Blog

ServiceNow's Knowledge12 Portal Unleashed

Fruition Partners — Fri, 04 May 2012 21:33:50 +0000

How Fruition Partners enhanced the ServiceNow Knowledge12 Portal to make it more interactive and social.

A Security ALERT from our Partner, Bomgar...

Fruition Partners — Thu, 26 Jan 2012 17:26:47 +0000

Thoughts on Symantec’s “Disable pcAnywhere” News

Over the last 24 hours, the marketplace has been astir with the news of Symantec officially recommending that their customers disable pcAnywhere for all but the most mission-critical applications. For many this is the first time they have considered that the remote control technology they are using could be a backdoor for hackers. What they likely don’t realize is that long before the Symantec breach, legacy remote control applications like pcAnywhere were ALREADY the #1 way hackers compromised networks. According to the 2011 Global Security Report from Trustwave SpiderLabs:

“In 63% of our investigations in which a method of entry could be determined, the attacker simply leveraged an available remote access application.”

That finding is echoed by the 2011 Data Breach Investigations Report by the Verizon Business RISK Team. Their report states:

“Remote access and desktop services are once again at the #1 spot in the list of attack pathways. A whopping 71% of all attacks in the hacking category were conducted through this vector.”

The Verizon report even specifically calls out pcAnywhere by name (along with Microsoft’s RDP) as the primary products implicated in these breaches. The calls to replace legacy remote control technology with the next generation didn’t just start in 2010 or 2011 either. In 2009, Gartner released a report titled “PC Remote Control Security: Risks & Recommendations.” The report very clearly states that legacy remote control products can have serious security issues. On top of all the security issues, the report additionally says:

“Legacy remote control tools are incapable of supporting increasingly complex environments, and companies must find new ways to provide support services to users.”

Remote access has become an indispensable tool to a majority of companies, with the ability to increase productivity and savings in incredible ways. The question is not whether to support users and systems remotely, but how to do it correctly and securely. So what is the right way to do remote support? It really comes down to four things:

Architecture – The product needs to be centrally administered and managed with the data in the control and oversight of the company using the technology.
Authentication – It should integrate with Active Directory, LDAP, RADIUS, Kerberos, and other authentication mechanisms including multi-factor authentication. This eliminates the problem of everyone in IT “knowing the password” and inevitably sharing it and storing it where they should not. It also eliminates the possibility that a former employee would still have access.
Access Controls – Very granular access should be possible around what exactly you can and can’t do with the product. Granular permissions can ensure that individuals don’t have more access than they need and are only allowed to do certain things on certain systems.
Audit – Full session logs and even full video recordings of each session should be captured, stored, and available. The company should be able to produce reports at any moment on (1) who connected to whom, (2) what systems and IP addresses they used, and (3) what they did (including full audit trail and video recording of session).

With these considerations in mind and armed with the products that support them, IT will be able to do their job without their tools inadvertently opening up the #1 attack pathway into the enterprise.

Posted by Joel Bomgar on Jan 26, 2012 10:24 AM CST http://community.bomgar.com/blogs/4/140

Automated Provisioning & Profile Maintenance – Third Party Access

Fruition Partners — Thu, 17 Nov 2011 20:23:14 +0000

Recently I had the opportunity to work with a couple other Fruition developers to deliver a custom Third Party Access Portal, also known as 3PA, to help an international beverage company’s third party users (e.g. customers, bottlers) effectively request and sustain access to key applications. The 3PA portal was to replace their current solution that was not only over extended to far more 3^rd parties than originally intended, but was associated with user dissatisfaction, increased support cost, and unfavorable company perception.

One of the main objectives of the project was to enhance the user experience through a simplified user interface. Third party users can utilize this portal to manage their user profile, request access to applications, and manage their password. Even though the portal is aimed for external users with the goal to “make their company easier to do business with,” internal employees can also use the interface to invite new or existing users to applications, view access reports, and manage access requests.

Fruition's Bomgar ServiceNow Integration: Explained by Senior Developer, Shane Brazeal

Fruition Partners — Thu, 17 Nov 2011 17:29:14 +0000

Scenario 1: Start Bomgar Session from ServiceNow

In this scenario a service desk representative is taking a call with an end user and submitting an incident on their behalf. At some point the service desk rep decides to start a remote support session using Bomgar from the submitted ServiceNow incident record.

ServiceNow + Bomgar = Increased Service Desk Efficiency

Kris Markham — Mon, 16 May 2011 15:23:04 +0000

As you may have seen, last week Bomgar and Fruition Partners announced a new integration between Bomgar’s remote support solution and SaaS for IT service management from ServiceNow! Instead of listing the features and benefits, we had a Q&A session with Boatner Blankenstein, director of solutions engineering Bomgar, and Shane Brazeal, developer, Fruition Partners, about the new integration.

ITSM Implementation Tip Series: #1 : Ok We’re Making Good Progress on Incident Problem and Change, What Next?

Gerry Geddes — Tue, 05 Apr 2011 15:44:37 +0000

For most organizations the first ITSM processes they tackle are the classic Incident, Problem and Change Management (IPC) processes. Before I discuss what to do next let’s make sure we’re all on the same page on progress to date.Holistic enterprise frameworks such as ITIL which provide guidance on ITSM depend heavily on the concept of process integration to realize the full value and business benefits from a service management approach. Process integration is reached when more than one mature process shares inputs, tasks, outputs and data with another mature process. In the ITSM business there are various maturity rating schemes, typically based on the Software Engineering Institute’s (SEI) original Capability Maturity Model (CMM) and have been adapted using specific maturity characteristics for each ITIL process. More recently, SEI ‘s own adaptation CMMI is also being used.

Social Solutions for the Social Network: Data Center Management Made Easy

Chris Dauw — Fri, 28 Jan 2011 16:40:23 +0000

Facebook came to us because they needed an evolution in their existing systems to handle running the day to day operations for their new flagship state of the art datacenters.Given Facebook’s meteroric rise and growth (600 million 30 day actives, #1 most trafficked internet site) they needed a system to manage operations including server repairs as well as inventory, asset and part management on a scale that most have never seen before. The new data centers will double the amount of repair actions and servers being processed and tracked throughout their lifecycle, so the new system would have to scale accordingly while delivering a requested 100% improvement over the existing systems performance.

7 Best Practices For Maintaining a Finely Tuned ITSM Platform

Dan Dubay — Mon, 17 Jan 2011 16:08:57 +0000

First and foremost, I’d like to wish everyone a Happy New Year. It’s hard to believe 2010 is behind us and we’re now in full swing of an exciting 2011. A New Year is often thought of as the perfect time to start fresh. Whether that be with your new year’s resolutions of losing weight, working out, becoming a better person, or maybe volunteering more--having personal resolutions is a great way to keep yourself on track for the goals you’re wanting to achieve for the upcoming year and beyond.So why not apply this same logic to your IT Service Management (ITSM) tool? Now is the time to start fresh with maintaining a solid and healthy ITSM product that’ll make your organization run more smoothly and efficiently.

Lost in Transmission: What College Taught Me About Effective Communication in the Age of E-mail

Ian Golando — Mon, 20 Dec 2010 16:02:30 +0000

Before I started working at Fruition, I knew little to nothing about IT service management. I have held several jobs in the past, but they were on the people-side of the job spectrum. I have been a camp counselor, a resident assistant, and an orientation leader, to name a few. Because of these jobs, I've come to learn the value of effective communication...

Process Design: Start Training for the Marathon, Part II

Ryan Hale — Fri, 19 Nov 2010 15:30:51 +0000

Last month I started off correlating the (re)designing of a process to training for a marathon, and went through the initial steps necessary for Process Design. In this month’s installment we’ll discuss how you actually start training (Definition & Design), final prep before race day (Solicit Feedback), race (Implement/Go-Live), Asses performance and improve (Continual Process Improvement).