Skip to main content

Securing Acumatica for Private Cloud and On-Premise Hosting

By Harsha Sarjapur
Securing your website with SSL 2048 encryption is your first defense against internet access, you can add another layer of security with password encryption rules, Single Sign on (SSO) and other security measure, Acumatica Cloud ERP makes it easier to configure those rules on SaaS platform.

If your hosting Private cloud or On-Premise then you will run into configuring SSL redirection on IIS for specific domain or sub-domain.
All web request made in non-secure mode needs to be redirected to secure (https) mode.


Few quick steps for securing Acumatica hosted environment.

Step 1: Get a 2048 bit SSL certificate (You might think Verisign but I would go with InstantSSL they are just $99 and still does the same thing, it secures your website)

Step 2: Install the certs on IIS 6/7, make sure to enable URL Rewrite module in IIS.

Step 3: Configure the URL Rewrite by creating new rule to redirect all HTTP (non-secure) request to HTTPS (secure) request URL with regular expression

Requested URL: Matches the Pattern
Using: Regular Expressions
Pattern: (.*)

The pattern might vary depending on domain or sub-domain your configuring, use the test pattern button to see the results, quite helpful in troubleshooting the parameters.



 Step 4: Save the configuration, which updates your web.config file (below is just an example) with URL rewrite rule and conditions

There you have it folks, this will secure Acumatica Cloud ERP website and all your transactions are secured no matter how they access the website, on any device, on any browser the website is always redirected to secure (https) mode.

Stay secured !!!


Labels:

Comments

Post a Comment

Popular posts from this blog

Acumatica Snapshots - Uploading and restoring large files

By Harsha Sarjapur
In Acumatica ERP, you can create company snapshots containing your company’s full or partial data. Snapshots that can be saved locally in the same database, or at a specified location. You can import and restore snapshot to another company, in this case test company, it's pretty handy tool very useful during implementations, customization and support/troubleshooting while you work with data. You will occasionally run into few technical issues with snapshots, the newer version now needs you to keep all users logged out and in maintenance mode to take snapshot, link to blog article here. Today we are going to discuss how to export and import snapshots which are larger in file size of above 1GB, this is not a limitation from Acumatica and more to do with constraint and default value set in IIS (Internet Information Server). IIS by default allows uploading of a file size of 1GB and it limits the upload process and it can be tweaked to upload upto 4 GB file size and that's...
Post a Comment
Read more

Acumatica Import Scenario - Importing Attributes

By Harsha Sarjapur
Acumatica Attributes are type of pre-defined custom fields that users can utilize in capturing data, validating or storing information across Customers, Vendors, Inventory and various other data entry screens such as Leads, Opportunities, Projects, AP, AR etc. There are 5 different attribute types that you can store data in Acumatica Text : A text box into which the user can type text (Control Value 1) Combo : A list box users can use to type or select options (Control Value 2) Not available :) Checkbox : A check box users can select or clear (Control Value  4) Datetime : An element for selecting date and time (Control Value 5) Multi Select Combo : A list box where users can select multiple options (Control Value 6) You can manually configure each attribute by navigating to Configuration --> Common Settings --> Attribute screen and create attributes if they are fewer to keyin, however if you have large set of attributes that you would like ...
Post a Comment
Read more

USPS Address Validation for Acumatica Cloud ERP - GitHub Project

By Harsha Sarjapur
Address Validation Via USPS-Acumatica API USPS address validation project was developed during Acumatica Summit Hackathon 2017 and shared as Github project Cleanse your address records within Acumatica through USPS API, it's free to use USPS API, setup a new account on USPS website and utilize their user id within our plugin. The Address validation custom package for Acumatica allows to interface with Contact address or any address that you can pass and validate street, city, state and zipcode. Prerequisites You must have USPS account  https://www.usps.com/business/web-tools-apis/welcome.htm Quick Start Register with USPS and obtain an API user account Download the address validation custom package, import into Acumatica and publish the package Proivde access to custom button on leads screen On leads screen you will notice a new button called "Verify address" On click it will open a new window and validate the address on record and display corrected addr...
Post a Comment
Read more