Configure Security Settings for Multi-Tenant Deployments - Multi-Tenant Guide - EoL - 6.11 - Cortex XSOAR - Cortex - Security Operations

Cortex XSOAR Multi-Tenant Guide

Product
Cortex XSOAR
Version
6.11
Creation date
2022-12-12
Last date published
2024-07-16
Category
Multi-Tenant Guide
End of Life > EoL
Abstract

Add server configurations to harden your Cortex XSOAR multi-tenant deployment. Security settings for multi-tenant deployments.

These recommended security configurations are intended for deployments in which the main account and tenant accounts do not reside in the same DMZ.

Key

Value

Description

security.tenant.use.secret

false

Generates a unique cookie session for the tenant account and main account.

Note

If you implement this key in a Multi-tenant high availability architecture, you must restart main host and all of the other hosts.

Tenant.AcceptAnyCertificate

false

Validates the host certificate. Set to false if using a CA (certificate authority) signed certificate. Must be set to true if using a self signed certificate, or the main server cannot send requests to hosts.

host.insecure

true

Trusts any certificate (when host accounts exist).

  1. In the main account, navigate to SettingsABOUTTroubleshooting.

  2. Create a separate server configuration for each of the recommended configurations.

    1. Scroll to the bottom of the Server Configuration section.

    2. Click Add Server Configuration.