Security Overview
Cisco EPN Manager requires a high level of security to ensure that your network and its data are not compromised. This is especially important because it has full management control over your network and stores device credentials. To this end, Cisco EPN Manager leverages the following security approaches:
-
Secure architecture: The Cisco EPN Manager architecture is designed to limit access to any unknown software flaws that may be present so they cannot be used for a malicious purpose.
-
Secure default configurations: Cisco EPN Manager is shipped with a default configuration that enhances the security of the product. For example, even though insecure FTP and TFTP services are supported, they are not activated in the default configuration.
-
Installation hardening: Cisco’s Advanced Services team can evaluate the specifics of your Cisco EPN Manager installation and complete the additional security hardening tasks that may be needed.
-
Cisco Secure Development Lifecycle (CSDL) process: From development to release, the CSDL process is followed to improve security of Cisco EPN Manager.
-
Two-factor Authentication: Users must go through two layers of security before being granted access to Cisco EPN Manager.
The following sections describe these approaches in more detail.