New Features and Enhancements In Hotfix Release 90.1.0

New Features and Enhancements In Hotfix Release 90.1.0

Here is the list of the new features and enhancements.

CategoryFeatureDetailed Description and Benefits
API ProtectionMicrosoft Office 365 GCC Environment SupportNetskope now supports API Data Protection for Microsoft Office 365 GCC environment.


Netskope currently does not support Microsoft 365 multi-geo instances on Microsoft Office 365 GCC environment.

Behavior AnalyticsAnomalies page deprecationWith this release, the Anomalies page will be deprecated. As notified in past releases, the Anomalies page functionality is now fully transitioned to the Behavior Analytics page, pre-defined (9) rule-based policies.

To learn more: Rule-Based Policies.

CASB Inline ProtectionAttach activity in GmailAll file attachments in Gmail are now detected as Attach instead of Upload.
CASB Inline ProtectionUpdate the Invision app connectorThe Invision connector now detects the following activities:
  • Upload
  • Download
  • Share
  • Post
  • Create
  • Delete
CASB Inline ProtectionDLP for Share and Edit activity in the Box applicationIn this release, the data loss prevention (DLP) policy is disabled for Share and Edit activity in the Box application.

Use Post activity to add a comment before sending an email to all collaborators.

CASB Inline ProtectionLogin activities in WeTransferNetskope now supports login activities using Email ID in the WeTransfer application.

The following activities are detected :

  • Login attempt
  • Login successful
  • Login failed
  • Logout
CASB Inline ProtectionGoogle Docs-Jira integrationGoogle Docs is now integrated into Jira allowing you to add document URLs and edit from Jira.
CASB Inline ProtectionSend event in Google CalendarWith this release, the Share button is renamed as Send in your Google calendar. You can see the Send button after you create, edit, or delete events from your calendar.
CASB Inline ProtectionGoogle Sites version updateGoogle Sites is now updated with the new version and provides detection of different activities.
CASB Inline ProtectionFile size optionThe file-size option is enabled for all categories supporting Download activity.
Data ProtectionDLP data identifier A DLP predefined data identifier has been added to detect Austrian Passport Numbers.
Data ProtectionSingle bypass alert and incident creation for password and AIP-protected filesWith this release, a single bypass alert is created whenever there is at least one DLP profile that cannot be evaluated because of a password-protected or AIP-protected file.

The policy name in the bypass alert is set to ‘All DLP Policies’. This eliminates the duplicate and multiple bypass alerts that are currently created for each profile and every policy whenever a password or AIP-protected files cannot be inspected.

In addition, whenever there is a DLP profile match, the new behavior results in generating an incident for password and AIP-protected files.

Data ProtectionNew DLP Passport-Terms entitiesAdded new separate entities for Passport Number Terms for the following languages to provide a more granular selection:
  • English
  • French
  • Italian
  • Portuguese
Data ProtectionNew Japan-specific data identifiersThe DLP rules now consist of the following new Japan-specific predefined data identifiers:
  • Passport Number
  • Drivers License
Directory ServicesNetskope AdaptersThe Netskope Adapter (NS Adapter) has been tested to ensure compatibility with the current cloud platform. Its version number has been updated to confirm this compatibility. No other changes have been made to the NS Adapter in this release.
Netskope for IaaSActive and Inactive SSH PublickeysCountIn this release, Active and Inactive SSHPublicKeysCount are available in CSA AWS IAM User Entity.
Netskope for IaaSAWS Relational Database Service clustersCSPM (AWS) now lists AWS Relational Database Services (RDS) cluster instances and allows you to write custom rules.
Netskope for IaaSMetadata for SSH public keysSecurity posture now displays the metadata for SSH public keys for an AWS IAM user.
Netskope for IaaSAzure classic storage accountWith this release, Netskope CSA lists Classic Storage Account under ClassicStorageAccount entity type for Microsoft Azure.
Netskope for IaaSAWS internet gatewaysCSPM (AWS) lists instances of AWS Internet Gateways and allows users to create rules.
Netskope for IaaSElastic File System instances in AWSIn Cloud Security Posture Management (CSPM), you can now create rules to check Elastic File System (EFS) instances in AWS.
Netskope for IaaSInstance setup changesThe permissions required for setting up an instance as a Forensics destination are reduced to account-level permissions, as opposed to previous subscription-level permissions.

To learn more: Step 1/3: Configure an Azure AD Application for Forensics

NG SWGSearch by Sanctioned Instances and App SuiteYou can search by Sanctioned Instances and App Suite on the Alerts and Application event pages.
NG SWGSHA-256 to sign SAML-Forward Proxy authentication requestsSHA-256 is now supported. Previously, Netskope supported the SHA-1 algorithm to sign your authentication requests.

With this release, all your SAML – Forward Proxy authentication requests are signed using the SHA-256 algorithm instead of SHA-1.

If you are using ADFS as an IdP, move your ADFS Relying Party Trusts to SHA-256.

NG SWGChromebook support for SWGTraffic steering and protection is available from Chromebooks for web traffic.

To learn more, see Explicit Proxy

NG SWG/CASBBypass Cert-Pinned AppsIn this release, new exceptions are added in the steering configuration to bypass cert-pinned Apps. These will be added in exceptions for all steering configs.
Private AccessPrivate app traffic steering enhancementWhen steering traffic to a private application, Netskope client will not steer traffic into NPA, if the destination port is not part of the private application definition.
Private AccessTCP processing enhancementTCP processing capability with respect to the NPA platform has been enhanced to eliminate inefficiencies stemming from certain TCP protocol options.
ReportsKnowledge hub for Advanced AnalyticsThe launch of the new Knowledge Hub for Advanced Analytics helps you to come up to speed on Advanced Analytics key capabilities and learn more about the existing dashboards through videos.
ReportsThreat protection dashboardThe threat protection dashboard is now enhanced to suit your requirements. You can perform one of the following while scheduling dashboards:
  • Schedule a dashboard directly from the Netskope Shared folder to get automatic Netskope dashboard updates.
  • Copy the dashboard into your group or personal folders, if you prefer to use the dashboard version at the time of schedule.
SSPMCIS benchmark rulesIn this release, SSPM includes additional CIS Benchmark rules for Zoom.
SteeringNew option in nsdiagThe Netskope debugging tool nsdiag is equipped with one more flag -f that displays client details such as status, tunnel status, Gateway, OnPremStatus, Gateway IP, Tunnel Protocol, and Explicit Proxy. This helps in a headless client scenario to understand the Netskope client details.

For example, Usage >.nsdiag.exe -f Tunnel status:: NSTUNNEL_CONNECTING. Client status:: enable. Gateway:: OnPremDetection:: On-Premises. Explicit Proxy:: false. Gateway IP:: Tunnel Protocol:: TLS.

To learn more, see Netskope Client Command Reference

SteeringSelf-Protection FeatureIn this release, Netskope supports the Self-protection feature on Windows 10 ARM64 laptops.
SteeringSelf-Protection Feature EnableEarlier, the Netskope Client Self-protection feature was enabled only after the creation of the tunnel. Now, the client caches the Self-protection status and immediately enables the self-protection status after reboot.
SteeringGlobal ProtectNetskope Client improves Global Protect interoperability for bypassing traffic.

Contact Support to enable this feature in your account.

SteeringmacOS 12 Monterey SupportIn this release, Netskope Client extends the support for macOS 12 Monterey.
SteeringWindows 11 SupportIn this release, Netskope Client extends support for Windows 11.
SteeringiOS 15.1 SupportIn this release, Netskope Client has qualified support for iOS 15.1.
SteeringWindows Server 2022 SupportNetskope Client has qualified support for Windows Server 2022.
SteeringOS version for Windows 11Microsoft displays 10.0.2220 as the OS version for Windows 11. The Netskope Client displays the same qualified version in the Web UI.
Share this Doc

New Features and Enhancements In Hotfix Release 90.1.0

Or copy link

In this topic ...