| | |
| ||
| ||
     |
The Management Server is a security-critical host, as it has the ability to configure the security settings of the managed hosts. Proper measures need to be taken to ensure its integrity:
The Management Server should be a dedicated server host. No extra services or applications should be run on the same host.
The root account should be carefully controlled. No unnecessary accounts should be opened on the host.
No extra TCP/IP ports should be open on the host. The management connection uses port 17235. For the ports required by the Management Server, see SSH Tectia Manager Administrator Manual.
The physical security of the Management Server should be ensured so that unauthorized access to the host itself is prevented.
The Management Server should be secured by a host firewall, allowing access via the web interface and the management connection only from defined address spaces, and blocking all other traffic.
| |
Copyright 
2008 SSH Communications Security Corp.
This software is protected by international copyright laws. All rights reserved.
Contact Information