Community
Questions Library
Docs
Blog
Events
Swag
Github
Slack
JupiterOne
Discussions
Release Notes
Contact Us
JupiterOne 2020.49 Release - AskJ1 Community
<main> <article class="userContent"> <p>2020-07-14</p> <h2 data-id="new-features">New Features</h2> <ul><li><p>Added support for <strong>Draft - Review/Approval - Publish</strong> workflow to managing<br> policy / procedure documents in the <strong>Policies</strong> app.</p></li> <li><p>New <strong>Finding Details view</strong> and <strong>Owners/Maintainers view</strong> for for each<br> vulnerability finding or alert finding.</p></li> <li><p>New <strong>Audit Tracking</strong> feature for compliance.</p> <p>When enabled, compliance admins / auditors can manage and change the audit<br> status for each requirement via the status drop down in the requirement<br> details view (similar to the workflow when managing a Jira issue). This also<br> adds an indicator to each requirement row in the compliance standard<br> dashboard.</p> <p><img src="https://us.v-cdn.net/6035534/uploads/Z91WAISDBZSO/compliance-audit-tracking-status.png" alt="compliance-audit-status" class="embedImage-img importedEmbed-img"></img></p></li> </ul><blockquote class="UserQuote blockquote"><div class="QuoteText blockquote-content"> <p class="blockquote-line">To enable, go to <strong>Compliance Settings</strong> and toggle on <strong>Eable auditing tracking</strong>.</p> </div></blockquote> <ul><li>Added <strong>System Alerts</strong> notification view to the top navigation bar.</li> </ul><blockquote class="UserQuote blockquote"><div class="QuoteText blockquote-content"> <p class="blockquote-line">Currently, this only displays status notifications for bulk upload actions<br> via the Asset Inventory UI. More system alerts/notifications such as<br> integration execution errors will be added soon.</p> </div></blockquote> <ul><li><p>Adjusted RBAC/ABAC permission for the <strong>Insights</strong> app such that:</p> <ul><li>Only Admins can edit insights widgets</li> <li>Read-only users cannot create, clone, edit insights dashboards</li> </ul></li> </ul><h2 data-id="integrations">Integrations</h2> <ul><li><p><strong>Azure</strong></p> <ul><li><p>Moved to new SDK, laying groundwork for accelerating progress of new types<br> of data ingestion</p></li> <li><p>Distributed work across more steps to better handle certain failure modes</p></li> </ul></li> <li><p><strong>AWS</strong></p> <ul><li><p>Added <code class="code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline" spellcheck="false" tabindex="0">public</code> and <code class="code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline" spellcheck="false" tabindex="0">shared</code> boolean properties to RDS snapshot entities,<br> based on <code class="code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline" spellcheck="false" tabindex="0">SnapshotType</code>.</p></li> <li><p>Update an Account entity's properties when it is no longer a master account<br> after being added to an Organization: { <code class="code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline" spellcheck="false" tabindex="0">root</code>, <code class="code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline" spellcheck="false" tabindex="0">master</code>,<br><code class="code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline" spellcheck="false" tabindex="0">rootUserPasswordLastUsed</code>, <code class="code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline" spellcheck="false" tabindex="0">rootUserAccessKeyEnabled</code>,<br><code class="code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline" spellcheck="false" tabindex="0">rootUserAccessKeyLastUsed</code> }.</p></li> <li><p>Beta: Process CloudTrail events for S3 buckets: { <code class="code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline" spellcheck="false" tabindex="0">CreateBucket</code>,<br><code class="code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline" spellcheck="false" tabindex="0">PutBucketPolicy</code>, <code class="code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline" spellcheck="false" tabindex="0">PutBucketEncryption</code> }.</p></li> </ul><p>To join the beta for CloudTrail event streaming, follow <a rel="nofollow" href="../docs/integrations/aws/cloudtrail-event-streaming.md">the instructions in<br> the documentation</a>.</p></li> <li><p><strong>GitLab</strong></p> <ul><li>Fixed base url field to remove masking, improved help text</li> </ul></li> <li><p><strong>Jira</strong></p> <ul><li>Fixed a failure to ingest issues after a failed job</li> </ul></li> <li><p><strong>Cisco Meraki</strong></p> <ul><li>Added relationship <code class="code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline" spellcheck="false" tabindex="0">user_endpoint CONNECTS meraki_device</code> to reveal<br> endpoints bound to a public IP address</li> </ul></li> </ul><h2 data-id="improvements-and-bug-fixes">Improvements and Bug Fixes</h2> <ul><li><p>Improved UI for importing compliance standards.</p></li> <li><p>Improved initial security policy generation performance using bulk entity<br> creation API.</p></li> <li><p>Policies app will <em>self repair</em> if it detects any missing policies that may<br> have been added manually or other out of sync issues.</p></li> <li><p>Deleting an entity will now update the list of query results accordingly, with<br> corresponding prompts and error/success messages.</p></li> <li><p>Fixed an issue where compliance PDF report generation would show a network<br> error when editing</p></li> </ul> </article> </main>