Ask the Community
Groups
VSA SaaS Startup Guide - July 7, 2021 - Connect IT Community | Kaseya
<main> <article class="userContent"> <p><span data-contrast="auto"><span lang="EN-US" data-contrast="none" xml:lang="EN-US"><span data-ccp-parastyle="heading 1">INTRODUCTION</span></span><span data-ccp-props="{"201341983":0,"335559685":232,"335559738":810,"335559739":0,"335559740":240}"> </span></span></p> <p>The purpose of this document is to ensure you have the information necessary to review your VSA SaaS environment once the service is back online.</p> <p>Kaseya has found no indicators of compromise from the incident and had no reports of compromises for any VSA SaaS customers. We have taken additional security measures described in this document - <a rel="nofollow" href="/home/leaving?allowTrusted=1&target=https%3A%2F%2Fkaseya.vanillacommunities.com%2Fkb%2Farticles%2Faliases%2Fkaseya%2Fhc%2Fen-gb%2Farticles%2F4403622421009">https://helpdesk.kaseya.com/hc/en-gb/articles/4403622421009.</a></p> <p>Kaseya has taken additional steps, including:</p> <ul><li>Removed any procedures/scripts/jobs that have accumulated since the shutdown to ensure nothing is a queue to run at startup.</li> <li>All agents have been suspended - on resumption of the SaaS service, no agent will be allowed to connect or execute commands until the customer unsuspends them. This provides customers with complete control on when to re-enable the agents and put them back into service.</li> </ul><p>After your VSA SaaS instance has been restarted and you log in, Kaseya recommends you take the following steps:</p> <ul><li>Review your system configurations</li> <li>Resume an agent group</li> <li>Check your VSA after resuming agents</li> <li>Resume remaining agents </li> <li><a rel="nofollow" href="/home/leaving?allowTrusted=1&target=https%3A%2F%2Fkaseya.vanillacommunities.com%2Fkb%2Farticles%2Faliases%2Fkaseya%2Fhc%2Fen-gb%2Farticles%2F4403622421009">Review the VSA SaaS Security Best Practice document</a></li> </ul><p>These steps are described in more detail below:</p> <p>Step 1 – Review Your System Configuration</p> <p><span data-contrast="auto">Review common items for accuracy such as:</span></p> <ul><li><span data-contrast="auto">Number of Agents</span></li> <li><span data-contrast="auto">User Accounts and their Roles & Scopes</span></li> <li><span data-contrast="auto">Views</span></li> <li><span data-contrast="auto">Reports</span></li> <li><span data-contrast="auto">Policy Management</span></li> </ul><p>Step 2 – Resume an Agent Group</p> <p><span lang="EN-US" data-contrast="auto" xml:lang="EN-US">Kaseya has suspended all agents. W</span>e recommend a phased approach to return them to service. You should start with a smaller segment of Machine Groups and/or an applied View (i.e. Workstations). We do not have a recommended “number” of agents that you should be doing at a particular time, but 10-15 is a good-sized first group. <span data-ccp-props="{"201341983":0,"335559739":160,"335559740":259}"> </span></p> <p> </p> <p><img src="https://us.v-cdn.net/6032361/uploads/migrated/B5RJRTF87UKC/blobid0.png" alt="blobid0.png" class="embedImage-img importedEmbed-img"></img></p> <p> </p> <p><span data-contrast="auto">Once you have defined your test group, you can suspend/unsuspend machines by going to the </span><strong><span data-contrast="auto">Agents Module > Agents > Manage Agents</span></strong><span data-ccp-props="{"201341983":0,"335559739":160,"335559740":259}"> </span></p> <p><span data-contrast="auto">There you will need to select the machine(s), then either right-click or navigate to the top menu and click on Manage and select the Suspend/Resume button. Please refer to the images below:</span></p> <p><span data-contrast="auto"><img src="https://us.v-cdn.net/6032361/uploads/migrated/LAGHOLJTUWAM/blobid1.png" alt="blobid1.png" class="embedImage-img importedEmbed-img"></img></span></p> <p><span data-contrast="auto"><img src="https://us.v-cdn.net/6032361/uploads/migrated/TCJXNOMTJYP2/blobid2.png" alt="blobid2.png" width="613" height="257" class="embedImage-img importedEmbed-img"></img></span></p> <p> </p> <p>Step 3 – Check Your VSA After Resuming Agents</p> <p><span lang="EN-US" data-contrast="auto" xml:lang="EN-US">The </span>VSA should work as it did prior to the outage and we recommend that certain tasks be completed to ensure the validity of the VSA. <span data-ccp-props="{"201341983":0,"335559739":160,"335559740":257}"> </span></p> <p><span data-ccp-props="{"201341983":0,"335559739":160,"335559740":257}">1) Establish a Live Connect Session with a Machine</span></p> <p><span data-ccp-props="{"201341983":0,"335559739":160,"335559740":257}">a) Hover over any agent and click the Live Connect Button</span></p> <p><span data-ccp-props="{"201341983":0,"335559739":160,"335559740":257}"><img src="https://us.v-cdn.net/6032361/uploads/migrated/19NJZ29NOYU5/blobid3.png" alt="blobid3.png" class="embedImage-img importedEmbed-img"></img></span></p> <p><span data-ccp-props="{"201341983":0,"335559739":160,"335559740":257}">b) A successful Live Connect Session will launch as shown in the image below</span></p> <p><span data-ccp-props="{"201341983":0,"335559739":160,"335559740":257}"><img src="https://us.v-cdn.net/6032361/uploads/migrated/CFHORAP5FCA4/blobid4.png" alt="blobid4.png" class="embedImage-img importedEmbed-img"></img></span></p> <p><span data-ccp-props="{"201341983":0,"335559739":160,"335559740":257}">2) Connect (Shared Remote Control) to a machine from both the Live Connect session that you just opened, and by clicking on the agent icon:</span></p> <p><span data-ccp-props="{"201341983":0,"335559739":160,"335559740":257}"><img src="https://us.v-cdn.net/6032361/uploads/migrated/8K1VNG6KX4I3/blobid5.png" alt="blobid5.png" class="embedImage-img importedEmbed-img"></img></span></p> <p><span data-ccp-props="{"201341983":0,"335559739":160,"335559740":257}"><img src="https://us.v-cdn.net/6032361/uploads/migrated/7BPIKT999H98/blobid6.png" alt="blobid6.png" class="embedImage-img importedEmbed-img"></img></span></p> <p> </p> <p>3) Verify the remote control session connects and operates as expected with the agent</p> <p>Step 4 – Resume Remaining Agents</p> <p>Using the instructions in Step #2 above, you may restore additional agents that you want to return to service.</p> <p>Step 5 – Review the VSA SaaS Security Best Practice Document</p> <p>We have provided a detailed set of recommendations for steps you can take to secure your VSA SaaS instance. Please review the document at the link below and ensure you have reviewed and taken the steps provided in the document - <a rel="nofollow" href="/home/leaving?allowTrusted=1&target=https%3A%2F%2Fkaseya.vanillacommunities.com%2Fkb%2Farticles%2Faliases%2Fkaseya%2Fhc%2Fen-gb%2Farticles%2F4403622421009">https://helpdesk.kaseya.com/hc/en-gb/articles/4403622421009</a> </p> <p>Additional Notes:</p> <p><span data-contrast="auto">Once you have completed your testing and reviewed the best practice document you should find that all features are working and in good order. If you have any difficulties doing any of the above actions, please let us know by creating a ticket at <a rel="nofollow" href="/home/leaving?allowTrusted=1&target=https%3A%2F%2Fkaseya.vanillacommunities.com%2Fkb%2Farticles%2Faliases%2Fkaseya">https://helpdesk.kaseya.com.</a></span><span data-ccp-props="{"201341983":0,"335559739":160,"335559740":257}"> </span></p> <p><span data-contrast="auto">Please note that the latest patch will </span><strong>remove</strong><span data-contrast="auto"> certain aspects from the VSA. From our patch release notes, they include:</span><span data-ccp-props="{"201341983":0,"335559739":160,"335559740":257}"> </span></p> <ul><li data-leveltext="" data-font="Symbol" data-listid="6" aria-setsize="-1" data-aria-posinset="7" data-aria-level="1"> <span data-contrast="auto">Ticketing</span><span data-ccp-props="{"134233279":true,"201341983":0,"335559739":160,"335559740":257}"> </span> </li> <li data-leveltext="" data-font="Symbol" data-listid="6" aria-setsize="-1" data-aria-posinset="8" data-aria-level="1"> <span data-contrast="auto">RDP</span><span data-ccp-props="{"134233279":true,"201341983":0,"335559739":160,"335559740":257}"> </span> </li> <li data-leveltext="" data-font="Symbol" data-listid="6" aria-setsize="-1" data-aria-posinset="9" data-aria-level="1"> <span data-contrast="auto">K-VNC</span><span data-ccp-props="{"134233279":true,"201341983":0,"335559739":160,"335559740":257}"> </span> </li> <li data-leveltext="" data-font="Symbol" data-listid="6" aria-setsize="-1" data-aria-posinset="10" data-aria-level="1"> <span data-contrast="auto">Control Machine</span><span data-ccp-props="{"134233279":true,"201341983":0,"335559739":160,"335559740":257}"> </span> </li> <li data-leveltext="" data-font="Symbol" data-listid="6" aria-setsize="-1" data-aria-posinset="11" data-aria-level="1"> <span data-contrast="auto">Select Type</span><span data-ccp-props="{"134233279":true,"201341983":0,"335559739":160,"335559740":257}"> </span> </li> <li data-leveltext="" data-font="Symbol" data-listid="6" aria-setsize="-1" data-aria-posinset="12" data-aria-level="1"> <span data-contrast="auto">Set Parameters</span><span data-ccp-props="{"134233279":true,"201341983":0,"335559739":160,"335559740":257}"> </span> </li> <li data-leveltext="" data-font="Symbol" data-listid="6" aria-setsize="-1" data-aria-posinset="13" data-aria-level="1"> <span data-contrast="auto">Preinstall RC</span><span data-ccp-props="{"134233279":true,"201341983":0,"335559739":160,"335559740":257}"> </span> </li> <li data-leveltext="" data-font="Symbol" data-listid="6" aria-setsize="-1" data-aria-posinset="14" data-aria-level="1"> <span data-contrast="auto">Uninstall RC</span><span data-ccp-props="{"134233279":true,"201341983":0,"335559739":160,"335559740":257}"> </span> </li> <li data-leveltext="" data-font="Symbol" data-listid="6" aria-setsize="-1" data-aria-posinset="15" data-aria-level="1"> <span data-contrast="auto">FTP</span><span data-ccp-props="{"134233279":true,"201341983":0,"335559739":160,"335559740":257}"> </span> </li> <li data-leveltext="" data-font="Symbol" data-listid="6" aria-setsize="-1" data-aria-posinset="16" data-aria-level="1"> <span data-contrast="auto">SSH</span><span data-ccp-props="{"134233279":true,"201341983":0,"335559739":160,"335559740":257}"> </span> </li> <li data-leveltext="" data-font="Symbol" data-listid="6" aria-setsize="-1" data-aria-posinset="17" data-aria-level="1"> <span data-contrast="auto">Task Manager </span><span data-ccp-props="{"134233279":true,"201341983":0,"335559739":160,"335559740":257}"> </span> </li> <li data-leveltext="" data-font="Symbol" data-listid="6" aria-setsize="-1" data-aria-posinset="18" data-aria-level="1"> <span data-contrast="auto">Chat</span><span data-ccp-props="{"134233279":true,"201341983":0,"335559739":160,"335559740":257}"> </span> </li> <li data-leveltext="" data-font="Symbol" data-listid="6" aria-setsize="-1" data-aria-posinset="19" data-aria-level="1"> <span data-contrast="auto">Send Message</span><span data-ccp-props="{"134233279":true,"201341983":0,"335559739":160,"335559740":257}"> </span> </li> </ul><p><span data-ccp-props="{"201341983":0,"335559739":160,"335559740":257}"> </span><span data-contrast="auto">Thank you for your attention and continued support. </span><span data-ccp-props="{"201341983":0,"335559739":160,"335559740":257}"> </span></p> </article> </main>