A discussion was had about the possibility of using SecureDX to kill Citrix sessions that showed indicators of being accessed through stolen Netscaler cookies. The group explored different potential solutions, including Citrix Security Analytics and potential AI-based solutions being looked into by ControlUp in the future. They also discussed the potential of using the ControlUp client to detect and flag unauthorized access. No clear solution was found, but the potential for future developments in this area was identified.
Read the entire article here...
Authentication Related Training & Support Archives
Authentication training and support-related archives from inside the ControlUp Community on Slack.
Troubleshooting 10ZIGS Devices Not Appearing in ControlUp EdgeDX
A new employee at ControlUp asks for help with getting their 10ZIGS devices to appear in EdgeDX. Another employee suggests checking if there is a proxy blocking the agent from accessing the tenant, and provides a link to the tenant name and instructions for installing the agent. They also mention that the process should be called "sipagent" and logs can be found in /var/log/avacee. The conversation ends with the new employee confirming the process name and stating they will check the logs. There is also a link provided for agent installation instructions.
Read the entire article here...
Read the entire article here...
Streamlining the Login Process for ControlUp’s DEX Console
ControlUp users discussed the login process for the DEX console, which can be simplified by using the Azure login option. If not using SAML, users can log in with their email and password, with the option to disable MFA. In the upcoming release, users will also be able to log in with an email-based user, making the process even more seamless. The specific login steps were outlined, including the use of an IDP for SAML authentication. URL: app.controlup.com/acmeorg/saml (with acmeorg being the specific organization)
Read the entire article here...
Read the entire article here...
The Transition to ControlUp’s Web Interface and the DEX Upgrade Plan
A user asked about ControlUp Academy - this is a training platform with free self-training and instructor-led content. Certifications from ControlUp are available. The Academy can be found at https://cuacademy.controlup.com/ A discussion about the transition from Solve to app.controlup.com is taking place. While the move to DEX should not remove users, it is recommended to set up DEX with SAML for an easier experience. The group memberships can be added to the RT security policy in the console. A link is provided for upgrading an existing organization. Starting in version 9.1, the console will require authentication in Dex first. It is suggested to plan for the upgrade sooner rather than later. Some users prefer Solve over Dex, but the transition is in the best interest of customers. It is possible for long-time users to continue using the RT console. The move to Dex allows for a single web interface. ControlUp's stance on putting customers first is reiterated. A meeting is offered to gather feedback on the topic. Using SAML is considered a best practice for the improved user experience.
Read the entire article here...
Read the entire article here...
Collectively Improve Current ControlUp Functionalities with UserVoice Feature Request
A user sought the help of other ControlUp Citrix DaaS & ControlUp users in pushing for an improvement with regards to the current functionalities. A feature request was made on ControlUp UserVoice (https://controlup.uservoice.com/forums/953875-controlup-uservoice-prospect-request-form/[…]ns/47371013-rewrite-all-controlup-scripts-for-citrix-daas). The user needed to modify an existing script ("Enable CVAD machine maintenance mode") to suit their DaaS environment. Guy is currently scoping out this work with an initial script.
Read the entire article here...
Read the entire article here...
Improved Authentication Method Coming in ControlUp 9.1
A user discussed needing an improved authentication method for the Real Time DX Console, with the preference for Azure OAuth or SAML. This will be included in the 9.1 release, and @member will keep the audience updated when the design is finalized. On-premises users were also mentioned.
Read the entire article here...
Read the entire article here...
Getting Started with Securely Exporting ControlUp Metrics
A user asked if a ControlUp Solve dashboard can be published externally without authentication; it's not possible for security reasons. Alternatives include exporting metrics with PowerShell and HTML and using the Power Platform, or leveraging ControlUp DEX with its username/password authentication. More information on ControlUp DEX can be found at https://support.controlup.com/docs/get-started-with-the-new-dex-platform.
Read the entire article here...
Read the entire article here...
Error Inviting New User on ControlUp DEX Tenant
The user was having difficulty inviting a new user on their dex tenant. It was suggested that the user should have access to the ControlUp configuration console. However, it was clarified that this is only needed for the VDI and Daas part. The user was advised to open a support ticket to resolve the issue.
Read the entire article here...
Read the entire article here...
Sending MSFT Teams Messages with ControlUp Realtime DX’s Rest Action
A user asked for examples of using Realtime DX's Rest action to send messages to MSFT Teams via the Graph API. It was suggested to follow ControlUp guidelines (https://support.controlup.com/docs/using-webhooks-as-follow-up-action) and use webhooks and Adaptive Cards for Teams. Sample powershell code was provided along with the permissions typically needed (Chat.ReadWrite or ChannelMessage.Send).
Read the entire article here...
Read the entire article here...
How to Check if a User Accessed an Application such as a VPN in ControlUp
The user asked if it was possible to see if a user had used an application such as a VPN. @member recommended checking stopped processes and authentication logs, then provided a script to check the VPN default gateway. It was suggested that an alert could be set, but the user noted they were looking for a report. An update was provided, detailing how the user found the information they needed by looking at the user's login and logout times and logs. @member was thanked, and Blair was asked to set up a customer testimonial about it.
Read the entire article here...
Read the entire article here...