Enabling mobile access to PeopleSoft is a primary objective for many organizations. Naturally, there are security concerns when making transactions available on the internet. Here are (5) Best Practices you should consider
1) Identity and Access Management Must Be Enhanced
A username/password security model is not enough to effectively restrict unauthorized access. PeopleSoft passwords are inherently weak, easy to crack, and some users may have multiple passwords.
2) Align Authentication with an Identity Provider (IdP)
This is typically accomplished with an enterprise Single Sign-On that is natively integrated with an IdP. For PeopleSoft, your IdP is the best authentication database because it is centrally provisioned and governed by your corporate password mandates.
3) Always Utilize Multi-Factor Authentication
Multi-factor authentication (MFA) is an effective method for verifying identity. While having this functionality at login should be a standard part of a security posture, it is recommended that an adaptive MFA be utilized.
Adaptive MFA ensures that contextual attributes (ex. device, network, location) be the determining factor for deploying MFA challenges. This helps properly align levels of risk with access policies. Context of access varies in a mobile environment and your level of control should do the same.
4) Prevent the Unauthorized Exfiltration of Data
Data leakage is the #1 cause of breaches. Data exfiltration becomes a greater risk when access is remote – mostly because devices are no longer regulated. Limiting the running of reports and queries when access is remote will help ensure data is not exfiltrated on an unauthorized device.
In addition, implementing data masking on sensitive fields will help limit the exposure of sensitive data.
5) Enhance Your Visibility into Data Access
Simply put, if you are not logging access and usage data – then you’re at risk. Having visibility into user behavior is critical in order to detect and remediate a security threat.
Also, routine audits are critical for understanding what is happening inside your applications and if further steps need to be taken.
How Appsian Can Enable PeopleSoft for Mobile Access
Appsian delivers a sophisticated platform designed to give you complete control and visibility over your ERP data. We do this by strengthening your ability to: Authenticate Users, Manage Privileged Access, Limit Data Exposure, View User Activity, and Detect and Respond to Threats
Appsian has enabled more than 250 PeopleSoft customers worldwide to securely expand access to PeopleSoft. Let us show you how we can maximize your investment in PeopleSoft!
Request Your Demonstration Today!