Atlassian Applications in Azure – Part 5, nGinx, Centrify, Linux hardening
We still have to setup some sort of SSL offload with nGinx or some other Azure function.
We still want to make a “Atlasssian Systems Administrators” Active Directory group, add a few admins to it and setup Centrify on the linux boxes to allow those admins to login.
We still have to harden the whole environment. Just doing a quick review of my blog posts. There’s a few obvious things to do with PostgreSQL out of the box. For instance, its allowing all users to attempt a connection – seems like we should just allow the user that needs to connect, to connect instead (confly, jiraly, crowdly).
So.. lets get started.
First, Centrify. http://www.centrify.com/express/linux-unix/documentation/
See Part 6 for Centrify.
A great audit tool is Lynis – https://cisofy.com/lynis/. Check this one out to learn more about your linux environment.
(more coming soon….)