Security
Warning
The DevOps Portal has been deprecated in the Q4`18 MCP release
tagged with the 2019.2.0 Build ID.
The Security dashboard is the UI for the Security Audit Service,
aka Security Monkey. The service runs tests to track and evaluate
security-related tenant changes and configurations. Using the
Security dashboard, you can search through these audit findings
and review them.
Note
The Security Audit service depends on the following services:
- DevOps Portal web UI
- Push Notification service
- PostgreSQL database
To review security item details:
- Log in to the DevOps Portal.
- To quickly access current security items with unjustified issues click the
Security issues widget on the Dashboard tab.
The Security items page opens.
- Click the name of the required security item in the Items
section to view its details. The item details page opens.
- To revise the configuration change that caused the security item raise,
use the Revisions section. The affected parts of configuration
are color coded:
- Green stands for additions
- Red stands for deletions
- To justify the unjustified issues, use the Issues section:
- Check the unjustified issue or issues.
- Edit the Justification field specifying the reason of
justification. For example,
This has been approved by the Security team.
- Click Justify.
- To attach a comment containing any required content to an item:
- In the Item comments section, paste the comment to the
comment field.
- Click Add comment.
- To search for specific issues, use the Issues section.
Each issue has a link to a page of the corresponding item containing
the details of the issue.