DataStax Astra includes guardrails to ensure good practices and promote optimal database configurations.

Restricting access using administrative tools

DataStax Enterprise (DSE) includes administrative tools like nodetool, and dsetool that are useful to help manage the database. These tools are not compatible with DataStax Astra, because the complexities of database management are hidden to help you focus on application development.

Additionally, access to the database using the Java Management Extensions (JMX) technology is not supported. However, instead of using JMX tools like JConsole for getting statistics and metrics, you can view database and health metrics directly from the DataStax Astra console.

Simplified security without compromise

DataStax Astra provides a secure cloud based database without requiring you or your applications to dramatically change the way you currently access your internal database.

New user management flows have been created to avoid the need for superusers and global keyspace administration in CQL. Endpoints are secured using mutual authentication either with mutual-TLS, or with secure tokens issued to the client. TLS provides a secure transport layer that you can trust, ensuring that data in flight is protected. Data at rest is protected by encrypted volumes.

Additionally, DataStax Astra incorporates advanced DSE features like RBAC (role-based access control) and RLAC (row-level access control).