Expand my Community achievements bar.

SOLVED

How can we load + pen test in AEMaaCS?

Avatar

Level 3
Level 3
10/9/24 6:01:40 AM

Looking for any suggestions/recommendations on how we can load and penetration test before our go-live date through Adobe? Appreciate any documentation or other references.

Thanks!

Topics

Topics help categorize Community content and increase your ability to discover relevant content.

Experience Manager as a Cloud Service

Views

273

Replies

5
Sign in to like this content

Total Likes

Translate
Translate
1 Accepted Solution

Avatar

Correct answer by
Level 8
Level 8
10/9/24 11:52:27 AM
In response to Jörg_Hoh

For pen testing it is important to notify Adobe as they might consider your test an attact attempt and block it. For load testing I've only used Grafana K6, but I can recommend it as it is very simple to set up.

On my project we only do load testing on AEM publisher, bypassing CDN and Dispatcher (with a simple query parameter). We test for double the load that we observe in PROD AEM request logs.

 

Hope this helps a bit,

Daniel

View solution in original post

Views

204

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply
5 Replies

Avatar

Community Advisor
Community Advisor
10/9/24 6:57:32 AM

@IshaJa In order to be able to proceed with the PEN test, you will need to get in touch with your Adobe Account Team who will fill out a non-disclosure form with you.

 

https://experienceleague.adobe.com/en/docs/experience-cloud-kcs/kbarticles/ka-19808

 

Views

267

Replies

3
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 3
Level 3
10/9/24 7:53:29 AM
In response to Harwinder-singh

Hi @Harwinder-singh, I saw that.

 

Does this mean that Adobe would handle the PEN test? Or that we as the customer would need to handle it through an external vendor, but we still need to have a non-disclosure form filled out?

Views

253

Replies

2
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Employee Advisor
Employee Advisor
10/9/24 9:38:10 AM
In response to IshaJa

Adobe does test its own platform, but Adobe cannot do a test of your application.

Views

227

Replies

1
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Correct answer by
Level 8
Level 8
10/9/24 11:52:27 AM
In response to Jörg_Hoh

For pen testing it is important to notify Adobe as they might consider your test an attact attempt and block it. For load testing I've only used Grafana K6, but I can recommend it as it is very simple to set up.

On my project we only do load testing on AEM publisher, bypassing CDN and Dispatcher (with a simple query parameter). We test for double the load that we observe in PROD AEM request logs.

 

Hope this helps a bit,

Daniel

Views

205

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply

Avatar

Administrator
Administrator
10/15/24 1:48:53 AM

@IshaJa Did you find the suggestions helpful? Please let us know if you require more information. Otherwise, please mark the answer as correct for posterity. If you've discovered a solution yourself, we would appreciate it if you could share it with the community. Thank you!



Kautuk Sahni

Views

131

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Related Conversations
Integrate splunk with aemaacs

Views

23

Likes

0

Replies

1
How to Render the different version of Header for Specific Pages Using Experience Fragments in AEM?

Views

35

Likes

0

Replies

1
How to fix "Cannot read properties of undefined (reading 'registerLayer')" in Authoring?

Views

200

Likes

0

Replies

2
How to skip childnode in rollout

Views

81

Likes

0

Replies

4
How to customize paraformat plugin in aem

Views

104

Likes

0

Replies

3