We are investigating elevated errors from Advanced Rate Limiting (ARL) on EdgeWAF services.

Our engineers have identified the contributing factor and are applying a fix to our Advanced Rate Limiting (ARL) on EdgeWAF services. 

Engineering has confirmed the impact to our Advanced Rate Limiting (ARL) on EdgeWAF services has been mitigated.

Engineering has confirmed that our Advanced Rate Limiting (ARL) on EdgeWAF services has been fully restored. Customers may have experienced rules being applied to additional requests post match, that should not be rate limited from 17:50 to 20:15 UTC.

Affected customers may have experienced impact to varying degrees and to a longer duration than as set forth above.

This incident is resolved.

Fastly is extending our launch of a unified login experience across Fastly and Signal Sciences consoles. This launch makes it simpler and easier for you to access Fastly products and services using a single set of login credentials. Continuing from today, 28th of March 2024 to the 30th of April 2024, we will gradually rollout our new web interface as part of the upgraded login experience. A summary of the main changes appears below.

What's changing? 

Single set of credentials to login to Fastly and Signal Sciences console. Simplified login will allow you to use a single set of login credentials to access all products and features across Fastly's suite of offerings. If you have both Fastly and Signal Sciences accounts that use the same email address and use password and 2FA for authentication, you can use Fastly credentials to log in to both Fastly and Signal Science console.

Log in once and access both accounts. You have to sign-in only once and can switch between Fastly or Signal Sciences console seamlessly without having to log in again if you use the same email address.

Password and 2FA management in one place. You'll be able to change passwords and set up two-factor authentication directly in the Fastly console for both Fastly and Signal Sciences accounts.

Service Provider initiated SSO is now supported. You can log in directly at either Fastly or Signal Sciences console login page using SSO without going to your IdP page.

Password reset got simpler. You can reset your passwords without having to create a temporary password.

Account linking will no longer be required. Customers with both Fastly and Signal Sciences accounts will no longer need to manually link those accounts. Already have linked accounts? You won't need to do anything and can start using your Fastly credentials immediately.

New passwords will be required to conform to NIST guidelines. The complexity for new and changed passwords will be required to conform to digital identity guidelines from the National Institute of Standards and Technology (specifically, the NIST800-63B guidelines). Existing passwords won't be affected until you choose to update them.

Session timeouts will be standardized and more secure. We added additional measures to increase your security posture on the Fastly platform. You will be logged out after 30 minutes of inactivity. Session timeouts will also have a default maximum of 12 hours for any organization that hasn't set up single sign-on.

What's next? What do I have to do?

That's it!. The transition will be seamless and you are not required to take additional steps. You will see a new login experience when we enable this feature for you.

Please refer to documentation for additional information.

Still have questions? Feel free to contact your account manager or customer support for additional details.

Fastly is excited to announce the launch of a unified login experience across Fastly and Signal Sciences consoles to make it simpler and easier for you to access Fastly products and services using a single set of login credentials. Starting today, the 20th of February 2024, we'll be doing a gradual rollout of a new web interface as part of the upgraded login experience. A summary of the main changes appears below.

What's changing? 

Single set of credentials to login to Fastly and Signal Sciences console. Simplified login will allow you to use a single set of login credentials to access all products and features across Fastly's suite of offerings. If you have both Fastly and Signal Sciences accounts that use the same email address and use password and 2FA for authentication, you can use Fastly credentials to log in to both Fastly and Signal Science console.

Log in once and access both accounts. You have to sign-in only once and can switch between Fastly or Signal Sciences console seamlessly without having to log in again if you use the same email address.

Password and 2FA management in one place. You'll be able to change passwords and set up two-factor authentication directly in the Fastly console for both Fastly and Signal Sciences accounts.

Service Provider initiated SSO is now supported. You can log in directly at either Fastly or Signal Sciences console login page using SSO without going to your IdP page.

Password reset got simpler. You can reset your passwords without having to create a temporary password.

Account linking will no longer be required. Customers with both Fastly and Signal Sciences accounts will no longer need to manually link those accounts. Already have linked accounts? You won't need to do anything and can start using your Fastly credentials immediately.

New passwords will be required to conform to NIST guidelines. The complexity for new and changed passwords will be required to conform to digital identity guidelines from the National Institute of Standards and Technology (specifically, the NIST800-63B guidelines). Existing passwords won't be affected until you choose to update them.

Session timeouts will be standardized and more secure. We added additional measures to increase your security posture on the Fastly platform. You will be logged out after 30 minutes of inactivity. Session timeouts will also have a default maximum of 12 hours for any organization that hasn't set up single sign-on.

What's next? What do I have to do?

That's it!. The transition will be seamless and you are not required to take additional steps. You will see a new login experience when we enable this feature for you.

Please refer to documentation for additional information.

Still have questions? Feel free to contact your account manager or customer support for additional details.

This maintenance has been extended and further updates will be shared on Continued Feature Launch: Unified Fastly and Signal Sciences Login Experience

We have updated a new certificate with new IP ranges. Customers may see their agents appear to be offline or have trouble connecting to the control plane after a DNS change was made. We recommend they allow list the Fastly public IP range if they had IP based networks controls in place previously. Please let us know about any certificate issues as they should be transient. This may also impact Signal Sciences data collectors. New events from agents may not be processed by our back end services, agents may erroneously appear to be offline, and agents may not be receiving updated rules sets. Customers may experience also delays in data available in the Signal Sciences console. 

This issue has been identified and a fix is being implemented. 

A fix has been implemented and we are monitoring the results.

This incident has been resolved.

We have identified an issue impacting Signal Sciences rate limit decisioning and are currently investigating. As it stands Rate Limit rules may not be resulting in blocking as expected, further impact to the services are currently being determined.

This issue has been identified and a fix is being implemented. 

A fix has been implemented and we are monitoring the results.

We have identified an issue impacting rate limit decisioning and are currently investigating. As it stands Rate Limit rules may not be resulting in blocking as expected. All other services are unaffected.

This issue has been identified and a fix is being implemented. 

A fix has been implemented and we are monitoring the results.

Our teams have detected an issue that is currently impacting Signal Sciences data collectors. New events from agents may not be processed by our back end services, agents may erroneously appear to be offline, and agents may not be receiving updated rules sets. Rate limit rules may not perform as expected. Customers may experience also delays in data available in the Signal Sciences console.

A fix has been implemented and we are monitoring the results.

We have identified an issue impacting rate limit decisioning and are currently investigating. As it stands Rate Limit rules may not be resulting in blocking as expected, further impact to the services are currently being determined.

A fix has been implemented and we are monitoring the results.

We have identified an issue impacting Signal Sciences rate limit decisioning and are currently investigating. As it stands Rate Limit rules may not be resulting in blocking as expected, further impact to the services are currently being determined.

This issue has been identified and a fix is being implemented. 

A fix has been implemented, rate limiting updates are being processed and we are monitoring the results.

We are continuing to investigate and monitor this issue as an isolated incident, please continue to send and monitor ticket updates via email (securitysupport@fastly.com) while we investigate.

Issue has been isolated and determined to be impacting customers whom have enabled SSO and have not accepted the invite sent from the console. Logging in directly from SSO will prevent customers from viewing, updating and interacting with tickets in the console. Fastly advises customers to accept the invite send from the console to resolve their issues with ticket logging and interactions.