Beyond Identity incident

Location specific issues accessing services

Major Resolved View vendor source →

Beyond Identity experienced a major incident on July 7, 2022 affecting USA - Enrollment Service and USA - Migration Service, lasting 26m. The incident has been resolved; the full update timeline is below.

Started
Jul 07, 2022, 01:47 PM UTC
Resolved
Jul 07, 2022, 02:13 PM UTC
Duration
26m
Detected by Pingoru
Jul 07, 2022, 01:47 PM UTC

Affected components

USA - Enrollment ServiceUSA - Migration Service

Update timeline

  1. identified Jul 07, 2022, 01:47 PM UTC

    Our site reliability team is investigating the issue.

  2. monitoring Jul 07, 2022, 01:55 PM UTC

    The site reliability engineering team has made an update to the configuration that was causing an issue. We keep monitoring to verify that this is fixing the problem.

  3. resolved Jul 07, 2022, 02:13 PM UTC

    We have verified that the issue is resolved.

  4. postmortem Jul 11, 2022, 11:08 PM UTC

    **Executive Summary** The Beyond Identity team added additional detection rules to our WAF. These changes led to one customer being unable to authenticate or access [app.byndid.com](http://app.byndid.com/). Beyond Identity was alerted to the problem, and mitigation was promptly implemented. Only one customer was experiencing issues. **Root Cause** * The security team added additional WAF rules to block a collection of disclosed vulnerabilities. These changes identified traffic coming in from a single customer as malicious/anomalous. * The root cause was traced to a single WAF rule blocking a specific CVE.