This is what support gave me. Havent tried it yet.Hi Elliot,Thank you for contacting OpenDNS support. The Kaseya script can be found at our github:Below are some steps in case you need assistance with how to use this:1.Download the XML script from github2.Log into Umbrella dashboard and go to3.The XML script is customized on line 7 fromtowhere value = the administrator's USERID (which can be found on the Roaming Deployment page in the MSP console we opened up earlier).1.Import the script to Kaseya2.When ready, run the script from Kaseya. This script will automatically prompt the administrator for the necessary OrgID and fingerprint during the deploymentNote: The assumption is that the same administrator will be doing all the deployments for the MSP org, so the UserID field will stay consistent, but Org and fingerprint will be different.
![]()
A vulnerability in the Cisco Umbrella Enterprise Roaming Client (ERC) could allow an authenticated, local attacker to elevate privileges to Administrator. To exploit the vulnerability, the attacker must authenticate with valid local user credentials. This vulnerability is due to improper implementation of file system permissions, which could allow non-administrative users to place files within. This is for a personal machine, Umbrella is just needed when connecting to VPN. I can remove umbrella any time, just by running the uninstall script. But that is a bit of a sledgehammer approach (it installs it each time when connecting to VPN). A much better approach is the Cisco documented process, which doesn't seem to be working.
This is why the script is not customized with this data when the administrator adds in their UserID, although technically it could be if for example, the client was only going to be deployed to a single org.Let me know if this works for you.Best regards,Anthony HoncianoCustomer Support RepresentativeOpenDNS, Inc.
Figure 8: whitelists files for internal DomainsLet’s compare how a roaming device with Roaming client installed acts when resolving the similar website in 2 different scenarios:. How the client operates while within a Umbrella Protected Network (On-network). How the client operates while Off-network (meaning at a guest, unprotected by Umbrella network)./answer/scenario1 (IN-Net/VPN): “Upon establishing a connection to a VPN server, the Umbrella roaming client detects a new network connection in the system and changes the connection’s DNS settings to point toward the Umbrella roaming client.
The Umbrella roaming client relies on being able to perform DNS lookups to Umbrella’s AnyCast DNS IP addresses (208.67.222.222/208.67.220.220).
![]() Comments are closed.
|
AuthorWrite something about yourself. No need to be fancy, just an overview. Archives
January 2023
Categories |