I would like to restrict management access to the Socket Web UI from the LAN. However, in a post from about a year ago, no solution was provided. Is there a way to restrict access to the WebUI? | Cato Connect Has there been any update or new feature introduced that enables this? Thank you.
Users working remotely (home network) are able to successfully access Azure Virtual Desktop (AVD). However, when users are connected via the Site Socket, access to AVD fails. As part of our troubleshooting, we manually configured the client-side DNS settings on a test laptop. With this configuration, DNS resolution…
in the 4/27/2026 product announcements it says: Cisco Meraki Access Point Events in Experience Monitoring: Integrate Wi-Fi access point events from Cisco Meraki and correlate them with user experience data to improve troubleshooting of office connectivity issues. Requires a DEM license and configuration of the Cisco Meraki…
Currently App Analytics Dashboard covers all the application or traffic going to Cato PoP. I have users who also uses Cato SDP in mobile phone but those are BYOD devices. Now when I see analytics dashboard, it shows various applications which are blocked in windows/MAC OS like whatsApp. But in App Analytics Dashboard, it…
is there any way (events / API) to see DHCP events for our SDP users? Our security vendors (Rapid7 and Defender for Identity) are doing correlation based on DNS and DHCP events and sometimes see SDP addresses as different machines. I have DNS and PTR records updating but am curious if there is any way to expose the DHCP…
Slides are attached :) Leave your questions or comments below, we'd love to hear from you. Attachment: Cato_AI_Security_Webinar_UKI.pdf
Hello Team, We currently use Okta for SSO and SCIM provisioning with Cato. We want to keep SSO authentication on Okta, but move provisioning from Okta to Saviynt. Our Understanding: - We understand SCIM endpoints are scoped per directory (sourceId) as /scim/v2/{accountId}/{sourceId}. - We also noted documentation stating…
Why is the Container Interval limited to 1 hour as the quickest time to sync? I need to setup a threat feed and when I make changes to the feed in my github repo or wherever it may be, I need it to sync as quick as possible. 1 hour seems like a very long time.
I have multiple customers that have a LTE sim card just for the main socket. This will have the sockets identify asymmetric WAN connections causing the DEGRADED alert. What can I do to disable the DEGRADED alarm from the site? could it be possible to disable the interfaces so the asymmetric connections don't show as…
A few questions (to start), * Do I use WAN IP configured for the actual interface for the "Public IP"? * What IP do I use if the site is using DHCP for WAN? * Do I need to enter a port? If So whats recommeneded? * Do I only do this for the HUB sites? * WHat if I have more than one HUB?
It looks like you're new here. Sign in or register to get started.