Community
Questions Library
Docs
Blog
Events
Swag
Github
Slack
JupiterOne
Discussions
Release Notes
Contact Us
JupiterOne 2020.54 Release - AskJ1 Community
<main> <article class="userContent"> <p>2020-09-22</p> <h2 data-id="new-features">New Features</h2> <ul><li><p>Added <strong>Account Management</strong> view where admin users can change the account display name and<br> view the number of entities/billable entities/relationships in the account.</p></li> <li><p>Customers can now start trials for specific apps on their own.</p></li> <li><p>Users can now map/unmap a question to a compliance requirement directly from the requirement view<br> without opening the question editor to edit the mapping.</p></li> <li><p>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">defaultRevision</code> flag to the policies PDF download.</p></li> </ul><h2 data-id="integrations">Integrations</h2> <h3 data-id="aws">AWS</h3> <ul><li>Added support to capture S3 object-level logging and Lambda function logging enabled via CloudTrail</li> </ul><blockquote class="UserQuote blockquote"><div class="QuoteText blockquote-content"> <p class="blockquote-line">This requires the <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">cloudtrail:GetEventSelectors</code> permission to be added to the IAM policy attached<br> to the JupiterOne integration IAM role, if you are not using the AWS managed <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">SecurityAudit</code> policy.</p> </div></blockquote> <ul><li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">webLink</code> to <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">aws_cloudtrail</code> entities</li> <li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">webLink</code> to <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">aws_cloudtrail - LOGS -> aws_s3_bucket</code> relationships</li> <li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">webLink</code> to <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">aws_cloudtrail - LOGS -> aws_cloudwatch_log_group</code> relationships</li> <li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">aws_s3_bucket_object_logging - SENDS -> aws_s3</code> relationships</li> <li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">aws_lambda_function_logging - SENDS -> aws_lambda</code> relationships</li> <li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">aws_s3_bucket_object_logging - SENDS -> aws_s3_bucket</code> relationships</li> <li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">aws_lambda_function_logging - SENDS -> aws_lambda_function</code> relationships</li> <li>Added additional queries to managed question "Is CloudTrail logging enabled?" using those new relationships</li> </ul><h3 data-id="azure">Azure</h3> <ul><li><p>Added support to configure an Azure integration instance without a subscription ID to skip<br> resource ingestion. This is useful when you only want to ingest Azure AD configuration.</p></li> <li><p>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">ingestResourceManager</code> flag so that Resource Manager steps can be disabled</p></li> <li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">azure_dns_zone</code> entities</li> <li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">azure_resource_group|has|azure_dns_zone</code> relationships</li> <li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">azure_dns_record_set</code> entities</li> <li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">azure_dns_zone|has|azure_dns_record_set</code> relationships</li> <li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">azure_private_dns_zone</code> entities</li> <li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">azure_resource_group|has|azure_private_dns_zone</code> relationships</li> <li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">azure_private_dns_record_set</code> entities</li> <li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">azure_private_dns_zone|has|azure_private_dns_record_set</code> relationships</li> <li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">azure_container_registry</code> entities</li> <li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">azure_resource_group|has|azure_container_registry</code> relationships</li> <li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">azure_container_registry_webhook</code> entities</li> <li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">azure_container_registry|has|azure_container_registry_webhook</code> relationships</li> <li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">azure_service_bus_namespace</code> entities</li> <li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">azure_resource_group|has|azure_service_bus_namespace</code> relationships</li> <li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">azure_service_bus_queue</code> entities</li> <li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">azure_service_bus_namespace|has|azure_service_bus_queue</code> relationships</li> <li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">azure_service_bus_topic</code> entities</li> <li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">azure_service_bus_namespace|has|azure_service_bus_topic</code> relationships</li> <li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">azure_service_bus_subscription</code> entities</li> <li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">azure_service_bus_topic|has|azure_service_bus_subscription</code> relationships</li> <li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">azure_cdn_profile</code> entities</li> <li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">azure_resource_group|has|azure_cdn_profile</code> relationships</li> <li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">azure_cdn_endpoint</code> entities</li> <li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">azure_cdn_profile|has|azure_cdn_endpoint</code> relationships</li> </ul><h3 data-id="google-g-suite">Google G Suite</h3> <ul><li>Capture <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">managerEmail</code> on ingested users to allow mapping a <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">Person</code> to their manager</li> </ul><h3 data-id="duo">Duo</h3> <ul><li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">duo_phone</code> entities</li> </ul><blockquote class="UserQuote blockquote"><div class="QuoteText blockquote-content"> <p class="blockquote-line">Note that we plan to use mapping to create normalized <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">smartphone</code> entities instead of<br><code class="code codeInline code codeInline" spellcheck="false" tabindex="0">duo_phone</code> entities since the "phone" devices are not exactly "Duo phones".</p> </div></blockquote> <ul><li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">duo_integration</code> entities</li> <li>Added <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">duo_account_has_group</code> relationships</li> <li>Fixed <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">duo_group_has_user</code> relationship was not working correctly</li> </ul><h3 data-id="fastly">Fastly</h3> <ul><li><p>Steps are enabled or disabled based on role of configured Fastly user account</p> <ul><li>The User role fails Fetch Users, Fetch API Tokens, and Fetch Services steps</li> <li>The Engineer role allows everything except for the Fetch API Tokens step</li> <li>The Superuser role allows ingesting data from all of the steps</li> </ul></li> </ul><h3 data-id="jira">Jira</h3> <ul><li>Project keys are validated at the beginning of execution and feedback provided to users</li> </ul><h3 data-id="jfrog-artifactory">JFrog Artifactory</h3> <ul><li>Initial beta release</li> <li>See <a rel="nofollow" href="../docs/integrations/jfrog-artifactorygraph-jfrog-artifactory.md">docs</a> for more details</li> </ul><h2 data-id="improvements-and-bug-fixes">Improvements and Bug Fixes</h2> <ul><li><p>Significant performance improvement to the <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">security-policy-builder</code> CLI tool.<br> It will also delete orphaned policies/procedures that were not part of the latest publish.<br> To upgrade to the latest version, run:</p> <pre class="code codeBlock" spellcheck="false" tabindex="0">npm upgrade -g <a href="https://jupiterone.vanillacommunities.com/profile/jupiterone%2Fsecurity-policy-builder%40latest" rel="nofollow">@jupiterone/security-policy-builder@latest</a> </pre></li> <li><p>Resolved an issue where deleting an api key would throw an error in the UI</p></li> <li><p>Fixed an issue where deleted entities were showing up in all queries and were also not formatted correctly</p></li> <li><p>Markdown can now render markdown inside of admonitions in the policies app</p></li> <li><p>Fixed an issue causing insights to load with the wrong url</p></li> <li><p>Fixed an issue where insights board would be loaded without a layout</p></li> <li><p>Added failed request retry logic so all parts of the app should hopefully be a bit more resilient now</p></li> <li><p>Fixed an issue where incorrectly formatted queries would not give a helpful error message</p></li> <li><p>Fixed an issue where compliance standards would show duplicates in the UI</p></li> </ul> </article> </main>