Monthly Release Notes - September 2024
Alert Logic
Managed Web Application Firewall (WAF)
Version 5.2.0.3
September 12, 2024
New Features
-
Allow AIDE/ClamAV to run scans on demand via REST API
-
Require MFA verification codes during OTP setup
Enhancements
-
Disable password-only management UI user login if SSO or TOTP is enabled
-
Advanced Signatures release 5.3.0.6 improving XSS detection and extending file upload inspection
-
Disable and stop management httpd server on AWS auto-scaling workers
-
Improve IP blacklist management with large IP assets
-
Toggle visibility when changing user password in appliance user management
Fixes
-
Fix whitelist configuration-related race condition that generated incorrect error messages
-
Do not disable source IP auto-block feature when Data Anonymization (GDPR-level obfuscation) is enabled but IP masking is disabled
-
Resolve an issue with file permissions being incorrect for management UI SSL certificate after upload
Version 5.2.0.2
September 2, 2024
New Features
-
Local UI login MFA/OTP authentication support
-
Local UI login OAUTH2 authentication support
-
DNS over TLS and DNSSEC support
-
File system integrity checking
-
API method to configure DNS servers
Enhancements
-
Password validation requirement settings are more stringent by default
-
Key size requirements for the management UI cert updated
-
Remove the requirement for a HostedZoneID for ACME cert validation
Fixes
-
Correctly allow Content-Type exceptions from deny log
-
Resolve issues with IP list synchronization in AWS auto-scaling clusters
-
Gracefully deal with waf-core/nginx resolver configuration when no DNS servers are configured
-
Properly utilize layer 7 throttling when proxy mirrors are in use
-
Resolve minor issues with CSP-builder and page integrity checking
-
Resolve issues with layer 7 IP list usage
-
Resolve an issue with ACME cert selection
-
Switch internal IP tracking from IPs to CIDR IP ranges
Alert Logic Extended Endpoint Protection Agent
Version 4.14.0 (Windows Agent)
September 10, 2024
Fixes
-
Fixed issue where Extended Endpoint Protection agent was blocking Outlook upgrades
Version 4.14.0 (Mac Agent)
September 10, 2024
New Features
-
Support for network isolation
-
Extended Endpoint Protection Mac agent is now natively supported on Apple Silicon processors
Core Security
Access Assurance Suite (AAS)
Version: 9.6.0
September 12, 2024
Access Assurance Suite Features and Enhancements
-
The Initial Configuration screen now allows skipping steps to get to the workflow import step.
-
The Database Installer Utility is enhanced to support the selection of an OLE DB provider to use.
-
Provides the ability to uninstall the Core AAS Connection Server and Core AAS Connection Client services.
Core Access Features and Enhancements
-
New Approval Process configurations to associate with accesses to meet your organization’s needs. These new approval process configurations allow for configuring one or more approval steps.
-
Modernized the Manage Access Catalog interface.
-
Added ability to configure the columns of data viewable on View Requests and Request Management screens.
-
Policy conditions have been enhanced with the addition of “Not Like” and “Not In” conditions.
-
Accesss requests for multiple users enhanced with full name searchs.
-
Approvers now have the ability to review their approval history.
Access Assurance Portal Features and Enhancements
-
Improved session management.
-
Menu.xml file enhanced to support absolute URLs.
-
Support for the older Manage User Access and original Identity Mapping pages is no longer available.
Access Assurance Portal Lite Features and Enhancements
-
The new Access Assurance Portal Lite provides users outside of the enterprise network access to the functionality of the Access Assurance Portal.
-
An enhanced page is now available for use when the Access Assurance Portal Lite component is installed in a perimeter network and SAML SSO-based authentication is used by the external end users.
Data Management Features and Enhancements
-
Data Mangement has been enhanced to skip to the scheduling step of data collection without needing to configure steps 2 and 3 first, saving time in developing data mapping rules.
-
Ability to decouple the scheduling of the Identity Mapping rules from the data feed collection schedule is available.
-
Enhancements added to profile mapping include the addition of Active, Status, UserType, and NULL values.
-
The post-processing dropdown displays the current configured value.
-
Columns added to staging tables for exception processing.
-
Preference popup no longer displays duplicates.
Core Password Features and Enhancements
-
Transparent Synchronization updated to work with new DCOM defaults.
Core Compliance Features and Enhancements
-
Enhanced with the ability to submit a review cycle with a single quote as part of the contents of the comment.
-
Delegation to review Certification review cycle after the review cycle end date is possible.
-
Improved UI on the Review Cycles screen.
Digital Guardian
Agent for macOS
Version: 8.8.0
September, 2024
New Features
-
Apple macOS 15.0 (Sequoia) Support. In this release, Agent for macOS 8.8 has been certified to run on Apple macOS 15.0 (Sequoia).
Note: This release certifies support for the Agent running on macOS 15. It does not include support for any new data egress paths or new OS features introduced in macOS 15.
-
Added tcpKeepAlive Setting to Agent config.xml. Starting with this release, the Agent setting tcpKeepAlive is added to the default config.xml file, with the default value = 1 for new Agent installations. The values are 0 (disabled) and 1 (enabled). When disabled, this setting indicates that the TCP connection is closed after the session, regardless of the DGMC communication mode (HTTP or HTTPS). When enabled, this setting keeps the TCP connection alive for a specific duration (HTTPS communication only). Customers upgrading from previous Agent versions can push this setting in a Custom Configuration Resource file. If the setting is pushed in a Custom Configuration resource file, the Agent computer needs to be restarted for the setting to take effect.
Enhancements
-
Change in Configuration Profiles to Support Captive Portal. Now Fortra recommends that you use different profiles for explicit proxy to provide more robust support for captive portal connectivity with explicit proxy:
Auto Configuration (PAC file)—Create a GlobalHTTPProxy profile using Apple Configurator, sign the profile, and use Jamf to deploy it to Agent computers.
Manual Configuration—Create a Configuration Profile with the Applications and Custom Settings payload and use Jamf to deploy it to Agent computers.
For details, refer to Digital Guardian Explicit Proxy Deployment Guide, September 2024 .
-
New URL for Microsoft Outlook Add-In Manifest File. There is a new URL to use to deploy the Outlook add-in through the Microsoft 365 Admin Center. The new URL is:
https://cdn.fortra.com/digitalguardian/agent/outlookaddin/v4/manifest.xml.
Refer to AG-56490 in "Resolved Issues" for a little more information. You can continue to use an earlier URL but that does not provide EML file support.
Fixes
-
Resolved an issue where the customer saw some discrepancies in Agent data between the DGMC and ARC for the same Agent computer. Also, the DGMC was displaying duplicate entries for the same Agent computer.
-
Resolved an issue in which users reported delays while typing information into some applications.
-
Resolved an issue where Agents were communicating with the wrong ARC tenant to get WIP certificates after moving the Agents from one (Undefined variable: dg_variables.DGMC) to another. The Agents should have been communicating with the tenant associated with the new tenant not the original tenant.
-
Resolved an issue where the Agent was unable to detect EML-based file extensions for Send Mail events in new Microsoft Outlook. Use this URL to enable EML file support in Outlook:
https://cdn.fortra.com/digitalguardian/agent/outlookaddin/v4/
manifest.xml. -
Resolved an issue where a control policy was not being assigned to users in a user group as expected.
-
Fixed a problem where a customer’s ADE rule to prompt when users send data to generative AI sites was not being triggered as expected.
-
Resolved problems with Agent computers connecting to captive portal pages when WIP is enabled. Refer to New Features in "Agent for macOS 8.8" on page 1 for more information.
Agent for Linux
Version: 8.3.0
September 13, 2024
New Features
-
Certification for Additional Kernels
This table lists the additional certified Linux kernels for Red Hat Enterprise Linux (RHEL) and Ubuntu in this release. Refer to Agent for Linux User's Guide for details about the packages required to support the new kernel versions for the Agent. Refer to Agent_for_Linux_v7.4.x_and_later_RHEL_Certified_Environments and Agent_for_Linux_v7.4.x_and_later_Ubuntu_Certified_Environments for complete lists of supported RHEL and Ubuntu kernels.
Distribution |
Version |
Architecture |
Kernel |
---|---|---|---|
RHEL | 9.4 | 64-Bit | kernel-5.14.0-427.31.1.el9_4 |
RHEL | 9.4 | 64-Bit | kernel-5.14.0-427.28.1.el9_4 |
RHEL | 9.2 |
64-Bit |
kernel-5.14.0-284.80.1.el9_2 |
RHEL | 9.2 | 64-Bit | kernel-5.14.0-284.79.1.el9_2 |
RHEL | 9.2 | 64-Bit | kernel-5.14.0-284.77.1.el9_2 |
RHEL | 9.2 | 64-Bit | kernel-5.14.0-284.75.1.el9_2 |
RHEL | 8.10 | 64-Bit | kernel-4.18.0-553.16.1.el8_10 |
RHEL | 8.8 | 64-Bit | kernel-4.18.0-477.67.1.el8_8 |
Ubuntu | 20.04 LTS |
64-Bit |
linux-image-5.4.0-193-generic |
Ubuntu | 20.04 LTS |
64-Bit |
linux-image-5.4.0-192-generic |
Ubuntu | 20.04 LTS |
64-Bit |
linux-image-5.4.0-190-generic |
Ubuntu | 20.04 LTS |
64-Bit |
linux-image-5.4.0-189-generic |
Enhancements
End Support for RHEL 7.x and Ubuntu 18.04 LTS Kernels
Fortra no longer supports installing and running new versions of Agent for Linux on computers running Red Hat Enterprise Linux (RHEL) 7.x and Ubuntu 18.04 LTS kernels.
Fixes
No issues are resolved in this release.
Analytics & Reporting Cloud
Version: 4.12.0
September, 2024
New Features
-
A new external API endpoint GET /1.0 /dynamic_group /{group_id} has been implemented to retrieve current dynamic group membership from ARC. This API will allow users to fetch the current members of a specified dynamic group.
-
Digital Guardian introduces a new Secure Service Edge (SSE) solution powered by Lookout technology. This integration provides comprehensive security coverage from endpoint to cloud, bridging the gap between traditional endpoint security and cloud-based threats. The SSE solution offers full visibility and control across all web traffic, SaaS applications, and private applications, ensuring sensitive data remains protected regardless of its location or the devices accessing it.
-
ARC now integrates with Slack, enhancing communication monitoring and data protection capabilities. This feature allows seamless monitoring of Slack chats, messages, and shared files, while enabling custom ARC detection rules for Slack communications. Additionally, ARC enables you to review Slack chat history for investigations and compliance purposes, ensuring consistent enforcement of data protection policies across all Slack channels.
-
The integration of Fortra Threat Brain (FTB) into our solutions provides a comprehensive threat intelligence hub. FTB delivers reputational analysis and coverage across files, executables, domains, IPs, URLs, and email addresses. This integration enhances incident triage capabilities, improves event detection, and provides critical insights to bolster overall security coverage.
Fixes
-
Resolved an issue where the ${event.comp_machine_status} variable for agent status was inconsistently populated in detection rule alarm names, showing status codes instead of readable statuses. This issue is now resolved.
-
Resolved an issue where the User section in Administration & Configuration was not visible despite having "All" permissions for Users and Roles.
Document Management (RJS)
DeliverNow
Version: 1.2.20
September 3, 2024
Enhancements
-
Add the ability to define custom cipher lists for connections to IBM i systems.
-
Add the ability to define custom keystore and password for connections to IBM i.
-
Custom Security Controls for IBM i.
-
Updated JT400 IBM i connection library to latest version.
-
Updated IKVM to latest version of Java to support latest cipher suites on IBM i.
Fixes
- Underlying Java implementation updated to support modern cipher suites.
Fortra
Endpoint Manager
September 20, 2024
Enhancements
-
Improved performance of search feature in the Endpoint table.
-
Updated the display name of installers to be v<version>.
-
Removed restriction on collecting logs. Logs can now be downloaded regardless of module status.
September 5, 2024
Enhancements
-
The Version column on the Endpoint table is hidden by default. It can be accessed via the column selector.
-
Added restrictions so that only one capability per type can be overridden at a time. The override toggle will be disabled when a capability from the same type is already enabled.
-
Only one module can be assigned to static groups.
Fixes
-
The Add button on Assign Endpoints dialog now only updates if changes have been made.
Fortra platform
September 17, 2024
Enhancements
-
Updated vulnerable Spring version.
-
Added icon in app switcher next to external links to indicate that the link will open in a separate window/tab.
-
Tenant entitlements can now include colons.
-
Changed the forgot password flow to use OTP code if OTP was previously set up.
-
The permissions for a user in the current tenant now take into account the lower-level tenants that a user has access to.
-
Security module now checks that user has a role that allows access to the requested tenant.
GoAnywhere
GoAnywhere Gateway
Version 3.2.0
September 11, 2024
-
Added support for version 1 and version 2 of the proxy header, which if configured, provides the proper client IP address to Gateway.
-
Enhanced Gateway to dynamically utilize epoll socket channels natively (if supported) for better resource management and performance.
-
Added encryption to sensitive fields in the Gateway configuration file.
-
Updated bctls-fips from version 1.0.17 to 1.0.19.
IBM Partnership
Backup, Recovery, and Media Services
Product 5770-BR1 Version: PTF 7.5 SJ01879, 7.4 SJ01877
September 20, 2024
Enhancements
In version 7.4 and later:
-
The BRMS delete product exit program processing has been enhanced to improve the migration to product 5770-BR2.
For information about migrating from 5770-BR1 to 5770-BR2 and steps to take using this PTF, visit the 5770-BR2 Installation page on our wiki.
Product 5770-BR1 Version: PTF 7.5 SJ01759, 7.4 SJ01758
September 10, 2024
Fixes
In version 7.4 and later:
-
Fixed problem where incremental saves of an *OBJ list using ASP Device value of * may incorrectly do a full save.
-
The recovery report may not include all the expected *LNK list saves in the Recover Directories and Files step has been fixed.
-
The issue with the recovery report incorrectly reporting IBM supplied libraries QSBMJOBTRK in *SYSBAS and libraries QSTNnnnnn in ASPnnnnn as not saved has been fixed.
Product 5770-BR2 Version: PTF 7.5 SJ01416, 7.4 SJ01415
September 10, 2024
Fixes
In version 7.4 and later:
-
Fixed problem where incremental saves of an *OBJ list using ASP Device value of * may incorrectly do a full save.
-
The recovery report may not include all the expected *LNK list saves in the Recover Directories and Files step has been fixed.
-
The issue with the recovery report incorrectly reporting IBM supplied libraries QSBMJOBTRK in *SYSBAS and libraries QSTNnnnnn in ASPnnnnn as not saved has been fixed.
-
Fixed the issue where the BRMS Web interface incorrectly shows no media found when tape devices are varied off.
Outflank Security Tooling (OST)
Outflank
Version: 25 September 2024
EDR Evasion
- Added 5 new community contributed EDR presets.
Updates
- EarlyCascade injection is now also available in OC2 and ShovelNG.
- Outflank C2 & PE Payload Generator: new options and GUI improvements to allow more operator flexibility.
11 September 2024
EarlyCascade Injection in Payload Generator
- Added a novel injection technique called 'EarlyCascade'.
- Added 'freeze' as a new process creation method.
- New 'Embed in section' option.
- Relative local paths are now supported.
Updates
- Bugfixes in Payload Generator, Outflank C2 (formerly Stage1), and in the OST portal.
Powertech
BoKS Manager
Version 8.1 (version update)
September 19, 2024
Server s-8.1.0.12
Fixes
-
Incomplete TCP connections to boks_autoregister_proxyd may cause high CPU usage on the Replica.
-
Race conditions in bccasd ABAC code might cause the process to terminate unexpectedly.
Updates
-
Kerberos library upgrade to 5.1.21.3.
Version 8.1 (version update)
September 19, 2024
Client c-8.1.0.18
Fixes
-
"sudo -u" behaves differently when BoKS is enabled.
Updates
-
Kerberos library upgrade to 5.1.21.3.
-
OpenSSL library upgrade to 1.1.1za.
Robot
Robot Network
Version 13.06
September 25, 2024
Enhancements
-
Updated installer to select "Launch Application" option by default after install. Updated installer to sync desktop icons, program search icon, uninstaller.exe icon, and installer.exe icon.
Fixes
-
When using secure connections in Robot Network GUI it no longer checks unsecure ports 8471 through 8476. Previously, when using Robot Network with secure connections unsecure ports were checked, but no data was not sent or received over them.
-
During an install or conversion Robot Network can now validate systems with over 100 processors. Previously it would fail with CPF0819 on systems with over 100 processors.
-
Changed the Installer process, to properly update the GUI from within the GUI application.
-
Removed obsolete IBM Java Toolbox jar from the IFS which was causing the inability to connect in host mode when using Java 11. Error received was <HTML>An error occurred while checking for Robot <product name> on the host.<br></HTML> Additional info: com.helpsystems.common.core.access.ResourceUnavailableException: UNIMPLEMENTED
-
Fixed issue with installer failing on "invalid command line" error.
-
Reduced the default IFS log size from a maximum of 10 days to 5 days.
Performance Navigator
Version: 19.06
September 26, 2024
Enhancements
-
Added Graphs > Current Day > Jobs/Subsystems > Top Jobs/Temp Storage (alloc-dealloc).
-
Enhanced functionality of Enterprise Memory Overview for some AIX systems.
-
Created Graphs > Current Day > Jobs/Subsystems > Top Subsystems/CPU.
-
Created Graphs/Reports > CPU > Core Speed Ratio for AIX systems.
-
In Edit > System Options > Dates, the buttons “Apply to Selected Systems”, "Apply to All LPARs" and "Apply to All Systems" now works for the Data Cutoff Date.
-
Added menu item File > Delete Stored Passwords.
-
Total number of LPARs is now displayed in System Information window for AIX systems.
-
Created Graphs > Current Day > CPU > Top DRDA Current Users.
-
Created AIX graphs for 6 items under Graphs/Reports > Disk > Volume Groups > ....
-
ASP dropdown at top right of applicable graphs now lists up to 15 recent items.
-
Dropdown icon at the top right of applicable graphs is now three horizontal lines.
-
Added support for Virtual Serial Numbers on IBM i.
-
Added option to display the Graphs and Reports tab in the Navigator Panel under Edit > Graphs/Reports Options > Advanced.
-
The product's icon has been amended to the new Fortra triangle logo.
-
Allows more flexibility for size of custom logos.
-
New IBM i Graph under Graphs > Disk > Ops/Sec/GB.
-
File MPGDRK now has a flag for reuse of deleted records.
-
Wait Bucket graphs take all threads into account (previously was just the main thread).
Fixes
-
Fixed an issue where green arrows at the bottom corners of Current Day graphs sometimes did not display.
-
Running the Enterprise Performance Overview over multiple systems with multiple OS's displays properly.
-
Power Analytics > Management Reporting > Monthly Interactive and Monthly Noninteractive now display pages for all ASPs (was previously limited to 3 ASPs).
Sequel
Viewpoint 11
Version: 11.24.233
September 9, 2024
Enhancements
-
A Viewpoint enhancement has been made to improve the performance of large file downloads from the IFS to Viewpoint.
Fixes
-
A fix has been made to the Viewpoint Administrator Database Security function to prevent error 'This item's control has been deleted'.
Showcase
Viewpoint 10
Version: 10.24.233
September 9, 2024
Enhancements
-
A Viewpoint enhancement has been made to improve the performance of large file downloads from the IFS to Viewpoint.
Fixes
-
A fix has been made to the Viewpoint Administrator Database Security function to prevent error 'This item's control has been deleted'.
Titus
DCS Console
Version 2024.07 HF1
September 24, 2024
Fixes
-
Renewed cloud certificates for the DCS Console.
DCS Data Detection Engine (On-premises)
Version 2024.0
September 16, 2024
Use DDE Client Extension 2024.0 if you have:
-
DCS for DaR (formerly known as Illuminate): 2023.1 HF1 or later.
-
DCS for Windows (formerly known as TCS for Windows): 2023.0 HF1 or later.
Use DDE Client Extension 2023.0 if you have:
-
DCS for DaR (formerly known as Illuminate): 2023.0 or earlier.
-
DCS for Windows (formerly known as TCS for Windows): 2022.0 or earlier.
New Features
-
Added support for additional personally identifiable information (PII) formats for the countries of India, Saudi Arabia, Turkey, and UAE. The Arabic and Turkish languages are now supported for detectors that scan for PII data.
-
Customers who don't use the Administration Console can run a new Data Detection Engine PowerShell installer if they want to create customized catalogues to disable certain detectors. See the Data Detection Engine PowerShell Installation Guide for instructions.
Enhancements
-
Updated documentation to reflect Titus Classification Suite (TCS) to Fortra Data Classification Suite (DCS) rebranding. Titus Data Detection Engine is now DCS Data Detection Engine. TCS for Windows is now DCS for Windows. Titus Illuminate is now DCS for Data at Rest (DaR).
DCS for Data at Rest
Version 5.0
September 10, 2024
New Features
-
DCS for DaR now includes online help. Click to the left of the username in the top-right corner in DCS for DaR.
-
You can now run a OneDrive Discovery scan. This allows you to scan the SharePoint tenant for all OneDrives. It presents all discovered OneDrives and folders within them along with file counts. You can select the results you want and create a content scan.
-
Two new database table views, Ti.vScanFileSharePermissions and Ti.vScanFileShareFolderPermissions, have been added. These tables collect information about who has access to files/folders and the type of access that user has to the file/folder when scanning Fileshares.
Enhancements
-
Titus Illuminate has been renamed to Fortra's Data Classification Suite (DCS) for Data at Rest (DaR) (on-premises)
-
You can select multiple scans at the same time for deletion from the Discovery Definitions, Content Scans, and Scan Queues
-
DCS for DaR is now supported on Microsoft SQL Server 2022 and Microsoft SQL Server Express 2022
-
You can no longer create a local SQL Express instance when installing DCS for DaR
-
When DCS for DaR archives files using a Move or Copy rule, the original repository folder structure will be preserved in the target location. This is only supported for FileShare repository type.
-
Smart Regex can now detect the Brazilian CPF (Cadastro de Pessoas Físicas) identification number
Fixes
-
Data at Rest does not detect content in Microsoft Word using a regex content validation (CV) profile. The applied Metadata should reflect “Password” as the regex in the CV profile should match the text in Word and text files.
-
Last Accessed Time condition is failing
-
No metadata is treated as an error for MSG files