GLPI combines help desk, asset data, and automation plugins. Hardening should focus on profile permissions, plugin governance, and agent authentication controls.\n\n## 1) Tighten profile and entity permissions\n\n- review self-service, technician, and admin profile rights in each entity\n- keep private follow-ups/notes restricted to internal support roles\n- audit permission changes after workflow or entity updates\n\n## 2) Enforce strong authentication and account recovery controls\n\n- enable GLPI MFA for administrators and technicians\n- secure backup codes and disable unused local admin accounts\n- enforce password/lockout policies for interactive users\n\n## 3) Control plugin and integration risk\n\n- install only maintained plugins from trusted sources\n- isolate mail collectors/integrations with least-privilege credentials\n- encrypt ticket/asset backups and protect remote access keys
Any questions?
Feel free to contact us. Find all contact information on our contact page.