Well, we haven’t had any issues with using the platform. The platform is a very complex form of sub systems integrated together. Our only angst is the Service Desk portal is not mobile friendly on the external client side but the ticket system is sophisticated enough to empower us to monitor things really fast when used in conjunction with procedures and monitors. We have been getting scripts from the scripts repository and modifying them and even writing some of our own to build a fairly robust management and monitoring system that meets our needs and the needs of our clients. The Advanced Endpoint Protection is hands down superior to anything else out there and when you combine it with the Endpoint Detection and Response, we can get as granular as telling you how many times all the microphones on your network was accessed on what dates and times and by what processes. The interface is very MySQL and similar databases like in the EDR, which is fine with us because we do software just as easily as hardware. I have actually spoken with lead software engineers directly from Comodo in the past and they are willing to work with us on customizations that we are interested in.
The platform, due to its sophistication is not for the week of heart and it will take a good deal of time put into it to make it work for you but that’s true of any platform. Microsoft 365 is the same exact way and its written for end users but the sub systems of Microsoft 365 is so sophisticated and complex that it really needs managed by people who can dive into the guts of the platform. Same with ITarian.
On the occasions that we do need support, we just shoot out an email and we get a response and routing of our ticket fairly quickly. If anyone is slow to respond to the ticket, it is us when they ask us to do something to gather more information or attempt a troubleshooting step. We are quite satisfied especially with the regular routine updates to the platform.
We rewrote the UAC monitor script, for example, to check three registry entries in Windows. One to verify it is enabled, another to check if it is set to use secure desktop when prompting to allow a change and third to verify that it is actually set to prompt for elevated access. Being enabled doesn’t necessarily mean it is working as recommended. Also rewrote the check Windows 10 feature update/build script. Modified it to check that we are looking at a Windows 10 Pro, Home or Business before checking if it is the latest build (20H2/2009). This way it doesn’t trigger an alert when it runs against a server or Lord help us, a Windows 7 endpoint. Plan to modify it some more to identify those Windows platforms later.
We have developed SOPs for developing, testing and releasing new procedures and monitors for our platform tenant and have began versioning our ITSM profile and not introducing changes into existing profiles but creating all new cloned profiles that we test on VMs before releasing and then stage release into the public domain of our clients.
I would like to know how to submit scripts to the scripts site so we can start contributing to the community on here. When I try logging into the scripts site it just redirects me back to our own ITSM dashboard in ITarian. I’m a PHP MySQL kind of guy myself, but have been leaning a lot of PowerShell and Python of late.