Version | 3.1.0.10513 | ||||
---|---|---|---|---|---|
Release date |
| ||||
Build number | 10513 | ||||
Next scheduled release |
| ||||
Status |
| ||||
Upgrading instructions | Upgrading the Nanitor Server | ||||
Nanitor Collector | 3.1.0.10513 | ||||
Nanitor Agent | 3.1.0.10513 |
Key objectives
New Features
NAN-1895: Most impactful issues widget
New health dashboard widget added displaying the issues with the most impact on the health score
The widget contains a list of issues and shows how much the issue is impacting the relative health score, for example in the image above the top issue is “#508: Missing mandatory software: Microsoft Edge“ the percent at the beginning of the line is indicating how much that issue is impacting the software health score.
Hovering over the percentage for a given issue reveals how much the issue is impacting the overall organization health score.
NAN-2030: TOTP MFA for local Nanitor accounts
Related tickets: NAN-2101
Time-based one-time password multifactor authentication added for local Nanitor accounts.
Users are able to opt in to 2FA by going to “Settings“ → “Account Settings“ → “Two-Factor Authentication“.
Checking the check box reveals a QR code and a key that the user has to add to his authenticator app (Microsoft authenticator, Google authenticator, LastPass authenticator, etc.).
After the user has enabled 2FA the user will get an additional window when logging in, prompting the user to insert a code from his authenticator app.
Users can disable 2FA under “Settings“ → “Account Settings“ → “Two-factor authentication“ and unchecking the checkbox.
Administrative users are able to disable 2FA for users by going to “Settings“ → “Container Management” → “Users“. Users that have 2FA enabled will have an option in the actions dropdown “DISABLE 2FA“ for disabling it.
NAN-2096: Asset archival policy changes
Related tickets: NAN-2015
Previously all assets got automatically archived after 7 days of inactivity, this has now been changed so that only Desktop and Laptop devices are archived automatically.
Other devices will now require confirmation from a user before being archived.
When a non automatically archivable device has passed the 7 day inactivity threshold it gets a new activity status, “Pending Archival“.
These devices can be filtered out using the “Asset State“ filer from the side filters.
Clicking on the “Pending Archival“ label, going to “Actions” → “CONFIRM ARCHIVAL“ or checking some devices with the status and clicking on the new “Confirm Archival“ button will reveal the confirmation modal.
NAN-1658: New project types
Related tickets: NAN-2137, NAN-2164
Four new project types have been added, these types all have different completion criteria.
Asset issue resolution
User is required to add some asset label or specify specific assets.
Considered complete when all issues for those devices have been resolved.
Asset onboarding
User is required to specify how many devices have to be added to Nanitor before the project is complete.
Optionally the user is able to specify some asset labels, which means the devices will have to have been added to those labels to be counted towards the project completion.
Asset health hardening
User is required to specify a target health score and either some asset label or specific assets to target for the hardening.
Considered complete when all assets added to the project have reached the target health score.
Upgrade/decommission assets
User is required to specify some asset labels or specific assets for the project.
Considered complete when all assets added to the project have either been upgraded to a new operating system or have been decommissioned.
Improvements
Description | Relevant tickets |
---|---|
User experience
| |
Performance improvements
| |
Vulnerability detection
| |
PII improvements
| |
Web services
|
Benchmarks
These benchmarks have been upgraded.
Benchmark | Change | Relevant tickets |
---|---|---|
Oracle database 21 Benchmark | Added support for Oracle database 21. |
For more information on supported benchmarks visit the documentation of our benchmarks space.
Fixes
NAN-2104 Fixed CVE-2022-32894 issue
NAN-1597 Fixed AIX incorrect rule check for /var/adm/cron/log permissions
NAN-2057 Fixed collector multi-checkin summary screen status always showing success
NAN-2130 Fixed project assignment modal empty projects list
NAN-2146 Fixed default dashboard layout to be the maximum number of columns available
NAN-2148 Fixed widget title for issue violations per asset on issue trend metrics report
NAN-2158 Fixed projects not appearing in the issue project assign modal after being created through the modal
NAN-2171 Removed archived projects from all projects endpoint
NAN-2194 Changed tooltip for setting health score button
NAN-2203 Fixed issue remediation patches not showing operating system
NAN-2213 Fixed issues in Collector UI
Select all not selecting expired devices
Multiple collector checkin crashes if an asset has invalid credentials
Delete expired collected asset does not decommission it (NAN-2219)
Edited asset port not saved (NAN-2222)
Filters not resetting correctly (NAN-2271)
NAN-2221 Fixed “Unknown unknown“ text when asset operating system is unknown
NAN-2265 Fixed set health target modal not closing on save
NAN-2111 Fixed audit report table header shifting on scroll
NAN-2220 Fixed CIA sorting popup not disappearing after clicking some other header to sort by
NAN-2278 Fixed AWS EKS container image collection