CORS Policy on Halo API

By default, the CORS policy on all Halo web apps is a wildcard that allows all. To enable a stricter CORS policy to block requests from other origins, follow the below. In appsettings.json in the API and Auth Server add "UseCorsPolicy": true. Also, add "CorsWhiteList" as an array of strings. Enter the hostname of each […]

Redacting Card and Social Security Numbers (SSN)

In this guide we will cover: – Redacting Card Numbers – Redacting Social Security Numbers – Context Aware Redaction Rules Card numbers and Social Security Numbers (SSN) can be redacted from new tickets or actions, either partially or wholly.  Redacting Card Numbers In Configuration > Users > General Settings > Data Compliance Settings, a dropdown […]

Google reCAPTCHA Integration

In this guide we will cover: – What is the Google reCAPTCHA Integration? – Connecting to reCAPTCHA  – Adding to Anonymous Ticket Logging – Adding to Feedback Forms Related Guides: Anonymous logging for certain ticket types, can be embedded on website or accessed via a specific URL  One-Click Feedback What is the Google reCAPTCHA Integration? […]

IP Addresses for Whitelisting

For hosted Halo users your traffic passes through the below IP addresses. This is for API requests as well as SMTP/IMAP/POP connections. UK Addresses to whitelist; 18.134.104.113 18.134.36.210 18.133.135.248 DNS listing for IPs; (add this to sending domain SPF record) d3ukmail.nethelpdesk.com Associated SPF Records spf.uk.halocrm.io spf.uk.haloservicedesk.com spf.uk.halopsa.com spf.uk.haloitsm.com USA/Americas Addresses to whitelist: 52.200.167.248  3.225.188.37  50.19.232.234 […]

Setting up Two Factor Authentication

Two-factor Authentication; how to use and implement it. Agents can use 2FA (Two Factor Authentication) to secure their account for any reason seen fit. This could be for data protection, security whilst out and about using Halo on mobile or a laptop, or if you have staff using Halo in a public facing part of […]