Configure Security Settings for Multi-Tenant Deployments
Add server configurations to harden your Cortex XSOAR
multi-tenant deployment. Security settings for multi-tenant deployments.
These recommended security configurations
are intended for deployments in which the main account and tenant
accounts do not reside in the same DMZ.
Recommended Security Configurations
Key
Value
Description
security.tenant.use.secret
false
Generates a unique cookie session for the tenant
account and main account.
If you implement this key in a
Multi-tenant high availability architecture, you must restart main
host and all of the other hosts.
Tenant.AcceptAnyCertificate
false
Validates the host certificate. Set to false
if using a CA (certificate authority) signed certificate. Must be
set to true if using a self signed certificate, or the main server
cannot send requests to hosts.
host.insecure
true
Trusts any certificate (when host accounts exist).
In the main account, navigate to
Settings
About
Troubleshooting
.
Create a separate server configuration for each of the
recommended configurations.
