Keith Stevenson

Chris, Thanks for the post. This was due to an underlying database server having an issue which has now been resolved. All should be OK once again. Kind Regards Keith Stevenson

Daniel, Thanks for the post. This was due to an underlying database server having an issue which has now been resolved. All should be OK once again. Kind Regards Keith Stevenson

Daniel, Thanks for the image. That does show that its got the cipher we expect (TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ) , which is strange given the list you provided earlier didnt have it (IE is nothing but strange). Just to confirm that the image is from the Windows 7 machine. Also if on the Windows 7 machine you can go to the following and let us know what error you get in IE. https://mdh-p01-api.hornbill.com/miltonkeynescouncil/xmlmc/ Kind Regards

Daniel, Thanks for the post. That version was released on 6 oct 2019 and should by default contain the ciphers. We have also tested on a version as close as we can get on Windows 7 and its OK (19540 instead of 19507). Can you on an effected machine run the following and let us know what you see At a command prompt, enter gpedit.msc, and then press Enter. The Local Group Policy Editor is displayed. Go to Computer Configuration > Administrative Templates > Network > SSL Configuration Settings. Under SSL Configuration Settings, select SSL Cipher Suite Order. In the SSL Cipher Suite Order pane, scroll to the bottom. Kind Regards

Daniel, Thanks for the reply. The change was made over the weekend on Sunday Morning. The below ciphers should be available by default (First in Windows 7\8 the second in Windows 10). It would appear that some IE policy or group setting has changed the defaults for your Windows 7 machines. TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 Can you confirm that you have a group policy that has changed the deftaults for IE.

Daniel, Thanks for the post. Is that list from IE. If so (even though it appears the same) can you post the Chrome one as there should be a difference. Kind Regards

Daniel, On that page you use, it lists the Cipher suites. Can you post them (Also if you goto that page in Chrome, which you said works you should see whats missing in IE) Kind Regards Keith Stevenson

Daniel, Can you run the below on an effected machine\browser and provide a list of Protocol Features and Supported Cipher Suites. https://www.ssllabs.com/ssltest/viewMyClient.html Kind Regards Keith Stevenson

Daniel, Thanks for the post. Can you confirm what version of Internet Explorer.. The only recent change was to remove support for historic TLS 1.0 but all supported browsers should have no issues with this. Kind Regards Keith Stevenson

@Trevor Tinsley @Charlie Jones Can you confirm you still have an issue and if so what is the error you get? Kind Regards

@Alisha @Martyn Houghton Can you confirm the issue is resolved? Kind Regards

All, We have identified and resolved the issue and it should all be functioning again. We will provide a full response and RCA shortly. Kind Regards

All, The higher than normal load has now been reduced and we are no longer seeing issues. We already had a change in beta to help with this kind of scenario and are hoping to be able to push this to live over next week. We have also scheduled a change to the front end web servers that will be made to beta today and then live again be end of next week. We will continue to monitor closely. Kind Regards Keith Stevenson

All, Thank you for the posts. We have witnessed higher than normal load on our front end servers and taken steps to reduce this. At the moment this is now as expected and we will continue to monitor. Kind regards Keith Stevenson

David, Thanks for the post. We can inform you that Email delivery of Scheduled reports is under the Enterprise Edition and Advanced Reporting & Delivery. https://www.hornbill.com/editions Kind regards Keith Stevenson

Will, Thanks for the post. We use cloudflare for static content (Not your data) so that will be served more locally to your analysts in different regions (They have a data centre in Dubai) and accounts for around 60% of all traffic and its to this the < 100ms was based (When you ping live.hornbill.com it will resolve this to cloudflare servers). Yes, +100ms is still possible but for Hornbill most will not go direct to server but the cloudflare cache. Kind Regards Keith Stevenson

Moses. Thanks for the post and apologies for not replying sooner. Please see the below post

Moses, Thanks for the post and apologies for not replying sooner. It seemed to get missed. Please see

Dear Moses, Thanks for the post. We assume you mean total latency from your machine to live.hornbill.com and its API points and as such 20ms is absolutely fine. Our soft rule of thumb is anything less than 100ms will be fine and you will be hard pushed to find a connection that provides slower than this over the internet today. Kind Regards Keith Stevenson

Adam, We have discussed this internally and the above still stands. We have raised a number of feature requests to better accommodate your needs with regards to ISO27000 (Full auditing on changes to catalog, basic reporting for usage, dependancies etc) and we will keep you informed as they become available. Kind Regards Keith Stevenson

Adam, Thanks for the post and clarification. I have now gone and read the ISO270000 standard around Service catalog management, which is different to what I suggested above which was us providing services to customers under 27001 etc, as you need to manage\audit the actual catalog items themselves rather than just present them for use. If I were to do this I would be tempted to have a library in document manager for each catalog item and within that have all required artifacts including full documentation, list of dependencies (assets, suppliers, configuration items\information etc within this as its then fully audit trailed and versioned ) but lett me speak with our Service Manager team and see if we can come up with a less manual way of achieving the requirements objectives. Kind Regards Keith Stevenson

Adam, We use Hornbill exclusively for all our ISO management (27001 and 27018) , Document manager for storing all our docs and artifacts and Service manager for all incident management. We have a top level service for Cloud services (Which is the area of Hornbill covered by ISO) and within this several catalog items under Incident\Change and Requests, of which 1 is Security Incident. These have their own progressive capture which is pretty basic and is based off the required data from ISO standard. The BPM for each then drives what happens to it (For example some get added to ISO boards for management to see, some will result in tasks either changes to process, documentation or software etc) but that depends on what your process says for each type of incident. Hope this clarifies. Kind Regards Keith Stevenson

Martin, Thanks for the post. We can inform you the problem with the scale of graph has been resolved. (Note that they only show complete months). We also note that if 1 or more data centres have the same value you can only see the first which we need to resolve. Kind Regards Keith Stevenson

Frank, Thanks for the post. All your data (As a UK company) will be hosted\stored within the UK (Datacenters in Maidenhead and London). Cloudflare does not host\store any data it only caches static front end content (Not Data). We hope this resolves your query. Kind Regards Keith Stevenson

Dear Joe, Thanks for the post. We can confirm that we will support OAuth support for POP3 and IMAP connectors, once MS have done so (They say that they will begin to implement this over the next few months) and before the 2020 deadline. Kind regards Keith Stevenson