Software-update: Cisco SMA AsyncOS 12.0

Cisco heeft een firmware-update uitgebracht voor zijn Content Security Management Appliances, die afgekort worden tot SMA. De techniek stamt af van IronPort Systems, dat in 2007 door Cisco werd gekocht, hoewel dat dus al meer dan een decennium geleden is, hoor je ook nog steeds de naam IronPort terugkomen voor deze appliances. Voor de ondersteunde upgrade paths is het raadzaam om de documentatie door te nemen of om contact op the nemen met Cisco's TAC. Deze firmware heet 12.0 en kent 12.0.0-452 als exact versienummer. De lijst met veranderingen ziet er als volgt uit:

What’s New In This Release
  • New Web Interface for Reporting, Quarantine and Tracking
  • Encrypting sensitive information on the appliance - You can use the adminaccessconfig > encryptconfig sub command in the CLI to configure encryption of sensitive information on your appliance.
  • Message Tracking Enhancement - You can now search for messages based on the "Reply-To" header of the message.
  • The trailblazerconfig CLI Command - You can use the trailblazerconfig command to route your incoming and outgoing connections through HTTP and HTTPS ports on the new web interface.
  • Support for new features in AsyncOS 12.0 for Cisco Email Security Appliances
  • Metrics Bar Widget - The Metrics Bar widget enables you to view the real time data of the file analysis done by the Cisco Threat Grid appliance on the Advanced Malware Protection report page.
  • Advanced Malware Protection Report Enhancement - The Advanced Malware Protection Report page has the following enhancements:
    • A new section - Incoming Malware Files by Category to view the percentage of blacklisted file SHAs received from the AMP for Endpoints console that are categorized as Custom Detection. The threat name of a blacklisted file SHA obtained from AMP for Endpoints console is displayed as Simple Custom Detection in the Incoming Malware Threat Files section of the report.
    • A new section - Incoming Malware Files by Category to view the percentage of blacklisted file SHAs based on the threshold settings that are categorised as Custom Threshold.
    • You can click on the link in the More Details section of the report to view the file trajectory details of a blacklisted file SHA in the AMP for Endpoints console.
    • A new verdict - Low Risk is introduced when no dynamic content is found in a file after file analysis. You can view the verdict details in the Incoming Files Handed by AMP section of the report.
  • New Web Interface for Web Reporting and Tracking
  • HTTPS Reports Page - You can now view the overall aggrgation of the HTTP/HTTPS traffic and the summary of the ciphers based on the client and server side connection for each HTTP/HTTPS traffic, on the HTTPS Reports report page.
  • Support for Smart Software Licensing - Smart Software Licensing enables you to manage and monitor Cisco Email Security appliance licenses seamlessly. To activate Smart Software licensing, you must register your appliance with Cisco Smart Software Manager (CSSM) which is the centralized database that maintains the licensing details about all the Cisco products that you purchase and use.
  • Integrating the Appliance with Cisco Threat Response Portal - You can integrate your appliance with Cisco Threat Response portal, and perform the following actions in Cisco Threat Response portal:
    • View the message tracking data from multiple appliances in your organization.
    • Identify, investigate and remediate threats observed in the message tracking.
    • Resolve the identified threats rapidly and provide recommended actions to take against the identified threats.
    • Document the threats in the portal to save the investigation, and enable collaboration of information among other devices on the portal.
  • Support for the Office 365 Web Service External URL Categories feature in AsyncOS 11.5.1-124 for Cisco Web Security Appliances
  • Web Traffic Tap Policies for web - Cisco Content Security Management appliance now allows you to set Web Traffic Tap Policies. You can define the Web Traffic Tap Policies based on which web traffic that passes through the Web Security appliance will be tapped. You must enable the Web Traffic Tap feature in Web Security appliance to set the Web Traffic policies in the Security Management appliance.
Changes in Behaviour
  • Change in Report Pages - The following reports are changed on the new web interface, in this release:
    • Overview report page is renamed to Mail Flow Summary.
    • Outbreak Filters report page is renamed to Outbreak Filtering.
    • Virus Types report page is renamed to Virus Filtering.
    • Advanced Malware Protection, AMP File Analysis, AMP Verdict Updates and Mailbox Auto Remediation report pages are merged as Advanced Malware Protection.
    • Incoming Mail and Outgoing Senders report pages are merged as Mail Flow Details.
    • TLS Connections report page is renamed to TLS Encryption.
    • Geo-Distribution report page is renamed to Connection by Country.
    • Internal Users report page is renamed to User Mail Summary.
    • Web Interaction Tracking report page is renamed to Web Interaction.
  • Encrypting Passphrases - After you upgrade to this release, you can encrypt the user's passphrases when updating the configuration files on the appliance.
  • Changes in Accessing the Spam Quarantine - The administrative users can now access the Spam Quarantine page on the new web interface of the appliance. You can navigate to Quarantine > Spam Quarantine > Search page on the new web interface to access the Spam Quarantine page. The end-users can now access the Spam Quarantine portal on the new web interface.
  • Changing the User's Password After Expiry - Users are prompted to change the password after the user account is expired.
  • Changes in Demo Certificates - Prior to this release, the appliance was pre-configured with a demonstration certificate to enable the TLS connections. After you upgrade to this release, the appliance generates a unique certificate to enable TLS connection. The existing demonstration certificate that is used in the following configurations are replaced with the new certificate:
    • Mail Delivery
    • LDAP
    • Networking
    • URL Filtering
    • SMTP Services
Versienummer 12.0
Releasestatus Final
Website Cisco
Download https://software.cisco.com/
Licentietype Betaald

Door Japke Rosink

Meukposter

21-02-2019 • 08:30

0 Linkedin

Bron: Cisco

Reacties

Wijzig sortering

Er zijn nog geen reacties geplaatst

Op dit item kan niet meer gereageerd worden.


Nintendo Switch (OLED model) Apple iPhone SE (2022) LG G1 Google Pixel 6 Call of Duty: Vanguard Samsung Galaxy S22 Garmin fēnix 7 Nintendo Switch Lite

Tweakers vormt samen met Hardware Info, AutoTrack, Gaspedaal.nl, Nationale Vacaturebank, Intermediair en Independer DPG Online Services B.V.
Alle rechten voorbehouden © 1998 - 2022 Hosting door True

Tweakers maakt gebruik van cookies

Tweakers plaatst functionele en analytische cookies voor het functioneren van de website en het verbeteren van de website-ervaring. Deze cookies zijn noodzakelijk. Om op Tweakers relevantere advertenties te tonen en om ingesloten content van derden te tonen (bijvoorbeeld video's), vragen we je toestemming. Via ingesloten content kunnen derde partijen diensten leveren en verbeteren, bezoekersstatistieken bijhouden, gepersonaliseerde content tonen, gerichte advertenties tonen en gebruikersprofielen opbouwen. Hiervoor worden apparaatgegevens, IP-adres, geolocatie en surfgedrag vastgelegd.

Meer informatie vind je in ons cookiebeleid.

Sluiten

Toestemming beheren

Hieronder kun je per doeleinde of partij toestemming geven of intrekken. Meer informatie vind je in ons cookiebeleid.

Functioneel en analytisch

Deze cookies zijn noodzakelijk voor het functioneren van de website en het verbeteren van de website-ervaring. Klik op het informatie-icoon voor meer informatie. Meer details

janee

    Relevantere advertenties

    Dit beperkt het aantal keer dat dezelfde advertentie getoond wordt (frequency capping) en maakt het mogelijk om binnen Tweakers contextuele advertenties te tonen op basis van pagina's die je hebt bezocht. Meer details

    Tweakers genereert een willekeurige unieke code als identifier. Deze data wordt niet gedeeld met adverteerders of andere derde partijen en je kunt niet buiten Tweakers gevolgd worden. Indien je bent ingelogd, wordt deze identifier gekoppeld aan je account. Indien je niet bent ingelogd, wordt deze identifier gekoppeld aan je sessie die maximaal 4 maanden actief blijft. Je kunt deze toestemming te allen tijde intrekken.

    Ingesloten content van derden

    Deze cookies kunnen door derde partijen geplaatst worden via ingesloten content. Klik op het informatie-icoon voor meer informatie over de verwerkingsdoeleinden. Meer details

    janee