Global policies are here! You can now start using this preview feature today. Convert your old policies to Global Policies by selecting “Enable this policy as Global Policy”:
Or, you can simply create a new Global Policy under your MSP dashboard.
Going forward, any policy you create under the dashboard will be a Global Policy. Policies created there will be available for assignment and will display in the policy list under each MSP organization.
This is just a preview of the new Global Policies feature that we’ll be refining over time. Tell us what you think as we continue to develop this feature.
The new Data Explorer beta gives you multiple views of your DNS activity. Quickly answer questions like "Which office has the most blocked phishing attempts?" and "Which streaming media sites have become popular in the last month?"
Data Explorer allows you to see your DNS query data in any way you like. See trends in activity and uncover shadow IT applications.🔍
As the beta develops, we will add the ability to send scheduled reports to your inbox and to break down reports by devices and users. Is there something else you'd like to see? Send us a feature request.
Per-user filtering is now released live as a preview feature. You can now create access policies for each user in your organization using the Windows roaming client.
When a user signs in, we'll begin filtering them based on the policy you have set for them. This feature is great for offices where your users switch between devices, or where multiple people share one device. You can tailor exactly what users are allowed to access based on what department they works in, or their level of seniority.
We plan to release an Active Directory integration in 2020, which will synchronize AD Users and Groups. You will be able to create a policy for a group of users and have it apply automatically, like when a new hire joins the sales department.
We have released a new version of the Windows roaming client. This version resolves an issue causing network bandwidth spikes in customers with large Active Directory installations. No action is needed for this update. Your clients will perform a rolling auto-update in the next 24-48 hours.
DNSFilter has now released support for two-factor authentication (2FA). This additional security measure prevents someone from logging into your account, even if they know the password.
2FA can be easily turned on for your account by navigating to your Profile and selecting the “Security” tab, or by clicking here.
We highly recommend enabling 2FA, especially if you are an MSP/Partner. 2FA greatly increases your security against an attacker attempting to compromise your DNSFilter account.
Administrators are able to view whether or not the users in their account have enabled 2FA by visiting the Organization -> Users page. This allows them to ensure compliance for their security policies. Note that 2FA currently must be turned on by the end user.
For more information, check out our documentation article on how to setup 2FA.
This month we implemented full support of DNS-over-HTTPS (DoH) in Mozilla Firefox. Google Chrome disables DoH by default. This means that DNSFilter fully supports DoH. Your filtering policies will continue to be in effect.
DNSFilter also supports DNS-over-TLS as a secure DNS mechanism. We believe it is better than DoH as it is more comprehensive. DoH only encrypts browser traffic. DNS-over-TLS encrypts all traffic.
For a longer discussion on this topic, checkout our blog post "What is DNS-over-HTTPS?"