Vaults should be created with restricted permissions by default.Transparent data encryption (tde) should be used with sql server.Tls certificate validation should be enabled.The password strength analyzer should use zxcvbn.The data source password variable should be disabled.SMS should not be used for multi-factor authentication.Risky events should be disabled or generate a warning.Password expiration should be enabled for custom users.Multi-factor authentication (mfa) should be enforced.HTTPS should be used to connect to the data source.Configuration files should be encrypted using an application password.A minimal client version should be configured.A master key should be used with the data source.A default password template should be configured.
0 Comments
Leave a Reply. |