“VPNs unauthorized by default" should be able to be enabled per Organization.
planned
J
Jacob Wiley
Could we get an update on this? Seems to have a lot of votes. We want to be able to offer this as an option to our clients for increased security on a per Org basis (on by default for our high security clients).
The Unauthorized VPN is often a precursor to a compromise, but it can be hours or days later before the malicious party actually does something bad enough for Huntress to lock the account.
Rich Mozeleski
Merged in a post:
Enable 'VPNs Unauthorized by Default' per organization
T
Travis Springer
Currently, the option to enable 'VPNs Unauthorized by Default' is only available at the account level. It would be beneficial to have this feature available per organization, allowing for more granular control and security tailored to each organization's needs.
J
Jordan Eldridge
In our rollout of ITDR I had to explain this to numerous techs that this does not actually work on the organization level. Frustrating and could minimize the baselining/tuning of initial escalations for security oriented clients
J
Jessica Loveland
Yeah I second this. It should also be clarified in the description of the toggle button since its still present on the organizations Unwanted Access Rules, even though its not something that can be selected.
Rich Mozeleski
marked this post as
planned
We're going to complete this work as part of our upcoming Configuration Rule improvements.