Release Notes
Start typing to search…
Back to All

Axonius Release Notes 8.0.19

3 days ago

Release Date: March 15th 2026

These Release Notes contain new features and enhancements added in version 8.0.19.

Cyber Assets New Features and Enhancements

The following new features and enhancements were added to Axonius Cyber Assets:

Customized Agent States

Instead of using Axonius’ default query defined for each agent state (Active, Inactive, Missing, Headless) on each tool, admin users can select a different Devices query, or define a new query of their own. This new query is then assigned to the new state and is automatically reflected in the Agent Coverage calculations. Users can reset the query to the Axonius default, if needed.

Identities New Features and Enhancements

The following new features and enhancements were added to Identities:

Fallback Approver for Access Review Campaigns

When creating an Access Review Campaign with Direct Manager as the primary approver, a Fallback Approver can now be configured to ensure 100% campaign completion even when identities are missing manager data. The campaign wizard displays a validation alert when identities lack a direct manager and allows you to select a fallback user to review those identities. You can also customize which field contains the manager data by selecting a specific connection and field, accommodating organizations that store manager information in custom or non-standard fields.


Axonius Platform New Features and Enhancements

Dashboard

The following new features and enhancements were added to the Dashboards:

Chart Enhancements

Sum and Average Calculations for Pivot Chart Updated

The calculation functions for Sum and Average have been updated on the Pivot chart. For these values, for each field - the system first calculates the average of the values fetched by all of the adapter connections. It then calculates the sum or average for all of the values. This produces a more accurate calculation of these values.

Adapter Pages and Adapter Interface

The following updates were made to the common functionality across all adapters:

Adapter Interface

Custom Logical Expression for Ingestion Rules

Ingestion rules now support Custom Logical Expressions, allowing users to define complex logic when combining multiple ingestion rules. This provides precise control over which assets are ingested into Axonius.

Previously, ingestion rules could only be combined using a single logical operator applied uniformly across all rules:

  • AND - All rules must match
  • OR - At least one rule must match.

Now, a new Custom operator option is available that enables you to create sophisticated logical combinations such as:

1 AND (2 OR 3) - Rule 1 must match, and either rule 2 or rule 3 must match
(1 OR 2) AND (3 OR 4) - At least one of rules 1-2 must match, and at least one of rules 3-4 must match


New Adapters

  • Autotask PSA - Autotask PSA is a professional services automation platform that provides ticketing, asset tracking, project workflows, and service delivery management for IT operations. (Fetches: Tickets)
  • Microsoft Power Platform - Microsoft Power Platform is a low-code development platform that provides tools to create custom applications, automate workflows, and analyze data across integrated services and data sources. (Fetches: Application Resources)

Updated Adapters

  • Amazon Web Services (AWS) - Added the option to fetch tags for CloudFront distributions, Glue databases, Route 53 hosted zones, and Transit Gateways.

  • Axonius BACnet Scanner- Added the capability to configure a limit for the number of unique devices queried at any give moment, the number of maximum retries per device and the delay between packets.

  • Custom Files - Added the option to configure a custom ID path for asset ID generation when connecting the adapter. This is useful when the default ID fields don't match your data structure, as you can specify which fields from your data should be used to generate unique asset identifiers. Changing the custom ID path triggers deletion of all existing assets from that connection before re-creating them with the new IDs.

  • Denodo - Added two new connection configuration fields to allow users to configure which fields should be used to create unique device or user IDs.

  • GitHub

    • Added a new advanced configuration option "Fetch repository tags" to retrieve all tags associated with each repository.
    • Added the option to fetch additional branch protection status check details, including strict status checks, required status checks (context and app ID), and required status check contexts.

  • HPE Aruba Networking ClearPass Policy Manager - Added the option to fetch local users and admin users under separate advanced configuration options.

  • Illumio Core

    • Added a capability to set the maximum times to check for task completion before timing out.
    • Added a capability to set how long to wait in seconds between checks when the adapter is waiting for a task to complete.

  • Ivanti Connect Secure - This adapter now supports authenticating with realm-based authentication using the /api/v1/realm_auth endpoint.

  • Jira Service Management (Service Desk) and Jira Service Management (Service Desk) Fetch Tickets - These adapters now support authenticating with scoped credentials:

    • For service accounts: OAuth 2.0 2LO and/or scoped API token
    • For normal accounts: scoped API token.

  • Juniper Junos - Added a new advanced configuration option "Fetch ARP Devices" to enable or disable fetching of ARP devices via SNMP.

  • Microsoft Defender for Endpoint (Microsoft Defender ATP)

    • Added the option to fetch removable storage events from the last 30 days using an advanced hunting query.
    • Added options to control how Unknown values are handled for antivirus signature and engine update status fields. Users can set Unknown as “False” for the following fields: "AV Info Is Platform Up To Date", "AV Info Is Signature Up To Date", "AV Info Is Engine Up To Date".
    • Fixed an issue where sensor data was not being fetched correctly.

  • MongoDB Atlas Administration - This adapter now fetches Application settings from MongoDB Atlas.

  • OpenStack

    • Added a new connection configuration field "Project Domain" to support authentication with both user domain and project domain.
    • The existing Domain connection field was renamed as User Domain.
    • This adapter now supports authenticating with application credentials for read-only non-admin access.

  • Orca Cloud Visibility Platform

    • Added the option to fetch CVE data for containers, including vulnerable software and vulnerability instances.
    • Added three new fields to Alerts/Incidents: Orca Asset Type, Asset Name, and Asset Tags Info List.

  • Qualys Cloud Platform

    • Added an option to fetch cloud connectors data (AWS, Azure, GCP, OCI) for Accounts/Tenants.
    • When Use 'lastCheckedIn' field as 'last_seen’ is enabled in the Advanced Settings, there is now an option to use the lastComplianceScan as fallback to include compliance scans in the Last Seen field.

  • ServiceNow - Added an option to populate Business Applications with downstream Application Services information and enrich devices with that information.

  • Vulcan Cyber - Added a new asset type: Application Services.

  • Wiz - Added the option to fetch excessive access findings (severity and status) and map them to Security Findings Instances.

  • Zabbix

    • Replaced the three boolean hostname parsing configurations with a single "Preferred fields for Hostname" array configuration where the order explicitly defines precedence.
    • Added an explicit "Default" option to control when the default behavior (host field → name field) is applied.

New Enforcement Actions