Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 4 Current »

PENDING Version

3.1.0.10513

Release date

Build number

10513

Next scheduled release

Status

RELEASED

Upgrading instructions

Upgrading the Nanitor Server
Upgrading the Nanitor Collector
Upgrading the Nanitor Agent

Nanitor Collector

3.1.0.10513

Nanitor Agent

3.1.0.10513

Key objectives

New Features

NAN-1895: Most impactful issues widget

New health dashboard widget added displaying the issues with the most impact on the health score

The widget contains a list of issues and shows how much the issue is impacting the relative health score, for example in the image above the top issue is “#508: Missing mandatory software: Microsoft Edge“ the percent at the beginning of the line is indicating how much that issue is impacting the software health score.

Hovering over the percentage for a given issue reveals how much the issue is impacting the overall organization health score.

NAN-2030: TOTP MFA for local Nanitor accounts

Related tickets: NAN-2101

Time-based one-time password multifactor authentication added for local Nanitor accounts.

Users are able to opt in to 2FA by going to “Settings“ → “Account Settings“ → “Two-Factor Authentication“.

Checking the check box reveals a QR code and a key that the user has to add to his authenticator app (Microsoft authenticator, Google authenticator, LastPass authenticator, etc.).

After the user has enabled 2FA the user will get an additional window when logging in, prompting the user to insert a code from his authenticator app.

Users can disable 2FA under “Settings“ → “Account Settings“ → “Two-factor authentication“ and unchecking the checkbox.

Administrative users are able to disable 2FA for users by going to “Settings“ → “Container Management” → “Users“. Users that have 2FA enabled will have an option in the actions dropdown “DISABLE 2FA“ for disabling it.

NAN-2096: Asset archival policy changes

Related tickets: NAN-2015

Previously all assets got automatically archived after 7 days of inactivity, this has now been changed so that only Desktop and Laptop devices are archived automatically.

Other devices will now require confirmation from a user before being archived.

When a non automatically archivable device has passed the 7 day inactivity threshold it gets a new activity status, “Pending Archival“.

These devices can be filtered out using the “Asset State“ filer from the side filters.

Clicking on the “Pending Archival“ label, going to “Actions” → “CONFIRM ARCHIVAL“ or checking some devices with the status and clicking on the new “Confirm Archival“ button will reveal the confirmation modal.

NAN-1658: New project types

Related tickets: NAN-2137, NAN-2164

Four new project types have been added, these types all have different completion criteria.

  • Asset issue resolution

    • User is required to add some asset label or specify specific assets.

    • Considered complete when all issues for those devices have been resolved.

  • Asset onboarding

    • User is required to specify how many devices have to be added to Nanitor before the project is complete.

    • Optionally the user is able to specify some asset labels, which means the devices will have to have been added to those labels to be counted towards the project completion.

  • Asset health hardening

    • User is required to specify a target health score and either some asset label or specific assets to target for the hardening.

    • Considered complete when all assets added to the project have reached the target health score.

  • Upgrade/decommission assets

    • User is required to specify some asset labels or specific assets for the project.

    • Considered complete when all assets added to the project have either been upgraded to a new operating system or have been decommissioned.

Improvements

Description

Relevant tickets

User experience

  • Projects list and labels list show a button to create project/label instead of being blank if no project/label exists.

  • Reworked tooltip consistency across the UI

  • Aligned issue and asset detail information

  • Added explanation tooltip to asset “Health“ column

  • Asset state filter changed to multiselect

  • Health status filter changed to multiselect

  • Removed issue list tooltip with redundant information

  • Highlightable tooltips allowing for copy/paste

  • Limit detail information lines to 35 characters

  • Added ability to create labels from label assignment modal

Performance improvements

  • Project activity log query performance improved

Vulnerability detection

  • CVE-2022-26486 - Mozilla vulnerability

  • CVE-2022-2856 - Chrome vulnerability

  • Link identified vulnerabilities with the related software inventory application.

PII improvements

  • Improved PII detection to reduce the number of false positive findings.

Web services

  • Added Apache Http Service

Benchmarks

These benchmarks have been upgraded.

Benchmark

Change

Relevant tickets

Oracle database 21 Benchmark

Added support for Oracle database 21.

For more information on supported benchmarks visit the documentation of our benchmarks space.

Fixes

NAN-2104 Fixed CVE-2022-32894 issue

NAN-1597 Fixed AIX incorrect rule check for /var/adm/cron/log permissions

NAN-2057 Fixed collector multi-checkin summary screen status always showing success

NAN-2130 Fixed project assignment modal empty projects list

NAN-2146 Fixed default dashboard layout to be the maximum number of columns available

NAN-2148 Fixed widget title for issue violations per asset on issue trend metrics report

NAN-2158 Fixed projects not appearing in the issue project assign modal after being created through the modal

NAN-2171 Removed archived projects from all projects endpoint

NAN-2194 Changed tooltip for setting health score button

NAN-2203 Fixed issue remediation patches not showing operating system

NAN-2213 Fixed issues in Collector UI

  • Select all not selecting expired devices

  • Multiple collector checkin crashes if an asset has invalid credentials

  • Delete expired collected asset does not decommission it (NAN-2219)

  • Edited asset port not saved (NAN-2222)

  • Filters not resetting correctly (NAN-2271)

NAN-2221 Fixed “Unknown unknown“ text when asset operating system is unknown

NAN-2265 Fixed set health target modal not closing on save

NAN-2111 Fixed audit report table header shifting on scroll

NAN-2220 Fixed CIA sorting popup not disappearing after clicking some other header to sort by

NAN-2278 Fixed AWS EKS container image collection

  • No labels