A user had difficulty getting ControlUp Monitor to collect data from their VMs. Suggestions include creating a separate role for their Monitor service account and creating a separate service account with access to the computer objects in the farm and AD reader permissions. Additionally, the user was directed to a link with the Security Policy for Users and Permissions found on ControlUp's website.
Read the entire article here...
Security Related Training & Support Archives
Security training and support-related archives from inside the ControlUp Community on Slack.
Is there a Security Policy to Allow or Deny the Changing of Views in ControlUp Console
A user suggested a security policy to allow/deny changing views in ControlUp Console, which would have to be set on a per-user basis. It has been 6 years since views became global while the column order is still per user and stored in appdata XML. If a new view is created, everyone sees it, which might explain why our demo lab is "jam packed with them". The user tested that after moving OS to the left, closing the console, deleting the private config, and relaunching the console, OS was back to the right.
Read the entire article here...
Read the entire article here...
Using Multi-Factor Authentication (MFA) with ControlUp and Scoutbees
A user asked about using Multi-Factor Authentication(MFA) for Scoutbees with ControlUp, discussing external and internal scouts, static tokens, and options such as TOTP. Phone call verification and SMS-based MFA are both supported, as well as TOTP and static codes. Documentation was described as "clear as mud".
Read the entire article here...
Read the entire article here...
Is it Possible to Run Monitor Cmdlets in a Remote Session?
A user asked if it is possible to run the monitor cmdlets in a remote session. The answer was no, as it is a limitation of WCF and the use of named pipes. Process Monitor and Process Explorer were suggested to help, but this is only a temporary solution. Dennis Geerlings was mentioned - it is jokingly said that every day is Dennis Geerlings day at ControlUp.
Read the entire article here...
Read the entire article here...
Is the EdgeDX agent WPAD aware?
The EdgeDX agent is not WPAD aware, but can be configured with a proxy. Customers should set proxy bypass rules for their edge tenant URL to allow laptops to work from the office and home. Title: Configuring an EdgeDX Agent Proxy.
Read the entire article here...
Read the entire article here...
Antivirus Deleting ControlUp.exe
A customer reported an issue launching the latest ControlUp software ver. 8.7, with Symantec antivirus deleting the .exe file. It may be down to ControlUp's update of their 3rd party tool for obfuscation. It was suggested that the .exe file be uploaded to VirusTotal, to increase the number of customers who have seen it.
Read the entire article here...
Read the entire article here...
Solving DNS Issues for Horizon View/VMware Horizon and Controlup Agents
This discussion focuses on a DNS issue experienced with Controlup agents communicating with the console and monitor. Possible solutions include using a logoff script to release the IP address, solving the DHCP scavenging issue, flushing the DNS, and setting permissions to only allow the DHCP server to update DNS records. VMware Horizon (previously Horizon View) was also mentioned.
Read the entire article here...
Read the entire article here...
Get the Best Triggers for Alerting from the Community and Trigger Pack
A user asked for triggers to be shared with the community for alerting in their environment - focusing on VMware Horizon triggers but other types are welcomed. A second user showed interest in WiFi triggers. In addition, the Trigger Pack provides additional triggers related to VMware, Citrix, Microsoft, FSLogix and more and can be found at https://support.controlup.com/docs/trigger-packs.
Read the entire article here...
Read the entire article here...
Get Session Screenshot Action in ControlUp Solve
The discussion focused on the "Get Session Screenshot" action available in Solve and what countries it can be used in. This action is available but can be disabled via Security Policy, either through Console or Solve. Customers can configure this setting themselves or reach out to support for assistance.
Read the entire article here...
Read the entire article here...
ControlUp Delegated Permission Configuration for Automation and Triggers
The user suggested delegation of permission for automation and triggering of ControlUp resources. This is a current feature request, but there is no ETA at the moment. Looking at the Security Policy in ControlUp 8.6.5, it's possible to create a new role with a selection of permissions and per script, define the folder role that can run different scripts. The user was also looking for a read-only option for incident triggers and hoped it would be available soon.
Read the entire article here...
Read the entire article here...
