4.2 Basic Security Considerations

There are certain basic security measures you should use to protect the Sentinel application and the appliance:

4.2.1 Sentinel Application

  • All unnecessary ports must be turned off.

  • Whenever possible, a service port must listen only for local connections and not allow remote connections.

  • Install files with the least privileges so that the least number of users can read the files.

  • Default passwords must not be used.

  • Reports against the database must be run as a user that only has select permissions on the database.

  • All Web interfaces require HTTPS.

  • A Nessus scan must be run against the application and all potential security problems must be addressed.

  • All communication over the network must use SSL by default and must be configured for authentication.

  • User account passwords must be encrypted by default when they are stored on the file system or in the database.

4.2.2 Sentinel Appliance

In addition to the points mentioned in Sentinel Application, you must also do the following:

  • Install only the required packages.

  • Do not use any default passwords for the appliance operating system or the control center.

  • Ensure that the firewall is enabled by default and close all unnecessary ports in the firewall configuration.

  • Run a Nessus scan against the appliance and address all potential security problems.

Sentinel is automatically configured to monitor the local operating systems syslog messages.