Managed EDR

We would like to see EU customer data that is collected for the Huntress platform stored in a EU Data Centre: Simplifies compliance & reduces regulatory risk. Legal risk is low. Many EU end customers demand EU data residency, especially in specific sectors like healthcare, finance, government and education. Alignment with NIS2 compliance

When enforcing SSO it would be nice to be able to exclude an account as a breakglass that could be used in the rare circumstance a certificate every expired we could use that to navigate back into the console and renew it.

As an MSP based in the UK, having Huntress hosted in a UK data centre where our collected data is stored would help us achieve the following: Avoid potential regulatory changes & easier compliance with UK sector specific laws e.g. NHS data requirements, financial regulations, dealing with ICO would be simpler if/when customer breaches occur. Public sector customers explicitly require UK data residency. Data sovereignty perception removes a sales barrier with end customers who are non-technical and not legal savvy.

EDR Capabilities for specific flavors of Linux, offering the same level of security and protection as our Windows and MacOS agents.

When a host is isolated, add the date/time of the isolation to the report/log. right now that info is only on the back end. And it would be nice for reporting/troubleshooting.

Support the ability to manage the built-in Windows firewall on endpoints. This would allow for "patching holes" and brings in the potential for a "lockdown" mode when malware hits.

Adding a new ability to detect phishing when a user connects to a fake web page with a spoofed favicon that does not match the Microsoft favicon

Huntress now supports an IP address allow list for isolated hosts, but this doesn't work with Cloud RMM, AV, or other tooling which typically uses dynamic IP addresses for agent connectivity. Vote here if you'd like to see this capability added. Even better, it would be great to hear what specific tools you'd want to use it with; the list of DNS names that need allowing for typical cloud tooling is long, and we could potentially preconfigure them (just check a box) for common-needed tools.

Comments were added to incidents, but they do not exist for escalations. This same functionality would be a welcomed addition to escalations for the same purpose.

Addition of comments to platform is great, but it would be improved by having the comment field displayed when resolving an incident as well. Noticed that there are some areas where this exists, such as rejecting an incident as the comments entered on that page get populated into the comments on the incident. However, when resolving an incident or approving remediations - there isn't any text field to provide comments/notes that can then make it into the comments on the incident. Please add comment/notes field to the resolve options on incidents.