How can I secure my Cloud Rewind account?
Cloud Rewind offers the following options to enhance the security of your Cloud Rewind account
Enable single sign-on (SSO): You can set up SSO for your Cloud Rewind account, allowing you to use your existing credentials and providing a convenient and secure way to access the platform.
Multi-Factor Authentication (MFA): Cloud Rewind supports MFA, which adds an extra layer of security to your account by requiring an additional form of authentication, such as a verification code sent to your mobile device, in addition to your password.
How safe is my account data with Cloud Rewind?
Cloud Rewind highly values the security and privacy of its customers' data. To emphasize the security perspective of our customer data, we follow strict security policies.
SOC 2 Type II Compliance: Cloud Rewind is a SOC 2 Type II Compliant organization. Developed by the American Institute of CPAs (AICPA), SOC 2 Type defines criteria for managing customer data based on five “trust service principles”—security, availability, processing integrity, confidentiality and privacy. This certification ensures that the company follows strict security practices and controls to safeguard customer data.
For more information, go to https://trust.appranix.cloud.
Data Protection and Account Permission: Cloud Rewind does not copy and move your application data to a proprietary data management system or to Cloud Rewind controlled cloud service. All of your data remains securely stored within your own cloud account.
Is there a way to limit a user's cloud account permissions provided to Cloud Rewind?
Yes, Cloud Rewind offers a feature called IAM Permission Manager that allows you to control and limit the cloud account permissions provided to Cloud Rewind.
The IAM Permission Manager in Cloud Rewind enables users to manage and customize the permission that needs to be provided for Cloud Rewind. The permissions are grouped into the following four categories:
-
Discovery
-
Protection
-
Recovery
-
Reset
Discovery permission will be used for discovering all your cloud resources. After discovering all the resources will be listed in the Cloud Connection summary page. For this, Cloud Rewind requires only the read permission for all your resources.
Protection permission will be used for protecting your cloud resources. Since Cloud Rewind uses snapshots to protect the resources, it requires create snapshot and related permission for all your cloud resources.
Recovery permission will be used for recreating all your protected cloud resources in the recovery region. For this operation, Cloud Rewind gets resource creation permission in your cloud account.
Reset permission will be used for deleting all the recovered cloud resources during Cloud Rewind recovery operation. For this, Cloud Rewind requires resource deletion permission in your cloud account. If needed, this can be disabled in the granular level permission page(refer to the link below) and the customer can take care of the deletion of the recovered resources on their own.
Users can remove and grant permissions whenever needed by editing the Cloud Connection permission.
Is there a way to access Cloud Rewind capabilities without providing delete permission to Cloud Rewind?
Yes, it is possible to access Cloud Rewind capabilities without granting delete permissions to the platform. However, it's important to note that if a resource is recovered by Cloud Rewind, the manual deletion of that resource is required within the user's cloud account and it has to be taken care by the customer.
Does Cloud Rewind support single sign-on?
Yes, Cloud Rewind supports single sign-on.
To configure SSO with Cloud Rewind, visit the following website: https://medium.com/appranix/saml-integration-with-appranix-24b8bc035770