Version: 4.2.7.157 + Connector 4.2.7.219 (September 23, 2024)
Latest UR available on our 4.2.7 Live Repo
- UR1 (build 163) + Connector 4.2.7.220 - October 8, 2024
- UR2 (build 165) - October 14, 2024
- UR3 (build 166) - November 19, 2024
- UR4 (build 167) - November 26, 2024
- UR5 (build 171) - January 12, 2025
- UR6 (build 172) - January 20, 2025
Major New Features
Windows Connector Service Logon - Beyond System User
The 4.2.7 Connector now allows configuring a custom administrator logon account for Windows instead of relying on the SYSTEM user
How It Works:
- The default SYSTEM user remains unchanged for existing services.
- Admins can now specify an Administrator account during new Connector deployments.
- The Connector automatically assigns the necessary "Log on as a service" permissions.
"Used By" Resources – Improved Visibility & Control
- A new "Used By" column has been added across multiple resource management screens.
- Displays dependencies for rules, filters, and configurations.
- Clickable references allow easy navigation to related resources.
Windows End-User Patching – Pre-Patching Notifications
-
- Users can configure pre-patch notifications for Windows endpoints.
- Before patch execution, endpoint users receive a non-intrusive alert notifying them of upcoming patches.
- These notifications do not disrupt the patching process but allow users to acknowledge them.
Enhancements to Existing Features
Endpoint Readiness Changes
-
PowerShell Version Check Removed: This check was removed as Windows Server 2008 R2 is no longer supported.
-
WSUS Automatic Updates Check Added: The PowerShell column was replaced with WSUS Automatic Updates (
wsusAutomaticUpdates
), providing better visibility into update configurations. -
Simplified Repository Configuration:
-
Before 4.2.7, Repo Configuration required:
-
WSUS URL must match Endpoint Readiness settings
-
hasUpdateServiceLocation = true
-
wsusAutomaticUpdates = true
-
-
With 4.2.7+,
wsusAutomaticUpdates
is no longer required, and Repo Configuration now only checks WSUS URL andhasUpdateServiceLocation
.
-
Before 4.2.7
With 4.2.7+
Interactive Reboot Enhancement: Users can now duplicate and customize interactive reboot settings per workflow, allowing more flexibility in restart scenarios.
Sequence Patching Enhancements:
- Multi-Select Filtering: Users can now apply multiple filters to the Remediation Plan (RP) Board.
- New Activation Options: RPs associated with Sequence Patching can now be activated even if the sequence has not started.
- Ignore Expired SLAs: RPs with expired SLAs are now automatically flagged with a new status.
ServiceNow Integration Improvements:
-
- Added "Cancelled" as
close_notes
for the Upload Table when canceling a remediation plan (UR5). - Added Review Status and Review Notes Fields (UR6).
- Added "Cancelled" as
Agents & Tools > Exceptions Page Upgrade
Before 4.2.7
With 4.2.7+
- Enhanced UI: Modernized layout with better readability.
- Advanced Filtering: Users can filter by multiple criteria (Rule, Tool, Type, Severity, etc.).
- Improved Status Tracking: Clearer resolution states and timestamps for better issue monitoring.
-
Actionable Insights: Streamlined workflow for managing exceptions efficiently.
Additional Enhancements
- Full application load time after a Tomcat restart has significantly improved.
-
Added "Infra" and "Apps" category filters in the Patches Catalog (UR1).
-
Improved Remediation Plan Activation Performance (UR5).
- Added a Python script to list UI users (UR5).
Bug Fixes
- System > Smart Groups: Fixed pagination issues in Smart Group filters.
- System > Exceptions: Fixed error selecting all tools in the filter under Exceptions.
- System > CSV Imports: Addressed duplicate endpoints issue during CSV imports.
- System > Patches > Alma Linux: Resolved 404 error when navigating to Alma Linux patches.
- System > Patches > Catalog: Corrected vulnerability filter behavior in the Patches Catalog.
- System > Repository Settings: Ensured CIDR list validation in repository settings.
- Ubuntu Pro Registration: Enabled Ubuntu Pro subscription registration with ESM repositories (UR1).
- System > Sequence Patching: Fixed sequence patching filtering issues in the Patches Catalog for endpoint names (UR1).
-
System > REST API: Added missing values in
'enabled'
,'apiAccessAllowed'
fields in REST API response (UR2). - System > Maintenance Windows: Fixed incorrect next slot calculation (UR3).
- System > Tasks: Resolved unable to save Task that contains script with parameters (UR4).
- System > WSUS Registration: Fixed CommandNotFoundException error when running "Register Win EP to WSUS" script (UR5).
- Security Fix: Resolved vulnerabilities in Tomcat (CVE-2024-50379 & CVE-2024-52316) (UR5).
Known Issues
- Sorting on
wsusAutomaticUpdates
in Endpoint Readiness results in a red error pop-up, but sorting remains accurate (will be fixed in 4.2.8) - Clicking the "Endpoints" link from RP Action Details in Remediation Plan incorrectly filters only by RP-ID (missing Patch Status), causing an incorrect endpoint count(will be fixed in 4.2.8)
Comments
0 comments
Please sign in to leave a comment.