HiJust to share my recent discoveries for Sentinel and Splunk as well as mentioning Datadog - as I find it noticeable in terms of integrations efforts and pricing.Azure Sentinel A publicly available Data Connector can be found on GitHub here. It's ju...
Did anyone else get affected by the recent issue Microsoft had where admins were receiving copies of all outbound email from other users? (Incident #EX682041, for those following.)The current discussions on reddit are the HIPAA repercussions. I used ...
I am curious about best practice and how jumpcloud works with ubiquiti's Identity cloud solution. My organisation uses the udm se with some APs, switches, door hubs, security cameras, etc. UID seems to implement/run its own RADIUS server through UID ...
HelloSharing a documentation here to configure JumpCloud and Okta in tandem to use JumpCloud as factor for Device Trust by using OIDC, Conditional Access Policies and Okta's Policy Engine. What it does: If you're using Okta for SSO (let's say via SA...
Hi, Just trying out JumpCloud, working well so far. Only issue we have so far is struggling to find anything within the portal to restrict users installing software from the internet. Eg firefox, putty can run directly from Downloads. How are people ...
Hi Community FolksYesterday I wrote about: "How to establish Device Trust for Android Devices with Okta by using JumpCloud's Android EMM?"Now you might wonder: Can I do the same for iOS-devices as well? Yes, certainly you can. Please refer to the art...
HelloRecently I posted about "How to establish Device Trust (managed devices) for Okta by using JumpCloud as factor for authentication?" - which enables you to make use of Device Trust Certificates from JumpCloud with Okta. But how about mobile devic...
Hi Community ,Since JumpCloud does not notify on Directory Insights logs, Directory Insights can be integrated with any third-party SIEM tool as we already know.Wazuh is a free and open-source security platform that unifies XDR and SIEM protection fo...
It's been a minute since I posted about using JumpCloud Commands for security remediations. There's a particularly nasty zero day that's been actively exploited now that involves attackers obtaining an NTLM hash (Windows password) through Microsoft 3...
Hey Folks, As many of you might be wondering (or already asked ) about integrating SIEM solutions with JumpCloud logs - Directory Insights to be more specific, in order to centralise security event monitoring and management, @JuergenKlaassen had a w...
This news cycle has a big drop: the Biden admin's national cybersecurity strategy. A friend worked on it and had this to say: "The strategy establishes an affirmative, values-driven vision for a secure cyberspace that creates opportunities to achieve...
IT professionals oftentimes talk over the requirements of small and medium-sized enterprises (SMES) with a lot of jargon. Compliance (and laws punishing data breaches) are becoming increasingly widespread, so it's understandable that it's the topic d...
Hi Folks, Pretty sure you came across this KB for enabling the full disk encryption on the root drive when installing Ubuntu, and utilising JC's Linux FDE policy to monitor the status. But how about the additional drives on the box? These are not sh...
My company recently deployed jumpcloud for our endpoints and I was wondering if anyone knew of a way through jumpcloud to give partial admin rights to my users. I do not want my users to reach out to me each time they need the admin password to add/...
Patch Tuesday has become Zero Day Tuesday ... there are six actively exploited vulnerabilities this week alone. It's not always possible to wait for a patch, or a patch may not be sufficient (recall PrintNightmare, Follina, and MSDT). There was a pra...
Hi folks,You need to know about a new Microsoft vulnerability. I just got the notification from MS-ISAC. I'm going to paste an abbreviated version of it for you here. At the end I'll link you to where you can sign up for these advisory notifications ...
Every company should be hardening their employees against cyber attack. This is typically done through training and awareness campaigns. Creating the materials for an engaging campaign can be costly and time consuming. Aligning with national and inte...
(Context: I work at an MSP, so this is not just a question for my own instance, I manage many of both of these.)Today on the IT Hour, there was a good chat about security practices (thanks Nicole!) and I was wondering if anyone had a good resource fo...
Whether you are starting out on your security journey or have already started, I have found the CIS website as a great place to start. They have excellent guidelines to help you out from operating systems to cloud environments.https://www.cisecurity....
If you are building up a new security program or improving upon an existing one, but you are not well verse in compliance - the NIST Framework can help provide a guide of what common controls should be in place.The NIST Framework was originally creat...
This is happening tomorrow, August 17 at 12pm ET. If you're interested in security: Learn how to think strategically about the SME Security Stack. To help you develop the right plan for your business, we have brought together a panel of industry-lead...
With BlackHat going on this week, I can't help but think a little about security topics. We've talked a little about this topic in the past, but I keep going back to how hard it is for small companies to have dedicated security teams. Not when your I...
Yesterday, I was assembling some notes on the benefits of having Full Disk Encryption (FDE) being available across all Linux distros. I awoke to a high severity CVE concerning OpenSSL, which is generally used to secure communications on the (OSI) tra...
Just saw this post from Datadog that allows you to monitor your JumpCloud environment using Datadog. I never got around to setting this up, only did SSO. Does anyone else use this?Monitor Your JumpCloud Directory With Datadog | Datadog (datadoghq.com...
HeyA month ago, the Five Eyes Alliance issued a Joint Cybersecurity Advisory. The advisory highlights the following best practices to protect your systems: Control AccessHarden credentialsEstablish centralized log managementUse antivirus solutionsEmp...
