Skip to main content

Release 24.7

Platform Updates

Executive Summary Report

Introduction

We are pleased to announce the launch of the Executive Summary Report, providing a unified view of your security posture on Xshield. This report consolidates key metrics and insights into a single document, enabling enterprises to assess their security stance effectively.

Key Features

  • Overall Breach Impact, Attack Surface & Blast Radius Scores for the enterprise.
  • Segment-wise Contribution to overall security scores.
  • Milestone-based Completions based on segments’ target dates.

Benefits

  • Enhanced Risk Assessment: Evaluates potential security breach impacts.
  • Progress Tracking: Provides clarity on performance & security goals.
  • Effective Planning: Helps prioritize security initiatives for timely execution.
  • Strengthening Defenses: 90-day insights to focus on fortifying critical assets.

CrowdStrike Integration

Introduction

Xshield now supports integration with CrowdStrike, allowing seamless data management. Users can import host groups and network telemetry data into Xshield via their CrowdStrike credentials and SQS details.

Benefits

  • Unified Data Management: Centralizes security data from CrowdStrike.
  • Enhanced Visibility: Provides access to comprehensive endpoint data.
  • Streamlined Workflow: Simplifies endpoint security management.

Note: Upcoming releases will further enhance integration with additional CrowdStrike modules.

Flexible Policy Creation

Users can now apply rules to tags within templates, enhancing customization for policy creation.

Benefits

  • Precision in Security Policies: Enables tailored security measures.
  • Optimized Policy Effectiveness: Aligns policies with organizational needs.
  • Improved Operational Efficiency: Simplifies policy management.

Named Network Templates Enhancement

Introduction

To improve network visibility and management, IP details have been incorporated into Named Network Templates.

Benefits

  • Increased Network Transparency: Enables better visibility into infrastructure.
  • Simplified Network Management: Provides comprehensive insights.
  • Improved Named Network Organization: Enhances control and clarity.

User Segmentation Updates

This release introduces improvements to user segmentation, offering more flexibility and control:

  • Multiple SCIM Provider Integration: Supports multiple SCIM providers for user provisioning.
  • New Identity Connector UI: Streamlines user & group identity management via the SCIM protocol.
  • Selective Removal of Imported Users & Groups: Enables targeted removal from identity providers.

Benefits

  • Improved User Provisioning Flexibility.
  • Intuitive Identity Connector Interface.
  • Enhanced Group Management.

Appliance/Agentless Updates

Event Generation for Asset Deletion

Introduction

Xshield now generates event logs when assets (managed/unmanaged) are deleted.

Benefits

  • Enhanced Asset Management: Provides audit logs for security compliance.

Appliance Health Widget

Introduction

A new widget displays real-time CPU, memory, network activity, and disk usage metrics.

Benefits

  • Proactive Issue Detection.
  • Optimized Resource Utilization.
  • Improved Uptime.

Traffic Data Collection

Introduction

Appliances now support traffic data collection for enhanced analysis and reporting.

Benefits

  • Identifies Traffic Patterns & Bottlenecks.
  • Aids in Compliance & Troubleshooting.

Enhanced Appliance Management with Flexible Interface Mapping

Introduction

Users can assign & alias WAN/LAN interfaces, ensuring seamless configuration in multi-port appliances.

Benefits

  • Improved Configuration Flexibility.
  • Error Prevention for Interface Mapping.

Automated Security Patch Updates During Appliance Upgrades

Introduction

Appliance upgrades now automatically apply missing security patches, ensuring protection against known vulnerabilities.

Benefits

  • Enhanced Security.
  • Streamlined Upgrades.
  • Improved Maintenance Efficiency.

Resolved Issues

Failure to Delete Policies from Templates

Problem

Users were unable to remove process-based rules from base templates.

Resolution

Optimized deletion processes for improved performance.

Incomplete Policy Deletion for Endpoint/User-Based Policies

Problem

The DELETE Policies API did not remove all endpoint policies completely.

Resolution

Fixed data handling to ensure complete policy removal.

Error During Tag-Based Policy Application on Asset Groups

Problem

Applying tag-based policies to 25,000+ endpoints resulted in errors due to long query times.

Resolution

Adjusted timeout settings for query completion.

Known Issues

Agent on Linux Server Showing Offline

Problem

Agents were reported offline due to concurrent writes corrupting the agent file.

Workaround

  1. Stop ct-agent.
  2. Delete agent-details.yml.
  3. Re-register & restart the agent.

Missing IPs in an Attached Named Network

Problem

Search results for named networks were inconsistent due to global search filters.

Workaround

Remove all filters before selecting an asset.

Removed Tag-Based Templates Not Updating in Assets

Problem

Templates still appeared in assets after Tag-Based Policy (TBP) removal.

Workaround

Delete templates before removing the TBP.