Release notes - 3.4.0

Owned by Jón Böðvarsson (Unlicensed)
Last updated: Jan 11, 2023
5 min read

Version

3.4.0.10801

Release date

Jan 2, 2023

Build number

10801

Next scheduled release

Jan 30, 2023

Status

Released

Upgrading instructions

Upgrading the Nanitor Server
Upgrading the Nanitor Collector
Upgrading the Nanitor Agent

Nanitor Collector

3.4.0.10801

Nanitor Agent

3.4.0.10801

Key objectives

We added the notification center in this version, this feature will allow users to be better informed about what actions are needed in order to improve their overall system health.

Improving the overall performance of Nanitor is a big concern for us moving forward especially in regards to our bigger clients, numerous performance improvements were implemented in this version.

User experience also got some attention this version with a lot of smaller changes and fixes being implemented to improve the UX of the interface.

New Features

NAN-2229: Notification Center

Related tickets: NAN-2230, NAN-2232, NAN-2233, NAN-2260, NAN-2262, NAN-2556, NAN-2616

A new notification center has been added to Nanitor, this feature shows the user a list of notifications that require some action from the user, for example that some devices are without a benchmark or a label.

To access this feature a new button was added to the navigation bar next to the logged on users name and settings button. This button will include an orange dot and have a ringing animation if the user has some unread notifications, a notification is considered unread until the user clicks on the Details button of the notification.

Clicking on this button triggers the notification center to be displayed.

To start with there are four types of notification that can be displayed in the notification center:

  • Devices with outdated agents

  • Devices without benchmarks

  • Devices without an applied label

  • No active projects

Each of the notifications include a title and description that summarises what the notification is about, there are also two buttons at the bottom - Ignore and Details.

Clicking on the Details button for a notification opens up a detailed view for it with more detailed text, it also displays an action button at the bottom (if the notification requires it).

Clicking on the Ignore button ignores the notification, it will not show up in the list of active notification once it has been ignored. The user will be able to see all the ignored notifications in a separate list at the bottom of the notification center, this list is always collapsed by default.

Clicking on Restore essentially un-ignores the notification, placing it back in the active notifications list.

After the issues causing a notification have been amended the notifications are automatically resolved and disappear from the list.

NAN-2444: Azure MDM management detection for Windows

Nanitor will now display a new line in the device info tooltip for Windows devices that are managed by some MDM. This is accompanied with a new benchmark for Windows 10 devices managed by Intune (Azure).

Currently this is only supported for Windows devices, there are 5 possible values this field can display:

  • Azure AD

    • Azure AD managed device

  • Domain

    • Domain joined device

  • Hybrid

    • Both Azure AD and Domain joined device

  • On-prem DRS

    • Device joined to some on premises device registration service

  • Independent

    • Independent device not joined to any MDM.

In cases where this data cannot be populated on a Windows device this field will not display in the tooltip.

NAN-2489: Forensics tab added to misconfiguration issues

A new tab, Forensics, has been added to the details page of misconfiguration issues. Forensics are part of issues and their role is to help the user understand what evidence was collected and caused the issue violation.

Improvements

Description

Relevant tickets

Description

Relevant tickets

Performance improvements

  • Improved performance of vulnoval_checkin_info task

  • Improved performance of the configuration trends dashboard

  • Improved performance of updating labels

  • Improved performance of organization management task

  • Fixed same device system info items being requeued

Collector improvements

  • Fixed incorrect credentials used after editing collected asset bug

  • Improved messages in the collector UI

  • Improved error handling

  • Removed legacy Cisco checkbox

  • Fixed infinite restart loop bug

Health status dashboard

  • Removed highlights section from the ‘Health score by issue type’ widget

  • Aligned items in 'The most impactful issues' widget to always fit on a single line

  • Redesigned target score bar for better readability

PII scan

  • Added ability to scan files for emails

    • Only creates an issue for files with over 100 findings

UI improvements

  • Column ‘Status' renamed to ‘State’

  • Added ability to export affected assets list from the issue details page

  • Column 'Actions' fixed to right side of tables and made non customizable

  • Redesigned confirm pending archival dialog

  • Removed duplicate 'more information' from vulnerability remediation

  • Added ‘Platform', ‘Distribution Version’ and 'Assets’ columns to the patches table in the remediation tab for a vulnerability issue

  • Added animation to onboarding menu when items get completed

  • Column ‘Version' renamed to 'Revision’ in the benchmark settings table

  • ‘Health status report' renamed to 'Health status dashboard’

  • Fixed comment discard dialog not directing the user to the requested tab/page after discarding

  • Redesigned page action buttons, moved common ones to a dropdown

Benchmarks

These benchmarks have been upgraded.

Benchmark

Change

Relevant tickets

Benchmark

Change

Relevant tickets

Apple MacOS 13 Benchmark

New benchmark

Microsoft Windows 10 - Intune managed

New benchmark

For more information on supported benchmarks visit the documentation of our benchmarks space.

Fixes

NAN-2425 Fixed broken WIndows 10/11 benchmark rule

NAN-2471 Fixed top incompatible software incorrect count

NAN-2497 Fixed Oracle 19 benchmark detection

NAN-2580 Removed info hash from PII findings in the UI

NAN-2537 Fixed broken rule checks for multiple Windows 11 benchmark rules

NAN-2537 Fixed incorrect log on and last activity timestamps on Windows

NAN-2064 Fixed patch issue detection for macOS devices

NAN-2132 Fixed Redhat 7 unknown OS bug

NAN-2463 Fixed users not showing up in users table of Intune managed Windows devices

NAN-2469 Fixed same password being allowed when changing passwords

NAN-2501 Removed 'RISC' terminology from exported issues list

NAN-2502 Fixed PII checks enabled showing as yes for non PII supported devices

NAN-2503 Changed attention needed dialog to message when logging in with an invalid email or password

NAN-2518 Fixed onboarding tour not continuing after finishing a chapter

NAN-2528 Fixed issue multi info view displaying the same item multiple times

NAN-2543 Fixed collector sending auth information for a device to the UI

NAN-2554 Fixed negative values for asset count and score on the benchmark details page

NAN-2590 Fixed HTML encoding bug in rule titles for MacOS Monterey benchmark