CommScope recommends that access to all ServAssure Collection Platform systems and applications be performed securely and by authorized personnel only. SSH access to all hosts should be secured and controlled.
ServAssure Collection Platform is not designed to be compatible with the highest levels of operating system security or software-based firewalls.
In general, ServAssure Collection Platform is not compatible with anything that:
- restricts traditional Unix root privileges
- interferes with the use of traditional Unix-networking system calls from the software
- interferes with connections between ServAssure Collection Platform applications to any other system hosting ServAssure Collection Platform applications
Under Linux, this restriction should be achieved through measures such as physical access control, strong passwords or SSH keys, system monitoring, and well-designed and dedicated firewalls.
ServAssure Collection Platform requires that an arris user and group be configured on each node. If an arris user with full SUDO access does not exist, ServAssure Collection Platform can/will create one for you, and allow you to choose the password for this user. The arris user is used to start ServAssure Collection Platform-specific applications, as well as own the data in /opt/arris.
