It is imperative to consider security prior to implementation. Doing so ensures that all the pieces are in place once the solution is deployed. Network security and physical security considerations are described in detail in the Security chapter.
Home > Edge > Manufacturing Edge > Guides > Dell Validated Design for Manufacturing Edge with PTC - Design Guide > Security
It is imperative to consider security prior to implementation. Doing so ensures that all the pieces are in place once the solution is deployed. Network security and physical security considerations are described in detail in the Security chapter.
VxRail is built on top of the Dell PowerEdge server platform with embedded hardware and system-level security features to protect the infrastructure with layers of defense. Additionally, VxRail uses the VMware set of tools to further enhance the security that VxRail provides to the end user. VxRail provides a preconfigured and tested stack for all security capabilities.
For backup and recovery, VxRail incorporates a starter pack for Dell EMC RecoverPoint for VMs (RP4VMs), which provides local and remote replication and granular recovery. Also, the HCI System Software file-based backup and restore protects against the accidental deletion of or the internal corruption of the VM. Backups can be configured to occur regularly or on an as-needed basis.
Other security components supported by VxRail are authentication, authorization, and accounting. The SSO feature handles authentication on VxRail, leveraging an existing centralized identity management system. For authorization, vSphere allows creation of custom rules and roles to support the principal of least privilege. VxRail supports accounting by providing vRealize Log Insight, which compiles VMware logs, including servers, network devices, storage, and applications. For organizations that already have a log management system or Security Incident and Event Management (SIEM) system, VxRail integrates easily using the standard Syslog protocol.
VxRail also supports physical security. The system includes a feature to disable USB ports on the system, and VxRail nodes can monitor for events such as chassis openings, parts failure or replacement, firmware changes, and temperature warnings.
The following lists some of the standards and certifications that the VxRail system satisfies:
For a more comprehensive guide on VxRail security features and guidance, see the White Paper: Dell EMC VxRail: Comprehensive Security by Design.