- 24 Mar 2022
- 9 Minutes to read
- Print
- DarkLight
- PDF
What's New in Axonius 3.2
- Updated on 24 Mar 2022
- 9 Minutes to read
- Print
- DarkLight
- PDF
Release Date: April-05-2020
Adapters
New Adapters
The following new adapters have been added in this release:
- Atlassian Jira Asset Platform - Atlassian Jira Asset Platform links software with Jira to populate an asset inventory, letting users query for assets and link them to issues.
- Dell EMC Avamar - Dell EMC Avamar is a backup and recovery solution that enables daily backups of physical and virtual environments, NAS servers, enterprise applications, remote offices and desktops/laptops.
- HP Integrated Lights-Out (iLO) - HP Integrated Lights-Out (iLO) is server management software that enables the configuration, monitoring, and updating of HPE servers.
- IP Fabric - IP Fabric is a network management system used to discover, verify, visualize and document large scale networks.
- Kenna Security Platform - Kenna Security Platform is a vulnerability assessment solution that provides risk scoring, prioritization, and benchmarking.
- LogicMonitor - LogicMonitor is an automated infrastructure monitoring platform for enterprise IT and managed service providers.
- Pivotal Cloud Foundry - Pivotal Cloud Foundry is an app development and deployment platform for public and private clouds.
- SevOne Data Platform - SevOne Data Platform is a network and infrastructure management platform that provides monitoring and analytics.
For more details, explore the entire list of supported and integrated adapters.
Updated Adapters
The following adapters have been enhanced:
Amazon Web Services (AWS) (Connection Configuration) - Added a new file format support to the Roles to assume field in the Add Connection dialog for this adapter .
- JSON is now accepted for the Roles to assume file format that supports external_id.
- For example ('111111111111' and '222222222222' are dummy AWS account IDs):
[ {"arn": "arn:aws:iam::111111111111:role/axonius-role"}, {"arn": "arn:aws:iam::222222222222:role/axonius-role", "external_id": "MY-SECRET"} ]
- The existing comma-seperated list of role ARNs format is still supported.
- The external_id can be different for every role in the list.
BlueCat Enterprise DNS (Advanced Settings) - Added a new Entities per page field to the BlueCat Configuration tab in the Advanced Settings for this adapter.
- This new field lets you set the number of results per page received for a given query to BlueCat API, to gain better control on the performance of all connections for this adapter.
- This field is required.
- The default value for this field is 9999.
CSV Serials (Connection Configuration) - Added a new Amazon S3 Use EC2 Attached Instance Profile checkbox to the Add Connection dialog for all 'file-based' adapters.
- This new checkbox is applicable only for files fetched from Amazon S3.
- If enabled and if the file is fetched from Amazon S3, Axonius will use the EC2 attached instance profile.
- If disabled and if the file is fetched from Amazon S3, Axonius will use the Access Key ID and Secret.
- The default value for this checkbox is True
- This field has been added for all 'File-based' Adapters:
- CSV Serials - imports .csv files.
- Forcepoint Web Security Endpoint - imports .csv files.
- JSON - imports .json files.
- Masscan - imports .json files.
- Nmap Security Scanner - imports .xml files.
- Tenable Nessus CSV File - imports .csv files.
- This new checkbox is applicable only for files fetched from Amazon S3.
Juniper Junos Space Network Management Platform (Advanced Settings) - Added a new Fetch only Juniper clients Information checkbox to the Junos Space Configuration tab in the Advanced Settings for this adapter.
- If enabled, all connections for this adapter will only fetch metadata from switches.
- If disabled, all connections for this adapter will fetch all information, including ARP tables.
- This field is required.
- The default value for this field is False.
Qualys Cloud Platform (Advanced Settings) - Added a new Fetch vulnerabilities data checkbox to the Qualys Configuration tab in the Advanced Settings for this adapter.
- This new field lets you select whether to fetch vulnerabilities from Qualys.
- If enabled, all connections for this adapter will fetch vulnerabilities from Qualys Cloud Platform.
- If disabled, all connections for this adapter will not fetch vulnerabilities from Qualys Cloud Platform.
- This field is required.
- The default value for this field is False.
RiskIQ Digital Footprint (Advanced Settings) - Multiple enhancements:
- Added a new Inventory state whitelist field to the RiskIQ Configuration tab in the Advanced Settings for this adapter.
- This new field lets you specify a comma-separated list of RiskIQ inventory states.
- If supplied, all connections for this adapter will only fetch devices if their inventory state in RiskIQ is provided in this list.
- If not supplied, all connections for this adapter will fetch all devices from RiskIQ.
- This field is optional.
- The default value for this field is empty.
- Added a new Asset status whitelist field to the RiskIQ Configuration tab in the Advanced Settings for this adapter.
- This new field lets you specify a comma-separated list of RiskIQ asset statuses.
- If supplied, all connections for this adapter will only fetch devices if their status in RiskIQ is provided in this list.
- If not supplied, all connections for this adapter will fetch all devices from RiskIQ.
- This field is optional.
- The default value for this field is empty.
- Added a new Inventory state whitelist field to the RiskIQ Configuration tab in the Advanced Settings for this adapter.
Dashboard Updates
The following updates have been made to the Axonius Dashboard:
- All Custom Chart Panels - Modified the custom chart panel:
- Added a new menu button that lets you perform the following actions:
- Edit Chart - This action lets you edit the chart configuration.
- Remove Chart - This actions lets you delete the chart and remove it from the current space.
- Export to CSV - This action lets you export the chart data to CSV file (for Field Segmentation charts).
- Move or Copy - This new action lets you either copy or move a chart to a desired space.
- Refresh - This new action lets you to refresh the chart data.
- Added a drag-and-drop button to make it clear the chart can be moved and that the charts in the dashboard space can be reordered.
- Added a new menu button that lets you perform the following actions:
- Pie Charts - Multiple enhancements:
Added a new legend to pie charts.
- The legend can be opened or closed by clicking
- The legend contains data labels for each of the pie chart slices.
- Each data label displays the slice label, number or results and the percentage of the slice size out of the total.
- Data labels are sorted by number of assets in descending order.
- Data labels are clickable. Clicking a data label will redirect you to the Devices or to the Users page displaying the corresponding list of assets.
Modified the data label displayed when you hover over any of the pie chart slices.
- Each data label provides the following details on each slice:
- Slice label (query name, query intersection, segmented field value).
- Number or results.
- Percentage of the slice size out of the total.
- Each data label provides the following details on each slice:
- Bar Charts - Modified the data label displayed when you hover over any of the chart segments.
- Each data label provides the following details on each segment:
- Segment label (query name, segmented field value).
- Number or results.
- Percentage of the segment size out of the total.
- Each data label provides the following details on each segment:
- Discovery Charts - added a new data label that is displayed when you hover over any of the adapters in the Device Discovery and in the User Discovery charts.
- Each data label provides the following details on each adapter:
- Adapter name.
- Number or assets fetched from all the connections of that adapter.
- Percentage of the assets fetched out of the total assets fetched.
- Each data label provides the following details on each adapter:
Enforcement Center Updates
The following updates have been made to the Axonius Security Policy Enforcement Center:
New Actions
The following Actions have been added:
Create Atlassian Opsgenie Alert - Added a new enforcement action called Create Atlassian Opsgenie Alert under the Create Incident category.
- This new action takes the saved query supplied as a trigger (or devices that have been selected in the asset table) and creates an alert in Atlassian Opsgenie.
- This new action takes the saved query supplied as a trigger (or devices that have been selected in the asset table) and creates an alert in Atlassian Opsgenie.
Add Tag to Amazon EC2 Instance - Added new enforcement action called Add Tag to Amazon EC2 Instance under the Manage AWS Services category.
- This new action takes the saved query supplied as a trigger (or devices that have been selected in the asset table) and adds a tag to those Amazon EC2 instances.
- This new action takes the saved query supplied as a trigger (or devices that have been selected in the asset table) and adds a tag to those Amazon EC2 instances.
Manage Microsoft Azure Services - Added a new category to the Enforcement Center action library called Manage Microsoft Azure Services.
Add Tag to Microsoft Azure Cloud Instance - Added new enforcement action called Add Tag to Microsoft Azure Cloud Instance under the Manage Microsoft Azure Services category.
- This new action takes the saved query supplied as a trigger (or devices that have been selected in the asset table) and adds a tag to those Microsoft Azure cloud instances.
- This new action takes the saved query supplied as a trigger (or devices that have been selected in the asset table) and adds a tag to those Microsoft Azure cloud instances.
Updated Actions
The following Actions have been enhanced:
- Send CSV to SCP - Multiple enhancements:
- Added a new Private key field to the Add Action dialog for this action.
- This new field lets you specify a private key for the SSH user.
- If supplied, the private key is used for authentication. For authentication, you must specify at least password or private key, but you can also specify both.
- If not supplied, Axonius will not use the Private key for authentication.
- This field is optional.
- The default value for this field is empty.
- Added a new Private key passphrase field to the Add Action dialog for this action.
- This new field lets you specify a private key passphrase, if the private key is protected by a passphrase.
- If supplied, the passphrase is used for authentication
- If not supplied, Axonius will not use the passphrase for authentication.
- This field is optional.
- The default value for this field is empty.
- Added a new Private key field to the Add Action dialog for this action.
Device and User Tables Interface Updates
The following updates have been made to the device and user tables related capabilities in Axonius:
- Query Wizard - Multiple enhancements:
- Modified the days option in the Date functions in the Operator drop-down
- This option has been renamed to last days, to clarify that it checks for dates which are after the relative number of days (integer).
- Added a new next days option to the Date function in the Operator drop-down.
- This option lets you check for dates which are before the relative number of days (integer).
- Example: Check for web servers whose SSL certificates expires in next 30 days.
- SSL Certificate: Expires On next days 30
- SSL Certificate: Expires On next days 30
- Modified the days option in the Date functions in the Operator drop-down
Administrator Settings Interface Updates
The following updates have been made to administrator settings in Axonius:
- Global Settings - Multiple enhancements:
- Added a new Atlassian Opsgenie Settings section with a new Use Atlassian Opsgenie checkbox.
- Check this checkbox to configure and to use Atlassian Opsgenie server. This is a prerequisite to configure an Enforcement Set with a Create Atlassian Opsgenie Alert enforcement action.
- Added a new Correlate Microsoft Azure AD based on asset name only checkbox under the Correlation Settings section.
- If enabled, Axonius only correlates assets from Microsoft Azure AD adapter connection based on asset name.
- If disabled, Axonius correlates assets from Microsoft Azure AD adapter connection based on several parameters such as MAC address, hostname and others.
- This checkbox is required.
- The default value for this field is False.
- Added a new Convert all hostnames to uppercase checkbox under the Aggregation Settings section.
- If enabled, starting the next data fetch, Axonius will convert all fetched hostnames to uppercase.
- If disabled, Axonius will persist fetching hostnames in the format received from each adapter connection.
- This checkbox is required.
- The default value for this field is False.
- Added a new Atlassian Opsgenie Settings section with a new Use Atlassian Opsgenie checkbox.