Securing Alfresco in the cloud has always been a major concern of clients moving from on premise to the cloud. The majority of our newer Alfresco clients are implementing with a solution for the cloud either on Amazon or Azure. This whitepaper will present 20 tips for securing Alfresco on Amazon Web Services (AWS).
SECURING ALFRESCO ON AWS
- Security Tip #1 – Run Alfresco as a non-root user
- Security Tip #2 – Change permissions on the Alfresco install folder
- Security Tip #3 – Do not use the default passwords
- Security Tip #4 – Change Solr default SSL certificates and keys
- Security Tip #6 – Encrypt communications traffic for authentication
- Security Tip #7 – Enable Auditing and Monitor
- Security Tip #8 – Leverage Logs
- Security Tip #9 – Disable unneeded Alfresco subsystems
- Security Tip #10 – Check third-party vulnerabilities and libraries
- Security Tip #11 – Front Alfresco with Apache or Nginx
AWS Security Considerations
- Security Tip #12 – Backup & Restore
- Security Tip #13 – High Availability
- Security Tip #14 – Firewalls
- Security Tip #15 – Network Security
- Security Tip #16 – Network Scanning
- Security Tip #17 – Bastion Servers
- Security Tip #18 – Encryption
- Security Tip #19 – Authentication
- Security Tip #20 – Environment Logging & Monitoring