Locking down Hitachi ID Identity Manager servers
Hitachi ID Identity Manager is a security server, and should be locked down accordingly.
In the same way that it makes sense to harden and protect the operating
system and physical installation of a firewall, it makes sense to
minimize the number of components running on a Identity Manager server, to
lock it down, limit logical and physical access to it, and keep it at
current patch levels.
- Multi-layered security architecture:
Security is implemented as multiple layers, each of which acts to protect Identity Manager data and embedded entitlements.
- Use of Encryption:
Use of Encryption to protect sensitive user data in storage and transit.
- Web Form Input Protection:
Inputs to web forms in Identity Manager are automatically protected against bogus data, buffer overruns and more.