OneSpan Authentication Server Appliance Setup Checklist

  • Published on Jul 7, 2025
  • 1 minute(s) read
Prev Next

This topic provides a checklist for the correct GDPR-compliant setup of OneSpan Authentication Server Appliance and its components.

OneSpan Authentication Server Appliance

  • SOAP communication interface used with SSL.

  • SEAL communication interface used with SSL only.

    In case a component does not support SSL, the SEAL interface must be configured without SSL. However, to be GDPR-compliant, the component must be run in an isolated network to ensure a secure communication flow.

  • When using auditing:

    • If remote logging is used, the connection to any remote syslog servers should be over a secure network.
    • If log files are downloaded, the administrator must take care to protect them.

  • If using tracing or diagnostic log files:

    • Configure log file rotation.

Data Migration Tool

  • Data Migration Tool is placed in an isolated network.

  • If using tracing or diagnostic log files:

    • Configure log file rotation.

LDAP Synchronization Tool

  • Secure version of LDAP (LDAPS) is used.

Message Delivery Component

  • If the Email Delivery option is selected:

    • Gateway server must be configured to use SSL and TLS encryption.

Password Synchronization Manager

  • If using tracing or diagnostic log files:

    • Configure log file rotation.

Digipass Authentication for Windows Logon

  • If using tracing or diagnostic log files:

    • Configure log file rotation.

DIGIPASS Gateway

  • DIGIPASS Gateway is run on an encrypted disk.