Skip to main content

Exclusive security

1. Application protection box

  • Application protection box switch: after a specific application is enabled, the application implements full business data protection, and the platform administrator can no longer directly access the application background and view sensitive application data.
  • Other platform administrators such as IT cannot view this application after IT is enabled. IT is applicable to applications involving business secrets and sensitive data such as salary and payroll.

Configuration entry: background management-application settings-application permissions;


2. Zero-trust firewall

When YIDA on the cloud need to connect to the enterprise internal network integration automation (https) and external data source JDBC(TCP/IP) services, the enterprise is required to expose service to the public Internet by default.

YIDA support cooperation with DingTalk zero-trust enterprise gateway technology to avoid direct leakage of related services to the public network, and adopt zero-trust network penetration technology to ensure the business requirements of business interconnection, it still guarantees the safety of core services of enterprises.

3. IP network fence

Administrators can control employees' behaviors such as logging on to DingTalk, uploading, and downloading files based on network address segments or applications. You can passOA configuration background>Exclusive nail>Exclusive Security> security access> IP fencing, flexibly control the safe download of YIDA attachments for different applications of YIDA.

Description:

The public IP address, not the private IP address, is required for the IP segment configured for the IP fence.

Before

After

You can only disable YIDA attachment downloads or run attachment downloads as a whole, which cannot be controlled by application dimensions.

AccordingSpecific network IP segments,Specific organization group,Specific YIDA applicationsFlexibly configure attachment control based on different conditions.

4. Network connection mode

  • Dedicated DingTalk provides professional network proxy functions for network leased lines, and communicates between leased lines and public networks when the identity is trusted. Dedicated YIDA supports the Network leased line proxy mode of dedicated nails.

This doc is generated using machine translation. Any discrepancies or differences created in the translation are not binding and have no legal effect for compliance or enforcement purposes.
Copyright © 2024钉钉(中国)信息技术有限公司和/或其关联公司浙ICP备18037475号-4