Skip to main content

I have a client who asked me how secure is their Acumatica connection and the company data. Does anyone have some insight into this?

Hi @estebanperalta54 

It depends on a number of things.  Hosted by Acumatica or hosted on your own web server?

Hosted by Acumatica:

  1. HTTPS encryption provides secure connection just like bank websites
  2. Access to company data can be made more secure by IP connection restrictions, proper use of security roles, 2FA, password policies, account lockout policies, timeout settings, etc.

Hosted on your own web server:

  1. Make sure you have SSL certificate and HTTPS only
  2. Restrict IP connections using AWS or Azure
  3. Restrict IP connections within Acumatica
  4. Use 2FA, security roles, 2FA, password policies, account lockout policies, timeout settings, etc.
  5. AWS snapshots
  6. Database backups with automated transfers to long term storage like AWS Glacier S3

Best,

 

David


David’s got some great points above. Using features like 2FA, robust security roles and things like Active Directory integration and strong password requirements are key.  

Take a look at Acumatica’s FAQ section on their main website here: https://www.acumatica.com/faq/ especially the section on Security.  That should answer most of their questions.


Reply