One of the HTTP\S scouts in Scoutbees is failing with an error related to SSL/TLS alerts. The Application Events section shows that the organization is currently inactive and suggests a possible error with cipher suite hardening. However, the monitor server can access the site fine through Edge and other internal HTTP\S scouts are working properly. No further information could be found in the Windows System event log.
Read the entire article here...
Security Related Training & Support Archives
Security training and support-related archives from inside the ControlUp Community on Slack.
Integrating Azure Secure Score into Secure DX – A Discussion on Tracking Progress
A discussion took place regarding integrating the azure secure score into secure DX to track progress and justify its use. The suggested idea would include a dashboard with a user's security score and statistics for comparison with other customers. More details can be found in the discussion thread.
Read the entire article here...
Read the entire article here...
ControlUp Site Load Scouts Failing from Certain Hives
There was a discussion regarding Site Load scouts failing from certain ControlUp hives. Some users reported failures in Northern Virginia and Seattle, while others had no issues in these hives. One user's site load scout was initially disabled but after testing, it seemed to be working fine. Upon further testing, Northern Virginia and Montreal started failing with the message that the resources haven't finished loading. Another user suggested opening a ticket for further investigation and mentioned that they have not heard similar reports from other customers. One user speculated that the failures may be due to their security measures blocking the cloud hive IP addresses. The conversation ended with the suggestion to open a ticket for further investigation.
Read the entire article here...
Read the entire article here...
SecureDX and the Detection of Stolen Citrix Session Cookies
A discussion was had about the possibility of using SecureDX to kill Citrix sessions that showed indicators of being accessed through stolen Netscaler cookies. The group explored different potential solutions, including Citrix Security Analytics and potential AI-based solutions being looked into by ControlUp in the future. They also discussed the potential of using the ControlUp client to detect and flag unauthorized access. No clear solution was found, but the potential for future developments in this area was identified.
Read the entire article here...
Read the entire article here...
Choosing the Best Tool for User Management in ControlUp – Comparing Group Policy and WEM
A discussion takes place on the ControlUp Slack channel about the best way to add registry entries using the User logon trigger. Some users suggest using Group Policy or PowerShell commands, while others mention that Citrix WEM could also be an option. Different considerations, such as login times and scalability are mentioned when comparing WEM to Group Policy. Some users mention past issues with WEM, but also acknowledge that it may be a suitable tool for certain environments.
Read the entire article here...
Read the entire article here...
Enabling Agent Connectivity in ControlUp Products
A user asked about enabling agent connectivity from Windows 10 operating systems that are not domain connected and have no open inbound ports - with the existence of an option to open outbound traffic. They also asked if the agent is capable of initiating communication once installed. The response was that starting from version 9, both EdgeDX and RealtimeDX agents can connect using an outbound SSL 443 connection, and domain membership is not a requirement.
Read the entire article here...
Read the entire article here...
Has There Been a Change to ControlUp API Access?
A user's API calls have started failing recently, and they are wondering if there have been any changes to the requirements. Another user reassures them that there haven't been any changes that should have affected customer API access, but TLS 1.2 support was added in 2022. The user speculates that there may have been a change control that broke their access.
Read the entire article here...
Read the entire article here...
ControlUp for Multiple Customers Without AD Trusts
A user is asking for help with setting up ControlUp for multiple customers without AD trusts. They have read an article about installing the ControlUP Monitor in the customer's domain and opening port 40706. The discussion includes clarification on DNS resolution and port 40706. The upcoming release of Real-Time DX v9 is mentioned as a solution for easier installation in the future, with the ability to deploy the Monitor in a DMZ and access it remotely. The user is advised to open a ticket for more instructions on assigning monitor templates. The discussion also mentions using extensions for vCenter, XenDesktop, Horizon, NetScalers, etc.
Read the entire article here...
Read the entire article here...
Troubleshooting ControlUp Monitor Errors
A user reported getting errors in a ControlUp monitor for certain machines, specifically related to the service account not having admin rights. It is suggested to add the account to the ControlUp Admin role to resolve this issue. This issue was not related to onboarding to the new app.controlup.com.
Read the entire article here...
Read the entire article here...
ControlUp, FSLogix, and Citrix DaaS – Users Share Experiences and Questions
A user asked if anyone else has experience using Citrix DaaS and FSLogix with ControlUp. They are not seeing any FSLogix data in the Console and have questions about the System Process showing a lot of disk writes. Another user shared their experience with FSLogix and ControlUp, mentioning that their data started showing right away and they do not run a Windows OS for CIF shares. The first user thanks the second for their input and mentions an issue with Crowdstrike using CPU when the Windows firewall is on.
Read the entire article here...
Read the entire article here...