Home » Knowledge Base » GDPR compliance

How to configure GDPR related settings in Patch Manager Plus?

This document will explain you various settings which should be configured on the Patch Manager Plus console to meet the GDPR requirements.

Note: All the privacy and security enhancing operations should be performed by Patch Manager Plus user with administrator privileges.
  1. Security settings
  2. Role based access control
  3. Export settings
  4. Securing mail communication
  5. Secure access to scheduled DB backup

  1. Security Settings

    From Patch Manager Plus console, navigate to Admin tab -> Security Settings . This view lets you understand the security levels of your Patch Manager Plus server. It is always recommended to enable every given setting to keep your server security at optimized levels.

    • Enable secure communication and secure agent-server communication. You can also use third party certificates to secure all communications.
    • Ensure that the access to Patch Manager Plus web console is restricted only to authorized users, and enforce two-factor authentication.
    • Secure all your remote connections and file transfer operations.
    • Use LDAP over SSL to secure the communication/data sync between Patch Manager Plus server and Active Directory.

  2. Role Based Access Control

    Defining specific roles and scope to technicians will limit the risks of unexpected data leakage. You can create separate roles and grant permissions to specific modules, define scope for the Patch Manager Plus users from Console -> Admin -> User Management -> Roles

  3. Export Settings

    4. All the personal information such as name, domain name, IP address, etc., in scheduled or exported reports can be secured by configuring the export settings. You can set a default settings or let the technician generating / exporting report(s) decide. Find the export settings at Admin tab -> Under Security Settings -> Export Settings.

  4. Secure Mail communications

    5. It is always recommended to secure your mail server communication, so ensure that you use SMTPS communication. You can configure it from: Console -> Admin -> Mail Server Settings. 

  5. Secure Access to Scheduled DB Backup

    6. You can ensure that the scheduled database backups are secured by enforcing a password. Only the authenticated users will be allowed to access the backed up database.

    Related Articles

    1. Patch Manager Plus' security hardening recommendations
    2. How GDPR compliant is Patch Manager Plus?
    3. How to become GDPR compliant with Patch Manager Plus?