“VPNs unauthorized by default" should be able to be enabled per Organization. | Voters

“VPNs unauthorized by default" should be able to be enabled per Organization.

planned

John Degen

Currently this is only available at the Account / MSP level and not granular down to Organization / Client level.

May 27, 2025

Rich Mozeleski

Merged in a post:

Enable 'VPNs Unauthorized by Default' per organization

Travis Springer

Currently, the option to enable 'VPNs Unauthorized by Default' is only available at the account level. It would be beneficial to have this feature available per organization, allowing for more granular control and security tailored to each organization's needs.

4 days ago

Jordan Eldridge

In our rollout of ITDR I had to explain this to numerous techs that this does not actually work on the organization level. Frustrating and could minimize the baselining/tuning of initial escalations for security oriented clients

Jessica Loveland

Yeah I second this. It should also be clarified in the description of the toggle button since its still present on the organizations Unwanted Access Rules, even though its not something that can be selected.

Rich Mozeleski

marked this post as

planned

We're going to complete this work as part of our upcoming Configuration Rule improvements.