How to secure MAAS

Errors or typos? Topics missing? Hard to read? Let us know.

This section offers security suggestions for your MAAS instance:

  • Enhance MAAS security: Apply conventional security with firewalls, TLS termination, PEM files, HAProxy, logging, Web server security, MAAS logs, PostgreSQL security, good passwords, permissions, snap security, shared secrets, and HashiCorp Vault.

  • Manage user accounts and access: Add, update, and edit users; manage SSH keys; and change passwords.

  • Implement MAAS native TLS: Things you should know about configuring and enabling TLS, including Apache and nginx, as well as managing certificates.

  • Integrate Vault with MAAS: A quick and simple rundown of how HashiCorp Vault works with MAAS.

  • Configure an air-gapped MAAS: You can use MAAS behind an air-gap, provided you configure the Snap proxy, set up local package updates and image mirrors, and provide transparent proxies.

This topic was automatically closed 365 days after the last reply. New replies are no longer allowed.