Difference between revisions of "Securing OpenEMR - AWS"
From OpenEMR Project Wiki
| Line 5: | Line 5: | ||
== Account == | == Account == | ||
* Setting up 2FA | * Setting up 2FA | ||
** AWS provides excellent instructions for [https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_mfa_enable_virtual.html#enable-virt-mfa-for-iam-user setting up 2FA here.] | |||
** This will require you to enter a code from an app on your phone after inputting your password. Apps such as [https://itunes.apple.com/us/app/duo-mobile/id422663827?mt=8 Duo] or [https://itunes.apple.com/us/app/google-authenticator/id388497605?mt=8 Google Authenticator] are recommended for generating the code. | |||
* Billing Estimates | * Billing Estimates | ||
* Other Account Tasks | * Other Account Tasks | ||
== Secure Your Domain (Optional - Route53) == | == Secure Your Domain (Optional - Route53) == | ||
Revision as of 21:11, 14 November 2018
Background
- These are optional features that can be enabled on AWS
- BY FAR THE MOST IMPORTANT THING YOU CAN DO is enable 2FA for your AWS account
Account
- Setting up 2FA
- AWS provides excellent instructions for setting up 2FA here.
- This will require you to enter a code from an app on your phone after inputting your password. Apps such as Duo or Google Authenticator are recommended for generating the code.
- Billing Estimates
- Other Account Tasks
Secure Your Domain (Optional - Route53)
Configure Logging (CloudTrail)
Configure Your Network (VPC)
- Flow Logs
- Security Group rules
Monitor Cyber Attacks (GuardDuty)
- xyz
Create a Load Balancer (EC2)
- Application Load Balancer
Set up a Firewall (WAF)
- xyz
