This guide explores, reviews, and highlights the security considerations necessary to create a secure system and a team-wide understanding of your specific security goals. We recommend that you read this guide before you configure your appliance so you can take advantage of the available security features and create the levels of security that you need.
You can also use this guide as a reference to find more detailed information about security considerations of the various features and capabilities of the Oracle ZFS Storage Appliance. For appliance configuration procedures, see the Oracle ZFS Storage Appliance Administration Guide.
The following sections provide a description of the Oracle ZFS Storage Appliance security features and recommendations:
First Steps - Describes login security during the initial installation of the appliance and recommendations for the physical security of your system.
Administrative Model - Describes remote access via the BUI and CLI, restricting access to the BUI and CLI, the system patching model, deferred updates, support bundles, and configuration backup.
Appliance Users - Describes administrative roles, who can administer the appliance, and managing user authorizations.
Access Control Lists - Describes the mechanism that allows or denies access to files and directories.
Data Services - Describes the data services supported by the appliance and the security offered by the different data services.
Directory Services - Describes the directory services that can be configured on the appliance and their security ramifications.
System Settings - Describes system settings: Phone Home, Service Tags, Kerberos, SMTP, SNMP, syslog, system identity, disk scrubbing, and preventing destruction.
Security Logs - Describes the log types pertinent to security.