Here in this phase of audit, the auditor would be auditing the infrastructure in the organization.
The pre-requisite would be to understand the architecture and process followed in the organization. In our sample environment, we have 3 servers:
a. Bastion Host server :- This is the server which is used for employees or contractors who connects through internet, externally. This server could be a VPN in some organizations, which filters the users connecting through internet, to remotely connect with other internal servers - application and web-servers.
b. Web-server :- This is the server which hosts the web applications - tomcat or JBOSS or so. This server should allow users to view the web-pages hosted, through web-browsers (HTTP or HTTPS protocols). At the same time, it shouldn't allow any users to gain remote destop connection too.
c. SQL Server :- This server has the Database for the web-server. The database should provide SQL access to the web-server which uses the database, and should allow remote connection through the Bastion Host server.
The below screen-cast, gives a clear picture on the whole EC2 audit process.
Commentaires