drive, in the Drive Name field, enter your secure enclave's name. (no caps)
13. Next, type localhost in the Remote Host field.

Copy-paste SFTP Commands from your Virtual Machine

14. Navigate to Start menu.
15. Search and open the Connect Application.
16. Log into your institution's secure enclave.
17. Go to the Virtual Machines icon in the top left taskbar.
18. Click the Virtual Machines Table Overview section on the top left panel.
19. In the left panel, select the virtual machine you want to mirror files to.
20. Next, click the SFTP to VM card.
21. In the pop-up, click the Copy button next to remote port, username and password.
22. Then paste your remote port, username and password into the corresponding fields.

caution

Do not close the Connect Application pop-up.

Test SSH Connection

23. Click Test SSH Connection button in the bottom left corner.
24. In the pop-up click Yes to confirm connection.
25. In the new pop-up, click OK.

Connect via SSH

26. In the SFTP Drive prompt, click OK to connect.
27. In the pop-up, click Yes to connect the drive now.
28. Your secure VM directory will open in File Explorer in This-PC directory, and any changes made there will be mirrored in your secure enclave VM.

Unmount local drive from Remote File System in Windows

Method One

note

Previously mounted local drives are automatically disconnected by tiCrypt when the Windows SSHFS command is executed in the terminal.

1. Go to File Explorer in This-PC.
2. Right-click the secure VM directory.
3. From the options, select Disconnect.

tip

For best practice, always disconnect your local drive from the remote file system after each session.

Method Two

1. Go to SFTP Drive prompt.
2. Select the running connected drive from the list.
3. Click Disconnect in the right panel.

note

To reconnect back the drive, open the Connect Application and copy-paste the new port and password in the SFTP Drive prompt, select the drive and click Connect in the right panel.