Question:

How should I ensure my SnapStream systems are secure if they are facing the internet?

Answer:

There may be circumstances where you want your SnapStream systems (servers, encoders, etc.) to be accessible outside of your organization's internal network. If that is the case, we recommend the following considerations to mitigate any security vulnerabilities:

• Ideally, use a VPN (Virtual Private Network) as an alternative to having the system generally exposed to the internet.
• Change the default credentials for the Windows Admin account that came with your SnapStream system. Contact SnapStream Technical Support to confirm the accounts.
• Disable Windows Remote Desktop (aka RDP) access.
• Ensure automatic Windows Updates are disabled. Manage and plan your Windows updates so you are up to date with important Microsoft Windows updates especially critical security patches.
• Establish a firewall (e.g. Windows Firewall or other) that only allows ports needed by SnapStream (see this article: Network configuration for SnapStream for more information).
• Change SnapStream webUI default Administrator credentials. If you need help with this, please contact SnapStream Technical Support team.
• Enable SSL on your SnapStream application. This will ensure secure communication by encrypting data used over the SnapStream web application. See the following article for more information: Enabling SSL in IIS or How to Enable SSL in IIS Express.

Please contact SnapStream Technical Support team by submitting a new support request if you have any additional questions and we'll be glad to help!

Keywords:

internet RDP Remote security password