Are there any recommendations in terms of IT security for securing web services on a DMA dedicated to external customer access ?
Wale Oguntoyinbo [SLC] [DevOps Enabler] Selected answer as best 6th August 2020
- Make web services (WebAPIs) accessible via https only.
- Configure the security rights in DataMiner Cube for the appropriate users allowed to use web service methods, only allow access to what really is needed for these external customers.
- By putting a web proxy server between the external entry point and the DataMiner, for example only /API requests could be let through so that Cube and other applications aren't external accessible.
- Could use external authentication (for example SAML) for additional security (for example multi-factor authentication)
Wale Oguntoyinbo [SLC] [DevOps Enabler] Selected answer as best 6th August 2020