Time: April 20, 2023, 3:54 a.m.

Status: Postmortem

Update: # Incident Description A routine database automatic scaling operation failed around 9:30 AM ET on 4/19/2023. This caused the database cluster to become unresponsive and fail to accept connections. While data integrity was unaffected, data availability was compromised. The SecureAuth team worked to restore service and forced the scaling operation to finish. Once the scaling operation finished, the database cluster once again was accepting connections and service was restored around 12:30 PM ET on 4/19/2023. # Root Cause It appears that the automatic scaling operation failed to complete due to an issue with the database platform in general. One cluster node was marked unhealthy by the scaling algorithm incorrectly, and this prevented the rest of the cluster nodes from scaling properly. The database cluster began rejecting connections soon thereafter. # Corrective Actions Typically such automatic scaling operations are seamless and without incident. However, given the conditions for auto-scale failure on 4/19/2023, we acknowledge there is still risk with such activity. The SecureAuth team is following up with a database platform vendor for more information regarding the scaling operation failure. In the meantime, any auto-scale operations for this database cluster have been suspended, and the SecureAuth team will monitor capacity and do any scaling activity for this database cluster during planned maintenance windows. Finally, the SecureAuth team is confirming vendor best practices are being followed for any/all connections to this database cluster and will make adjustments as needed. Note: times are Eastern time zone.

Time: April 19, 2023, 5:39 p.m.

Status: Resolved

Update: All customers should have returned to normal. Please contact SecureAuth Support ([email protected]) if you are still having issues.

Time: April 19, 2023, 4:42 p.m.

Status: Monitoring

Update: Services have been restored and we will continue to monitor the situation to ensure no further issues.

Time: April 19, 2023, 4:23 p.m.

Status: Identified

Update: Updated estimated resolution time 1:00pm Eastern Time. Continuing to recover the underlying database infrastructure components.

Time: April 19, 2023, 3:41 p.m.

Status: Identified

Update: Identified an issue with the underlying database infrastructure which should be resolved by 12:15pm Eastern Time (9:15am Pacific/16:15 UTC).

Time: April 19, 2023, 2:48 p.m.

Status: Investigating

Update: The SecureAuth Authentication services have been impacted by a issue within the backend services - we are working with the appropriate teams and third-parties to isolate and resolve.

Time: Nov. 15, 2022, 2:34 a.m.

Status: Postmortem

Update: Incident Description  * On November 14, multiple customers reported issues with the renewal of PFX personal certificates.  Root Cause  * SecureAuth utilizes Cloud-based Hardware Security Modules \(HSM\) through Thales.  * Thales was performing maintenance on the Cloud HSM infrastrucuture over the weekend which caused the SecureAuth Certificate Authority \(CA\) systems to be unable to connect to the Cloud HSM for key validation.  * The SecureAuth CA’s regularly renews the Certificate Revocation Lists \(CRL\) for multiple CA’s - tthe expiration of the delta CRLs is approximately 48 hours, which is why we did not have any impacts from the Thales maintenance until Sunday evening with customers not being impacted until Monday morning.  * To further exacerbate the problem, the alerts generated by the monitoring systems were not going to the location the L1 team monitors.  Corrective Actions  * Restarting the CA’s on all of the “NGE” servers corrected the issue  * Documentation was not completely up-to-date on the configuration of the multiple-region deployment of the NGE certificates. The DevOps team will be reviewing the documentation and updating as necessary.  * Review of all DevOps alerts has been conducted to ensure all alerts are going to the location that is actively monitored vs. the Slack channel that also has the alerts, but is not routinely monitored.  * The DevOps Team has enrolled in status updates through the Thales Status Page and will review any changes or maintenance that is posted to that site to ensure internal testing can be performed to validate all SecureAuth operations are not impacted.

Time: Nov. 15, 2022, 2:34 a.m.

Status: Postmortem

Update: Incident Description  * On November 14, multiple customers reported issues with the renewal of PFX personal certificates.  Root Cause  * SecureAuth utilizes Cloud-based Hardware Security Modules \(HSM\) through Thales.  * Thales was performing maintenance on the Cloud HSM infrastrucuture over the weekend which caused the SecureAuth Certificate Authority \(CA\) systems to be unable to connect to the Cloud HSM for key validation.  * The SecureAuth CA’s regularly renews the Certificate Revocation Lists \(CRL\) for multiple CA’s - tthe expiration of the delta CRLs is approximately 48 hours, which is why we did not have any impacts from the Thales maintenance until Sunday evening with customers not being impacted until Monday morning.  * To further exacerbate the problem, the alerts generated by the monitoring systems were not going to the location the L1 team monitors.  Corrective Actions  * Restarting the CA’s on all of the “NGE” servers corrected the issue  * Documentation was not completely up-to-date on the configuration of the multiple-region deployment of the NGE certificates. The DevOps team will be reviewing the documentation and updating as necessary.  * Review of all DevOps alerts has been conducted to ensure all alerts are going to the location that is actively monitored vs. the Slack channel that also has the alerts, but is not routinely monitored.  * The DevOps Team has enrolled in status updates through the Thales Status Page and will review any changes or maintenance that is posted to that site to ensure internal testing can be performed to validate all SecureAuth operations are not impacted.

Time: Nov. 14, 2022, 11:06 p.m.

Status: Resolved

Update: RCA to be posted soon

Time: Nov. 14, 2022, 11:06 p.m.

Status: Resolved

Update: RCA to be posted soon

Time: Nov. 14, 2022, 8:07 p.m.

Status: Monitoring

Update: A fix has been implemented and we are monitoring the results.

Time: Nov. 14, 2022, 8:07 p.m.

Status: Monitoring

Update: A fix has been implemented and we are monitoring the results.

Time: Nov. 14, 2022, 5:57 p.m.

Status: Identified

Update: The issue has been identified and a fix is being implemented.

Time: Nov. 14, 2022, 5:57 p.m.

Status: Identified

Update: The issue has been identified and a fix is being implemented.

Time: Nov. 14, 2022, 4:53 p.m.

Status: Investigating

Update: We are continuing to investigate this issue.

Time: Nov. 14, 2022, 4:53 p.m.

Status: Investigating

Update: We are continuing to investigate this issue.

Time: Nov. 14, 2022, 4:53 p.m.

Status: Investigating

Update: We are currently investigating reports of our PFX/Certificate creation not working for some customers.

Time: Nov. 14, 2022, 4:53 p.m.

Status: Investigating

Update: We are currently investigating reports of our PFX/Certificate creation not working for some customers.

Time: Oct. 19, 2022, 8:15 p.m.

Status: Resolved

Update: We have moved to our secondary provider and all carriers appear to be working. Please note, for a few days, the numbers will be coming over as "short codes" - this is normal and we are working with the secondary carrier to get to full numbers soon.

Time: Oct. 19, 2022, 5:58 p.m.

Status: Monitoring

Update: SMS messages are being received from our test devices, continuing to monitor the situation

Time: Oct. 19, 2022, 5:57 p.m.

Status: Identified

Update: We are continuing to work on a fix for this issue.

Time: Oct. 19, 2022, 5:48 p.m.

Status: Identified

Update: We are continuing to work on a fix for this issue.

Time: Oct. 19, 2022, 3:55 p.m.

Status: Identified

Update: There is an issue with the 3rd party vendor we are using to send SMS messages to the carrier. The issue appears to be with the vendor delivering messages to AT&T

Time: Oct. 19, 2022, 3:53 p.m.

Status: Investigating

Update: We are investigating an issue with one of the cell providers (AT&T) where users are not able to utilize SMS as an MFA factor.

Time: Oct. 19, 2022, 8:15 p.m.

Status: Resolved

Update: We have moved to our secondary provider and all carriers appear to be working. Please note, for a few days, the numbers will be coming over as "short codes" - this is normal and we are working with the secondary carrier to get to full numbers soon.

Time: Oct. 19, 2022, 5:58 p.m.

Status: Monitoring

Update: SMS messages are being received from our test devices, continuing to monitor the situation

Time: Oct. 19, 2022, 5:57 p.m.

Status: Identified

Update: We are continuing to work on a fix for this issue.

Time: Oct. 19, 2022, 5:48 p.m.

Status: Identified

Update: We are continuing to work on a fix for this issue.

Time: Oct. 19, 2022, 3:55 p.m.

Status: Identified

Update: There is an issue with the 3rd party vendor we are using to send SMS messages to the carrier. The issue appears to be with the vendor delivering messages to AT&T

Time: Oct. 19, 2022, 3:53 p.m.

Status: Investigating

Update: We are investigating an issue with one of the cell providers (AT&T) where users are not able to utilize SMS as an MFA factor.

Time: Oct. 14, 2022, 6:02 a.m.

Status: Resolved

Update: No further issues have been reported and internal checks continue to be successful

Time: Oct. 14, 2022, 6:02 a.m.

Status: Resolved

Update: No further issues have been reported and internal checks continue to be successful

Time: Oct. 12, 2022, 9:43 p.m.

Status: Monitoring

Update: The 3rd Party carriers have appeared to have resolved the issue - we are monitoring to ensure no further issues. If you continue to see any issues, please contact [email protected]

Time: Oct. 12, 2022, 9:43 p.m.

Status: Monitoring

Update: The 3rd Party carriers have appeared to have resolved the issue - we are monitoring to ensure no further issues. If you continue to see any issues, please contact [email protected]

Time: Oct. 12, 2022, 3:38 p.m.

Status: Investigating

Update: We are currently investigating SMS delivery issues to for some Cell Networks. Our service provider is currently investigating the issue, and we will provide an update as soon as we receive more information.

Time: Oct. 12, 2022, 3:38 p.m.

Status: Investigating

Update: We are currently investigating SMS delivery issues to for some Cell Networks. Our service provider is currently investigating the issue, and we will provide an update as soon as we receive more information.