|
It's much simpler," says cheryl feldman, salesforce product manager. Apply the principle of least privilege. Privilegesalesforce recommends that all admins apply the principle of least privilege, which means granting users only the minimum permissions they need to do their jobs. This is a very useful principle to curb unauthorized access and reduce security risks. Principle of least privilege image source "Users can only access specific things (applications, services, etc.) through predefined paths, thereby preventing .If hackers are capable, they won’t do a lot of damage.
In order to gain access to the network," explains laura pelky, senior manager, security account management, sales. Disable the api users checkbox, which is not required unless you are an integration user. Enable the api users checkbox kuwait dataset during setup. We mentioned how important it is to reset the login credentials from time to time. However, the api user's password does not expire. Therefore, we recommend using oauth protocol as it provides more secure authentication. You can read more about how to implement authorization to grant secure access.
Rest api resources here. To prevent api credentials from being exposed, so that your api integration can access .Marketing cloud, you need to assign it a "Scope" in the installed package. Now, what is .Scope? The scope can be defined as .Marketing cloud. You don't want to enable all options in a range, but select a few based on the available authorization access levels. Why? Because once it happens. For potential credential exposure, a bad actor can perform any user action without having to do so.
| 
發表於 2025-3-6 16:18:45