arcgis enterprise security: an introduction · tokens are the foundation of the arcgis enterprise...

70
ArcGIS Enterprise Security: An Introduction Randall Williams Esri Software Security and Privacy, Esri PSIRT

Upload: others

Post on 11-Aug-2020

20 views

Category:

Documents


0 download

TRANSCRIPT

Page 1: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

ArcGIS Enterprise Security: An Introduction

Randall WilliamsEsri Software Security and Privacy, Esri PSIRT

Page 2: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

ArcGIS Security Update – TLS 1.2

• Esri is committed to using the latest industry standards and best practices for security protocols

• On April 16, 2019, we are updating ArcGIS Online to enforce the use of TLS (Transport Layer Security) version 1.2

• What Does This Mean For You?- Users of most ArcGIS software or custom solutions using Esri technology may be affected

by this planned update - If you have not updated and validated your system's support for TLS v1.2 only, you may lose your ability to connect to ArcGIS Online.

• What Do You Need to Do?- Go to the Esri TLS Support page for information, patches, and instructions for updating

software:

support.esri.com/en/tls

enterprise.arcgis.com > Search “cross-domain requests”

Page 3: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

AgendaArcGIS Enterprise Security for *BEGINNING to INTERMIDIATE* users

• ArcGIS Enterprise Security Model• Portal for ArcGIS• Authentication and Authorization: ArcGIS Tokens• Encryption (HTTPS)• Defense in Depth - Threat Prevention, Mitigation, and Regulatory Compliance• Summary

Page 4: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

Security is an ART.

Security is the art of managing risk and tradeoffs.

Page 5: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

ArcGIS EnterpriseLogical Architecture

Focus

Portal for ArcGIS

ArcGISServer

ArcGIS Data Store(relational + tile cache)

ArcGIS Web Adaptor

ArcGIS Web Adaptor

Page 6: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

ArcGIS Enterprise Security Model Protect your AssetsControl Access and Set Permissions

Page 7: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

ArcGIS Enterprise Security Model

Authentication vs. Authorization

Page 8: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

ArcGIS Enterprise Security Model

token

Page 9: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

ArcGIS Enterprise Security Model

The token is your access key into…ArcGIS ServerPortal for ArcGISArcGIS OnlineInsightsCollectorArcGIS ProArcGIS DesktopMaps for OfficeMaps for SharepointGeo EnrichmentGeocodingLiving AtlasSurvey 123AnalysisMaps for PowerBI

Page 10: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

ArcGIS Enterprise Security Model

The token is your access key into… ArcGIS Enterprise

Page 11: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

ArcGIS Enterprise Security Model

OK. So what is a token?

Page 12: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

ArcGIS Enterprise Security Model

A token represents your login credentials…

(1AyZcQDO6xJjtWyycn206filCzn)

…and must be passed to with any request for secured content

Page 13: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

ArcGIS Enterprise Security Model

A token represents your login credentials……and other attributes to make them randomized, unique and

scoped.

Page 14: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

ArcGIS Enterprise Security Model

Good news…

…ArcGIS Enterprise handles this transparently for you

Page 15: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

ArcGIS Enterprise Security Model

Lets see how this works…

Page 16: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

ArcGIS Enterprise Security Model

1. User requests access to Service

Page 17: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

ArcGIS Enterprise Security Model

1. User requests access to Service2. Service sends user to Token Service

Service

Token Service

Page 18: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

ArcGIS Enterprise Security Model

1. User requests access to Service2. Service sends user to Token Service3. User Authenticates to Token Service

User Service

Token Service

Token

Page 19: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

ArcGIS Enterprise Security Model

1. User requests access to Service2. Service sends user to Token Service3. User Authenticates to Token Service4. Token Service issues Token to User

User Service

Token Service

Token

Page 20: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

ArcGIS Enterprise Security Model

1. User requests access to Service2. Service sends user to Token Service3. User Authenticates to Token Service4. Token Service issues Token to User5. User passes Token to Service

ServiceToken

Page 21: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

ArcGIS Enterprise Security Model

1. User requests access to Service2. Service sends user to Token Service3. User Authenticates to Token Service4. Token Service issues Token to User5. User passes Token to Service6. Service grants access

ServiceContent

Page 22: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

ArcGIS Enterprise Security Model

But what about… Single Sign OnForms AuthActive DirectorySmart Cards

Page 23: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

ArcGIS Enterprise Security Model

All authentication methods ultimately deliver a

token…

Page 24: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

ArcGIS Enterprise Security Model

…the token is your key into… ArcGIS Enterprise

Page 25: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

ArcGIS Enterprise

Page 26: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

item

package

web map

service

layer

Page 27: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

itemcontent =

Page 28: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

How do we grant access to items?

Page 29: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

itemgroupuser

access

Page 30: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

• Portal for ArcGIS- Permissions set by item owner- Can be changed by administrators

• ArcGIS Server- Permissions can be set by any publisher/administrator

Access

Web Services

Portal Items

Web map Web appData

Page 31: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

What security options are available?

Page 32: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

Flexible Security Options with ArcGIS Enterprise

ArcGIS Enterprise

ArcGIS Enterprise Supports…

Single Sign OnIWAForms Auth

Active Directory

LDAP

HTTP Auth

OAuth SAML

Built-In Accounts

NTLM

PKI

Kerberos

CAC CardsCertificates

Custom Roles

Enterprise Groups Smart Cards

Page 33: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

Single Web Sign On through SAML(Security Assertion Markup Language)

Industry standard for SSO

Page 34: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

• With SAML authentication enabled, user will be prompted by IDP to login• Use IDP login or built-in login

SAML login User Experience

Page 35: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

SAML – Conceptual Workflow

ArcGIS EnterpriseClient

Identity Provider (IDP)3rd party

1. User attempts to login

6. Portal verifiesSAML responseand user is logged in

3. User sends login credentials to IDP

2. Redirected to IDP4. IDP authenticates userand sends SAML responseto browser

5. Browser sends SAMLresponse to Portal

Page 36: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

SAML – Conceptual Workflow

But what about the token?!

Page 37: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

SAML – Conceptual Workflow

ArcGIS EnterpriseClient

Identity Provider (IDP)3rd party

1. User attempts to login

6. Portal verifiesSAML responseand user is logged in

3. User sends login credentials to IDP

2. Portal redirectsclient to IDP 4. IDP authenticates user

and sends SAML responseto browser

5. Browser sends SAMLresponse to Portal

Token

You ArcGIS ServerToken

Page 38: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

Groups vs Roles

Page 39: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

Groups

itemgroupuser

access

Page 40: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

Roles

Roles are privileges

As an administrator I can …

As a publisher I can …As a viewer I can …

As a user I can …

Page 41: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

• Permissions for Portal users defined by roles• 4 default roles

1. Administrator2. Publisher3. User4. Viewer

(Changing at v10.7 to align with ‘User Types’)

Roles

Perm

issi

ons

Page 42: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

Portal for ArcGIS: Custom Roles

• Provide more flexibility to enable fine grained control on what members can do

• My Organization page > Edit Settings > Roles > Create Role

• Be CAREFUL with administrative Privileges

Page 43: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

Encryption and HTTPS Securing communication protocols

Page 44: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

Sensitive Content

HTTPS

Is the service valid?

Is the data secure?What happens to my password?

Can I trust the content?

Page 45: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

Implementing HTTPS

Portal for ArcGIS

ArcGISServer

ArcGIS Data Store(relational + tile cache)

Web AdaptorLoad Balancer

Web AdaptorLoad Balancer

Page 46: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

How do you set up a Security Certificate?

1. Generate a Certificate Signing Request (CSR)2. Send CSR for signing

- By a domain CA or well-known Certificate Authority3. Import signed certificate

Page 47: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

A (very) Brief Intro

Production Considerations for Threat Mitigation and Regulatory Compliance

Page 48: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

Threat Mitigation, Prevention, and Regulatory Compliance

• Defense in Depth Paradigm

• Restrict Portal Proxy

• Restrict Cross Domain (CORS) Requests

• Disable PSA Account

• Scan Server / Scan Portal Scripts

• HTTPS: Protocol and Cipher Configuration

Page 49: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

Defense In Depth Paradigm

• Security plans have many “layers” – multiple levels of security• Layered security mechanisms increase the security of the system as a whole• Each feature discussed is considered a “layer”

Page 50: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

Check for Updates Tool!

• Starting at 10.6, you can also download and install software patches and updates using the patchnotification utility.

• You can install specific patches of your choice, security patches only, or all available patches.

Install patches!

Page 51: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

Restrict Portal Proxy

• Used for OGC, KML, and request to non-CORS enabled servers• Default : UNRESTRICTED• Populate this parameter with an approved list of resources• Reduces potential for DOS/CSRF

enterprise.arcgis.com > Search “Restricting the portal’s proxy capability”

Page 52: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

Restrict Cross-Domain (CORS) Requestsenterprise.arcgis.com > Search “cross-domain requests”

• For JavaScript applications, a common method used to make cross domain requests is called a CORS request (cross origin resource sharing)

• Required when making POST requests to Feature or GP services on a different server

ArcGIS Server

JavaScriptWeb Application

Client Web Browser

Page 53: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

Disable Primary Site Administrator (PSA) Account

• Recommend disable the PSA account to remove an alternate method of administering ArcGIS Server outside of your enterprise users

• Access the Server Administrator Directory- Security > PSA > disable

PSA account

Page 54: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

Scan ArcGIS Enterprise for Security Checks• serverScan.py is a script in the Server installation directory

- Located: <install directory>\ArcGIS\Server\tools\admin

• portalScan.py is a script in the Portal installation directory- Location: <install_directory>\ArcGIS\Portal\tools\security

• Scripts check for security settings → generates a report that makes recommendations to improve security.

• *Protip – run as scheduled tasks, output to web server directory, view online.

Page 55: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

SSL Protocol Configurationshttps://www.ssllabs.com/ssltest/clients.html

• In 10.4, both Server and Portal can be configured to limit which SSL protocol is accepted and used.

• SSLv3 is *NOT* an option at ArcGIS 10.3+• For organizations that are very security-aware and/or compliance focus, restricting

Server and Portal to TLS 1.2 is highly recommended• TLS (and it predecessor SSL) are cryptographic protocols designed to provide

secure network communication between a client and a server

TLS 1.0

TLS 1.2Ports:

• 6443• 7443

Portal for ArcGISClient App

Page 56: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

SSL Protocols and Cipher Suites

• Portal Administrator Directory- Security > SSLCertificates

• Server Administrator Directory- Security > Config

Page 57: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

Compliance

ArcGIS Online:• TRUST.ArcGIS.com – Compliance Documentation (Cloud Security Alliance, NIST

800-53, GDPR, etc.)• FedRAMP Tailored Low

ArcGIS Enterprise:• Esri Managed Cloud Services: FedRAMP MODERATE Authorized (Advanced Plus

Offering)

Page 58: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

Security Findings?Esri PSIRT!

• https://trust.arcgis.com

• Vulnerability - report a vulnerability found in our site or application.

• Suspicious E-mail from Esri - if you believe you were targeted by a possible phishing attack from an Esri e-mail address, or have received other suspicious e-mail correspondence from Esri.

• Privacy Issue - if you have a privacy concern related to our application or organization.

• Other - for all other security, privacy or compliance related concerns.

Page 59: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

Summary

• Tokens are the Foundation of the ArcGIS Enterprise Security Model• ArcGIS Enterprise Supports many Authentication Options• Use SAML if you can• HTTPS *Everywhere* – Use CA Signed Certificates• Federate Server with Portal to Fully Enable the ArcGIS Enterprise• Use Security Scan tools to validate your baseline• Review advanced options to achieve compliance

Page 60: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

Print Your Certificate of AttendancePrint Stations Located at L Street Bridge

Tuesday Wednesday12:30 pm – 6:30 pm GIS Solutions Expo Hall D

5:15 pm – 6:30 pm GIS Solutions Expo SocialHall D

10:45 am – 5:15 pm GIS Solutions Expo Hall D

6:30 pm – 9:00 pm Networking ReceptionNational Museum ofNatural History

Page 61: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

Please Take Our Survey on the AppDownload the Esri Events app and find your event

Select the session you attended

Scroll down to find the feedback section

Complete answersand select “Submit”

Page 62: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use
Page 63: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

Presentation TitlePresenter Names

Page 64: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use
Page 65: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use
Page 66: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use
Page 67: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

Sample Name Here

Click HereFor DEMO

Page 68: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use
Page 69: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

Print Your Certificate of AttendancePrint Stations Located at L Street Bridge

Tuesday Wednesday12:30 pm – 6:30 pm GIS Solutions Expo Hall D

5:15 pm – 6:30 pm GIS Solutions Expo SocialHall D

10:45 am – 5:15 pm GIS Solutions Expo Hall D

6:30 pm – 9:00 pm Networking ReceptionNational Museum ofNatural History

Page 70: ArcGIS Enterprise Security: An Introduction · Tokens are the Foundation of the ArcGIS Enterprise Security Model • ArcGIS Enterprise Supports many Authentication Options • Use

Please Take Our Survey on the AppDownload the Esri Events app and find your event

Select the session you attended

Scroll down to find the feedback section

Complete answersand select “Submit”