Best Practices for Using Protegrity Appliances on AWS

There are recommended best practices for using Protegrity appliances on AWS.

Force SSH Keys

Configure the appliance to enable SSH keys and disable SSH passwords for all users.

If you need to create or join a Trusted Appliance cluster, then ensure that SSH passwords are enabled when you are creating or joining the cluster, and then disabled.

For more information about the SSH keys, refer to section Working with Secure Shell (SSH) Keys.

Install Upgrades

After you run the Appliance-rotation tool, it is recommended that you install all the latest Protegrity updates.

Configure your VPC or Security Group

To ensure successful communication between the appliance and the other entities connected to it.

For more information about the list of inbound and outbound ports for the appliances, refer to section Open Listening Ports.