Versions Compared

Old Version 5

changes.mady.by.user Kartiswara Reddy

Saved on

compared with

New Version Current

changes.mady.by.user Former user

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Network Security Groups

  • Tightening to control the traffic flow between internal services

  • Setting inbound and outbound rules and restricting ports

Image Added

Multi Factor Authentication

  • Two-Factor Authentication for Azure portal,

...

  • Grafana, Kibana and Superset
  • Two factor authentication for Jenkins

SSH Key Management using HashiCorp Vault

  • Vault handles any type of secret data, including database credentials, API keys, PKI keys, and encryption keys.

  • Vault also supports dynamic secrets, generating credentials on-demand for fine-grained security controls

    , auditing

    .

  • Soon Vault can authenticate and authorize SSH keys and audit every request

Other Security aspects

  • Allowing Blob storage access

    will be

    only from internal network and

    without keys to specific vm.

    specific VM's instead of using keys

  • Kibana, superset and yarn dashboard

    access will be inside VPN network. 

    are accessibly only via VPN 

  • Grafana is accessible from public internet. Only viewer credentials are shared with users