What's New in Axonius 3.2
  • 24 Mar 2022
  • 9 Minutes to read
  • Dark
    Light
  • PDF

What's New in Axonius 3.2

  • Dark
    Light
  • PDF

Article summary

Release Date: April-05-2020


Adapters

New Adapters

The following new adapters have been added in this release:

  1. Atlassian Jira Asset Platform - Atlassian Jira Asset Platform links software with Jira to populate an asset inventory, letting users query for assets and link them to issues.
  2. Dell EMC Avamar - Dell EMC Avamar is a backup and recovery solution that enables daily backups of physical and virtual environments, NAS servers, enterprise applications, remote offices and desktops/laptops.
  3. HP Integrated Lights-Out (iLO) - HP Integrated Lights-Out (iLO) is server management software that enables the configuration, monitoring, and updating of HPE servers.
  4. IP Fabric - IP Fabric is a network management system used to discover, verify, visualize and document large scale networks.
  5. Kenna Security Platform - Kenna Security Platform is a vulnerability assessment solution that provides risk scoring, prioritization, and benchmarking.
  6. LogicMonitor - LogicMonitor is an automated infrastructure monitoring platform for enterprise IT and managed service providers.
  7. Pivotal Cloud Foundry - Pivotal Cloud Foundry is an app development and deployment platform for public and private clouds.
  8. SevOne Data Platform - SevOne Data Platform is a network and infrastructure management platform that provides monitoring and analytics.

For more details, explore the entire list of supported and integrated adapters.

Updated Adapters

The following adapters have been enhanced:

  • Amazon Web Services (AWS) (Connection Configuration) - Added a new file format support to the Roles to assume field in the Add Connection dialog for this adapter .

    • JSON is now accepted for the Roles to assume file format that supports external_id.
    • For example ('111111111111' and '222222222222' are dummy AWS account IDs):
    [
        {"arn": "arn:aws:iam::111111111111:role/axonius-role"},
        {"arn": "arn:aws:iam::222222222222:role/axonius-role", "external_id": "MY-SECRET"}
    ]
    
    • The existing comma-seperated list of role ARNs format is still supported.
    • The external_id can be different for every role in the list.

  • BlueCat Enterprise DNS (Advanced Settings) - Added a new Entities per page field to the BlueCat Configuration tab in the Advanced Settings for this adapter.

    • This new field lets you set the number of results per page received for a given query to BlueCat API, to gain better control on the performance of all connections for this adapter.
    • This field is required.
    • The default value for this field is 9999.

  • CSV Serials (Connection Configuration) - Added a new Amazon S3 Use EC2 Attached Instance Profile checkbox to the Add Connection dialog for all 'file-based' adapters.

    • This new checkbox is applicable only for files fetched from Amazon S3.
      • If enabled and if the file is fetched from Amazon S3, Axonius will use the EC2 attached instance profile.
      • If disabled and if the file is fetched from Amazon S3, Axonius will use the Access Key ID and Secret.
      • The default value for this checkbox is True
    • This field has been added for all 'File-based' Adapters:
  • Juniper Junos Space Network Management Platform (Advanced Settings) - Added a new Fetch only Juniper clients Information checkbox to the Junos Space Configuration tab in the Advanced Settings for this adapter.

    • If enabled, all connections for this adapter will only fetch metadata from switches.
    • If disabled, all connections for this adapter will fetch all information, including ARP tables.
    • This field is required.
    • The default value for this field is False.

  • Qualys Cloud Platform (Advanced Settings) - Added a new Fetch vulnerabilities data checkbox to the Qualys Configuration tab in the Advanced Settings for this adapter.

    • This new field lets you select whether to fetch vulnerabilities from Qualys.
    • If enabled, all connections for this adapter will fetch vulnerabilities from Qualys Cloud Platform.
    • If disabled, all connections for this adapter will not fetch vulnerabilities from Qualys Cloud Platform.
    • This field is required.
    • The default value for this field is False.

  • RiskIQ Digital Footprint (Advanced Settings) - Multiple enhancements:

    • Added a new Inventory state whitelist field to the RiskIQ Configuration tab in the Advanced Settings for this adapter.
      • This new field lets you specify a comma-separated list of RiskIQ inventory states.
      • If supplied, all connections for this adapter will only fetch devices if their inventory state in RiskIQ is provided in this list.
      • If not supplied, all connections for this adapter will fetch all devices from RiskIQ.
      • This field is optional.
      • The default value for this field is empty.
    • Added a new Asset status whitelist field to the RiskIQ Configuration tab in the Advanced Settings for this adapter.
      • This new field lets you specify a comma-separated list of RiskIQ asset statuses.
      • If supplied, all connections for this adapter will only fetch devices if their status in RiskIQ is provided in this list.
      • If not supplied, all connections for this adapter will fetch all devices from RiskIQ.
      • This field is optional.
      • The default value for this field is empty.

Dashboard Updates

The following updates have been made to the Axonius Dashboard:

  • All Custom Chart Panels - Modified the custom chart panel:
    • Added a new menu button that lets you perform the following actions:
      • Edit Chart - This action lets you edit the chart configuration.
      • Remove Chart - This actions lets you delete the chart and remove it from the current space.
      • Export to CSV - This action lets you export the chart data to CSV file (for Field Segmentation charts).
      • Move or Copy - This new action lets you either copy or move a chart to a desired space.
      • Refresh - This new action lets you to refresh the chart data.
    • Added a drag-and-drop button to make it clear the chart can be moved and that the charts in the dashboard space can be reordered.
      image.png


  • Pie Charts - Multiple enhancements:
    • Added a new legend to pie charts.

      • The legend can be opened or closed by clicking image.png
      • The legend contains data labels for each of the pie chart slices.
      • Each data label displays the slice label, number or results and the percentage of the slice size out of the total.
      • Data labels are sorted by number of assets in descending order.
      • Data labels are clickable. Clicking a data label will redirect you to the Devices or to the Users page displaying the corresponding list of assets.
        image.png
    • Modified the data label displayed when you hover over any of the pie chart slices.

      • Each data label provides the following details on each slice:
        • Slice label (query name, query intersection, segmented field value).
        • Number or results.
        • Percentage of the slice size out of the total.
          image.png


  • Bar Charts - Modified the data label displayed when you hover over any of the chart segments.
    • Each data label provides the following details on each segment:
      • Segment label (query name, segmented field value).
      • Number or results.
      • Percentage of the segment size out of the total.
        image.png


  • Discovery Charts - added a new data label that is displayed when you hover over any of the adapters in the Device Discovery and in the User Discovery charts.
    • Each data label provides the following details on each adapter:
      • Adapter name.
      • Number or assets fetched from all the connections of that adapter.
      • Percentage of the assets fetched out of the total assets fetched.
        image.png


Enforcement Center Updates

The following updates have been made to the Axonius Security Policy Enforcement Center:

New Actions

The following Actions have been added:

  • Create Atlassian Opsgenie Alert - Added a new enforcement action called Create Atlassian Opsgenie Alert under the Create Incident category.

    • This new action takes the saved query supplied as a trigger (or devices that have been selected in the asset table) and creates an alert in Atlassian Opsgenie.

  • Add Tag to Amazon EC2 Instance - Added new enforcement action called Add Tag to Amazon EC2 Instance under the Manage AWS Services category.

    • This new action takes the saved query supplied as a trigger (or devices that have been selected in the asset table) and adds a tag to those Amazon EC2 instances.

  • Manage Microsoft Azure Services - Added a new category to the Enforcement Center action library called Manage Microsoft Azure Services.

  • Add Tag to Microsoft Azure Cloud Instance - Added new enforcement action called Add Tag to Microsoft Azure Cloud Instance under the Manage Microsoft Azure Services category.

    • This new action takes the saved query supplied as a trigger (or devices that have been selected in the asset table) and adds a tag to those Microsoft Azure cloud instances.

Updated Actions

The following Actions have been enhanced:

  • Send CSV to SCP - Multiple enhancements:
    • Added a new Private key field to the Add Action dialog for this action.
      • This new field lets you specify a private key for the SSH user.
      • If supplied, the private key is used for authentication. For authentication, you must specify at least password or private key, but you can also specify both.
      • If not supplied, Axonius will not use the Private key for authentication.
      • This field is optional.
      • The default value for this field is empty.
    • Added a new Private key passphrase field to the Add Action dialog for this action.
      • This new field lets you specify a private key passphrase, if the private key is protected by a passphrase.
      • If supplied, the passphrase is used for authentication
      • If not supplied, Axonius will not use the passphrase for authentication.
      • This field is optional.
      • The default value for this field is empty.

Device and User Tables Interface Updates

The following updates have been made to the device and user tables related capabilities in Axonius:

  • Query Wizard - Multiple enhancements:
    • Modified the days option in the Date functions in the Operator drop-down
      • This option has been renamed to last days, to clarify that it checks for dates which are after the relative number of days (integer).
    • Added a new next days option to the Date function in the Operator drop-down.
      • This option lets you check for dates which are before the relative number of days (integer).
      • Example: Check for web servers whose SSL certificates expires in next 30 days.
        • SSL Certificate: Expires On next days 30
          image.png

Administrator Settings Interface Updates

The following updates have been made to administrator settings in Axonius:

  • Global Settings - Multiple enhancements:
    • Added a new Atlassian Opsgenie Settings section with a new Use Atlassian Opsgenie checkbox.
    • Added a new Correlate Microsoft Azure AD based on asset name only checkbox under the Correlation Settings section.
      • If enabled, Axonius only correlates assets from Microsoft Azure AD adapter connection based on asset name.
      • If disabled, Axonius correlates assets from Microsoft Azure AD adapter connection based on several parameters such as MAC address, hostname and others.
      • This checkbox is required.
      • The default value for this field is False.
    • Added a new Convert all hostnames to uppercase checkbox under the Aggregation Settings section.
      • If enabled, starting the next data fetch, Axonius will convert all fetched hostnames to uppercase.
      • If disabled, Axonius will persist fetching hostnames in the format received from each adapter connection.
      • This checkbox is required.
      • The default value for this field is False.

Was this article helpful?