How can we help?

Netsweeper 8.1.1 EA Release (Sept. 2, 2022)

Follow

Netsweeper 8.1.1 EA is now available for early adopters that have already migrated to the EL8 based Netsweeper installation. Moving forward the Netsweeper 8 will only be available on EL8 and customers are expected to migrate to the EL8 base in the 7.2 release before planning the upgrade to Netsweeper 8 or above. All customers with features and improvements in the 8.1.1 should upgrade their test environments and start providing feedback as we move forward over the next 6 month release cycle.

If you have any questions or concerns about planning an upgrade to this release, please contact Netsweeper Technical Support (support@netsweeper.com).

Policy Management

  • Clients added to the Simple Group view

  • Ability to lock a Group and Client so they cannot changed or removed

  • Search Keywords list has been replaced with the Search Keywords Request Part that can be added to Lists

  • Import and Export Account Permissions and Permission Templates.

  • Group Client Lookup Module allows new Workstation Address with Source Port Range-Carrier Grade NAT to define overlapping clients based on source port

  • Two new tools added to cleanup Report static filters and assign the proper Groups and IP restrictions

WebAdmin Settings

  • 'Directory Sync Maximum Thread Number' added that defines the thread number to synchronize multiple directory domains simultaneously

  • 'Inactive Password Age' added that will lockout an Account if the user does not change their password within the number of days set

  • 'Passwords must be changed before expiry' has been removed because 'Inactive Password Age' is a more flexible feature.

  • There is now the ability to disable/enable the client types in Group Client section of WebAdmin Settings

  • New WebAdmin Settings for SAML debug logs have been added for improved support

Security

  • Account and Clients passwords stored using secure hashing BCRYPT

  • The Client Filter 10.x supports the new Bcrypt uninstall passwords

Miscellaneous

  • System Status has task that runs every 5 minutes to poll the remote systems to determine if they are online or offline

  • WebAdmin Theme Editor has been added that allows you to change Menu, Login, Error Page, favicons, and other theme based information

  • The SAML authentication library 'samlauth' has been upgraded to version 1.19.6.

Client Filter

  • The User Password Client Filter event has been removed

  • Source Port and Destination Port have been added to the Logging Framework and Client Filter Protocol

APIs

  • agent_config_create documentation updated with the gtype=cnf information

  • account_query API allows any SysOp to query themselves and login is no longer required

  • account_perms_list API allows any type of Account to query their own permissions

  • group_list API now displays Simple Groups if the 'Simple Group Manager' permission is enabled

New APIS

  • account_preferences_query API that exports the Users My Account > Preferences > Settings

  • account_password_forcechange and account_password_unlock have been added to reset and fix an Account password when inactive, locked out, or expired

See also:

Downloads

To download the latest release, please use the following link:

https://repo.netsweeper.com/netsweeper-el8-x86_64-8.1.1-1.iso(md5)(sha256)

Change Log 8.11

Issue

Ticket

Summary

New Feature

NS-1

WebAdmin System Status now has a task that runs every 5 minutes to poll the remote systems to determine if they are online or offline and the WebAdmin interface will show the last poll status and update it immediately.

New Feature

NS-2

There is now the ability to lock a Group and Client and prevent them from being changed or removed.

New Feature

NS-3

Account and Clients passwords are now stored using secure hashing BCRYPT.

Bug

NS-4

The CNS connection structure could be accessed after it was freed.

Bug

NS-5

Client Filter Settings would allow Brands with a space in the name.

Bug

NS-7

The URL was not added to the URL Queue for Categorization when the original destination IP was not provided.

Bug

NS-9

Azure Directory Sync was not able to parse emojis in names.

Bug

NS-12

Azure Directory Sync Search Base was searching in Groups that were not part of its search base.

New Feature

NS-14

There is now the ability to forward nMonitor API events to the OnGuard Alert Management system.

New Feature

NS-15

The global Search Keywords list has been replaced with the Search Keywords Request Part that can be added to Policy Shared or System Lists as well as the System Wide Lists.

Bug

NS-16

A 404 error displayed when a SysOp attempted to assume the identity of another SysOp Account in a different organization.

Bug

NS-18

When a Report is filtered and grouped by Categories, the option to show only filtered Categories would only apply to the first Category filter.

Improvement

NS-19

Clients have been added to the Simple Group view in the WebAdmin.

Improvement

NS-20

Module path URLs were not decoded before displaying in the Request Log.

Bug

NS-21

Error messages were not being cleared after restarting the log viewer.

Bug

NS-23

The domainusergroup message was missing user information in the Request Log. We now log the appropriate username information for the domain user group sent to the Policy Server.

New Feature

NS-24

You can now Import and Export Account Permissions and Permission Templates.

New Feature

NS-25

WebAdmin Theme Editor has been added that allows you to change Menu, Login, Error Page, favicons, and other theme-based information.

New Feature

NS-26

An 'Inactive Password Age' setting has been added that will lockout an Account if the user does not change their password within the number of days set.

Bug

NS-30

NSProxy intermittently displayed an error: 'Error can't connect to the policy server.' causing deadlocks and aborts.

Bug

NS-31

The Fields menu in the Custom Report page showed already selected fields as a string of numbers instead of labels.

Bug

NS-32

WebAdmin Export did not use the filename in the export dialog.

Bug

NS-33

Some WebAdmin pages that should have shown the SQL server errors showed empty strings because the error was reset in error logging.

Bug

NS-34

Group-based Quick Reports did not show in the Group-based Quick Reports window.

Bug

NS-35

NSUp2Date would create logs when writing WebAdmin Settings for the IP and Timespan values.

New Feature

NS-37

The Client Filter 10.x now supports the new Bcrypt uninstall passwords when running with Netsweeper 8.1.1 or higher. When running with older servers, the MD5 uninstall password is still used.

Bug

NS-40

When a List was deleted from the List window, it was not removed from the Client Filter Brand Settings.

Bug

NS-42

NSProxy did not close the ICAP connection when the response was an error code.

Bug

NS-43

The ICAP server didn't reset the input after an error and tried to parse the rest of the input as a new request.

Bug

NS-44

NSProxy got an ICAP error message 'ICAP: unexpected response code '501 Not implemented' due to incomplete Policy Service ICAP buffer parsing. We now support incremental reading of ICAP requests properly.

Bug

NS-45

Client Filter protocol processing in the policy server could cause request corruption with big requests wrapped into the http or https request.

Bug

NS-47

The WebAdmin Notification permission was required for a SysOp Account to view the WebAdmin Log. This caused the WebAdmin Log permission to not permit WebAdmin Log access.

Bug

NS-49

Azure Directory Sync did not add Groups for large directories.

Bug

NS-50

Directory Sync did not remove bad characters from the First Name and Last Name fields.

Improvement

NS-51

A new WebAdmin Setting: 'Directory Sync Maximum Thread Number' has been added. It defines the thread number to synchronize multiple directory domains simultaneously to help improve the performance.

Bug

NS-52

As a SysOp, it was possible to see the same List twice in a selectized drop-down.

Bug

NS-53

List Manager Selectize would limit the number of results in the drop-down, but the Lists in the input area may not be in the first X results, and they will remain a 'number' not the List name.

Bug

NS-54

SysOps could not view or remove Exception Lists from the Client Filter Settings page. Exception lists now only require view permissions.

Bug

NS-56

The View Managed SysOp Lists and View All Organization Lists permissions would interfere with each other.

Bug

NS-57

The 'Create account group policy' option, when creating an Account, will set the icon to the name of the user which may not exist.

Bug

NS-58

The 7.2.10.803 could cause Directory Sync to stop when the First Name and Last Name where not set.

Bug

NS-59

WebAdmin and DirSync did not process Last Name and First Name invalid characters in the same way.

Improvement

NS-60

The User Password Client Filter event has been removed as it is no longer supported in the Netsweeper Client Filter since 4.0 and below.

Bug

NS-62

Using the same Account simultaneously could cause Request Logs and table views to conflict when used at the same time.

Bug

NS-63

Policy Service Header Add/Replace removes all other Request Headers in 7.2.1 to 7.2.10. This issue has been resolved.

New Feature

NS-64

The account_query API now allows any SysOp to query themselves and login is no longer required. An empty login uses the Account making the request.

New Feature

NS-65

The group_list API now displays Simple Groups if the 'Simple Group Manager' permission is enabled, and it displays Groups if the 'OnGuard' permission is enabled.

New Feature

NS-66

The account_perms_list API now allows any type of Account to query their own permissions.

New Feature

NS-67

There is a new account_preferences_query API that exports the Users My Account > Preferences > Settings.

New Feature

NS-68

onGuard permissions have been added for the new onGuard interface.

New Feature

NS-69

A new onGuard menu item now displays when the Account has the perm_onguard_enabled permission.

Improvement

NS-70

The WebAdmin Setting, 'Passwords must be changed before expiry' has been removed because 'Inactive Password Age' is a more flexible feature. Customers upgrading should review Password Policy.

New Feature

NS-71

WebAdmin Settings have been added for nMonitor and OnGuard remote logging servers and URLs.

Bug

NS-72

List Manager metadata did not display the History for metadata fields. Images from the List Service could cause table paging performance issues.

Improvement

NS-74

Enterprise Filter, Squid, and Portmap have been removed from the WebAdmin.

New Feature

NS-75

Source Port and Destination Port have been added to the Logging Framework.

Improvement

NS-76

Two new tools have been added to cleanup Report static filters and assign the proper Groups and IP restrictions.

Bug

NS-77

Setting static filters for Reports limiting Groups the Account can run Reports on, would adjust the IP ranges based on the Account making the change and not the Account being changed.

Bug

NS-79

Exporting a Report as HTML would get denied when a remote Reporter was used in the prior 7.2 releases. You can now export HTML Reports.

Bug

NS-80

The Report Export filename did not have the appropriate name based on the Report name and Instance date.

New Feature

NS-86

Group Client Lookup Module and WebAdmin Settings now allow new Workstation Address with Source Port Range. This allows for Carrier Grade NAT to define overlapping clients based on source port.

New Feature

NS-87

List Selectizes that require the view permission have been updated to apply View Managed Sysop Lists and View Organization Sysop Lists permissions.

New Feature

NS-90

Source and destination ports have been added to the Client Filter protocol.

Bug

NS-92

Improved security of the SAML authentication library has been added by removing unused code.

Improvement

NS-93

The onGuard login loc, when set after login, will now redirect back to the onGuard interface.

Bug

NS-94

Samlauth included broken and insecure jquery and other elements. They have been removed from samlauth and only the required Library is used.

Improvement

NS-95

The SAML authentication library 'samlauth' has been upgraded to version 1.19.6. New WebAdmin Settings for SAML debug logs have been added for improved support.

Bug

NS-96

Upgrading using the 8.1.X CD did not work correctly.

New Feature

NS-99

There is now the ability to disable/enable the client types in Group Client section of WebAdmin Settings.

New Feature

NS-100

New APIs: account_password_forcechange and account_password_unlock have been added to reset and fix an Account password when inactive, locked out, or expired.

Improvement

NS-104

Improve handling of time and use proper time_t structure for 32bit and 64bit usage on 64bit platforms to avoid year 2038 time issues.

Bug

NS-107

The 7.2.4 and above releases would crash if the NSProxy ca.crt and ssl/ca.key were mismatched, causing NSProxy to segfault and not log the proper error message.

Improvement

NS-108

The agent_config_create documentation has been updated with the gtype=cnf information.

Bug

NS-135

If the 'Secure SSL Connection to Config Database' option was checked in the WebAdmin Settings, an error 'Could not connect to configuration database' displayed.

Bug

NS-141

The zbounce inline Capture Module would segfault on configuration reload in 6.2.1 to 7.211.

Bug

NS-157

List Manager History doesn't display logged images in metadata fields but shows the current image instead

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request