Customer Story
How the City of Vidalia, LA Drives Security and Compliance with NinjaOne
with Andrew Jones, City of Vidalia LA
See NinjaOne in action!
Customer Story
with Andrew Jones, City of Vidalia LA
Endpoints supported
With NinjaOne since
Company
Vidalia, Louisiana is a small city of around 4,000 residents, known for it’s beautiful riverfront. Though small, a hydroelectric plant allows Vidalia to provide residents with robust services and a great quality of life.
Headquarters
Vidalia, LA
Website
https://www.cityofvidaliala.com/
Vidalia, Louisiana is a small city of around 4,000 residents, known for it’s beautiful riverfront. Though small, a hydroelectric plant allows Vidalia to provide residents with robust services and a great quality of life.
Andrew Jones, an IT technician, along with two others manage the information technology needs of the city, including City Hall, the Police Department, Fire Department, Utility Department, Parks and Recreation Department, and more.
In 2019, Vidalia was subject to a ransomware attack due to poor vendor practices, and they decided to take back control of their IT infrastructure. As part of that effort, Vidalia purchased NinjaOne to provide visibility, control, and security across their systems.
With only three full time technicians, the City of Vidalia has a lean IT operation. Even so, the departments those technicians service expect results. By using Ninja, the IT team is able to streamline some of the most time-intensive tasks they had previously performed manually.
“Ninja’s automated patch management feature has very beneficial for us,” says Andrew, “We’re running scans and installing updates daily, and automating weekly reboots on workstations every weekend away from peak hours. We still manually reboot servers so we can minimize downtime, but otherwise patching is fully automated.” Andrew’s team also uses Ninja’s third party application patching solution to roll out software like Libre Office, Chrome, and Adobe and to automate patching for this software. Prior to Ninja, the City of Vidalia had an employee that dedicated 20 – 30 hours per week to traveling between locations and updating endpoints manually, as well as manually running Anti-Virus scans. They’ve been able to shift almost an entire employee salary from scanning and patching to other critical IT tasks.
Twice per year, the IT team would also perform an IT asset audit. They would go to each of their managed agencies and take a full hardware inventory and use that inventory for asset planning. “With Ninja, our IT asset inventory is fully automated and updated live. This makes a huge difference because now when we go to do hardware upgrades, we’re looking at real-time device configurations, not what our assets were six months ago,” explains Andrew. Ninja’s live IT asset inventory not only saves IT team time, it saves the city money.
Andrew’s team uses Ninja to automate ticket creation for critical conditions. “We use the Ninja NMS agent on our network devices, IOT devices, and printers. When Ninja detects a series of failed pings, we get both an alert in Ninja and a ticket created in our helpdesk so we can solve the issue before end-users really even notice,” says Andrew, “We’re also automatically generating tickets when specific services crash, when SMART status is degraded, for RAID issues, and more.”
“We’re also leveraging the Ninja custom system tray icon to make submitting a ticket easier, says Andrew.” The Ninja system tray icon is visible to all endpoints with a Ninja agent installed so that users can easily submit a ticket to the IT department. The City of Vidalia also includes critical links to resources like security awareness training on the system tray icon to make those resources more readily available to users.
“Compliance is very important for the agencies we manage, from CJIS compliance for our Police Department to PCI compliance for City Hall. Automating patch management through Ninja allows us to keep our operating systems up-to-date, making both achieving compliance and reporting on compliance far easier,” says Andrew.
Drive encryption is also important to meet compliance requirements across agencies. The City of Vidalia uses Ninja to ensure that drives are encrypted and automatically collect BitLocker encryption keys in case a drive needs to be recovered.
“Like many municipalities, our cyber insurance company requires us to enforce multifactor authentication across the tools we use,” says Andrew. Ninja enforces multifactor authentication not just for user login, but also when technicians take actions that could have significant security implications, such as creating new users, modifying scripts, or accessing credentials.
“We actually had to remove Ninja’s Splashtop remote control tool from our Police Department endpoints for a while,” says Andrew. Before Ninja implemented ‘ask permissions’ for Splashtop there were both compliance challenges and concern from departmental leadership about the access IT had to endpoints. “After Ninja updated Splashtop so that end-users can reject remote access, we added it back on all of our endpoints,” says Andrew. Ninja now automatically generates a remote access report and emails it to their CISA every month so there is a record of all remote connections. “We really like the fact that user history and actions are recorded and can be reported on. It gives some of the department director heads comfort knowing that we only remote in whenever there’s an issue, and questions can be asked if there are any doubts. Accountability for a user’s actions within a position of power is important,” says Andrew.
In addition to using Ninja’s to automate patching, Andrew and his team rely on Ninja to address unexpected security vulnerabilities. “When the Print Nightmare vulnerability was discovered, I logged into Ninja and stopped and disabled the print spooler service on our servers without even remoting into them,” says Andrew. “When there was a ransomware outbreak wreaking havoc across the country about a year ago, I used the scripting feature to disable SMBv1 across all of our devices. When there was a vulnerability with the Dell SupportAssist software, we used Ninja to create a list of all devices that had the software installed, then remoted into each and removed the software.”
Also whenever a software reaches EOL, such as an old version of Microsoft Office, the City of Vidalia uses Ninja to create a list of all devices that have the unsupported software installed, then decide whether to upgrade the software, find an open source replacement, identify if the software is still even used, or if it’s worth the risk of using the unsupported software.
The City of Vidalia also uses Webroot through Ninja for antivirus protection. “While we have firewalls for employees who are in the office and on the network, we’ve rolled out Webroot’s DNS content filtering to protect remote employees.” Over the past year, as employees have had to leave the office or quarantine, they’ve also leveraged Ninja’s end-user sharing feature. “We don’t need to open up the network or provide a VPN for employees who need to access on-network resources from home. We set them up as end-users in Ninja and they can access their resources from anywhere, without compromising network security,” says Andrew.
The City also has some endpoints with sensitive data access. Andrew has setup monitoring conditions on those endpoints, as needed, and is alerted to removable data devices being plugged into them. “When we get an alert that removable media has been used on those devices, we can notify their management who decide if it was used appropriately or not. We know which device was accessed, by which user, and what type of device was plugged in.”
“As someone who has worked with an RMM software package in the past,” says Andrew, “two things really stand out: Ninja’s ease-of-use and Ninja’s support. I love how easy it is to learn Ninja, and I love being able to pick up my phone and talk to a person.”
While Andrew had experience with a remote monitoring and management solution, the other technicians at City of Vidalia did not. “Within a couple of days, everyone on the team had a clear understanding of Ninja. We didn’t need training and there was no drawn out implementation process. We purchased Ninja and got started managing our infrastructure immediately. We started deploying to all of our departments while still in our 30-day trial, as we had already decided we were moving forward with Ninja.” explains Andrew.
With solutions Andrew had previously used, support was purchased separately from the product. Every support call was routed through an automated phone system to a centralized support team and each touch was charged against purchased support hours. “Ninja’s support is really amazing. I can call or email our account manager at any time. If there is an issue in Ninja or Webroot, she’s super reliable getting us to the right person to support us,” says Andrew.
Andrew finishes, “We’re a small team managing many different departments across our city. Each of those departments has its own location. With Ninja, the three of us are able to manage the IT needs of the entire city centrally and remotely so they can keep our city running and safe.”
Get 5 bite-sized ways to grow your business or career every week!
Never Miss Out - Subscribe to the NinjaOne Newsletter
Cookie | Duration | Description |
---|---|---|
_vwo_ds | 3 months | This cookie is set by the provider Visual Website Optimiser. This cookie is used for collecting information on how visitors interact with the pages on website. |
_vwo_sn | 30 minutes | This cookie is set by the provider Visual Website Optimiser. This cookie is used for collecting information on how visitors interact with the pages on website. It collect statistical data such as number of visit, average time spent on the website, what pages haves been read. |
_vwo_uuid | 10 years | This cookie generates a unique ID for every visitor and is used for the report segmentation feature in VWO. Also, this cookie allows you to view data in a more refined manner. If you have the campaign running on multiple domains, you will notice campaign-specific UUID values. |
_vwo_uuid_v2 | 1 year | This cookie is set by Visual Website Optimiser and is used to measure the performance of different versions of web pages. |
cookielawinfo-checbox-analytics | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics". |
cookielawinfo-checbox-functional | 11 months | The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional". |
cookielawinfo-checbox-others | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other. |
cookielawinfo-checkbox-advertisement | 1 year | The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Advertisement". |
cookielawinfo-checkbox-necessary | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary". |
cookielawinfo-checkbox-performance | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance". |
ninja | 1 month | No description |
ninja_added | session | No description |
viewed_cookie_policy | 11 months | The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data. |
Cookie | Duration | Description |
---|---|---|
__cf_bm | 30 minutes | This cookie is set by CloudFlare. The cookie is used to support Cloudflare Bot Management. |
_vis_opt_test_cookie | session | This cookie is set by Visual Website Optimiser and is a session cookie generated to detect if the cookies are enabled on the browser of the user or not. |
geoData | First-party cookie. Stores geoIP data in order to display appropriate phone numbers and content for your region. |
Cookie | Duration | Description |
---|---|---|
_biz_flagsA | 1 year | This cookie is set by Bizible. A single cookie that stores multiple information, such as whether or not the user has submitted a form, performed a crossdomain migration, sent a viewthrough pixel, opted out from tracking, etc. |
_biz_nA | 1 year | This cookie is set by Bizible and is used to store a sequence number that Bizible includes for all requests, for internal diagnostics purpose. |
_biz_pendingA | 1 year | This cookie is set by Bizible. Temporarily stores analytics data that has not been successfully sent to Marketo Measure server yet. |
_biz_sid | 30 minutes | This cookie is set by Bizible. The cookie is used to store the session ID of the user. |
_biz_uid | 1 year | This cookie is set by Bizible and is used to store the user ID on the current domain. |
_hjIncludedInSessionSample | 2 minutes | This is a Hotjar cookie set to determine if a user is included in the data sampling defined by the site's daily session limit. |
YSC | session | This cookie is set by YouTube and is used to track the views of embedded videos. |
Cookie | Duration | Description |
---|---|---|
__utma | 2 years | This cookie is set by Google Analytics and is used to distinguish users and sessions. The cookie is created when the JavaScript library executes and there are no existing __utma cookies. The cookie is updated every time data is sent to Google Analytics. |
__utmb | 30 minutes | The cookie is set by Google Analytics. The cookie is used to determine new sessions/visits. The cookie is created when the JavaScript library executes and there are no existing __utma cookies. The cookie is updated every time data is sent to Google Analytics. |
__utmc | session | The cookie is set by Google Analytics and is deleted when the user closes the browser. The cookie is not used by ga.js. The cookie is used to enable interoperability with urchin.js which is an older version of Google analytics and used in conjunction with the __utmb cookie to determine new sessions/visits. |
__utmz | 6 months | This cookie is set by Google analytics and is used to store the traffic source or campaign through which the visitor reached your site. |
_BUID | 1 year | This cookie is used to store a universal user ID to identify the same user across multiple clients' domains. |
_dc_gtm_UA-100000610-1 | 1 minute | This is a Google Analytics cookie used to store the number of service requests. |
_fbp | 3 months | This cookie is set by Facebook to deliver advertisement when they are on Facebook or a digital platform powered by Facebook advertising after visiting this website. |
_ga | 2 years | This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site's analytics report. The cookies store information anonymously and assign a randomly generated number to identify unique visitors. |
_gat | 1 minute | This cookies is installed by Google Universal Analytics to throttle the request rate to limit the colllection of data on high traffic sites. |
_gat_UA-100000610-1 | 1 minute | This is a pattern type cookie set by Google Analytics, where the pattern element on the name contains the unique identity number of the account or website it relates to. It appears to be a variation of the _gat cookie which is used to limit the amount of data recorded by Google on high traffic volume websites. |
_gd_session | 4 hours | This cookie is used for collecting information on users visit to the website. It collects data such as total number of visits, average time spent on the website and the pages loaded. |
_gd_svisitor | 2 years | This cookie is set by the Google Analytics. This cookie is used for tracking the signup commissions via affiliate program. |
_gd_visitor | 2 years | This cookie is used for collecting information on the users visit such as number of visits, average time spent on the website and the pages loaded for displaying targeted ads. |
_gid | 1 day | This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the website is doing. The data collected including the number visitors, the source where they have come from, and the pages visted in an anonymous form. |
_hjFirstSeen | 30 minutes | This is set by Hotjar to identify a new user’s first session. It stores a true/false value, indicating whether this was the first time Hotjar saw this user. It is used by Recording filters to identify new user sessions. |
_hjid | 1 year | This cookie is set by Hotjar. This cookie is set when the customer first lands on a page with the Hotjar script. It is used to persist the random user ID, unique to that site on the browser. This ensures that behavior in subsequent visits to the same site will be attributed to the same user ID. |
_uetsid | 1 day | This cookies are used to collect analytical information about how visitors use the website. This information is used to compile report and improve site. |
_vis_opt_s | 3 months 8 days | This cookie is set by Visual Website Optimiser and is used to detect if the user is new or returning to a particular campaign. |
6suuid | 2 years | This is a 6sense cookie. Registers user behaviour and navigation on the website, and any interaction with active campaigns. This is used for optimizing advertisement and for efficient retargeting. |
DriftPlaybook | session | This is a Drift cookie. |
IDE | 1 year 24 days | Used by Google DoubleClick and stores information about how the user uses the website and any other advertisement before visiting the website. This is used to present users with ads that are relevant to them according to the user profile. |
page | 1 month | No description |
pardot | past | The cookie is set when the visitor is logged in as a Pardot user. |
vuid | 2 years | This domain of this cookie is owned by Vimeo. This cookie is used by vimeo to collect tracking information. It sets a unique ID to embed videos to the website. |
Cookie | Duration | Description |
---|---|---|
_an_uid | 7 days | This is a 6sense cookie. Presents the user with relevant content and advertisement. The service is provided by third-party advertisement hubs, which facilitate real-time bidding for advertisers. |
_rdt_uuid | 3 months | This cookie is set by Reddit and is used for remarketing on reddit.com |
_uetvid | 1 year 24 days | This is a Bing Ads cookie to store and track visits across websites. |
MUID | 1 year 24 days | Used by Microsoft as a unique identifier. The cookie is set by embedded Microsoft scripts. The purpose of this cookie is to synchronize the ID across many different Microsoft domains to enable user tracking. |
test_cookie | 15 minutes | This cookie is set by doubleclick.net. The purpose of the cookie is to determine if the user's browser supports cookies. |
VISITOR_INFO1_LIVE | 5 months 27 days | This cookie is set by Youtube. Used to track the information of the embedded YouTube videos on a website. |
Cookie | Duration | Description |
---|---|---|
_hjAbsoluteSessionInProgress | 30 minutes | This is a Hotjar cookie used to detect the first pageview session of a user. |
_hjIncludedInPageviewSample | 2 minutes | This is a Hotjar cookie set to determine if a user is included in the data sampling defined by your site's pageview limit. |
_hjTLDTest | session | This is a Hotjar cookie. Hotjar tries to store the _hjTLDTest cookie for different URL substring alternatives until it fails. Enables Hotjar to try to determine the most generic cookie path to use, instead of page hostname. After this check, the cookie is removed. |
ARRAffinity | This cookie is set by websites that run on Windows Azure cloud platform. The cookie is used to affinitize a client to an instance of an Azure Web App. | |
campaign | 1 day | No description |
content | 1 day | No description |
conversion_page | 1 day | No description |
landing_page | 1 day | No description |
sliguid | 5 years | Salesloft cookie for use in live website tracking to help identify and qualify leads. |
slireg | 7 days | Salesloft cookie for use in live website tracking to help identify and qualify leads. |
slirequested | 5 years | Salesloft cookie for use in live website tracking to help identify and qualify leads. |
source | 1 day | No description |