Hi David,
I'm not aware of any white papers on this topic, some of what you're asking are beyond simple WebSphere config (DDoS/DNS attacks).
I would recommend the
WebSphere STIG checklist from NIST (National Institute of Standards and Technology) as a starting point for hardening WebSphere. There are definitely some checklist items that could break Maximo or impact performance, so obviously you want to start this on a Dev environment.
The other thing I'd recommend you consider is something like
Microsoft's Azure AD Application Proxy. The short description is that it uses a software agent to proxy on-prem apps out to the public Internet. This allows Microsoft's cloud to serve as a buffer between clients and your web server, protecting you against DDoS attacks. You also have the option to require users authenticate (using Azure AD) before any sort of traffic hits your web server.
Hopefully that's helpful. Happy to discuss further.
------------------------------
Tim Ferrill
Solutions Consultant
Intelligent Technology Solutions
tferrill@webuildits.comwww.webuildits.com@tferrill/@webuildits
------------------------------
Original Message:
Sent: Wed September 21, 2022 08:02 AM
From: David Miller
Subject: Maximo Open to the World?
Does anyone know of any White Paper like documents that detail how Maximo is secured? I have a client that needs to open the maximo-x app up to the world with Guest access and we have concerns about what vulnerability this may expose their core Maximo database to? I am also concerned about if it protects against DNS attacks or such?
Opening ports and the app in the clients firewall has many risks and we need to know what IBM does to protect it. We opened a ticket with IBM asking and they were no help. It seems like they are certified secure by Federal Government so I would have thought this had to be documented to get such certification.
Any help would be greatly appreciated.
Thanks,
------------------------------
David Miller
Managing Partner - Maximo Consultant
Enterprise Integration Partners LLC
------------------------------
#AssetandFacilitiesManagement
#Maximo