An industry first, Dome9 Security Groups lets users apply a single policy across an infinite number of servers and clouds, rather than setting and managing polices for individual servers. The new Security Groups empower administrators to group servers together under a single policy or a set of policies, such as “SSH on-demand for all SQL servers,” to consolidate firewall policy management.
Servers can be added to any number of Dome9 Security Groups and moved around as needed, and users can be granted secure access to a single server or all servers within a Dome9 Security Group.
“Security groups are an important way to implement some measure of security control within a cloud environment,” said Andrew Hay, Senior Security Analyst at 451 Research. “As no single cloud platform or provider has emerged as the de facto standard, products like Dome9 can help extend an organization’s security policy and centralized management beyond its traditional perimeter regardless of chosen platform.”
Dome9 Security Groups provides group-based policy management across multiple servers and cloud hosting providers. SMBs and cloud hosting providers can consolidate management of multiple cloud servers under an umbrella Dome9 Security Group. When additional cloud servers are added to a Dome9 Security Group, its policy is automatically inherited from the Group profile. Groups are easy to create and are fully customizable, and support servers spanning multiple service providers and cloud types.
Dome9 Security is the only cloud security service to automate firewall management for public and private clouds, as well as for dedicated and Virtual Private Servers (VPS), across various platforms. Dome9 closes a critical gap in today’s cloud security – ports such as SSH, RDP, and MYSQL left open so administrators can connect to and manage their cloud servers.
This common practice leaves servers vulnerable to hackers who need only guess the correct username and password or exploit any protocol vulnerability to gain unauthorized control of a server. Dome9 secures all administrative ports – for all servers and clouds – enabling secure access, on-demand. Its key innovation is the ability to provide secure access leasing – dynamically generated, time-based secure access to cloud servers – which enables customers to close all server administrative ports by default.