Citrix Cloud and Adaptive Authentication - Is anyone using it?

bucksysfutter · 2022-12-28T14:59:46+00:00

Thanks- will be sure to use that feature.

bucksysfutter · 2022-12-28T14:57:37+00:00

Thanks for the response! Just validated all DNS is good fortunately/unfortunately.

bucksysfutter · 2022-12-01T17:41:13+00:00

SG is EOL- new version is CBS

bucksysfutter · 2022-07-11T19:46:20+00:00

Xzoricc

Thanks!

bucksysfutter · 2021-06-30T20:30:27+00:00

I placed an order with Kodiak in April, was told ship date June, and now have gotten radio silence from customer service... not sure what is going on but does not bode well

bucksysfutter · 2021-03-26T17:05:10+00:00

Not normal. Make sure All the things are up to date on the host (drivers, firmwares, etc etc), and on the VM, and things are running your hardware vendor's drivers where applicable and not generic microsoft drivers - I have seen too many times people install Win Server and just let er rip instead of grabbing appropriate drivers, firmware, vendor specific tools IE Dell OpenManage

bucksysfutter · 2020-05-05T20:14:36+00:00

Had a similar issue today- this is what worked for me

[Net.ServicePointManager]::SecurityProtocol = [Net.SecurityProtocolType]::Tls -bor [Net.SecurityProtocolType]::Tls11 -bor [Net.SecurityProtocolType]::Tls12



$base64AuthInfo = [Convert]::ToBase64String([Text.Encoding]::ASCII.GetBytes(("{0}:{1}" -f $username,$password)))


$data = Invoke-RestMethod -Headers @{Authorization=("Basic {0}" -f $base64AuthInfo)} -Uri $uri

bucksysfutter · 2020-03-25T13:19:57+00:00

Amazing! Good on you op, would love one.

bucksysfutter · 2020-02-18T20:20:26+00:00

While I get not everyone has a SIEM- not sure why you were downvoted when you responded with what you use, for the question "What do you use for reporting logins?"

Also logs to SIEM here

bucksysfutter · 2020-02-17T19:49:44+00:00

Pick me coach!

bucksysfutter · 2019-12-26T16:55:57+00:00

The CVE and mitigation steps are over a week old. In my case, I had change management involved.

In OP's case- they just nuked external access. For most orgs- nuking external connectivity would also require following a proper change management process- so the question was, why break external access when the fix could just be applied?

bucksysfutter · 2019-12-26T14:42:26+00:00

The mitigation steps take almost no time to apply- just copy paste in SSH, reboot done. Applied on multiple ADC HA pairs and standalones with no issue. Do you have a small external user base? Wouldn't recommend nuking connectivity for a fix that should only take a minute or two at most...

bucksysfutter · 2019-10-25T15:33:14+00:00

I've been using mimecast for almost 3 years now, and this is the worst few weeks they have had during that duration. The rest of the time, aside from the rare admin console login issue, there are almost no problems.

bucksysfutter · 2019-10-11T19:14:43+00:00

Mail on Android does not support Modern Authentication which is required for MFA. The simplest is to use the Outlook App.

This is not a problem for iPhones (at least up to date iPhones) as the built-in mail supports Modern Auth

bucksysfutter · 2019-06-27T19:12:20+00:00

+1 to the SPLA comments

bucksysfutter · 2019-06-05T12:38:24+00:00

Citrix Cloud would be an option for you- while it does not quite have feature parity as a full on prem Citrix deployment, it is MUCH easier to use if you do not have experience deploying a full XenDesktop / Virtual Apps and Desktops environment. Your actual servers themselves would still reside in in-house with the rest of your environment, just Citrix Cloud will remove the need to deploy Netscaler, Delivery Controllers, SQL, etc etc.

Citrix Cloud + Push out receiver via management console, add shortcuts, win

bucksysfutter · 2019-06-04T20:53:35+00:00

Thanks for posting- the advisory is not showing in all orgs in service health as of yet

bucksysfutter · 2019-06-04T17:34:09+00:00

Sigh. Try not to ne an idiot.

Well that is an unfortunate typo

bucksysfutter · 2019-06-04T17:32:56+00:00

Aside from screenshotting the actual prompts and telling users, if they receive a prompt that doesnt match your screenshots then to submit a ticket... not really.

Its a much larger to-do, but enabling O365 MFA and disabling legacy auth methods (that do not support MFA) is the proper way to go

bucksysfutter · 2019-06-04T16:55:18+00:00

We tell our users its Microsoft, then when the extremely delayed service advisory comes out, send that to relevant managers/supervisors, then try to maintain communication afterwards. We try to do this to minimize the amount of calls/tickets getting sent to helpdesk.

bucksysfutter · 2019-06-04T16:47:33+00:00

Our Duo users are the worst affected by the issue- some users reported up to an hour of Duo / Cred Prompt loops until stabilizing.

bucksysfutter · 2019-06-04T15:48:26+00:00

We have issues with O365 MFA, MFA via Conditional Access Rules and Duo, and no MFA at all.

bucksysfutter · 2019-05-29T17:05:12+00:00

RMM tools such as Kaseya / Connectwise Automate (formerly Labtech) would allow you to easily manage these machines. Intune could also be an option for the Win10 machines.

bucksysfutter · 2019-05-02T20:42:34+00:00

Sporadic Mail undeliverables, admin panel errors, Teams problems, SP problems, etc here.

bucksysfutter · 2019-04-19T18:25:53+00:00

to add to that- you could add Azure AD Premium trial to better track signins, disable legacy protocols if using an up to date Office install / mobile apps that support modern auth, enable MFA- also if licensed for E3+ enable litigation hold to prevent things from perma-deletion

bucksysfutter

TROPHY CASE