Difference between revisions of "Securing OpenEMR - AWS"
From OpenEMR Project Wiki
| Line 1: | Line 1: | ||
== Background == | == Background == | ||
* | * Please feel free to ask security questions and get very quick feedback on [https://chat.open-emr.org via our chat system] | ||
* BY FAR THE MOST IMPORTANT THING YOU CAN DO is [https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_mfa_enable_virtual.html#enable-virt-mfa-for-iam-user enable 2FA for your AWS account] | * BY FAR THE MOST IMPORTANT THING YOU CAN DO is [https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_mfa_enable_virtual.html#enable-virt-mfa-for-iam-user enable 2FA for your AWS account] | ||
Revision as of 21:13, 14 November 2018
Background
- Please feel free to ask security questions and get very quick feedback on via our chat system
- BY FAR THE MOST IMPORTANT THING YOU CAN DO is enable 2FA for your AWS account
Account
- Setting up 2FA
- AWS provides excellent instructions for setting up 2FA here.
- This will require you to enter a code from an app on your phone after inputting your password. Apps such as Duo or Google Authenticator are recommended for generating the code.
- Billing Estimates
- Other Account Tasks
Secure Your Domain (Optional - Route53)
Configure Logging (CloudTrail)
Configure Your Network (VPC)
- Flow Logs
- Security Group rules
Monitor Cyber Attacks (GuardDuty)
- xyz
Create a Load Balancer (EC2)
- Application Load Balancer
Set up a Firewall (WAF)
- xyz
