Security Best Practices Overview; Security Recommendations For Ifolder 3.6 - Novell IFOLDER 3.6 - SECURITY ADMINISTRATION Manual

Security Best Practices Overview

1
This section summarizes the recommended configurations and settings required to run Novell
®
iFolder 3.6 and the iFolder
Section 1.1, "Security Recommendations for iFolder 3.6," on page 9
Section 1.2, "Security Recommendations for OES Linux," on page 10

1.1 Security Recommendations for iFolder 3.6

The following table lists the iFolder server configuration settings that impact iFolder security.
Security Recommendations
Table 1-1
Parameter
SSL for server to LDAP
server communications
Novell iManager >
iFolder 3.6 > Launch
iFolder Web Admin
Console > Servers >
Server Details > LDAP
SSL > Yes
Web browser to
iManager Server
communications
iFolder Admin user
Equivalent iFolder
Admin users
iFolder Proxy user
password
client in a secure mode.
TM
Possible Values
Select Yes to enable
SSL; deselect Yes (No)
to disable SSL
HTTPS and Novell
eDirectory
TM
authentication
User-specified
User-specified
User-specified
Default Value
Yes, SSL enabled
HTTPS and eDirectory
authentication
User-specified
administrator user
None
Auto generated during
initial configuration of the
iFolder server
Security Best Practices Overview
®
Recommended Value for
Best Security
Yes, SSL enabled
HTTPS and eDirectory
authentication
Special iFolder Admin
user identity for
managing iFolder
services
Users with limited
administrator rights,
such as for a specific
iFolder server
User-specified, using
strong password
practices
1
9