Hi folks,You need to know about a new Microsoft vulnerability. I just got the notification from MS-ISAC. I'm going to paste an abbreviated version of it for you here. At the end I'll link you to where you can sign up for these advisory notifications ...
My company recently deployed jumpcloud for our endpoints and I was wondering if anyone knew of a way through jumpcloud to give partial admin rights to my users. I do not want my users to reach out to me each time they need the admin password to add/...
Is there a way to configure a specific timeout length for a specific application's authentication session in Jumpcloud?
There is some way to set session Timeout only for certain logins? I.e. user1 need to do an activity all night long, but I don't want to grant an session on entire Jumpcloud env. Att,
It hard now where I am from for you to have maximum security or network I wonder where all that went I can't wait for 2023 best luck to those of us still believing in the future one love
HiJust to share my recent discoveries for Sentinel and Splunk as well as mentioning Datadog - as I find it noticeable in terms of integrations efforts and pricing.Azure Sentinel A publicly available Data Connector can be found on GitHub here. It's ju...
I create a command in jumpcloud can install sentinel one on Windows 10 it does not need admin right for it to work.Now SentinelOne tell me that in Windows 11 this no longer the case I find it hard to believe that. But I figure I reach out to ask this...
Patch Tuesday has become Zero Day Tuesday ... there are six actively exploited vulnerabilities this week alone. It's not always possible to wait for a patch, or a patch may not be sufficient (recall PrintNightmare, Follina, and MSDT). There was a pra...
Hi folks,You need to know about a new Microsoft vulnerability. I just got the notification from MS-ISAC. I'm going to paste an abbreviated version of it for you here. At the end I'll link you to where you can sign up for these advisory notifications ...
Every company should be hardening their employees against cyber attack. This is typically done through training and awareness campaigns. Creating the materials for an engaging campaign can be costly and time consuming. Aligning with national and inte...
(Context: I work at an MSP, so this is not just a question for my own instance, I manage many of both of these.)Today on the IT Hour, there was a good chat about security practices (thanks Nicole!) and I was wondering if anyone had a good resource fo...
Whether you are starting out on your security journey or have already started, I have found the CIS website as a great place to start. They have excellent guidelines to help you out from operating systems to cloud environments.https://www.cisecurity....
If you are building up a new security program or improving upon an existing one, but you are not well verse in compliance - the NIST Framework can help provide a guide of what common controls should be in place.The NIST Framework was originally creat...
So, I just configured SSO for YouTrack and it worked almost the first time. The hardest part was getting the SHA256 fingerprint of the JumpCloud certificate.I followed the instructions here (https://www.jetbrains.com/help/youtrack/cloud/saml-authent...
When I try to login as admin my OTP-code says; Verification code was invalid or already used.It does not work. If I try to reset my password I need also an OTP code. I'm locked out and have no clue how to solve this.
This is happening tomorrow, August 17 at 12pm ET. If you're interested in security: Learn how to think strategically about the SME Security Stack. To help you develop the right plan for your business, we have brought together a panel of industry-lead...
With BlackHat going on this week, I can't help but think a little about security topics. We've talked a little about this topic in the past, but I keep going back to how hard it is for small companies to have dedicated security teams. Not when your I...
Hello Admins , How do you manage admin access rights in your organization. Since jumpcloud only offers choco package , how do you manage pushing software to employees? I am thinking to setup non admin user accounts so that we could improve security ,...
I've started at a new company recently who use JumpCloud, so I'm also extremely new to JumpCloud.Our staff are using a new app which needs to get through the Windows 10 firewall. I've written a powershell script that works perfectly on my PC.I've add...
Yesterday, I was assembling some notes on the benefits of having Full Disk Encryption (FDE) being available across all Linux distros. I awoke to a high severity CVE concerning OpenSSL, which is generally used to secure communications on the (OSI) tra...
This video was very enlightening. A great deal of information about your infrastructure can be obtained from a single vulnerable user. The demo used tools that are bundled with Kali Linux. A must see for Windows admins...[video]
Just saw this post from Datadog that allows you to monitor your JumpCloud environment using Datadog. I never got around to setting this up, only did SSO. Does anyone else use this?Monitor Your JumpCloud Directory With Datadog | Datadog (datadoghq.com...
HeyA month ago, the Five Eyes Alliance issued a Joint Cybersecurity Advisory. The advisory highlights the following best practices to protect your systems: Control AccessHarden credentialsEstablish centralized log managementUse antivirus solutionsEmp...
Has anyone had any trouble with SentinelOne detecting the JumpCloud agent as malicious? It's clearly not, it just looks like the software management functionality using Chocolatey is getting flagged by S1. I don't really want to add a folder level ex...
An old colleague just told me:"we actually got audited by our cyber security insurance provider and they enforced us to have MFA on literally everything. Down to the switches. It was huge pain in the a**."Have any of you ever faced challenges related...
https://youattest.com/wp-content/uploads/2022/05/YouAttest-Integration-and-Reviewers-Guide-for-JumpCloud.pdf
