Set strong passwords for Administrator (or root) and any other operating system accounts that have any DIVA Enterprise Connect administrator or service roles assigned to them, including:
diva, divanet, and Oracle User IDs (if being used)
Any disk array administrative accounts
Do not install or run as the Linux root user, instead assign roles as needed to other user accounts.
Use site-specific certificates for each DIVA Enterprise Connect installation, and define a strong password for the Linux account running Weblogic.
Install firewall software on every DIVA Enterprise Connect system, and only expose the needed ports. Restrict access to the WebLogic admin console ports.
Install operating system and DIVA Enterprise Connect updates on a periodic basis because they include security patches.
Install antivirus and exclude the DIVAdirector processes and storage for performance reasons.
Best practices dictate segregation of FC disks and FC tape drives, either physically or through FC Zoning, so that disks and tape devices do not share the same HBA port. This security practice helps prevent loss of data accidents resulting from accidentally overwriting important data.
Configure an appropriate set of backups for the DIVA Enterprise Connect configuration files. Backups are part of security and provide a way of restoring data lost, either accidentally or through some breach. Your backup should include some type of policy while being transported to an off-site location. Backups need to be protected to the same degree as DIVA Enterprise Connect disks.