Discussion on installing ControlUp agents through the console. Initially, there was an issue with failed attempts due to ports being blocked and files not being able to be replaced. A support ticket was recommended for further assistance. Later, it was discovered that a permission issue was causing trouble and a specific fix was needed. It was suggested to get on a call for further troubleshooting.
Read the entire article here...
Security Related Training & Support Archives
Security training and support-related archives from inside the ControlUp Community on Slack.
Understanding Protocol Latency: Causes and Implications
Protocol latency is the time taken by a communication protocol to process and transmit data across a network. Factors such as network congestion, distance, protocol overhead, and server processing time can affect latency. This can impact system performance and user experience, making it crucial to reduce protocol latency for real-time applications.
Read the entire article here...
Read the entire article here...
Addressing Drive Mapping Issues with a Custom Script Action
A user is seeking suggestions for a custom script action to identify the root cause of drive mapping issues for a customer. More information is needed on what the script should achieve. The customer deploys network drives via GPO, and the issue could be due to reasons such as VPN or insufficient permissions. The user wants to gather as much information as possible when a drive is not mapped, as a gpupdate/force does not provide insight into the cause of the issue.
Read the entire article here...
Read the entire article here...
Troubleshooting Script Issues with “Power On Generic VM” in ControlUp
A user reported encountering an issue with the "Power On Generic VM" script while using ControlUp at a customer's site. Others responded with potential solutions and one user shared their process for releasing scripts on the ControlUp Community Slack channel. The original poster planned to run the script in a trigger on powered off VMs and asked if this would affect permissions. The conversation also delved into the necessary user permissions for scripts that use invoke-cuquery or similar functions and the importance of running as a domain user. A linked to a previous post about releasing scripts on the ControlUp Community Slack channel was also shared.
Read the entire article here...
Read the entire article here...
New Remote Control Feature for Non-Domain/Corporate Devices and IP Restrictions in ControlUp
There was a discussion about the new Remote Control feature and whether non-Domain/Corporate devices can access it. The new feature is not dependent on Active Directory and only requires the agent to communicate with ControlUp's backend. Some companies may see this as a security risk, but it can be restricted to only allow access from corporate-owned devices by setting up the SAML provider. The required URLs for communication can be found at https://support.controlup.com/docs/agent-outbound-communication#required-urls and more information about remote controlling VDI/DAAS devices can be found at https://support.controlup.com/docs/remote-control-your-vdi-daas-devices. The group also discussed the importance of thoroughly reading and understanding the documentation before asking questions.
Read the entire article here...
Read the entire article here...
ControlUp v9.x Inbound/Outbound Connections: Issues and Solutions Shared
A discussion took place regarding the inbound and outbound connections in the new version 9.x. Some users reported issues with disconnected connections and concern was raised about the impact on the agents. Ultimately, it was suggested to allow client traffic to/from ControlUp's AWS hosted services without firewall packet inspection for optimal communication. The agents have an escalating hold off pattern for reconnection attempts. It was also mentioned that the ControlUp URLs are hosted in Azure and there is an offline flow available as an alternative.
Read the entire article here...
Read the entire article here...
Troubleshooting Scoutbees Issues with SSL/TLS Alerts
One of the HTTP\S scouts in Scoutbees is failing with an error related to SSL/TLS alerts. The Application Events section shows that the organization is currently inactive and suggests a possible error with cipher suite hardening. However, the monitor server can access the site fine through Edge and other internal HTTP\S scouts are working properly. No further information could be found in the Windows System event log.
Read the entire article here...
Read the entire article here...
Integrating Azure Secure Score into Secure DX – A Discussion on Tracking Progress
A discussion took place regarding integrating the azure secure score into secure DX to track progress and justify its use. The suggested idea would include a dashboard with a user's security score and statistics for comparison with other customers. More details can be found in the discussion thread.
Read the entire article here...
Read the entire article here...
ControlUp Site Load Scouts Failing from Certain Hives
There was a discussion regarding Site Load scouts failing from certain ControlUp hives. Some users reported failures in Northern Virginia and Seattle, while others had no issues in these hives. One user's site load scout was initially disabled but after testing, it seemed to be working fine. Upon further testing, Northern Virginia and Montreal started failing with the message that the resources haven't finished loading. Another user suggested opening a ticket for further investigation and mentioned that they have not heard similar reports from other customers. One user speculated that the failures may be due to their security measures blocking the cloud hive IP addresses. The conversation ended with the suggestion to open a ticket for further investigation.
Read the entire article here...
Read the entire article here...
SecureDX and the Detection of Stolen Citrix Session Cookies
A discussion was had about the possibility of using SecureDX to kill Citrix sessions that showed indicators of being accessed through stolen Netscaler cookies. The group explored different potential solutions, including Citrix Security Analytics and potential AI-based solutions being looked into by ControlUp in the future. They also discussed the potential of using the ControlUp client to detect and flag unauthorized access. No clear solution was found, but the potential for future developments in this area was identified.
Read the entire article here...
Read the entire article here...