Azure
feat(imAuthSigninsMultipleCountries): include countries, ip, whitelist
Change(s):
- This adds countries & IPs columns
- Allows user to specify an IP whitelist to exclude entries
Reason for Change(s):
- See guidance below
Version Updated:
- imAuthSigninsMultipleCountries 1.3.2
@v-spadarthi odd, since it works in Sentinel. Can you replicate on your (test) Sentinel env?
Hi @hazcod, so a few points:
- The validation error is indeed not your fault. The schema was updated to use SrcIpAddr instead of SrcDvcIpAddr, but the validation has not.
- That said, you also use SrcDvcIpAddr in the query, so once I update the validation, the query will fail (this time correctly) on SrcDvcIpAddr.
All that said, while the update is great and useful, I tend to prefer not to include the new version in the out of the box rules. Out of the box rules do not lend themselves well to "in rule", undocumented, configuration. Sound like a good idea for a blog post rather than a built-in rule.
Hi @oshezaf , thank you for chiming in. I've converted it to SrcIpAddr now.
Can you elaborate on what you mean with 'in rule' undocumented configuration, since I did not add any of that?
I merely added some query columns which are returned.
Well, apologies for not explaining myself well. I meant "ipWhitelist", the dynamic value that one can update in the rule. Unrelatedly, In general, note that we prefer "ipAllowlist".
Hi @hazcod, could you please check @devikamehra's comment and act accordingly. Thank you.
Hi @hazcod, waiting for your response on @devikamehra's comment. Thanks
Hi @hazcod, waiting for your response on @devikamehra's comment. Thanks
Hi @hazcod, we will provide you with an update on this soon, but in the meantime, can you please resolve branch conflicts by updating master in your branch? Thanks
Thanks @devikamehra. @hazcod please resolve branch conflicts by updating master in your branch.