ControlUp Community

Connect, Learn, and Grow

Security Related Training & Support Archives

Security training and support-related archives from inside the ControlUp Community on Slack.

Automating the Deployment of ControlUp for Compliance

Posted on

A user asked about automating the deployment of ControlUp for Compliance (formerly known as Secure DX) for new physical machines. Another user shared a script that could run the installation silently. The script can be found at https://cdn.spm.controlup.com/agent. Instructions were provided on checking for the latest version and running the script if necessary.

Read the entire article here...

Finding App Launch Instances on Endpoints with ControlUp API

Posted on

A user asked how to find the number of instances of an app launched on endpoints over a specific period of time. Another user provided a Powershell script that can be used to retrieve this information from the ControlUp API. The script can be modified to change the start and end date-times. The response also included a screenshot of the values for "citrix.desktopviewer.app.exe" for a demo tenant.

Read the entire article here...

IGEL thin clients using port 44484 for trace routes in Edge DX

Posted on

According to the source code, Edge DX uses traceroute or tracepath to perform trace routes, depending on which one exists. For IGEL devices, only tracepath seems to be available. The port used is random, but usually starts at 44444 and adds a varying modifier based on the version. It is possible that IGEL or the underlying OS uses a static offset. On 12/31, the security team noticed traffic on port 44484 from our IGEL thin clients, which may be caused by additional Network Latency targets set in Edge DX settings. To confirm, they will disable the targets and monitor the traffic.

Read the entire article here...

Troubleshooting Device Location Updates in Edge DX

Posted on

A user reported that their device location does not always update in Edge DX, giving an example of their device showing work location after working from home for 18 hours. A suggestion was made to check if device's public IP is changing when switching locations and checking the status of location services on the device's OS. A link to documentation on device geolocation was also shared.

Read the entire article here...

Securing Laptops with ControlUp and other Options

Posted on

A discussion took place about different security options for laptops, specifically a method to prevent bootup in the event of theft. It was mentioned that ControlUp does not have this feature, but there is a user voice open for it. It was also suggested to use MDM or Intune for this purpose, but it was noted that a script will not run if the agent cannot communicate with the device. Some laptops have Absolute software built-in for this purpose. Another possible solution is using BitLocker with TPM+PIN, but it is important to ensure proper policies are in place for it to be effective. URL mentioned: www.absolute.com

Read the entire article here...