A user asked for documentation and other information about the data the ControlUp Agent sends to the cloud service -- sales or CSM contacts can help with this question, and GDPR/security documents can address customer security concerns. Edge DX is cloud-only, and relevant data can be found in the data indexes when the internal indices tickbox is enabled. Link to Security Architecture: https://support.controlup.com/docs/security-architecture.
Read the entire article here...
Security Related Training & Support Archives
Security training and support-related archives from inside the ControlUp Community on Slack.
Managing Access Control in ControlUp EdgeDX
A user enquired about whether Access Control was removed from EdgeDX. It was suggested the user compare access in Edge and app.controlup.com. It was advised the user should look for the toggle in the upper right corner in Edge, and if it wasn't present then they didn't have the permissions to make role changes. A screenshot was provided to illustrate the toggle.
Read the entire article here...
Read the entire article here...
Issue with Two Netscalers Resolved with Shared Credentials with the ControlUp DEX Portal
A user experiencing issues with their two Netscalers asked for help. They were advised to check their monitor settings, data sources tab, credentials, and run a test-netconnection. The user detected a firewall issue, used the shared credentials and saw data in the web portal. They then asked help with their email trigger when the primary/secondary flip not working.
Read the entire article here...
Read the entire article here...
Feature Parity Matrix and FedRamp Certification for ControlUp
A user asked ControlUp about FedRamp certification, and if there was a feature parity matrix between the on-prem release and SaaS. They were informed that ControlUp is not FedRamp certified but is in the process of obtaining this certification, and a feature matrix is available at https://support.controlup.com/docs/controlup-modes. Additionally, edge dx and Scoutbees require the cloud and when in the Government space, Hybrid mode is not available.
Read the entire article here...
Read the entire article here...
Tools to Make ControlUp Easier to Use
Three ControlUp articles were shared: Edge DX Prerequisites, a Fix for devices with ZScaler VPN not showing their real IP address in Edge DX, and a script/scheduled trigger to sync ControlUp accounts with an AD group. These tools can help make ControlUp easier to use. The articles can be found at https://support.controlup.com/docs/.
Read the entire article here...
Read the entire article here...
Sending MSFT Teams Messages with ControlUp Realtime DX’s Rest Action
A user asked for examples of using Realtime DX's Rest action to send messages to MSFT Teams via the Graph API. It was suggested to follow ControlUp guidelines (https://support.controlup.com/docs/using-webhooks-as-follow-up-action) and use webhooks and Adaptive Cards for Teams. Sample powershell code was provided along with the permissions typically needed (Chat.ReadWrite or ChannelMessage.Send).
Read the entire article here...
Read the entire article here...
Restricting Access to the ControlUp DEX Portal
The user asked how to restrict access to the DEX portal - the solution provided is to use the SAML login and configure the service provider to only allow access from certain clients or IP addresses. This can be done with the Azure login option, and IP restrictions are on their way to DEX, estimated to be available in early Q1 2024.
Read the entire article here...
Read the entire article here...
Restricting Access to ControlUp DEX Portal
A discussion arose about restricting access to ControlUp's DEX portal, such as with a specific client certificate, IP address or Azure hybrid joined client machine. Using SAML could be a solution as the service provider can deny access if criteria are not met, and IP restrictions are said to be arriving in the early months of 2024. The DEX login method "azure login" does not have further possibilities, but SAML does.
Read the entire article here...
Read the entire article here...
Limiting the Number of Connections in ControlUp Real Time Console
A new user asked if there was a way to limit the number of connections in the ControlUp Real Time Console that a given user can have to the client machines. The suggestion was to use the Solve console, which the user said might not offer the same 'Incidents view'. However, the Audit Log from the Solve console can show all the triggers that were fired and actions ran, as well as limit the 'Connect to Windows Machine' permission. It was suggested to explain the resource constraints to the help desk team and rely on their own principles of self-control. There is no way to detect if too many connections are open, and the Security Policy is all or nothing.
Read the entire article here...
Read the entire article here...
Troubleshooting an Elevated Child Process Error in ControlUp
A user experienced issues running a script through ControlUp Console, getting an error message about an elevated child process. Dennis suggested it may be due to User Access Control being enabled, however it was not enabled. A further suggestion was to try the script locally with the quiet switch, however it was reported that this made no difference. Dennis explained that the difference was that a hidden window was created in the non-interactive window session.
Read the entire article here...
Read the entire article here...