-
Audit Log Alerting - non-SSO log in
There is a risk concern around the ability of a tenant admin to log in directly or through SSO (Oauth) to our tenant. I would like the ability to alert when a non-SSO log in occurs as we adopt a policy that non-SSO log in is only performed for eme...0
-
configure allowed egress domains in Client Side Defense (CSD) allowed list
why - Today CSD (Client Side Defense) mitigates on a per JavaScript/domain combo which means each time a new script or a new domain shows up we have to act to mitigate. It would be more efficient to define an allowed list of domains, domains JS is...0
-
Limit the visible IPs in the DDoS dashboard by user
This will help our customer do a more specific separation between their users and making it easier for them to monitor only their respective IPs (subnets), as well as pulling reports.1
-
Support a new action for malicious user mitigation methods
We currently support CAPTCHA, Block and JS challenge. If we can support 'Header Inserion' as a new action for the malicious user detection feature, customers can consume that the suspicion score in other security devices.
3
-
Alert receiver for Dynatrace
XC offers pre-configured alert receivers to send alerts via webhooks. Is it possible to have a pre-configured receiver for Dynatrace? Configuring a generic webhook does not meet the Dynatrace requirements described here: https://docs.dynatrace.com...0 Planned
-
Exposing metrics in Prometheus format
Prometheus is a popular choice for monitoring cloud-native environments, as it is designed to be scalable and reliable and is often requested by customers.0
-
service tags
Hello, i would like to have an F5 mainted list of service tags , for example from microsoft https://www.microsoft.com/en-us/download/details.aspx?id=56519 that i can integrate directly in the ip prefix list0
-
Client Side Defense - Add ability to filter by IP address on "Script List" dashboard
For troubleshooting purpose, it would be handy to have the ability to filter by IP on "Script List" dashboard. This will enable admin to identify users affted by the malicious script.0
-
CE Admin password - enforce strict password policy
Issue: When a cloud site (AWS/Azure/GCP) is deployed, there is a new feature implemented where the admin password can be set. This password does not enforce any policy. I can use a simple password like asd123. Admin password should enforce a stric...0
-
DDOS protection dashboard
There is currently no dashboard displaying the status of the DDOS protection. It would be nice to have some metrics like standard traffic levels, usual attack types, burst absorbed, etc.0