Monthly Release Notes - September 2024

Alert Logic

---

Managed Web Application Firewall (WAF)

Version 5.2.0.3

September 12, 2024

New Features

• Allow AIDE/ClamAV to run scans on demand via REST API

• Require MFA verification codes during OTP setup

Enhancements

• Disable password-only management UI user login if SSO or TOTP is enabled

• Advanced Signatures release 5.3.0.6 improving XSS detection and extending file upload inspection

• Disable and stop management httpd server on AWS auto-scaling workers

• Improve IP blacklist management with large IP assets

• Toggle visibility when changing user password in appliance user management

Fixes

• Fix whitelist configuration-related race condition that generated incorrect error messages

• Do not disable source IP auto-block feature when Data Anonymization (GDPR-level obfuscation) is enabled but IP masking is disabled

• Resolve an issue with file permissions being incorrect for management UI SSL certificate after upload

Version 5.2.0.2

September 2, 2024

New Features

• Local UI login MFA/OTP authentication support

• Local UI login OAUTH2 authentication support

• DNS over TLS and DNSSEC support

• File system integrity checking

• API method to configure DNS servers

Enhancements

• Password validation requirement settings are more stringent by default

• Key size requirements for the management UI cert updated

• Remove the requirement for a HostedZoneID for ACME cert validation

Fixes

• Correctly allow Content-Type exceptions from deny log

• Resolve issues with IP list synchronization in AWS auto-scaling clusters

• Gracefully deal with waf-core/nginx resolver configuration when no DNS servers are configured

• Properly utilize layer 7 throttling when proxy mirrors are in use

• Resolve minor issues with CSP-builder and page integrity checking

• Resolve issues with layer 7 IP list usage

• Resolve an issue with ACME cert selection

• Switch internal IP tracking from IPs to CIDR IP ranges

Alert Logic Extended Endpoint Protection Agent

Version 4.14.0 (Windows Agent)

September 10, 2024

Fixes

• Fixed issue where Extended Endpoint Protection agent was blocking Outlook upgrades

Version 4.14.0 (Mac Agent)

September 10, 2024

New Features

• Support for network isolation

• Extended Endpoint Protection Mac agent is now natively supported on Apple Silicon processors

Back to Top

 

Core Security

Access Assurance Suite (AAS)

Version: 9.6.0

September 12, 2024

Access Assurance Suite Features and Enhancements

• The Initial Configuration screen now allows skipping steps to get to the workflow import step.

• The Database Installer Utility is enhanced to support the selection of an OLE DB provider to use.

• Provides the ability to uninstall the Core AAS Connection Server and Core AAS Connection Client services.

Core Access Features and Enhancements

• New Approval Process configurations to associate with accesses to meet your organization’s needs. These new approval process configurations allow for configuring one or more approval steps.

• Modernized the Manage Access Catalog interface.

• Added ability to configure the columns of data viewable on View Requests and Request Management screens.

• Policy conditions have been enhanced with the addition of “Not Like” and “Not In” conditions.

• Accesss requests for multiple users enhanced with full name searchs.

• Approvers now have the ability to review their approval history.

Access Assurance Portal Features and Enhancements

• Improved session management.

• Menu.xml file enhanced to support absolute URLs.

• Support for the older Manage User Access and original Identity Mapping pages is no longer available.

Access Assurance Portal Lite Features and Enhancements

• The new Access Assurance Portal Lite provides users outside of the enterprise network access to the functionality of the Access Assurance Portal.

• An enhanced page is now available for use when the Access Assurance Portal Lite component is installed in a perimeter network and SAML SSO-based authentication is used by the external end users.

Data Management Features and Enhancements

• Data Mangement has been enhanced to skip to the scheduling step of data collection without needing to configure steps 2 and 3 first, saving time in developing data mapping rules.

• Ability to decouple the scheduling of the Identity Mapping rules from the data feed collection schedule is available.

• Enhancements added to profile mapping include the addition of Active, Status, UserType, and NULL values.

• The post-processing dropdown displays the current configured value.

• Columns added to staging tables for exception processing.

• Preference popup no longer displays duplicates.

Core Password Features and Enhancements

• Transparent Synchronization updated to work with new DCOM defaults.

Core Compliance Features and Enhancements

• Enhanced with the ability to submit a review cycle with a single quote as part of the contents of the comment.

• Delegation to review Certification review cycle after the review cycle end date is possible.

• Improved UI on the Review Cycles screen.

Back to Top

 

Digital Guardian

Agent for macOS

Version: 8.8.0

September, 2024

New Features

• Apple macOS 15.0 (Sequoia) Support. In this release, Agent for macOS 8.8 has been certified to run on Apple macOS 15.0 (Sequoia).

  Note: This release certifies support for the Agent running on macOS 15. It does not include support for any new data egress paths or new OS features introduced in macOS 15.

• Added tcpKeepAlive Setting to Agent config.xml. Starting with this release, the Agent setting tcpKeepAlive is added to the default config.xml file, with the default value = 1 for new Agent installations. The values are 0 (disabled) and 1 (enabled). When disabled, this setting indicates that the TCP connection is closed after the session, regardless of the DGMC communication mode (HTTP or HTTPS). When enabled, this setting keeps the TCP connection alive for a specific duration (HTTPS communication only). Customers upgrading from previous Agent versions can push this setting in a Custom Configuration Resource file. If the setting is pushed in a Custom Configuration resource file, the Agent computer needs to be restarted for the setting to take effect.

Enhancements

• Change in Configuration Profiles to Support Captive Portal. Now Fortra recommends that you use different profiles for explicit proxy to provide more robust support for captive portal connectivity with explicit proxy:

  Auto Configuration (PAC file)—Create a GlobalHTTPProxy profile using Apple Configurator, sign the profile, and use Jamf to deploy it to Agent computers.

  Manual Configuration—Create a Configuration Profile with the Applications and Custom Settings payload and use Jamf to deploy it to Agent computers.

  For details, refer to Digital Guardian Explicit Proxy Deployment Guide, September 2024 .

• New URL for Microsoft Outlook Add-In Manifest File. There is a new URL to use to deploy the Outlook add-in through the Microsoft 365 Admin Center. The new URL is:

  https://cdn.fortra.com/digitalguardian/agent/outlookaddin/v4/manifest.xml.

  Refer to AG-56490 in "Resolved Issues" for a little more information. You can continue to use an earlier URL but that does not provide EML file support.

Fixes

• Resolved an issue where the customer saw some discrepancies in Agent data between the DGMC and ARC for the same Agent computer. Also, the DGMC was displaying duplicate entries for the same Agent computer.

• Resolved an issue in which users reported delays while typing information into some applications.

• Resolved an issue where Agents were communicating with the wrong ARC tenant to get WIP certificates after moving the Agents from one (Undefined variable: dg_variables.DGMC) to another. The Agents should have been communicating with the tenant associated with the new tenant not the original tenant.

• Resolved an issue where the Agent was unable to detect EML-based file extensions for Send Mail events in new Microsoft Outlook. Use this URL to enable EML file support in Outlook:

  https://cdn.fortra.com/digitalguardian/agent/outlookaddin/v4/
  manifest.xml.

• Resolved an issue where a control policy was not being assigned to users in a user group as expected.

• Fixed a problem where a customer’s ADE rule to prompt when users send data to generative AI sites was not being triggered as expected.

• Resolved problems with Agent computers connecting to captive portal pages when WIP is enabled. Refer to New Features in "Agent for macOS 8.8" on page 1 for more information.

Agent for Linux

Version: 8.3.0

September 13, 2024

New Features

• Certification for Additional Kernels

  This table lists the additional certified Linux kernels for Red Hat Enterprise Linux (RHEL) and Ubuntu in this release. Refer to Agent for Linux User's Guide for details about the packages required to support the new kernel versions for the Agent. Refer to Agent_for_Linux_v7.4.x_and_later_RHEL_Certified_Environments and Agent_for_Linux_v7.4.x_and_later_Ubuntu_Certified_Environments for complete lists of supported RHEL and Ubuntu kernels.

Distribution	Version	Architecture	Kernel
RHEL	9.4	64-Bit	kernel-5.14.0-427.31.1.el9_4
RHEL	9.4	64-Bit	kernel-5.14.0-427.28.1.el9_4
RHEL	9.2	64-Bit	kernel-5.14.0-284.80.1.el9_2
RHEL	9.2	64-Bit	kernel-5.14.0-284.79.1.el9_2
RHEL	9.2	64-Bit	kernel-5.14.0-284.77.1.el9_2
RHEL	9.2	64-Bit	kernel-5.14.0-284.75.1.el9_2
RHEL	8.10	64-Bit	kernel-4.18.0-553.16.1.el8_10
RHEL	8.8	64-Bit	kernel-4.18.0-477.67.1.el8_8
Ubuntu	20.04 LTS	64-Bit	linux-image-5.4.0-193-generic
Ubuntu	20.04 LTS	64-Bit	linux-image-5.4.0-192-generic
Ubuntu	20.04 LTS	64-Bit	linux-image-5.4.0-190-generic
Ubuntu	20.04 LTS	64-Bit	linux-image-5.4.0-189-generic

 

Enhancements

End Support for RHEL 7.x and Ubuntu 18.04 LTS Kernels

• Fortra no longer supports installing and running new versions of Agent for Linux on computers running Red Hat Enterprise Linux (RHEL) 7.x and Ubuntu 18.04 LTS kernels.

Fixes

• No issues are resolved in this release.

Analytics & Reporting Cloud

Version: 4.12.0

September, 2024

New Features

• A new external API endpoint GET /1.0 /dynamic_group /{group_id} has been implemented to retrieve current dynamic group membership from ARC. This API will allow users to fetch the current members of a specified dynamic group.

• Digital Guardian introduces a new Secure Service Edge (SSE) solution powered by Lookout technology. This integration provides comprehensive security coverage from endpoint to cloud, bridging the gap between traditional endpoint security and cloud-based threats. The SSE solution offers full visibility and control across all web traffic, SaaS applications, and private applications, ensuring sensitive data remains protected regardless of its location or the devices accessing it.

• ARC now integrates with Slack, enhancing communication monitoring and data protection capabilities. This feature allows seamless monitoring of Slack chats, messages, and shared files, while enabling custom ARC detection rules for Slack communications. Additionally, ARC enables you to review Slack chat history for investigations and compliance purposes, ensuring consistent enforcement of data protection policies across all Slack channels.

• The integration of Fortra Threat Brain (FTB) into our solutions provides a comprehensive threat intelligence hub. FTB delivers reputational analysis and coverage across files, executables, domains, IPs, URLs, and email addresses. This integration enhances incident triage capabilities, improves event detection, and provides critical insights to bolster overall security coverage.

Fixes

• Resolved an issue where the ${event.comp_machine_status} variable for agent status was inconsistently populated in detection rule alarm names, showing status codes instead of readable statuses. This issue is now resolved.

• Resolved an issue where the User section in Administration & Configuration was not visible despite having "All" permissions for Users and Roles.

Back to Top

 

Document Management (RJS)

---

DeliverNow

Version: 1.2.20

September 3, 2024

Enhancements

• Add the ability to define custom cipher lists for connections to IBM i systems.

• Add the ability to define custom keystore and password for connections to IBM i.

• Custom Security Controls for IBM i.

• Updated JT400 IBM i connection library to latest version.

• Updated IKVM to latest version of Java to support latest cipher suites on IBM i.

Fixes

• Underlying Java implementation updated to support modern cipher suites.

Back to Top

 

Fortra

---

Endpoint Manager

September 20, 2024

Enhancements

• Improved performance of search feature in the Endpoint table.

• Updated the display name of installers to be v<version>.

• Removed restriction on collecting logs. Logs can now be downloaded regardless of module status.

September 5, 2024

Enhancements

• The Version column on the Endpoint table is hidden by default. It can be accessed via the column selector.

• Added restrictions so that only one capability per type can be overridden at a time. The override toggle will be disabled when a capability from the same type is already enabled.

• Only one module can be assigned to static groups.

Fixes

• The Add button on Assign Endpoints dialog now only updates if changes have been made.

Fortra platform

September 17, 2024

Enhancements

• Updated vulnerable Spring version.

• Added icon in app switcher next to external links to indicate that the link will open in a separate window/tab.

• Tenant entitlements can now include colons.

• Changed the forgot password flow to use OTP code if OTP was previously set up.

• The permissions for a user in the current tenant now take into account the lower-level tenants that a user has access to.

• Security module now checks that user has a role that allows access to the requested tenant.

Back to Top

 

GoAnywhere

---

GoAnywhere Gateway

Version 3.2.0

September 11, 2024

• Added support for version 1 and version 2 of the proxy header, which if configured, provides the proper client IP address to Gateway.

• Enhanced Gateway to dynamically utilize epoll socket channels natively (if supported) for better resource management and performance.

• Added encryption to sensitive fields in the Gateway configuration file.

• Updated bctls-fips from version 1.0.17 to 1.0.19.

Back to Top

 

IBM Partnership

---

Backup, Recovery, and Media Services

Product 5770-BR1 Version: PTF 7.5 SJ01879, 7.4 SJ01877

September 20, 2024

Enhancements

In version 7.4 and later:

• The BRMS delete product exit program processing has been enhanced to improve the migration to product 5770-BR2.

Product 5770-BR1 Version: PTF 7.5 SJ01759, 7.4 SJ01758

September 10, 2024

Fixes

In version 7.4 and later:

• Fixed problem where incremental saves of an *OBJ list using ASP Device value of * may incorrectly do a full save.

• The recovery report may not include all the expected *LNK list saves in the Recover Directories and Files step has been fixed.

• The issue with the recovery report incorrectly reporting IBM supplied libraries QSBMJOBTRK in *SYSBAS and libraries QSTNnnnnn in ASPnnnnn as not saved has been fixed.

Product 5770-BR2 Version: PTF 7.5 SJ01416, 7.4 SJ01415

September 10, 2024

Fixes

In version 7.4 and later:

• Fixed problem where incremental saves of an *OBJ list using ASP Device value of * may incorrectly do a full save.

• The recovery report may not include all the expected *LNK list saves in the Recover Directories and Files step has been fixed.

• The issue with the recovery report incorrectly reporting IBM supplied libraries QSBMJOBTRK in *SYSBAS and libraries QSTNnnnnn in ASPnnnnn as not saved has been fixed.

• Fixed the issue where the BRMS Web interface incorrectly shows no media found when tape devices are varied off.

 

Back to Top

 

Outflank Security Tooling (OST)

---

Outflank

Version: 25 September 2024

EDR Evasion

• Added 5 new community contributed EDR presets.

Updates

• EarlyCascade injection is now also available in OC2 and ShovelNG.
• Outflank C2 & PE Payload Generator: new options and GUI improvements to allow more operator flexibility.

11 September 2024

EarlyCascade Injection in Payload Generator

• Added a novel injection technique called 'EarlyCascade'.
• Added 'freeze' as a new process creation method.
• New 'Embed in section' option.
• Relative local paths are now supported.

Updates

• Bugfixes in Payload Generator, Outflank C2 (formerly Stage1), and in the OST portal.

Back to Top

 

Powertech

---

BoKS Manager

Version 8.1 (version update)

September 19, 2024

Server s-8.1.0.12

Fixes

• Incomplete TCP connections to boks_autoregister_proxyd may cause high CPU usage on the Replica.

• Race conditions in bccasd ABAC code might cause the process to terminate unexpectedly.

Updates

• Kerberos library upgrade to 5.1.21.3.

Version 8.1 (version update)

September 19, 2024

Client c-8.1.0.18

Fixes

• "sudo -u" behaves differently when BoKS is enabled.

Updates

• Kerberos library upgrade to 5.1.21.3.

• OpenSSL library upgrade to 1.1.1za.

Back to Top

 

Robot

---

Robot Network

Version 13.06

September 25, 2024

Enhancements

• Updated installer to select "Launch Application" option by default after install. Updated installer to sync desktop icons, program search icon, uninstaller.exe icon, and installer.exe icon.

Fixes

• When using secure connections in Robot Network GUI it no longer checks unsecure ports 8471 through 8476. Previously, when using Robot Network with secure connections unsecure ports were checked, but no data was not sent or received over them.

• During an install or conversion Robot Network can now validate systems with over 100 processors. Previously it would fail with CPF0819 on systems with over 100 processors.

• Changed the Installer process, to properly update the GUI from within the GUI application.

• Removed obsolete IBM Java Toolbox jar from the IFS which was causing the inability to connect in host mode when using Java 11. Error received was <HTML>An error occurred while checking for Robot <product name> on the host.<br></HTML> Additional info: com.helpsystems.common.core.access.ResourceUnavailableException: UNIMPLEMENTED

• Fixed issue with installer failing on "invalid command line" error.

• Reduced the default IFS log size from a maximum of 10 days to 5 days.

Performance Navigator

Version: 19.06

September 26, 2024

Enhancements

• Added Graphs > Current Day > Jobs/Subsystems > Top Jobs/Temp Storage (alloc-dealloc).

• Enhanced functionality of Enterprise Memory Overview for some AIX systems.

• Created Graphs > Current Day > Jobs/Subsystems > Top Subsystems/CPU.

• Created Graphs/Reports > CPU > Core Speed Ratio for AIX systems.

• In Edit > System Options > Dates, the buttons “Apply to Selected Systems”, "Apply to All LPARs" and "Apply to All Systems" now works for the Data Cutoff Date.

• Added menu item File > Delete Stored Passwords.

• Total number of LPARs is now displayed in System Information window for AIX systems.

• Created Graphs > Current Day > CPU > Top DRDA Current Users.

• Created AIX graphs for 6 items under Graphs/Reports > Disk > Volume Groups > ....

• ASP dropdown at top right of applicable graphs now lists up to 15 recent items.

• Dropdown icon at the top right of applicable graphs is now three horizontal lines.

• Added support for Virtual Serial Numbers on IBM i.

• Added option to display the Graphs and Reports tab in the Navigator Panel under Edit > Graphs/Reports Options > Advanced.

• The product's icon has been amended to the new Fortra triangle logo.

• Allows more flexibility for size of custom logos.

• New IBM i Graph under Graphs > Disk > Ops/Sec/GB.

• File MPGDRK now has a flag for reuse of deleted records.

• Wait Bucket graphs take all threads into account (previously was just the main thread).

Fixes

• Fixed an issue where green arrows at the bottom corners of Current Day graphs sometimes did not display.

• Running the Enterprise Performance Overview over multiple systems with multiple OS's displays properly.

• Power Analytics > Management Reporting > Monthly Interactive and Monthly Noninteractive now display pages for all ASPs (was previously limited to 3 ASPs).

Back to Top

 

Sequel

---

Viewpoint 11

Version: 11.24.233

September 9, 2024

Enhancements

• A Viewpoint enhancement has been made to improve the performance of large file downloads from the IFS to Viewpoint.

Fixes

• A fix has been made to the Viewpoint Administrator Database Security function to prevent error 'This item's control has been deleted'.

Back to Top

 

Showcase

---

Viewpoint 10

Version: 10.24.233

September 9, 2024

Enhancements

• A Viewpoint enhancement has been made to improve the performance of large file downloads from the IFS to Viewpoint.

Fixes

• A fix has been made to the Viewpoint Administrator Database Security function to prevent error 'This item's control has been deleted'.

Back to Top

 

Titus

---

DCS Console

Version 2024.07 HF1

September 24, 2024

Fixes

• Renewed cloud certificates for the DCS Console.

DCS Data Detection Engine (On-premises)

Version 2024.0

September 16, 2024

New Features

• Added support for additional personally identifiable information (PII) formats for the countries of India, Saudi Arabia, Turkey, and UAE. The Arabic and Turkish languages are now supported for detectors that scan for PII data.

• Customers who don't use the Administration Console can run a new Data Detection Engine PowerShell installer if they want to create customized catalogues to disable certain detectors. See the Data Detection Engine PowerShell Installation Guide for instructions.

Enhancements

• Updated documentation to reflect Titus Classification Suite (TCS) to Fortra Data Classification Suite (DCS) rebranding. Titus Data Detection Engine is now DCS Data Detection Engine. TCS for Windows is now DCS for Windows. Titus Illuminate is now DCS for Data at Rest (DaR).