Monthly Release Notes - November 2022
Powertech
Exit Point Manager for IBM i
Version 8.0
November 15, 2022
Features
-
Added an Analytics tool with features that increase the user's ability to perform triage and forensic activities while implementing the organization's security strategy. All the following features allow immediate access to transaction data and visibility to which rule matched each transaction:
-
Exit points will write Captured Transaction data directly to a DB2 table, eliminating the need for the Captured Transaction journal.
-
The summarization job will monitor incoming transactions and summarize based on the user-customizable Summarization Strategy.
-
The Summarization Strategy component allows you to configure how much total MB data to retain, and time limits for how long to keep individual transaction records (Detail) before rolling them up into summarized Hourly, Daily, and Monthly transaction records for each unique combination of Server/Function/User.
-
Analytics screens allow traversing the data from the top summary levels and drilling down into the details.
-
Users can pre-configure display filters, create new filters, use more detailed selection and sorting criteria, and maintain user views for future sessions.
-
-
Added the following screens:
-
Configurable Filters Maintenance, which includes: filters that allow the user to quickly pare down large amounts of Captured Transactions by specifying a field and a value or range of values; filters that can be combined to further refine how much data is returned and aid in finding a particular transaction; a few helpful filters shipped with the product; and allowing the user to create and name additional filters that can be quickly retrieved for use when viewing Captured Transactions.
-
Saved Views, which allows the user to quickly save and name a "snapshot" of how the Work with Captured Transaction screen is currently configured using filters and sort sequences. These Saved Views can then be quickly retrieved for reuse and serve as a starting point to build upon or eliminate the need to reconfigure a frequently used setup.
-
Sort Sequence Selection and Maintenance in the Analytics feature, where the user can define ascending and descending sort sequences based on one or more Captured Transactions’ record fields.
-
Captured Transactions—Work with Summarized Transactions, as part of the Analytics feature, which summarizes all Captured Transactions down into one record for each combination of the same Server/Function/Action (Allow or Reject); shows a count of how many associated transactions there are; and allows the user to drill down to their desired detail level.
-
-
Using Central Administration and Exit Point Manager on a managing system, users can now view and maintain Filters, Saved Views, and Summarization Strategy on any connected endpoint. Users cannot view Captured Transaction data on connected endpoints.
-
Journaled the following files to PTNSLIB07/PWRJRN: PNSCSD, PNSCSM, PNSCSQ, PNSCTF, PNSFLD, PNSUPD, and PNSUPF.
Enhancements
-
Improved the following screens’ appearance and/or usability:
-
Add/Change Rules (User and Location) for the Global Rules Facility.
-
Add Object List Entry’s Type field: added assistive text.
-
Configuration Menu: removed the blank row between options 1 and 2 and shortened the menu option names.
-
Main Menu: added an Active Analytics feature, which contains all the new tools for working with Captured Transactions.
-
Modern and Legacy Reports Menus: shortened long names, regrouped or repositioned items, and renumbered items sequentially.
-
Security Menu: shortened long names, regrouped or repositioned items, renumbered items sequentially, and added context-sensitive help.
-
Security by Server and Security by User: standardized field names' spelling.
-
Socket Rule’s fields: standardized field names’ spelling and added assistive text.
-
Valid Authorities’ selection: added descriptions.
-
Work with Captured Transactions:
-
Shows more detail without opening each transaction record. See when each transaction occurred, whether the transaction was allowed or rejected, and press a function key to see the transaction's request data and which rule was matched.
-
Grouped transactions into configurable "time ranges." Detail transactions are a single record. Identical Hourly, Daily, and Monthly transactions are summarized into one record.
-
-
Work with Location/User Pre-filters’ function keys: all keys appear without having to press "F24=More keys."
-
Removed an extra menu layer between selecting the Test Socket Rules menu option and displaying the PNSTSTQSO command.
-
Updated Help text in all applicable screens.
-
-
Added the ability to create user rules, location rules, or pre-filter rules directly from the Captured Transactions screen.
-
Eliminated the message id PLK9000 "Server does not supply transaction data for the function" in the Captured Transaction's Request field, if there was no request data supplied by the exit point. This removal minimizes processing and conserves disk space.
-
Modified upgrade/conversion code to retain existing Captured Transaction data and migrate it into the new database storage scheme.
-
Updated compatibility with Insite to properly display Captured Transactions using configurable levels of summarization.
-
Updated the DLTCPTTRN command to include the new Summary Level field (Detail, Hourly, Daily, Monthly) parameters.
-
Changed "OS400," "iSeries," and "IBMi" text on screens, help text, and reports to “IBM i.”
-
Updated *OS400 and *MEMOS400 authority text to *ALLOW and *MEMALLOW on all screens and reports, and on the following Rule commands: CHGLOCRUL, CHGOBJRUL, CHGUSRRUL, CRTLOCRUL, CRTOBJRUL, CRTUSRRUL, and DLTOBJRUL.
-
Modified the PNSSTRMON and PNSENDMON commands to start and end all three monitor jobs (PNSEVTMON; PTNSGMSTR; and SUMCAPTRAN) in the PTWRKMGT subsystem. Previously, PNSTRMON and PNSENDMON were used to start and stop only the PNSEVTMON job.
-
Insite will now show the proper Authority value for IBM i systems. The Authority value for version 8.0 and above is *ALLOW, and for version 7.99 and below is *OS400.
Fixes
-
Fixed issue that could cause incorrect or incomplete feedback when either the CHGUSRRUL or CHGLOCRUL commands were executed.
-
Fixed an Insite issue in Product Configuration where it displayed an intermittent, incorrect server status as active or inactive. Fixed a similar IBM i issue in Server Properties, where the Enforce Server Rules’ field value was not always correct.
-
Fixed issue where the Modern Reports Menu was not defaulting to appear after product installation.
-
Fixed issue that could cause improperly entered IP address range values for IP Address Groups not to match transactions to Location Rules.
-
Fixed intermittent issue that could cause rules for an endpoint to show up on the Manager when it had not been selected.
-
Fixed issue with Object Rules and MEMOBJ authority that could cause an LNS0703 error when matched with a transaction containing a large SQL statement.
-
Fixed issue where Location Rules were not working with the *TFTP exit point processing.
-
Fixed issue caused by adding Server Function data via the LWRKGENSRV command.
-
Fixed issue where the user didn’t receive immediate feedback when using the PNSLOGEXT command to send output to an *OUTFILE and entering an invalid library name.
-
Fixed issue where running modern reports with PNSLOGEXT caused error MCH3601 if the journal receiver containing the data it needs is no longer available on the system.
-
Fixed issue where creating a report using the PNSLOGEXT command and saving it to the IFS caused an error.
-
Fixed issue where Object type descriptions were truncated on the Select Object Type screen (NSOBJUT).
-
Fixed issue where the Location Group Report did not show any IP Address groupings.
-
Fixed issue where an invalid *ALL value was allowed in the User Rules screen's User field.
-
Fixed isolated issue for one type of *RMTSRV captured transaction that could cause a user's password to be visible.
-
Fixed issue where the cursor was not placed in the correct position when returning from creating a new Location Group entry.
-
Fixed issue with Object List entry validation where allowing an invalid asterisk for "File type" could cause an attached rule to not be processed.
-
Fixed issue that sometimes caused one user record to not be displayed when the User Group list was being subset.
-
Fixed issue where the user was unable to disable Exit Point Manager jobs from Central Administration.
-
Removed the "Journal receiver delete handling" and "Change last captured date/time" parameters from the LCHGCAPSUM command, leaving only the "Delay time" parameter.
-
Restored missing commands for maintaining NS User Groups (ADDNSUGRPM, CHGNSUGRP, and CRTNSUGRP).
-
Removed the Start Here link from the installer.
BoKS Web Services Interface
Version 8.1.0.2
November 1, 2022
Fixes
-
Fixed known issue with requesttimeout value.
-
Fixed issue with the syslog logging appender opening a UDP port even if syslog is not turned on.
-
Hidden implementation details from general error page.
-
Upgraded dependencies.
Version 8.0.0.6
November 1, 2022
Fixes
-
Fixed issue with the syslog logging appender opening a UDP port even if syslog is not turned on.
-
Hidden implementation details from general error page.
-
Upgraded dependencies.
Version 7.2.0.7
November 1, 2022
Fixes
-
Fixed issue with the syslog logging appender opening a UDP port even if syslog is not turned on.
-
Hidden implementation details from general error page.
-
Upgraded dependencies.
Titus
Titus Classification Suite for Windows
Version 2022.0
November 4, 2022
New Features
-
Titus now works with Microsoft sensitivity labels in Microsoft Office 365. You can map Microsoft sensitivity labels to Titus fields and values, so that Titus users can process documents and emails that contain a Microsoft sensitivity label.
-
You can use Policy Manager to set Schemas and Policies and publish them as a TCPG file to be consumed by TCS for Windows.
-
You now have the option to use the Titus logo (the default), a custom logo, or no logo in the Titus Ribbon and Select dialog.
-
The Titus Dashboard has been deprecated. You can use the Data Classification Reporting Server and the Reporting Collector Intelligence Pack in its place.
While you can still see the option to enable the Dashboard in the Titus Administration Console (if you have the Dashboard configured), it no longer works.
-
The Reporting Collector Intelligence Pack is a collection of dashboards that allow the data from the Reporting Collector to be displayed. They can either be used as-is or be customized. Intelligence Packs are installed and displayed using the HelpSystems Data Classification Reporting Server and come with pre-defined roles and permissions.
Enhancements
-
You can now revert visual markings in a document by selecting Ctrl + Z once or selecting a single action from the Undo menu.
-
Improvements to Auto-Save functionality have been made to reduce the number of audit log events when documents are saved to a Cloud drive. This applies to Microsoft Office 2016 or later and Microsoft Office 365.
-
You can now apply a classification, using the context-menu, to the following Calendar items:
-
Meeting requests
-
Meeting responses (Accept, Decline, Tentative)
-
Send cancellation
-
Update meeting (standard and recurring)
NOTE: This feature does not support Microsoft Outlook items that use RTF content. -
Fixes
-
XLAM files are not being saved when Titus add-in is enabled and Microsoft Excel is open
-
Cannot preview Microsoft Excel spreadsheets in File Explorer in Microsoft Office 365.
-
If a Microsoft Excel spreadsheet is received as an attachment in an email, the Classification may disappear when trying to save or print the spreadsheet.
-
In Microsoft PowerPoint, when a classified document is still open, downgrade warnings do not appear when you open another classified document of which you want to change the classification.
-
If you delete custom properties and Titus GUID in a document, they do not get re-added upon saving the document.
-
Classification Dialog appears a second time when sending an email after setting classification the first time.
-
Scroll bar appears for entire Classification dialog instead of only areas where needed, such as sub-classifications.
Vera
Version 3.21.1
November 2022
Updates
-
Vera announces the end of support for macOS Catalina with the 3.22.0 release.
-
Vera announces the support for macOS Ventura with the 3.21.0 release.
Vera has verified that the newly released macOS Ventura works as expected with Vera’s previously released 3.21.0 version.
Fixes
-
Fixed an issue when performing a perm-sync of files through SharePoint, the evaluated source resulted in FileShare instead of Classification Rules, which impacted folder-level Classification Rules.
-
Fixed an issue of the invalid date range in the Licensed Users Report.
-
Fixed an issue where the Kerberos Single Sign-On (SSO) authentication did not work with Two-Factor Authentication (2FA).
-
Fixed an issue where Vera will notify the users to disable the Adobe Acrobat new UI feature that blocks them from accessing the secured files. Users can revert to the old UI by clicking View > Disable New Acrobat in the Acrobat application.