End-of-Life (EoL)

Configure Security Settings for Multi-Tenant Deployments

It is recommended that you add these server configurations to harden your multi-tenant deployment.
These recommended security configurations are intended for deployments in which the main account and tenant accounts do not reside in the same DMZ.
Recommended Security Configurations
Key
Value
Description
security.tenant.use.secret
false
Generates a unique cookie session for the tenant account and main account.
Tenant.AcceptAnyCertificate
false
Validates the host certificate. Set to false if using a CA (certificate authority) signed certificate. Must be set to true if using a self signed certificate, or the main server can not send requests to hosts.
host.insecure
true
Trusts any certificate (when host accounts exist).
  1. In the main account, navigate to
    Settings
    About
    Troubleshooting
    .
  2. Create a separate server configuration for each of the recommended configurations.
    1. Scroll to the bottom of the
      Server Configuration
      section.
    2. Click
      Add Server Configuration
      .

Recommended For You