- NSG Tightening to control the traffic flow between internal services
- Two-Factor Authentication for Azure portal, Jenkins, SSH access.
- Key Management using Hashicorp Vault
- The flexible secrets engines allow Vault to handle any type of secret data, including database credentials, API keys, PKI keys, and encryption keys.
- Vault also supports dynamic secrets, generating credentials on-demand for fine-grained security controls, auditing.
- Allowing Blob storage access only from internal network and specific VM's instead of using keys
- Kibana, superset and yarn dashboard are accessibly only via VPNĀ
- Grafana is accessible from public internet. Only viewer credentials are shared with usersĀ
General
Content
Integrations