This document enclosed describes the various authentication processes involved in a Woody installation, and how to change default passwords to improve security.
Woody Technologies recommends several Best Practices in order to ensure a good security level for your installation:
- Use LDAP or SAML2 authentication providers to manage users who administrate and use Woody systems.
- Change the default passwords for Woody administrator, ArangoDB and RabbitMQ.
- Do not communicate the password of Woody administrator user inside your organisation, grant administrator privileges to individual LDAP or SAML2 users instead.
- Do not enable anonymous access to Woody pages.
Note: Installation of Woody software is not covered by this document. Please refer to the Woody Installation Guide corresponding to your software version.