Atlas private server os requirement11/28/2023 ![]() Separate your SolarWinds Platform servers from your infrastructure on managed VLANs/Jumpboxes. See Securing SQL Server (© 2021 Microsoft, available at, obtained on January 6, 2021.).īefore you install the SolarWinds Platform, ensure the servers in your environment are compliant with supported security standards: We recommend at minimum utilizing Windows Authentication, or implementing a SAML v2 based solution, if you cannot integrate Windows or SAML-based authentication.Įnsure you configure account settings and leverage both account and view limitations, along with module-specific roles only for the tasks they require in their role.įollow Microsoft's guidelines for securing SQL Server instances. If you deploy multiple SolarWinds Platform servers in your environment, dedicate these servers where possible and minimize the installation of any third-party software.ĭo not create local SolarWinds Platform accounts. Once setup, you can disable IIS and web services on your primary polling engine and allow the rest of the services to function independently of IIS. Unlike your primary polling engine, these do not run many critical services. Purchase additional web servers for segregation and accessing the web console. ![]() Limit access to the SolarWinds Platform server and SQL server instances to only those authorized persons who require access as part of their duties.Īpply layered network security controls, like leveraging application load balancers, setting appropriate firewall rules to limit who can access or send network traffic to your SolarWinds Platform, and deploying security tools to provide additional monitoring across your SolarWinds Platform and SQL Server instances. Implement strict access control and auditing in your environment at operating system and network layers. Ensure this rule is updated when the configuration of SolarWinds Platform changes, for example when you add new servers. You can check these by querying the OrionServers table in the SolarWinds Platform database. Port 5671 should only communicate to your other SolarWinds Servers (in case of High Availability, both Active and Standby Primary Polling Engine Servers). For more details, see the SolarWinds Port Requirements guide and Best practices for configuring Windows Defender Firewall (© 2021 Microsoft, available at, obtained on January 13, 2021.)Īpply proper segmentation controls on the network where you have deployed the SolarWinds Platform and SQL Server instances.Ĭonfigure the firewall for the main polling engine to limit and restrict all inbound and outbound access for port 5671. See SolarWinds Platform Product Features Affected by Internet Access.ĭisable unnecessary ports, protocols, and services on your host operating system and on applications, like SQL Server. If you must enable outbound Internet access from SolarWinds Servers, create a strict allow list and block all other traffic. ![]() See Secure IIS by removing the default website.īe careful not to expose your SolarWinds Platform website on the public Internet. SolarWinds recommends that you use a dedicated SQL instance for your SolarWinds Platform database to improve security by segregating the SolarWinds Platform database from other production databases.Įnsure that the server hosting your SolarWinds Platform Web Console does not host the Default Web Site or the DefaultAppPool application pool. Keep your SolarWinds Platform and your SQL database on separate servers. Maintain your SQL Server by applying the latest cumulative updates and service packs. Maintain the latest host operating system, application, and network security updates. If you are not on the latest version of the SolarWinds Platform, you can temporarily protect your environment against the Supernova malware by applying the following security fix: Best practicesĮnsure you have installed the latest versions of the SolarWinds ® SolarWinds Platform including hotfixes and service releases. This document describes configuration options for securing your SolarWinds Platform deployment. This topic applies to all SolarWinds Platform products.
0 Comments
Leave a Reply.AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |