Digital Guardian nDLP Appliance

 

October 2023

Version: 11.9

October, 2023

New Features

  • In release version 11.9, a new system log category called "Incident Activity" has been introduced. This category records any actions taken on an incident, such as viewing, viewing the original file, or downloading it. When logging incident activities, it includes the administrator's name who performed the action.

  • The ARC user interface now provides extra details regarding email senders. To access this additional information for email events, it's necessary to configure the Appliance manager instance with LDAP integration.

  • The appliance has been upgraded to incorporate Microsoft Purview/MIP SDK version 1.13

  • The nDLP Appliance release version 11.9, has implemented new age cryptographic algorithms for its internal communication and data management. All system-wide credentials will now be stored using the Argon2 algorithm, renowned for its exceptional security and resistance to tampering.

  • With the introduction of this new feature in release version 11.9, the Appliance now offers seamless support for LDAP users registered within LDAP groups. Administrators can grant access to LDAP users by registering LDAP groups in the Appliance Administrator settings and assigning them the appropriate roles. Once an LDAP group is registered, the Appliance enables all users within that group to log in and access resourcesbased on their assigned roles.

June 2023

Version: 11.8.2

June, 2023

New Features

  • A new host filter (URL_host_filter) is added specifically for ICAP request filtering in the policy creation section under “Sources/Dest.” tab. When selecting the URL host filter, other sources/destination network filters are disabled automatically as they are not relevant for this feature. In the previous releases, the Network Filters, allowed configuration of source/destination IP address or address group to add a source/destination constraint for an IP address host, range, network, or any grouping of hosts, ranges, or networks. However, in this release we can add a domain or a group of domains to the URL filter which will be utilized by ICAP traffic monitor in the appliance.

  • Whenever modifications are made to the user/roles and diagnostic modules, the logs will now include comprehensive details about the actions performed. Logging capabilities have been enhanced to capture any changes made to the user/roles and diagnostic modules.

April 2023

Version: 11.8.1

April, 2023

New Features

  • The feature to display CC addresses and SMTP message is now available in both the incident list view and the incident detailed view.

  • New filtering options for SMTP message ID and CC address have been added to the DIM Incident List view.

  • Email CC addresses are now reported to DGMC/ARC.

  • A new configuration parameter called "dgsync_job.event.reporting.use_unique_count" has been included in the "scheduler.conf" file located at "/var/lib/tomcat/webapps/ROOT/WEB-INF/classes/". The default value of this parameter is set to false. The appliance utilizes this configuration to decide whether to send the total match count or the unique match count when sending events to DGMC/ARC. An additional option has been added to prevent the sending of duplicate email events in DGMC/ARC. Please note that this feature only works when the policy has copy retention enabled. Parameter name for added new configuration is dgsync_job.event.reporting.collate_email_events.The default value of this parameter is set to false.

January 2023

Version: 11.8

January, 2023

New Features

  • This allows appliance to report unique matches from inspection.

  • Appliance supports discovery scan on NFS running with version 4.

  • Appliance supports widows authentication mechanisms while connecting to MS-SQL server.

  • Appliance database has been upgraded to postgresql version 15.

  • Appliance supports new scan known as Inventory scan. It scans the file meta data and is supported on CIFS.

  • Appliance can now support MIP label detection over ICAP.

Fixes

  • OneDrive vault connectivity works successfully in this release.

  • The export of Discovery Incidents Report can be performed as the alignment of rows and column with proper headers is corrected and fixed.

  • The multisyncd service restart crash error is fixed.

  • The NDLP data validating in %issues in rules case is resolved where the partner uses not block rule with 60% below the DLP.

  • Move remediation action to OneDrive vault target feature and "Undo Move" move for OneDrive file feature works successfully.

July 2022

Version: 11.7

July, 2022

New Features

  • DG Appliance now allows the importing of Azure mail servers into the trusted sites list.

  • DG Appliance can authenticate with Google Drive and Microsoft Sharepoint to facilitate the scanning and remediation of files.

  • The current installed version of DG Appliance is now displayed in the Appliance banner. In addition, the Appliance deployment mode can be found under Manage System > Settings.

Fixes

  • Fixed an issue that resulted in a UI certificate authentication failure.

April 2022

Version: 11.6

April, 2022

New Features

  • DG Appliance now uses an improved method to connect to Microsoft OneDrive and SharePoint Online. For details, see "Using Microsoft Cloud Services After Upgrading to 11.6 or Later" on page 1.

  • You can now check for unstructured registered data by percentage match in a data policy.

  • DG Appliance now supports the SNMP-v3 security protocol in addition to the SNMP-v2 protocol. These protocols are useful for debugging and monitoring.

  • Now you can apply a MIP (Microsoft Information Protection) sensitivity label that was created as a data attribute to files as a remediation action to discovery incidents.

  • Now you can send DG Appliance events and incidents to DG Analytics & Reporting Cloud (DG ARC) through the DGMC in JSON format. A new check box called JSON Incident Format appears in the General System Settings when DG Appliance is connected to a DG Analytics & Reporting Cloud (DG ARC) server.

Fixes

  • DG Appliance now uses an updated version of Red Hat's polkit, which fixes a known vulnerability in Linux's system-wide privileges. For details about the vulnerability, see Red Hat's website.

  • Manager databases now run maintenance scripts to prevent issues with receiving incidents from Inspectors.

September 2021

Version: 11.5

September, 2021

New Features

  • DG Appliance now supports two new variants of single-interface Appliance for VMware platform. The two variants are HDD size of 350GB and 1000GB. This is in addition to the existing VMware images with six interfaces.

  • Workflow Action now supports an additional field Incident Tag that can be preconfigured with a value. This value is assigned to the incident along with the other preset values associated with the action.

  • DG Appliance now has a UI configuration option that allows you to switch between DHCP mode for dynamic IP assignment and static IP assignment. Administrators can switch between DHCP and Static mode from UI.

  • DG Appliance provides an ability to configure customized text messages for the below access points:

    • The management console’s logon screen (See Customizing a Banner for the Management Console)

    • The SSH terminal (see Customizing a Banner for the SSH Terminal)

    This capability can be used to display information/notice messages to users accessing DG Appliance.

Fixes

  • PST files extraction and inspection now work as expected on DG Appliance.

  • DG Appliance no longer experiences service crash due to high memory consumption.

  • Number of files reported by O365 OneDrive admin center and the total count scanned during discovery are now consistent.

  • Discovery scanning in Sharepoint works as expected.

  • It is now possible to upload a CSV file where the server includes the character "," in it.

  • DG Appliance no more encounters MTA/Mail Flow Errors.

  • File count mismatch is no longer seen while running discovery scans.

  • It no longer takes an excessive amount of time to open events in DG-Manager.

April 2021

Version: 11.4

April, 2021

New Features

  • The default web-server certificate included with the software does not provide a trusted connection to the DG Appliance web server. When configuring the management console for first time use, you should create a custom certificate in PKCS12 format (.p12) that contains a private key and signed certificate. Then you can upload it in the management console to make a trusted connection.

  • If your organization uses Microsoft Information Protection (MIP) sensitivity labels, you can configure Appliance data policies, data exception policies, and global exception policies to search for them within SMTP traffic, and create incidents when they are found. Before data policies can recognize MIP sensitivity labels, however, you must register them as data attributes. You can register them individually or in groups.

Fixes

  • Discovery polices no longer display incorrect values in the Registered Data tab when you edit the policy.

  • A “too many open files” error from Java-based component of the appliance software no longer appears or causes problems with operating DG Appliance.

  • Vulnerable SSH cryptographic settings are now restricted on DG Appliances.

  • ICAP inspections no longer hang when searching for registered data listed in a file class.

  • Inspectors are now able to connect to Managers without errors or appearing to be offline.

  • Copy retention files are now successfully sent to Managers from Inspectors when the Managers are processing a large number of incidents.

  • Azure Information Protection (AIP) sensitivity labels migrated to MIP now display the correct labels in DG Appliance.

  • When a MIP sensitivity label applied to a MIP-protected email attachment contains Unicode characters, question marks (?) no longer appear instead of the Unicode characters in the label.

  • It no longer takes users belonging to user-created administrator groups an excessive amount of time to log on to the management console. This problem did not occur when using the default sysadmin account.