Sensitive Data Platform (SDP) Console 13.3 Release Notes

Release: 13.3

Release Date: 12.16.2024

Enhancements

1. Implemented SharePoint MFA authentication to support CSV import of new targets.

2. Implemented additional events to the audit log.

3. Enhanced the Audit Log functionality. The Audit Log is restricted to users with the admin role.

4. Enhanced Audit Log so that when the Type filter uses only event types triggered in SDP, they are displayed.

5. To reduce redundancy, the IP Address, Status filter and the Status column are no longer displayed in the Audit Log.

6. Enhancement to Audit Log events so that they queue in RabbitMQ and then move to the database.

7. The Redact Action Card instructions have been clarified so that the option Redact All Matches in Location is accurate and includes a tooltip. Enabling Redact All Matches in Location redacts all matched data types regardless of the Playbook workflow. The Apply to Entire Location is deselected (disabled) by default.

8. Internal health check functions have been standardized for improved availability.

9. Exposed a user-facing RESTful API for SDP Reporting Functions.

10. Added the ability to generate credentials to access the added RESTful API.

11. After successfully uploading and importing all targets via CSV template, the user is redirected to the Targets screen which is prefiltered to display the prescribed import tag.

12. By default, all leading and trailing whitespace in a CSV cell are removed when imported. If preserving leading or trailing whitespace is needed, then user can wrap the CSV cell data in double quotes.

13. An enhancement has been made to the UI so that the user can view the status of all targets uploaded via CSV template and manage them as well.

14. Updated retry logic to consider specific 4xx and 5xx response codes to improve agent-console communication resiliency.

15. A new improvement allows searching for Credit Card Numbers with a wider range of leading or trailing characters. Use the new “Allow leading or trailing characters” setting so that you can create a scan with flexible search parameters.

16. Added an additional layer of encryption to further secure client-server communication.

17. The Total Unique Matches column has been added as a custom reporting option so that the aggregate match values (total and total unique) for location are included in the report.

18. The Scan Policy has been improved by the removal of some permissions and unused filter parameters. This removes the possibility of a scan error in the results.

19. Improved the location details dialog performance with new configuration, MatchLocationsSearchHistory table.

20. The enhanced Get User Roles setting is now a stored procedure that executes when the User Management grid is loaded.

21. An improvement to the Bulk Import of Targets features supports importing 0-1,000 targets of multiple types from the .csv or Excel template. After importing, the SDP Console checks for errors and generates a new target for each one included in the template. If errors are detected, no import occurs, and the errors are highlighted for user intervention.

22. The enhanced RESTful API allows lighter request sizes, supports HTTP storing, and provides flexibility of data formats and protocols.

23. The Asset Details screen now has a Data Content tab that displays a Data Table detailing Target, Data Volume, Classifications, and Data Types fields.

24. The Data Asset Inventory feature has been enhanced with a tab for Data Content which allows the content on a scan history to be expanded and detailed.

25. Enhanced DAI provides expansion of the Target assignment to the Asset and additional Asset Type options. It also allows tags to be assigned to Data Assets.

26. Enhancement allows users to select the Active Directory Authentication option when adding a new SQL target.

 

Bug Fixes

1. Resolved an intermittent issue in which the results resolution column did not reflect script execution.

2. Resolved issue where the UI was not permitting the option to save a custom data type when it links to scan results.

3. Resolved issue so that results display on the console whether the compression is enabled or disabled.

4. Corrected the issue of an imported drive target accessed via Edit window where the target Service Account field does not populate. The Edit window populates the Service Account field correctly for both GDrive and Gmail imported targets.

5. An issue was corrected in which the Setup Activity Watcher was failing to register when the location setting changed.

6. Corrected SharePoint scan on multiple targets not showing targets in the Target Being Scanned column. All targets are now displayed in the Target Being Scanned column.

7. Resolved issue when the user clicked the Generate Credentials button in the console User Profile, a server error occurred. This is corrected, and credentials are generated without error.

8. An issue was resolved so that after importing CSV file targets, the targets are created, and only these targets will display on the UI based on their tags.

9. Corrected error when saving updates to User Profiles.

10. Resolved issue with playbook execution when location on SharePoint is either manually classified or selected to override actions.

11. A generated report preview has not displayed data. This has been fixed, and the report now shows data as expected.

12. When a playbook with multiple decision points completes with a “Take No Action” for the second decision point, the previous positive classification does not appear in Scan Results. This has been fixed so that a playbook with multiple decision points is completed, and classification now appears in Scan Results as expected.

13. We resolved an issue where shredding SharePoint files was not reflected in the Most Recent Action column.

14. Resolution implemented so that there are no errors in the svc-searchpersistence log.

15. The Scan Policy has been improved by the removal of some permissions and unused filter parameters. This removes the possibility of a scan error in the results

16. Improved performance of the Location Details dialog in Scan Results.

17. Issue corrected so that Database Discovery uses the configured Row Count Stop to limit the Discovery analysis and the rows written to the Discovery queue.

18. Restructured result payload to optimize handling of unique versus duplicate results.

19. Resolved a console/policy mismatch when using the UseTimeStampIfDestinationFilenameExists setting.

20. Correction to the issue in which no value for the target was returned on the Data Assets and Targets screen after a scan.

21. Correction to scan process so that specified accounts are scanned as expected. If the scan encounters an error, it moves on to another location.

22. Resolved an error that prevented Activity Watcher from capturing activities instances.

23. Resolved issue with Console column headings in database browser disrupting displaying Bitbucket scan results in UI.