Article Number: 000124178
Release notes for version 77 of Netskope.
Affected Products:
Netskope
Affected Operating Systems:
Windows
Mac
iOS
Android
Not applicable.
This update of Netskope contains New Features and Enhancements, Fixed Issues, Known Issues, and New Resource Types Supported in Continuous Security Assessment. For more information, click the appropriate topic.
| Category | Feature | Detailed Description and Benefits |
|---|---|---|
| API Protection | Microsoft Office 365 Teams | The Netskope Activity Feeds for Teams app is updated with three additional permissions. They are:
|
| API Protection | Security Compliance Report for Salesforce | Netskope has introduced a new app in Salesforce AppExchange called Netskope Security Cloud. This app generates a custom compliance report in Salesforce. The compliance report enables IT and Salesforce administrators to stay in launcher and get a quick interactive snapshot of Salesforce users and their interaction data inside Salesforce that violated data governance policy as configured on your Netskope tenant. |
| API Protection | Improved UX for Introspection Dashboard for Gmail | Users can use the new look and design for the API Protection dashboard to view data and drill into tables. |
| API Protection | Improved UX for Introspection Dashboard for Outlook | Users can use the new look and design for the API Protection dashboard to view data and drill into tables. |
| Behavior Analytics | User Risk UI Support for Sort on the Incidents Details View | Added capability to list a user's incidents sorted by score reduction, biggest on the top. |
| Directory Services | SCIM Users Removed from the UI | Deactivated SCIM users are removed from Netskope by default.
Note: This change is effective for new deactivate user requests posted AFTER release 77, not for already deactivated users.
What is the change in release 77? Before release 77, SCIM deactivated users showed up in the Netskope UI by default. |
| Directory Services | Netskope Adapters | The Netskope Adapter (NS Adapter) has been tested to ensure compatibility with the current cloud platform. Its version number has been updated to confirm this compatibility. No other changes have been made to the NS Adapter in this release. |
| Netskope for IaaS | Storage Page Owner Information | For AWS S3Bucket and Azure Storage Account, IaaS storage page shows the Owner information. This is shown in the table as comma-separated values and the side panel (clicking the table row) shows below the Size information. The same is shown when admins export the table and when using the inventory REST API. |
| Netskope for IaaS | Raw Findings Page Export | Users see Remediation Steps in the IaaS Raw findings page export. |
| NG SWG / CASB | Inline Policy Groups | With this release, Inline policies now support up to 512 Groups and OUs in SSL Decrypt Policies and Real Time Protection Policies combined. Previously this limit was 256.
Note: This change does not work for accounts using the Appliance solution until they upgrade to an Appliance version having this change for Proxy. Appliance users can create and save a policy with more than 256 groups, but on load such policies cause the older Proxy software (versions before release 77) to Assert. The Assert is a rolling one until the policy is updated back to have the number of Groups/OUs to be less than or equal to 256.
|
| NG SWG / CASB | Alert / Allow Policy Change | Real-time protection policies with action selected to "Alert" for activity "Browse," does not generate alert events. |
| Steering | Netskope Client Fail-close Support | The Netskope Client has been enhanced so administrators can now configure the Client to fail-close when one of the following conditions is met:
Administrators can control the behavior of Netskope Private Access independently to not disrupt traffic for Private Apps. |
| Threat Protection | Client Traffic Exploit Protection (CTEP) for Preventing Network Based Exploits | In this release, a new capability called Client Traffic Exploit Protection (CTEP) has been added. CTEP is an inline Netskope threat protection defense that allows you to build policies to examine network web traffic flow for vulnerabilities and prevent malicious exploits. When building such policies, you can start with a monitor mode and eventually take enforcement action to block potentially malicious web traffic. To leverage CTEP, contact your customer experience team to turn on the functionality. |
| Web UI | CCI UI | CCI UI category questions and choice values are changing from 'No' and 'NS' to 'No published support'. The list below captures the details:
|
| Web UI | Custom Connector Enabled | The custom connector option is enabled by default in the UI. |
| Web UI | Email Notification URL Template | Users who would like to link raw HTML links containing spaces or other special characters in Email Notification Templates can do so by wrapping the links in <link> tags.For example, <link>http://example.com/My special link/with spaces?query=value</link>. |
| Issue Number | Category | Feature | Issue Description |
|---|---|---|---|
| 108672 | Behavior Analytics | Total Number of Users Mismatch | Poor users with a User Confidence Index of 0 are now listed and counted. |
| 103686 | DLP Incidents | DLP Incidents Page Performance Improvement | Improved performance when loading the DLP Incidents page when navigating from the Alerts page's Violations link. |
| 102870 | Netskope for IaaS | Compliance Tab Tag Filter | The tag filter API is now pointing to the iaas_assets collection instead of the iaas_asset_tags collection. The iaas_assets collection contains the account_id and account_name in the schema, which helps to get the advance scoped role user queries. |
| 106450 | Netskope for IaaS | AWS Dashboard Page | Now users can see IaaS pages for account names containing single quotes. |
| 103536 | NG SWG / CASB | Inconsistent Location for Justification Alerts | Previously, user justification events for cloud apps were displayed only in Application Events under SkopeIT. With release 77, user justification events display at both Application Events and in Alerts under SkopeIT. |
| 94835 | NG SWG | Citrix ShareFile Upload | Fixed an issue uploading files from the Citrix Share file when the user alert policy is configured along with another TSS policy. |
| 106873 | Private Access | Periodic Re-authentication for Private Apps Checkbox | The client config warning/help link opens tab to the wrong page. |
| NPA-1504 | Private Access | Chromebook Email Logs | Chromebook: email logs using Gmail does not work correctly. |
| NPA-1384 | Private Access | NPA Activation | In some Windows environments, NPA activation has been prevented due to file system access errors. |
| Issue Number | Category | Feature | Issue Description |
|---|---|---|---|
| 94226 | NG SWG | Microsoft.com Domain Exceptions List | Removed the *.microsoft.com domain from the Default domain exceptions list to support DPI for all Microsoft Applications (mostly Microsoft Teams App). |
| 110316 | Steering | False positive for fail close feature when the client is disabled/enabled from the Tenant UI | When the client is disabled and reenabled from the tenant UI, you may see a false positive indicating client in fail closed state in the device details page. |
| Cloud Provider | Entity | Attribute Changes |
|---|---|---|
| AWS | None | S3Bucket entity has the following new attribute:
|
| Azure | Network category has a new entity:
|
Storage Account entity has the following new attributes:
|
To contact support, reference Dell Data Security International Support Phone Numbers.
Go to TechDirect to generate a technical support request online.
For additional insights and resources, join the Dell Security Community Forum.
Netskope
20 Dec 2022
12
Solution