Securing your deployment

Because your XProtect Essential+ deployment is connected to the internet, there are steps that you should take to ensure the security and stability of your installation.

Your XProtect Essential+ license is activated automatically online after you deploy the XProtect Essential+ CloudFormation. Make sure that your deployment has internet connectivity to activate your license and to be able to use XProtect Essential+ after the 30-day activation grace period.

To ensure the continued stability and security of the installation, keep your installation up to date with the latest updates to your Windows Server 2022 version.

Install Windows updates

Install relevant Windows updates according to the security policy of your organization. If you restrict online connectivity to your VPC, you can connect your XProtect Essential+ deployment to a Windows update service without exposing the VPC to the internet.

Change the password of your EC2 instance

After you deploy, you should change the Windows administrator password of the EC2 instance according to the security policy of your organization.

Remove unused ports

To protect your installation, Milestone recommends that you remove all unused ports from the security group that is related to your EC2 instance, For example, if the HTTP port 8081 is not used, you can remove that port from the Inbound rules table.

Get help

Milestone does not provide any direct technical support on the XProtect Essential+ product. Customers who deploy XProtect Essential+ can find wide set of self-service and support resources to end-users using Milestone Support. You can also use Milestone Support Community to ask questions and help other customers by answering their questions.