I submitted a ticket with MS and we got this resolved via a registry entry. The registry is only preventing the request mechanism thus prevent the pop up so is really a workaround not a fix to the underlying issue as to why it happens.
My guess is the latest windows updates have caused this issue to start. I have read fixes for issues to do with turning off access to the internet but the settings doesn't exist for and didn't seem to work for either.
For interest the fix Outlook only i got from MS is as follows :. A screenshot of the prompt is as below. What's your account type configured in Outlook and Outlook ? Are you using Exchange account? If the issue happens to all your Exchange users, please check the Outlook Anywhere and Autodiscover configurations in Exchange server side.
Please mark the reply as an answer if you find it is helpful. Outlook is the one app as i mentioned we have a fix for. It was to do with the auto-discover and one of the updates to Outlook changed the ways it resolved the location of the exchange server according to the Exchange specialist from MS.
But like the topic and my previous post we are now getting credentials request for ALL office applications for and So i have managed to make a couple of packet captures of what is happening. Something odd. Essentially the office app tries to connect to our root public FQDN domain over https.
No idea why after 18months of using Online services this has started to do this. If your environment includes another proxy server, be sure to set up the other proxy software to accept requests only from WebMarshal. If you do not, then users may be able to bypass WebMarshal rules.
You can configure the LAT settings on the other proxy server, or set the other proxy software to accept requests only from a specific Windows account, which is only used by WebMarshal. On this window you can review the system configuration settings that have been automatically detected or manually configured.
Each section of the window summarizes the information entered on one of the previous windows of the Wizard. To see more details or edit the information, click Edit for the section. To continue with feature configuration, click Next. Tip: The tree at the left of the window shows:. On this page of the configuration wizard, WebMarshal attempts to detect and configure items that enhance the filtering abilities of the product. On this window, you can configure WebMarshal to use one or more externally maintained categorized lists of URLs.
When a filtering list is configured here, you can use the categories that it provides in WebMarshal Rules and reporting. The FileFilter list is enabled by default. On this window, you can configure WebMarshal to use one or more third-party products to scan traffic for viruses or other malware activity. When a scanner is configured here, you can enable WebMarshal Rules to perform scanning.
Auto-detection searches for and adds supported scanners that are installed on the server. Note: Because auto-detection only adds scanners that are ready to use immediately, scanners that have just been installed might not be auto-detected if they have not yet downloaded a full set of scanning signatures.
You can add additional scanners manually here, or in the Malware Protection section of the main Console. On this window of the configuration wizard, you can configure logging of WebMarshal sessions and actions to a SQL database.
Database logging is required if you want to report on WebMarshal activity using the Marshal Reporting Console application. Database logging is not enabled by default. You can enable logging on this window, or later using the Database Logging window in the Console Global Settings.
Select Enable Database Logging. The Create Database window opens. You can browse the network if necessary. Enter the name of the new or existing database you want to use. Enter the password for the user name. You might need to use this option if the SQL Server connection is through a firewall. If the database you selected already exists, you can choose to recreate it.
Be sure that the existing database is not needed. Click OK to create the database. For details of this process, see Help for the Change Operational User window. You can also change the password associated with the database user on the server.
To start this process, click Change Password. For details of this process, see Help. On this window, you can choose to enable or disable WebMarshal proxy caching. This feature is enabled by default. When WebMarshal later responds to a request for the same items, they are returned from the local copy, saving time and bandwidth.
To see details of cache activity and bandwidth savings, use the Real-Time Dashboard in the Console. To enable caching , check the box. Then review the additional options. The default settings are reasonable for a trial installation. When setting up a production installation you should carefully consider the values. This feature is disabled by default.
Before enabling HTTPS inspection in a production environment, you should review the legal implications of the feature, and notify users. The Security Labs team provides frequent updates to the listed URLs, based on data from a number of sources.
TRACEnet service is included for WebMarshal customers holding current maintenance contracts, as well as for product trials. Trustwave offers consulting and professional services, including both cyber advisory and diagnostic services, to support the effectiveness of your hybrid multi-cloud world.
By making the required changes and remediating security gaps, Trustwave can help you to both integrate and deploy new technologies and processes into your existing technology stack.
With Trustwave, the ability to scale in a cost-effective and efficient manner gives you the confidence to maintain ongoing cyber resilience. In addition to their daily duties investigating malware and major vulnerabilities, Trustwave SpiderLabs team members study web clients and servers, emails, databases and applications.
Trustwave SpiderLabs researchers are sought-after speakers, trusted media sources, published authors and leaders of major industry projects. Threat actors continue to develop malicious, ingenious tricks and techniques to stay one step ahead of security systems and response specialists. As a result, a more focused and proactive approach to detecting, investigating, and responding to threats is required. Get Your Copy. The Trustwave Fusion platform gives enterprises unprecedented visibility and control over how security resources are provisioned, monitored and managed across any environment.
Trustwave Fusion. Trustwave has established key partnerships with industry innovators and leaders to provide comprehensive security solutions to meet evolving security challenges. Our experts build customized solutions using a deep portfolio of best-of-breed security solutions and technologies.
The Trustwave Fusion platform and elite SpiderLabs team provide industry-leading automated threat detection and response capabilities, threat intelligence and powerful analytics for both MSS and MDR. As organizations seek to put effective threat detection and response solutions into place, they will typically face obstacles. As businesses continue to deploy complex multi-cloud environments, many lack the skilled cyber resources to do so in-house. Advanced security services and technology providers offer high potential for addressing the skills shortage.
The volume of information your team needs to analyze is massive. Shifting through the "noise" to find actionable intelligence is a daunting task. The pace of change in cybersecurity is punishing— new threat vectors and techniques are constantly evolving in response to whatever defenses are put in place.
0コメント