Hello Community, any suggestion in hardening the APIs in particular to allow their usage only on specific interface/zone? I haven't seen any enforcement on the GUI.
Your option is to enable/disable "Management/HTTPS" and "User Login/HTTPS" on the interfaces, depending on what type of user credentials the API is using.
I gave https management access to a user with sonicwall administrative privileges. The same user will be used for API interfacement. The management is opened only from LAN and from an autorized VLAN. I think hardening is ok now.
Answers
Hi,
I just needed this information, thanks.
I gave https management access to a user with sonicwall administrative privileges. The same user will be used for API interfacement. The management is opened only from LAN and from an autorized VLAN. I think hardening is ok now.
Thanks Enzo and thanks Mustafaa
Loris