The security measures built into 2getHR cover all points on the OWASP list regarding internet security. Here are the most important features that guarantee that data is kept safe and protected in the best possible way.
• Access to 2getHR is only possible via HTTPS. This guarantees an always present end to end encryption between client and server.
• The entire database is encrypted at all times by “Transparent Data Encryption”. It is therefore not possible to access unencrypted data in the very unlikely event of a data leak.
• The firewall settings of the Azure Cloud prevent direct access to data resources from outside the Azure Cloud.
• Two-factor authentication is offered via tokens (Google Authenticator) or fingerprint. This protects against unauthorised access in the event that the password is lost.
• Access by robots / bots is prevented via state-of-the-art server-side recognition as well as via captchas.
• Each company is located in a completely closed data room, which prevents cross-company access.
Go to portal.azure.com -> Azure Active Directory -> App registrations
Create a new app registration. Set the name and leave “Accounts in this organizational directory only (Default Directory only - Single tenant)” account type.
For the redirect URI please set https://app.2gethr.ch/api/AzureAdAuth/Authenticate
When you are ready, click Register.
Copy “Application (client) ID” and “Directory (tenant) ID” to from azure portal to 2getHR settings.
Then click your app name (next to “Display name” label).