NetDBA4U is built with enterprise security as a foundational principle — not an afterthought. Every component is hardened, encrypted, and auditable.
Multiple independent security layers protect your data, credentials, and infrastructure at every touchpoint.
DUO Universal Prompt MFA enforced for all accounts. SAML 2.0 SSO with Active Directory integration (3 modes). Account lockout after failed attempts with automatic unlock.
AES-256-GCM for all credentials and AI chat content at rest. Transparent encryption on INSERT, automatic decryption on SELECT. TLS for all data in transit.
Key-based SSH authentication only. Dedicated netdba4u OS user per target. No stored passwords. SSH commands fully audited with command-level logging.
Comprehensive session security with hardened cookie policies, automatic inactivity termination, server-side session management, and protection against hijacking and fixation attacks.
Comprehensive and robust password policy with complexity enforcement, automatic rotation, history validation, and secure hashing. Configurable to align with your organizational standards.
Three-tier role system (READONLY, OPERATOR, ADMIN) with database-level restrictions. Every portal action logged. Oracle Unified Auditing integration for DDL and authentication events.
NetDBA4U implements the OWASP LLM Top 10 defensive patterns. Destructive workflows generated by AI (DDL, Drops, Grants, Container Switches) are trapped and queued for human approval.
All outbound cloud LLM requests pass through the Comms Sanitizer middleware, which strips topology details, masks passwords, and embeds firm "DO NOT TRAIN" restrictions to eliminate data leakage.
We are actively pursuing industry-recognized security certifications to meet enterprise procurement requirements.
Need a completed security questionnaire, architecture diagram, or penetration test report for your procurement team? We have them ready.