With the topic of cybersecurity at the forefront of an organization’s consciousness, how to manage and mitigate vulnerabilities quickly is what one aspires to do. In the context of a large Netscaler infrastructure deployment, a great example of how we can do this is by utilizing some quick and easy features Citrix ADM Service offers in managing and mitigating threats to an infrastructures security posture. I am going to review two simple features you can use immediately, Security Advisory & SSL Dashboard.
Security Advisory Feature
The recently published security bulletin for Netscaler with respect to CVEs CVE-2023-24487 & CVE-2023-24488 (CTX477714) only highlights how ADM can help keep abreast of alerting and most importantly provide the ability to act quickly in remedying vulnerable builds in an infrastructure.
Providing an example from my own test environment, logging into the landing page of my cloud ADM Service and viewing the “ADC Infrastructure” pane I am immediately drawn to the “Security Advisory” which flags 2 CVEs and 1 effected Netscaler.
From there, I was able to navigate and view the newly released CVEs and furthermore drill into the effected Netscaler.
Next, I decided to proceed to upgrade;
Quickly working through the easy stages highlighted below, I created a “Job”
Note: At the “schedule task” stage I opted to upgrade immediately however you can schedule the upgrade.
Having completed all the stages and the upgrade successfully, I returned to my Security Advisory page, I confirm my job is done…. for now.
Lastly, I wish to add that you can create notifications and reports on the upgrade process, example below.
SSL Dashboard Feature
Another great ADM feature available is the SSL Dashboard. Here, you have a holistic view of your SSL configuration across your Netscaler environment. Specifically from a security vulnerability point of view you can view such information as SSL Protocols, Key strengths & Signature Algorithms.
Returning to my test environment highlighted is the example of the now deprecated TLS 1.0 in operation.
Additionally, I can drill in and view the specific virtual server & host with the TLS 1.0 enabled where I can then move to take action if required.
Worth noting, for the benefit of security reporting in relation to an organizations Security Team, you may run a report on this SSL Dashboard.
For more information, see our product documentation or speak to your Account Technology Strategist