Fixed Issues In Hotfix Release 90.1.0

Fixed Issues In Hotfix Release 90.1.0

Here is the list of issues fixed in this release.

Issue NumberCategoryFeatureIssue Description
140404API ProtectionDelay to load pagePreviously, there was a delay to load the Settings page of API-Enabled Protection. The issue is fixed.
136720API ProtectionActing User in Google Team DrivePreviously, if the Google Team Drive had multiple managers, the alert generated randomly picks a Team Drive manager as the “acting user”.

The “acting user” is now correctly calculated based on the user performing the action.

135173API ProtectionGoogle Team Drive owner namePreviously, the Google Team Drive name was not displayed in the alerts generated. The issue is fixed now and the alerts generated display the Team Drive name.
129964API ProtectionIncorrect external collaborator informationPreviously, the Incident page was displaying incorrect external collaborator information for Microsoft Teams. The issue is fixed.
124412API ProtectionMicrosoft Office 365 OneDrive and SharePoint Webhook subscriptions renewalPreviously, Microsoft Office 365 OneDrive and SharePoint webhook subscriptions were not renewed correctly in the event of an update in the personal URL of an organizational user.
116928API ProtectionFile download activity ingestionPreviously, API Data Protection activities such as “File Download” were also ingested into Netskope Anomaly Detection. The issue is fixed.
126150CASB Inline ProtectionAccess RestrictionFixed an issue where access to corporate instance was restricted for GitLab and Bitbucket.
139498Netskope for IaaSWrapper rule evaluationFixed an issue in Security Posture where the AWS services did not work in wrapper rules (Rules that apply to the entire AWS instance) For example, AWS cannot have ElasticIp with [ … ]`.
138411Netskope for IaaSIncorrect Network Watcher rule logicPreviously, the logic in the Azure rule, ensure_that_network_watcher_is_enabled, was incorrect. The issue is now fixed and the Azure rule, ensure_that_network_watcher_is_enabled, verifies whether NetworkWatcher is enabled or not.
137580Netskope for IaaSGCP rule for databasesFixed the GCP rule, sql_inst_no_root_login_any_host, to match the Center for Internet Security audit procedure.
137585Netskope for IaaSGCP rule for VCP LogMetricsFixed the GCP rule, log_metric_filter_alerts_vpc_net, to match the Center for Internet Security audit procedure.
137584Netskope for IaaSGCP rule for retention policies on log bucketsFixed the GCP rule, sink-bucket-log, to detect logging for a bucket.
137579Netskope for IaaSEnabled/Disabled state of NetworkWatcherPreviously, the enabled and disabled state of the NetworkWatcher feature for Azure subscription was incorrectly detected. This issue is fixed.
137578Netskope for IaaSAzure disk encryption statusThe encrypted property of disks for the security posture in Microsoft Azure was incorrectly determined. The issue is fixed now.
137577Netskope for IaaSMissing rule for CIS GCP 1.2The CIS GCP 1.2 profile was missing a rule for recommendation number 6.3.5. This issue is fixed.
137576Netskope for IaaSMissing rule: networking_vpc_flow_logs_for_vpc_net_subnets for CIS GCP 1.2The CIS GCP 1.2 profile did not include the rule, networking_vpc_flow_logs_for_vpc_net_subnets, for recommendation 2.9 of the CIS benchmark. The issue is fixed.
137575Netskope for IaaSMissing rule: key_vault_logging for CIS Azure 1.3The CIS Azure 1.3 profile did not include recommendation 5.1.5 (Rule name: key_vault_logging). The issue is fixed.
137574Netskope for IaaSThe missing rule for CIS GCP 1.2The CIS GCP 1.2 profile was missing a rule for recommendation number 5.5.3. The issue is fixed.
138143Netskope for IaaSIssues with security posture and GCP integrationThe rules for compute instances failed for Google Kubernetes Engine (GKE) instances to which they are not applicable. The issue is fixed.
136903NG SWG /CASBOffice 365 Native App BlockedPreviously in the Office 365 Auth Reverse Proxy service, the Outlook native apps did not block Windows 10 devices. The issue is fixed.

Important

If the Block Native Outlook Apps feature is enabled, it blocks all native Office 365 for security reasons.

128303NG SWGTransaction log parsingCertain fields are not parsing quotes correctly. This issue is fixed.
112187SteeringDeprecate REST API tokensNetskope client deprecated the REST API token for Netskope client deployment. The client will use the existing API for Org ID to download the branding file using an email address.
126814SteeringBlocked and Disconnected State in Netskope ClientThe delay in the automatic proxy detection leads the Netskope client to go into a blocked and disconnected state. To fix this issue, a timeout value of 10 seconds is introduced in the automatic proxy detection.
133739SteeringNetwork Traffic not processing correctlyWhen NPA is enabled on a tenant, the Netskope client the network traffic is intermittently dropped. The issue is fixed.
135328SteeringIntermittent disconnections in the ClientEarlier, the Netskope client failed to read the correct configuration and establish a tunnel. The issue is now fixed by synchronizing the configuration initialization when the tunnel is established.
139813SteeringClient blocks macOS Big Sur traffic intermittentlyBypass traffic is intermittently blocked when the client is running macOS Big Sur. This issue is fixed.
131406, 138326SteeringUpload Failure in Frame.io and SlackThere was an intermittent failure while uploading files using Frame.io and Slack and the upload progress bar displayed incorrect progress when running macOS Big Sur. The issue is fixed.
130672SteeringInternet Connection IssueIn this release, we fixed the issue where the internet connection was blocked intermittently due to packet loss.
131749SteeringICMP requestsWhen the Netskope Client fails to close in ‘All Traffic’ steering mode, ICMP requests are not dropped.
136859Web UIFile Size Constraint option for one categoryYou can now select the Constraint option: File Size if there is at least one category to support the constraint. Previously, you cannot add the File Size option unless it supports all categories.
135919Web UIRequires Source CriteriaIn Inline Policy configuration, whenever you select the “Any Web Traffic” option, at least one Source Criteria is required.
Share this Doc

Fixed Issues In Hotfix Release 90.1.0

Or copy link

In this topic ...