I've developed a web application for a company. Because the company has offices in all the states in the country, the web application will be uploaded to the internet.
Is it possible to restrict access to the web application to only know computers used by the company; maybe by using their MAC address?
Or is there an efficient way to limit access to a website to only recognized computers? Thanks for any suggestions.
If the company has dedicated IP address pool, you may block access from the computers that are outside of this address pool. Otherwise your best bet would be to authorize the people, who has authority to access your application.
Related
I am confussed about 3 server so you guys can help me?A web hosting service is a type of Internet hosting service that allows individuals and organizations to make their website accessible via the World Wide Web is it right?
A webhosting allows you to store the files of your website online.
A domain allows users to request those files and view them on there browsers.
Getting a complete website pakkage should include both of them.
A vpn is a virtual private server. Also used for websites but in this case you need to configure your webhosting and domain al by your self (not recommanded)
A dedicated server is used to host gamerooms etc.
Just after a bit of advice please. We currently have a series of local access databases which reside on our field workers tablets. Work is assigned to these field workers using our server side web application. The workers then receive their work to their local tables using a code which sends and receives data to and from our internal domain server.
We are planning on moving away from our internal domain server to MS Azure. In order to do this we would like to be able to route all the traffic from the mobile devices to a proxy and allow one address (the proxy) to connect to Azure as it will be near impossible to whitelist all IP's in use on the cellular network.
I was wondering if anyone could shed any light on the best way of achieving something like this please? How would a proxy be set up and how could be only route the traffic trying to access MS Azure via the proxy whilst maintaining normal traffic using a direct route?
Any advice would be greatly appreciated.
Thanks,
Tony
Honestly, you would probably be in better shape to setup a VPN (Your security appliance or firewall should have one but if you want a dedicated one, look at OpenVPN). Then you just have all the tablets connect to the VPN and then as far as Azure is concerned, you only need to whitelist the office. Windows and Android can both connect to a VPN out of the box.
Good luck on the migration.
To who it may concern,
I am looking to move more of our applications that the company uses to azure. I have found that Remote App will allow people to us the apps I have allowed via the Remote App. The application which will be used is linked to a database which is on site, I am just worried about people being able to access this database as it will contain important data which cant be leaked. I am trying to work out what are some security precautions which could be taken to prevent the data from being viewed by the wrong people. I have seen app locker to stop applications on the virtual machine from being accessed. Any other security suggestions would be greatly appreciated.
You should be fine. Remote app is running remotely - meaning that theres no way of getting to the connection string (reverse engineering). Access to the app is also ensured by AAD login. The database should be protected as well with AD credentials. Also, adding a service tier that fronts the database would provide a facade.
Our organization is looking for a cloud solution and we have looked at OneDrive. Currently we have a restriction with OneDrive where we want to give our clients access to our oneDrive for certain tasks. But for some client's one drive is blocked by the firewall. If we go for oneDrive business then will we be able to have our domain name instead of oneDrive.com.
Or is their a way that we can setup one drive features in our network.
Thanks in advance for the response.
OneDrive is a cloud service, like Google, Dropbox, Box, etc. If someone has blocked it in their firewall, there isn't much that can be done. Many enterprises block these consumer-focused services because they don't want business files leaving their business networks.
Using OneDrive for Business would enable you to have your own domain, which hopefully your clients wouldn't block, and would meet the usual security requirements of enterprises. You could also use SharePoint or a file share to host the files on your network, but then your clients won't be able to access them directly either.
I have an IIS-7-hosted website which is accessible by everyone (public domain), and it has several applications inside it. But I want only some of these applications to be accessible by everyone. The others must be accessible only through my company's local network. How can I do this?
You can control access to your sites be enforcing authentication and authorization rules on your private applications.
However...
I strongly recommend running Intranet applications and Internet applications in separate IIS web sites, and use your network firewall to prevent all Internet access to your Intranet site.