Best Practices to Secure the application
This document is common for ServiceDesk Plus MSP and Supportcenter Plus application Best practices to avoid threats Upgrade to the latest version and builds. Reset the password of bundled accounts (administrator and guest) Enable two-factor ...
Log4j.jar version is updated
Security advisory related to this https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-servicedesk-plus-msp-is-not-affected-by-cve-2021-44228 Also in SDP MSP 10536 SDPMSP-17916: log4j framework jar version is upgraded to ...
Security: Strict transport security
Please make use of the default value in placeholder for strict transport security. max-age=15892 includesubdomains preload Ensure to restart the application service for the changes to be effective.
Ability to scan attachments while uploading to SDP portal - Blacklist / whitelist feature
This feature will scan the attachment that is about to be added to find out the Type/Extension of the files. You can allow/restrict the file extensions as you please. For instance, .EXE is one of the vital file extension which most of the customers ...
Domain Filtering During Login
If you have configured multiple domains inside Service Desk Plus MSP but would like to filter the domain as soon the user enters their name, follow the below instructions Navigate to Admin>Security Settings>> Advanced >> Enable "Domain Filtering ...