Security on Xi Frame

Domains to Whitelist in Restrictive Network Environments

Sometimes users reside behind corporate networks that have strict network access policies. Connection issues can arise if certain domains are being blocked. To avoid this, administrators should reference this list of domains associated with delivering Frame’s service:

Domains Involved with Serving Frame Sessions

  • frame.nutanix.com
  • *.frame.nutanix.com
  • logs-01.loggly.com (for event logging only)

Anti-virus Software on Frame

Xi Frame images do not include anti-virus or anti-spyware tools. Administrators are responsible for installing and configuring their own choice of AV/AS tools. In most Xi Frame use cases, systems are stateless. As long as administrators are diligent about their work in the Sandbox and Utility servers, “exposed” production systems that are infected will be reverted on reboot. Frame ensures that all base images and back-end systems are scanned before deployment.

While many anti-virus software packages will work on Frame, due to the large number of anti-virus packages, and the possible complexity of configuration, interoperability is not guaranteed. Anti-virus software that prevents components of the Frame service from executing may cause loss of functionality within a Frame session, up to and including a complete inability to connect to sessions. Prior to installing an anti-virus package, a backup of your account’s Sandbox should be taken in the event that issues occur. Since most Frame customers use stateless systems, all anti-virus database updates will download each time a production instance is started. This can be avoided either by maintaining the Sandbox image (updating the Sandbox and publishing to production instances regularly) or using Persistent Desktops.

Any anti-virus software used on Xi Frame should whitelist the following directories and associated sub-directories:

  • C:\ProgramData\Frame – Contains libraries and utilities for Xi Frame Service, Server, and logs.
  • C:\Program Files\Frame\ – Contains Xi Frame Service and Xi Server executables which provide communication to the Frame Backplane for orchestration.
  • C:\Program Files\Mainframe2\ – Contains Cloud Drive integration libraries and executables.

Note

Please ensure that anti-virus “Tamper protection” is disabled during the publishing process.

GDPR Compliance

The security and privacy of our customers’ data has always been and will continue to be a top priority. Our Terms of Service and our Privacy Policy was updated as of May 25, 2018 to be more transparent and to comply with the new European Union General Data Protection Regulation (GDPR) directive. While very little is changing from a technical implementation perspective, these updated documents reflect how we are meeting the GDPR requirements.

We’ve added a paragraph under Section 1 of our Privacy Policy to clarify that we do transfer and store your information outside of the European Economic Area, in a way that is compliant with GDPR. We also reference our Data Protection Addendum (DPA) which outlines how we collect and process this data, how data retention and deletion are handled, and your rights and responsibilities when using Frame.

Nutanix License and Services Agreement

If you have any questions, please contact support through my.nutanix.com.