Security Tools
The security tools script allows you to manage security settings.
The security tools script is located in the /opt/cybereason/support_tools
folder and is called consul_rules.py
. The following table describes the available security tools:
Task |
Description |
How to execute |
---|---|---|
Manage consul access |
Block access to Consul from all IP addresses except Cybereason Server IPs. This tool does not apply to Cybereason application components. |
Block: Unblock: Where xxx.xxx represents the first two octets in the IP address of the Cybereason Servers. Note: If the Cybereason Servers are deployed on different networks, run the script once for each Network Address. |
Manage TLS |
Enable/disable secure communication between sensor and server (TLS version 1.2 and higher). |
Enable: Disable: |
Manage Management UI access |
Allow/prevent access to the On-Prem Management Server UI via browser. From 21.2.525 and higher - see Management UI Hardening Script. |
Block: Unblock: |