For sensitive data and higher compliance requirements, our Security Pack add-on provides encryption at rest, customer-specified TLS and cyphers, monthly vulnerability scans, and priority patching for Apache Solr vulnerabilities. The
When SearchStax Managed Solr creates a new Solr deployment, we lock down the Zookeeper ensemble so that it cannot be reached from the Internet. To upload a configuration to Zookeeper,
Transport Layer Security (TLS) has periodic releases that improve security. Not everyone upgrades immediately to the latest release. For this reason, clients occasionally encounter a mismatch between the TLS version
Production systems should be secured with Basic Authentication. You can set up Solr Basic Auth directly from the SearchStax Dashboard. Warning: Service Interruption Enabling/Disabling this feature restarts your Solr servers,
Solr Cloud users who manage their systems through PowerShell scripts quickly discover that PowerShell’s Invoke-RestMethod is not friendly to the usual method of passing the Basic Auth username and password
Zookeemer ensembles absolutely must be secured by IP Filtering. Otherwise, they are vulnerable to hacking. SearchStax enforces this requirement. See How can I secure Zookeeper? Solr nodes and clusters should
Due to DHCP, Managed Solr users sometimes find that their computer’s IP address has changed, invalidating their IP Filter access to Solr. Many people then create a new IP Filter
Some SearchStax clients use outgoing IP filtering to increase the security of their systems. They inquire whether SearchStax can assign a static IP address to a deployment’s Solr HTTP endpoint.
Platinum clients (Platimum, and Platinum Plus levels) may request at-rest encryption for their data files.
For our premium customers (Gold, Platimum, and Platinum Plus levels) who have high security requirements, we recommend a SearchStax Cloud Private environment with VPC Peering. If your application resides in