System configuration
There are a number of configuration options available in the System Administration area that help you to secure the Delphix Engine. You can configure these during installation through the setup wizard, or later by accessing the Delphix Setup screens.
Maintain system time with NTP
Establish at least one, but preferably three, corporate NTP servers and sync your Delphix Engine to them. This ensures that audit and error messages display the correct time.
When configuring Delphix Engine on VMware, be sure to configure the NTP client on the ESX host to use the same servers that you enter here. On a vSphere client, the NTP client is set in the Security Profile section of the configuration process.
Enable phone home
Phone Home service will send critical information about the Delphix Engine to Delphix Support using HTTPS, on a periodic basis. The use of a Web Proxy Server is fully supported. Phone Home data allows Delphix Support to proactively detect Delphix Engines affected by critical vulnerabilities.
Register your Delphix engine
Registration is fast and easy, and you can do it with or without Internet connectivity from the Delphix Engine. Failing to register the Delphix Engine will impact its supportability and security in future versions.
Enable LDAP for authentication
The LDAP protocol is used by enterprise authentication services. Enabling LDAP authentication allows your Delphix Engine to leverage the password control features of these products, such as expiration, lockout, and complexity.
Import your LDAP server certificate into your Delphix Engine, and enable SSL/TLS.
Enable SMTP and/or SNMP monitoring
When the Delphix Engine encounters errors, it issues alerts. Configure SMTP and/or SNMP to forward alerts to your central monitoring system.