Community
Questions Library
Docs
Blog
Events
Swag
Github
Slack
JupiterOne
Discussions
Release Notes
Contact Us
JupiterOne 2021.82 Release - AskJ1 Community
<main> <article class="userContent"> <p>October 22, 2021</p> <h2 data-id="new-features-and-improvements">New Features and Improvements</h2> <ul><li>You can now view multiple assets in the entity drawer if you used multiple assets for constructing a query result. You can view all the properties in the entity drawer of each entity referenced in the <code class="code codeInline" spellcheck="false" tabindex="0">RETURN</code> clause.</li> <li>"Allowlist" has replaced "whitelist" in the resource management powerup.</li> </ul><h2 data-id="integrations">Integrations</h2> <h3 data-id="aws">AWS</h3> <ul><li>Added new properties to resources:</li> </ul><table><thead><tr><th>Entity</th> <th>Properties</th> </tr></thead><tbody><tr><td><code class="code codeInline" spellcheck="false" tabindex="0">aws_iam_saml_provider</code></td> <td><code class="code codeInline" spellcheck="false" tabindex="0">samlMetadataDocument</code></td> </tr></tbody></table><ul><li>Fixed an issue with the <code class="code codeInline" spellcheck="false" tabindex="0">active</code> property being set to both a <code class="code codeInline" spellcheck="false" tabindex="0">true</code> and a <code class="code codeInline" spellcheck="false" tabindex="0">false</code> value for some <code class="code codeInline" spellcheck="false" tabindex="0">aws_account</code> entities.</li> <li><p>New questions added to the Questions Library:</p> <ul><li><p>Which S3 buckets have Server Access logging enabled?</p></li> <li><p>Which S3 buckets have any logging enabled?</p></li> </ul></li> </ul><h3 data-id="azure">Azure</h3> <ul><li>Added new properties to resources:</li> </ul><table><thead><tr><th>Entity</th> <th>Properties</th> </tr></thead><tbody><tr><td><code class="code codeInline" spellcheck="false" tabindex="0">azure_sql_server</code></td> <td><code class="code codeInline" spellcheck="false" tabindex="0">vaRecurringScansEnabled</code></td> </tr><tr><td><code class="code codeInline" spellcheck="false" tabindex="0">azure_sql_server</code></td> <td><code class="code codeInline" spellcheck="false" tabindex="0">vaStoragePath</code></td> </tr><tr><td><code class="code codeInline" spellcheck="false" tabindex="0">azure_sql_server</code></td> <td><code class="code codeInline" spellcheck="false" tabindex="0">vaEmailSubscriptionAdmins</code></td> </tr><tr><td><code class="code codeInline" spellcheck="false" tabindex="0">azure_sql_server</code></td> <td><code class="code codeInline" spellcheck="false" tabindex="0">vaEmails</code></td> </tr><tr><td><code class="code codeInline" spellcheck="false" tabindex="0">azure_web_app</code>, <code class="code codeInline" spellcheck="false" tabindex="0">azure_function_app</code></td> <td><code class="code codeInline" spellcheck="false" tabindex="0">authEnabled</code></td> </tr><tr><td><code class="code codeInline" spellcheck="false" tabindex="0">azure_web_app</code>, <code class="code codeInline" spellcheck="false" tabindex="0">azure_function_app</code></td> <td><code class="code codeInline" spellcheck="false" tabindex="0">httpsOnly</code></td> </tr><tr><td><code class="code codeInline" spellcheck="false" tabindex="0">azure_web_app</code>, <code class="code codeInline" spellcheck="false" tabindex="0">azure_function_app</code></td> <td><code class="code codeInline" spellcheck="false" tabindex="0">minTlsVersion</code></td> </tr><tr><td><code class="code codeInline" spellcheck="false" tabindex="0">azure_web_app</code>, <code class="code codeInline" spellcheck="false" tabindex="0">azure_function_app</code></td> <td><code class="code codeInline" spellcheck="false" tabindex="0">clientCertEnabled</code></td> </tr><tr><td><code class="code codeInline" spellcheck="false" tabindex="0">azure_web_app</code>, <code class="code codeInline" spellcheck="false" tabindex="0">azure_function_app</code></td> <td><code class="code codeInline" spellcheck="false" tabindex="0">principalId</code></td> </tr><tr><td><code class="code codeInline" spellcheck="false" tabindex="0">azure_web_app</code>, <code class="code codeInline" spellcheck="false" tabindex="0">azure_function_app</code></td> <td><code class="code codeInline" spellcheck="false" tabindex="0">phpVersion</code></td> </tr><tr><td><code class="code codeInline" spellcheck="false" tabindex="0">azure_web_app</code>, <code class="code codeInline" spellcheck="false" tabindex="0">azure_function_app</code></td> <td><code class="code codeInline" spellcheck="false" tabindex="0">pythonVersion</code></td> </tr><tr><td><code class="code codeInline" spellcheck="false" tabindex="0">azure_web_app</code>, <code class="code codeInline" spellcheck="false" tabindex="0">azure_function_app</code></td> <td><code class="code codeInline" spellcheck="false" tabindex="0">javaVersion</code></td> </tr><tr><td><code class="code codeInline" spellcheck="false" tabindex="0">azure_web_app</code>, <code class="code codeInline" spellcheck="false" tabindex="0">azure_function_app</code></td> <td><code class="code codeInline" spellcheck="false" tabindex="0">nodeVersion</code></td> </tr><tr><td><code class="code codeInline" spellcheck="false" tabindex="0">azure_web_app</code>, <code class="code codeInline" spellcheck="false" tabindex="0">azure_function_app</code></td> <td><code class="code codeInline" spellcheck="false" tabindex="0">http20Enabled</code></td> </tr><tr><td><code class="code codeInline" spellcheck="false" tabindex="0">azure_web_app</code>, <code class="code codeInline" spellcheck="false" tabindex="0">azure_function_app</code></td> <td><code class="code codeInline" spellcheck="false" tabindex="0">ftpsState</code></td> </tr></tbody></table><ul><li><p>New questions added to the Questions Library:</p> <ul><li><p>Is Advanced Threat Protection (ATP) enabled for Azure SQL servers?</p></li> <li><p>Is Vulnerability Assessment (VA) enabled for Azure SQL servers?</p></li> <li><p>Is the "Periodic Recurring Scans" setting enabled for Azure SQL<br> server Vulnerability Assessments (VA)?</p></li> <li><p>Is Vulnerability Assessment (VA) sending scan reports for<br> Azure SQL servers?</p></li> <li><p>Is Vulnerability Assessment (VA) sending scan reports to admins and<br> subscription owners for Azure SQL servers?</p></li> <li><p>Is app service authentication enabled for all Azure app services?</p></li> <li><p>Are all Azure Web Apps redirecting HTTP traffic to HTTPS?</p></li> <li><p>Are all Azure Web Apps using latest version of TLS encryption?</p></li> <li><p>Are all Azure Web Apps requiring the client certificates?</p></li> <li><p>Do Azure Web Apps have the "Register with Azure Active Directory"<br> setting enabled?</p></li> <li><p>Are all Azure Web Apps using PHP's latest version?</p></li> <li><p>Are all Azure Web Apps using Python's latest version?</p></li> <li><p>Are all Azure Web Apps using Java's latest version?</p></li> <li><p>Are all Azure Web Apps using HTTP's latest version?</p></li> <li><p>Are all Azure Web Apps FTP deployments disabled?</p></li> </ul></li> <li><p>Fetching Azure app authorization settings requires that you add additional<br> permissions to the custom role <code class="code codeInline" spellcheck="false" tabindex="0">Microsoft.Web/sites/config/list/Action</code>.</p></li> </ul><h3 data-id="github">GitHub</h3> <ul><li>Added support for ingesting the following new entities:</li> </ul><table><thead><tr><th>Resources</th> <th>Entity <code class="code codeInline" spellcheck="false" tabindex="0">_type</code></th> <th>Entity <code class="code codeInline" spellcheck="false" tabindex="0">_class</code></th> </tr></thead><tbody><tr><td>GitHub Issue</td> <td><code class="code codeInline" spellcheck="false" tabindex="0">github_issue</code></td> <td><code class="code codeInline" spellcheck="false" tabindex="0">Issue</code></td> </tr></tbody></table><ul><li>Added support for ingesting the following new relationships:</li> </ul><table><thead><tr><th>Source Entity <code class="code codeInline" spellcheck="false" tabindex="0">_type</code></th> <th>Relationship <code class="code codeInline" spellcheck="false" tabindex="0">_class</code></th> <th>Target Entity <code class="code codeInline" spellcheck="false" tabindex="0">_type</code></th> </tr></thead><tbody><tr><td><code class="code codeInline" spellcheck="false" tabindex="0">github_repo</code></td> <td><strong>HAS</strong></td> <td><code class="code codeInline" spellcheck="false" tabindex="0">github_issue</code></td> </tr><tr><td><code class="code codeInline" spellcheck="false" tabindex="0">github_user</code></td> <td><strong>CREATED</strong></td> <td><code class="code codeInline" spellcheck="false" tabindex="0">github_issue</code></td> </tr><tr><td><code class="code codeInline" spellcheck="false" tabindex="0">github_user</code></td> <td><strong>ASSIGNED</strong></td> <td><code class="code codeInline" spellcheck="false" tabindex="0">github_issue</code></td> </tr></tbody></table><ul><li>Added new properties to resources:</li> </ul><table><thead><tr><th>Entity</th> <th>Properties</th> </tr></thead><tbody><tr><td><code class="code codeInline" spellcheck="false" tabindex="0">github_repo</code></td> <td><code class="code codeInline" spellcheck="false" tabindex="0">forkingAllowed</code></td> </tr></tbody></table><ul><li><p>Fetching the <code class="code codeInline" spellcheck="false" tabindex="0">github_issue</code> entity requires that your GitHub organization<br> admin grants the J1 GitHub app the <code class="code codeInline" spellcheck="false" tabindex="0">issues:read</code> permission. Without this<br> permission, this data is not imported but other GitHub entities continue<br> to be ingested.</p></li> <li><p>Enhanced ingestion performance.</p></li> <li>Improved ingestion consistency and user job log error messaging.</li> </ul><h3 data-id="bamboohr">BambooHR</h3> <ul><li>Added new properties to resources:</li> </ul><table><thead><tr><th>Entity</th> <th>Properties</th> </tr></thead><tbody><tr><td><code class="code codeInline" spellcheck="false" tabindex="0">bamboohr_employee</code></td> <td><code class="code codeInline" spellcheck="false" tabindex="0">hireDate</code></td> </tr><tr><td><code class="code codeInline" spellcheck="false" tabindex="0">bamboohr_employee</code></td> <td><code class="code codeInline" spellcheck="false" tabindex="0">terminationDate</code></td> </tr></tbody></table><h3 data-id="crowdstrike">CrowdStrike</h3> <ul><li>Improved the resiliency of the integration to respect rate limit responses from CrowdStrike.</li> </ul><h3 data-id="google-cloud">Google Cloud</h3> <ul><li>Fixed bugs that prevented J1 from ingesting the full set of <code class="code codeInline" spellcheck="false" tabindex="0">gooogle_iam_role</code> and <code class="code codeInline" spellcheck="false" tabindex="0">google_iam_binding</code> entities in some circumstances.</li> </ul><h3 data-id="qualys">Qualys</h3> <ul><li>Fixed an issue that prevented the integration from collecting the full set of<br><code class="code codeInline" spellcheck="false" tabindex="0">qualys_host_finding</code> entities.</li> </ul> </article> </main>