Server Hardening

OL Connect is on-premises software with no public components, and therefore controlling access to the software is entirely the responsibility of the customer or reseller who installs and maintains it.

Depending on the application and customer requirements, the software can be installed on a laptop or desktop, a server, or multiple servers. In all cases, we recommend following standard IT security practices such as user management and password controls to limit access, installing the product behind a firewall, keeping the software (and operating systems) up to date, and so on. Physical security of premises should not be overlooked, and laptops should be secured both physically and electronically.

The term OL Connect Server is often used when referring to features of this software or supporting applications such as OL Connect Automate or OL Connect Remote Print. In this context, server refers to a functional component of the software, which may or may not be installed on a physical or virtual server. In other words, hardening the OL Connect Server means limiting access to the OL Connect software, in addition to limiting access to the physical and/or virtual device or devices where it is installed.

Correctly configuring the software is important to ensure security. The entire section for Server configuration settings, (i.e. software configuration settings) should be reviewed. This includes Security and Users Settings, which shows how to manage settings for external supporting applications and scripts communicating through the REST API.

Other topics in this user guide that contain information relevant to security best practices include:

The OL Connect blog in the Resource Center contains posts on new features, including security enhancements, and statements on third-party security vulnerabilities that may affect operation of OL Connect. Support resources for security questions include the OL Care Support Program and the OL Connect User Forums.