We are currently investigating the possibility to provide "Veeam Cloud Connect" to our customers. But....
As long I understood, the security policy and especially the password rules for "Veeam Cloud Connect" are obviously not sufficient for a serious cloud service.
But maybe I´m wrong.
requirements:
1. after service provisioning by the provider admin, the inital password will be send to the defined client admin (via secure pw exchange method)
2. after first logon at the cloud gateway, the cliend admin MUST set a new password (which only he knows)
3. in case of password loss or three failed attempts to logon, the access revokes, the provider admin has to check the authenticity of the requester and to set a new initial password (same procedure as #1)
4. passwords must be changed at regular interval
5. passwords expire after a defined period of non-use
6. passwords must be at least eight positions in length and contain a mix of alphabetic and non-alphabetic characters (numbers, punctuation or special characters) or a mix of at least two types of non-alphabetic characters.
Are these requirements are already fulfilled by "Veeam Cloud Connect", and if nor, are there any plans on the roadmap?
Many thanks in advance for your answer!!!
-
SJOHANS
- Novice
- Posts: 3
- Liked: never
- Joined: Jul 29, 2015 1:32 pm
- Contact:
-
veremin
- Product Manager
- Posts: 20284
- Liked: 2258 times
- Joined: Oct 26, 2012 3:28 pm
- Full Name: Vladimir Eremin
- Contact:
Re: Cloud Connect - password policy
Password answering security policy can be generated by clicking "generate new" button. Of course, you should memorize or copy/paste this password for your tenant.
Currently, there is no way for an user to change his password without letting you know first. However, user might want to enable encryption for the jobs pointed to your cloud repositories. In this case, not only will be able to specify whatever password he wants to, but also this password will be unknown for you.
Thanks.
Currently, there is no way for an user to change his password without letting you know first. However, user might want to enable encryption for the jobs pointed to your cloud repositories. In this case, not only will be able to specify whatever password he wants to, but also this password will be unknown for you.
Thanks.
-
Phel
- Lurker
- Posts: 1
- Liked: never
- Joined: Jul 30, 2015 7:15 am
- Contact:
Re: Cloud Connect - password policy
Is it on the roadmap to introduce password management for clients, so that he can change his password on his own?
Password for an account user and password for encryption are two different things.
As soon as the password for the account is not only known by the client but by also by an administrator this would violate security regulations in our company.
Password for an account user and password for encryption are two different things.
As soon as the password for the account is not only known by the client but by also by an administrator this would violate security regulations in our company.
-
veremin
- Product Manager
- Posts: 20284
- Liked: 2258 times
- Joined: Oct 26, 2012 3:28 pm
- Full Name: Vladimir Eremin
- Contact:
Re: Cloud Connect - password policy
We might think about adding similar functionality down the road. So, thank you for the feedback, guys.
-
dellock6
- VeeaMVP
- Posts: 6139
- Liked: 1932 times
- Joined: Jul 26, 2009 3:39 pm
- Full Name: Luca Dell'Oca
- Location: Varese, Italy
- Contact:
Re: Cloud Connect - password policy
But even today with restful API you can create a workflow where a customer can go and change his own password after logging with original credentials, and that could be updated into Cloud Connect without an admin seeing the password.
Luca Dell'Oca
Principal EMEA Cloud Architect @ Veeam Software
@dellock6
https://www.virtualtothecore.com/
vExpert 2011 -> 2022
Veeam VMCE #1
Principal EMEA Cloud Architect @ Veeam Software
@dellock6
https://www.virtualtothecore.com/
vExpert 2011 -> 2022
Veeam VMCE #1
Who is online
Users browsing this forum: No registered users and 125 guests