Skip to main content

Hello Community, 

 

Besides the usual server hardening best practices. Is there any advanced steps that should be taken to secure the Secret Cache Windows Servers? I’m looking forward to hearing everyone’s thoughts. 

 

Best, 


Edward

Hello ​@Edward V 

We don’t have any specific steps to secure the Windows Server running Secrets Cache. 

But you will want to restrict who can login to the system and secure the API key and credentials used to access the cache. 

Since Secrets Cache gives you the ability to access the secrets over the network via an API call you may want to use the firewall to restrict who can connect over the network. 

For OS hardening you will want to follow Microsoft's best practices for securing the version of Windows the cache is installed on. 

Here is a link to some Microsoft Windows Security documentation.

Windows security documentation | Microsoft Learn

If you have any other questions please let me know.

 

Regards,

John

Hello ​@Edward V , I’m planning to install the Secret Cache on Non-Domain joined windows server to limit the access to designated local admin accounts only. You can also block the SMB port so the drives can not be accessed over the shared network.

Cheers

Reply


Badge Earners

  • BCIE: Endpoint Privilege Management - Windows
    Nikhil Raohas earned the badge BCIE: Endpoint Privilege Management - Windows
  • BCIE: Password Safe
    Nikhil Raohas earned the badge BCIE: Password Safe
  • BCA: Password Safe
    Zubairhas earned the badge BCA: Password Safe
  • BCIE: Remote Support
    1000Wasserhas earned the badge BCIE: Remote Support
  • BCIE: Privileged Remote Access
    rrueschXalienthas earned the badge BCIE: Privileged Remote Access
Show all badges
Terms & ConditionsCookie settings