Can the access be controlled by SSO, for the end-user authenticate?
Krisztián Alban2021-02-22T15:24:35+00:00Supported protocols: SAML 2.0, OpenID Connect, LDAP. Supported platforms(examples): Okta, Keycloak, Microsoft Cloud (with
How are vulnerabilities detected, managed, and mitigated?
Krisztián Alban2021-02-22T15:01:14+00:00Vulnerability scanning tools are currently run manually on a scheduled basis. Wallboard are looking
What controls are in place to detect and prevent unauthorized access and data leakage?
Krisztián Alban2021-02-22T14:30:01+00:00Traffic is logged within the NginxApplication access log. User logins, failed attempts, and actions
Is PII (Personally Identifiable Information) storing is compliant with GDPR?
Krisztián Alban2021-02-22T15:25:13+00:00Open registration is not enabled, it is a private service. We only store user
How the communication works between the components?
Krisztián Alban2021-02-22T15:10:20+00:00All traffic is encrypted between the application server and all of the connectors/endpoints. All
Is the database available directly from the internet?
Krisztián Alban2021-02-22T13:18:48+00:00The database is not available directly from the internet, its port is not exposed
Do you keep detailed audit logs on the portal?
Krisztián Alban2021-02-22T15:25:53+00:00Yes, in system logs. Docker container Logs have a maximum file size(300MB) and once
Are privilege admin accounts separate from user accounts?
Krisztián Alban2021-02-22T13:06:35+00:00We store admin and regular accounts in the same database table.
Do you have MFA capability for the end-user, during authentication?
Krisztián Alban2021-02-22T13:07:59+00:00Yes, with SSO.
Is any data stored in the cloud? If so, how to you ensure it is protected?
Krisztián Alban2021-02-22T15:22:25+00:00On-premise installation - we don't have to store anything in the cloud. Cloud installation
English 
Magyar 
Italiano 
Português 
Deutsch 
Français 
Deutsch (Schweiz)