Spinup has been approved for hosting certain resources that have sensitive data (e.g. HIPAA, PHI, FERPA). These resources currently include:
...
This server image is pre-configured with Windows firewall and DUO multi-factor authentication.
You can only expose web services running on port 443 (HTTPS) and you'll need to open port 443 on the Windows Firewall and in your Spinup space firewall (from the Spinup UI).
CentOS 7 - CIS hardened
This server image is pre-configured with SELinux, iptables firewall, and DUO multi-factor authentication.
You can only expose web services running on port 443 (HTTPS) and you'll need to open port 443 in iptables and in your Spinup space firewall (from the Spinup UI).
Important: Do not disable SELinux since you will not be able to SSH into the server if SELinux is disabled! If you permanently disable SELinux and you get logged out you will be permanently locked out of your server!
...
- From the Spinup UI, request a S@Y share - this will open a ServiceNow ticket for the Storage team
- In the Configuration section make sure you check "This share will contain High Risk Data"
- This will force the Permissions Model to "Base"
- You need to use CIFS protocol to mount the share on Linux (NFS is not supported for secure shares)
- Once you submit the request it will open a ServiceNow ticket that you can track via ServiceNow
- You should get notified via e-mail once the share is ready (takes about a day)
- You have to use CIFS (Samba) to mount When the share is ready you can mount it on your server:
- On Linux servers
- Install cifs-utils
sudo yum install -y cifs-utils
- Mount the share using your AD credentials, e.g.
sudo mount.cifs //storage.yale.edu/home/YXNAT-CC1000-SSPS-AHEF /mnt -v -o vers=3.0,domain=yale,username=netid
- If you need to make it persistent and mount at boot time, you can add an entry to your /etc/fstab file
- Install cifs-utils
- On Windows servers
- Attach as you would a regular Windows share
- On Linux servers
...