Confluence 4.0 has reached end of life
Check out the [latest version] of the documentation
This section gives guidelines on configuring the security of your Confluence site.
Other topics:
- For information about user management, groups and permissions, please refer to the internal security overview.
- For an overview of Confluence application security, see the page on Confluence security.
Setting up a Secure Confluence Site
- Confluence Cookies
- Configuring Secure Administrator Sessions
- Using Fail2Ban to limit login attempts
- Securing Confluence with Apache
- Enabling or Disabling Public Signup
- Managing External Referrers
- Best Practices for Configuring Confluence Security
- Hiding the People Directory
- Configuring Captcha for Spam Prevention
- Hiding External Links From Search Engines
- Configuring Captcha for Failed Logins
- Configuring XSRF Protection
- User Email Visibility
- Anonymous Access to Remote API
- Running Confluence Over SSL or HTTPS
- Connecting to LDAP or JIRA or Other Services via SSL
- Configuring RSS Feeds
Overview
Content Tools
Apps
Except where otherwise noted, content in this space is licensed under a Creative Commons Attribution 2.5 Australia License.