Cloudscape includes security and deployment features that help you manage how data is collected, stored, and protected. This article gives you an overview of data flow, access controls, encryption methods, and compliance practices so you can better understand how the platform supports a secure deployment.
Deployment model and data flow
CloudScape supports both on-premises (FlexDeploy) and SaaS deployment models. With FlexDeploy, inventory and performance metrics remain on-site. Subscription, licensing, and authentication are managed centrally.
Scope of data collected
CloudScape collects inventory, performance, and connectivity data.
Sensitive process arguments can be removed using the Scrub Process Arguments setting in RN150.
See: What CloudScape collects
Data protection and encryption
- RN150 uses AES-256 to store credentials and 4096-bit GPG encryption for data exports
- HTTPS secures communication with FlexDeploy and AWS services
- SaaS environments use encryption at rest and in transit (EBS, RDS, S3)
- SSL validation is enforced unless disabled by a proxy
External connectivity
Review required endpoints and connectivity requirements:
Deployment requirements
Data residency and compliance
CloudScape stores data in the Flexera cloud on AWS. Data is encrypted and protected using established compliance controls.
User access and RBAC
CloudScape supports three roles:
- Subscription administrator
- Read/write
- Read-only
External identity provider (IdP) integration is not supported.
MFA and authentication
- MFA is enforced for appliances and the CloudScape portal
- Supported methods include SMS and email
- Single sign-on (SSO) and external IdP integration are not supported
Privileged credentials
For RN150, you need the following privileged credentials:
-
vCenter: Read-only access
-
Standalone ESXi hosts: Root access
-
CyberArk: Supports credential vaulting
Secrets management
Credentials are stored locally using AES-256 encryption or in a CyberArk vault.
See: CyberArk integration
Network placement
You determine network placement and segmentation during deployment.
Logging and monitoring
Logs are retained for 60 days. You can forward logs to an external syslog system if needed.
Data integrity
CloudScape uses strict typing and validation to help maintain data accuracy.
System updates and patch management
Appliances automatically install curated OS security updates every 24 hours.
Vendor support and remote access
Support access is available only when you enable Advanced Debugging during a support session.
DNS and certificates
Replace default self-signed certificates with certificates issued by your internal PKI.
See: Certificate management
Threat modeling and risk assessment
CloudScape undergoes internal threat modeling. The RN150 appliance is hardened based on the CIS Debian Benchmark. SSL validation is enforced unless disabled by a proxy.
Related Articles
Security Credentials Storage and Encryption in Data Platform 5Number of Views Recognizing Microsoft SQL Server installations using Deployment Manager and Enterprise Compliance Manager 10Number of Views Cloudscape Best Practice: Export performance data into CSV 5Number of Views An Overview of Quarantine Management 257Number of Views FlexNet Operations Cloud ALM - Data Access APIs Overview 10Number of Views
Hi, I am Reva - Ask me anything.
No new updates
Thanks for the feedback!
Your feedback has been saved.Rate this response:
Add Additional feedback ( Optional )
Are you sure you want to cancel
the case creation?
Are you sure you want to cancel the case creation?
Are you sure you want to close this case
| Products | Region | Phone Numbers |
|---|---|---|
| FlexNet Operations FlexNet Embedded FlexNet Publisher FlexNet Connect FlexNet Code Insight InstallAnywhere InstallShield |
North America * |
+1 630-332-2513 (toll) +1 877-279-2853 (toll-free in North America) |
| Europe * |
+44 1925 944367 (toll) +44 800 047 8642 (toll-free in Europe) |
|
| Japan * | +81 3-4540-5335 (select option 2) | |
| Australia * |
+61 3 9895 2177 +61 1800 560 603 (toll-free in Australia) |
|
|
Usage Intelligence (formerly
Revulytics) Compliance Intelligence |
Please use the Case Portal to submit your support ticket or reach out to your Revenera contact. | |
Revenera Assistant
Case id: 00001065
Activity: Status change: 2 hours ago