Ports & Whitelisting
TCP/UDP ports need to be open for traffic to get thru:
80 (HTTP) and 443 (HTTPS)
The following URLs need to white-listed for Suitcase Fusion 7/Suitcase Fusion 8, and TeamSync:
Does TeamSync integrate with Active Director or LDAP?
How does Suitcase TeamSync do authentication and authorization for access to the system?
Custom, web-based authorization.
What are the password complexity requirements and time limits on authentication credentials?
Minimum 8 characters. We have 30 minutes session timeout on secure.extensis.com, but no specific authentication time limit.
How and when are passwords required to change?
How does Extensis store data in the system?
Font files, font organization, metadata
Collection of Usage Data?
How is the data protected while in transit?
Does Extensis Suitcase TeamSync provide role based security and how is that done?
TeamSync provides per-user permissions to control access to admin functions and/or read/write access to fonts. Access to font libraries is also per-user. There are no broader role-based permissions than this.
How will updates to the application (Extensis Suitcase TeamSync), server, etc. be accomplished?
The Suitcase Fusion 7 client application is updated by the customer. The TeamSync server portion is updated automatically by deploying new versions into Amazon Web Services when we have changes.
Who will perform the server and database updates/patching?
Production deployment updates are performed by the Extensis DevOps team
Are the updates tested prior to implementation and how?
Yes, by development team.
How will backups be accomplished and how are they stored?
Managed by Amazon Web Services infrastructure
How long are logs kept and who will have access to them?
Logs for troubleshooting and customer service/technical support purposes are kept for 14 days. Logs are archived indefinitely on Amazon Web Services S3/Glacier storage and accessible by Extensis DevOps team. Some logs may persist for longer on deployed machine instances.
Procedures in case of a data breach
Responses by the Extensis Incident Response Team can include or proceed through the following stages: identification, severity classification, containment, eradication, recovery and root cause analysis resulting in improvement of security controls. The Incident Response Team will respond as per the more detailed Incident Response Plan published and maintained by the Extensis DevOps Manager.
Is there any way we can create a clean database for the Suitcase Fusion 7 client? We want to configure the settings that need to be set in a new environment.
It isn't possible to pre-configure Suitcase Fusion 7 to use an alternative vault location apart from the default. This isn't a configuration that is officially supported. You may want to consider Universal Type Server and Universal Type Client which is our centralized font management product as you can pre-configure the client.
Can TeamSync sync fonts from users local server or does it have to be in the Cloud?
Teamsync isn’t designed to source fonts from a local server.