Article Number: 000180578
Release notes for version 79 of Netskope.
Affected Products:
Netskope
Affected Operating Systems:
Windows
Mac
iOS
Android
Not applicable.
This update of Netskope contains New Features and Enhancements, Fixed Issues, and Known Issues. For more information, click the appropriate topic.
| Category | Feature | Detailed Description and Benefits |
|---|---|---|
| API Protection | Microsoft Office 365 OneDrive and SharePoint | This is an improvement to the API-Protection policy workflow, where an administrator can now set a policy to detect when a file is shared directly with a specific named group. This enables the administrator to detect and remediate such DLP violations. This feature is available for OneDrive and SharePoint apps. |
| API Protection | Slack for Enterprise | An administrator can now manually delete violating content in Slack Enterprise Grid directly from the Incidents > DLP page. This allows the administrator to triage and act on DLP-violating alerts. |
| API Protection | Slack for Enterprise | The Incident > DLP page for Slack Incidents now include the name of the channel where the violation occurred. This is applicable to Slack Enterprise Grid. Support for Slack Teams will come in a future release. |
| App Connector | AOL Mail | AOL Mail is a free web-based email service that is provided by AOL. The AOL mail app connector is enhanced with more support for the following activities. Activities: Upload File, Send Mail, Move Mail, Delete Mail, Create Folder, Delete Folder, Rename Folder, Download File DLP: Upload, Send, Download |
| App Connector | Atlassian Confluence | Confluence is a web-based corporate wiki. The Confluence app connector is enhanced with more support for the following activities. Activities: View Page, Post Comment, Edit Comment, Reply Comment, Delete Comment, Upload File, Download File DLP: Upload, Download |
| App Connector | AWS Lambda | AWS Lambda is a computing service that runs code in response to events and automatically manages the computing resources that are required by that code that is provided by Amazon as a part of Amazon Web Services. We have enhanced the support for AWS Lambda app connector for four new regions:
|
| App Connector | EKS Connector Support | EKS is an AWS Kubernetes service, users can create clusters, pods, nodes, and so on, using CLI tools, SDKs, and the console. Activities: CreateCluster, CreateFargateProfile, CreateNodegroup, DeleteCluster, DeleteFargateProfile, DeleteNodegroup, DescribeCluster, DescribeFargateProfile, DescribeNodegroup, DescribeUpdate, KubectlCommand, ListClusters, ListFargateProfiles, ListNodegroups, ListTagsForResource, ListUpdates, UntagResource, TagResource, UpdateClusterVersion, UpdateNodegroupConfig, UpdateNodegroupVersion, UpdateClusterConfigPlatform: AWS CLI tools, SDKs, API calls DLP Supported: No |
| App Connector | kubectl Connector | kubectl is a command-line interface used to communicate and manage the Kubernetes Clusters. The kubectl command-line interface is common for cloud providers. The following are general guidelines for usage:
Activities: kubectl command Platform: kubectl cli DLP: No |
| CASB Inline Protection | Google Access for Allowed Domains | This feature enables you to control the traffic to Google cloud applications so users can access your corporate Google apps, but not personal Google apps. |
| Directory Services | Netskope Adapters | The Netskope Adapter (NS Adapter) has been tested to ensure compatibility with the current cloud platform. Its version number has been updated to confirm this compatibility. No other changes have been made to the NS Adapter in this release. |
| DLP - Entity | Improved "Full Names (US)" Entity | With this change, the US Full Names entity has better efficacy by including names with special characters and mixed cases such as Shaun O'Mally. |
| DLP - PDD | Enhanced EDM | In this release, the EDM module is redesigned to provide better performance and a better user experience. After EDM uploads are done, you have an opportunity to define the sensitive records making it easier to understand and maintain the DLP rules. |
| NG SWG / CASB | URL List Validation | The URL list upload API is now enhanced so the web service invokes a new endpoint to validate the URL list. |
| Netskope for IaaS | Resource IDs for the Inventory API | In this release, resource_id is an optional parameter that is added for the public cloud inventory REST API, where users can filter the result using resource_id. |
| Netskope for IaaS | Public REST API for Immediate Rule Evaluation | Rule Evaluation is a new REST API capability for DSL rules. It evaluates given rules with available IaaS resources associated. It takes cloud provider, rule code, and instance as mandatory parameters and resource ids is an optional parameter. When resource ids are given, rules are evaluated against these ids. If it is empty, the API evaluates rules against all resources. |
| Threat Protection | Malware Details Page | The accounts with the standard threat protection license list all detected engines and show details for "Netskope AV" and "Netskope Threat Intel." |
| UEBA | RBAC | The Incidents > Behavior Analytics page has been enhanced to show the functionality instead of incident_mgmt to malware (Threat Protection). |
| Web UI | Steering Configuration UI Change | In the UI, Settings > Security Cloud Platform > Traffic Steering > Custom Apps is now called "App Definition." |
| Web UI | Custom Cert Pinned Apps | It is mandatory to provide the custom app domains while creating custom SSL Pinned applications in the steering config. |
| Issue Number | Category | Feature | Issue Description |
|---|---|---|---|
| 109382 | NG SWG / CASB | VMware Boxer iOS Traffic | Boxer email client is bypassed from the auth access control from iOS. |
| 98347 | Netskope for IaaS | Custom Reports | Custom IAAS Report generation using RBAC role access is not working correctly. |
| 110316 / 108961 | Steering | False Positive for Fail close Client Config | When the Netskope client is disabled and reenabled from the tenant UI, you may see a false positive indicating that the client is in a fail closed state in the device details page. |
| 111027 | Steering | Client Auto-uninstall | User delete from the web UI is not working correctly for the client auto-uninstall.
Note: Once the uninstall is successful, you must move the app to the trash.
|
| 111686 | Steering | Device Classification | Device classification with the cert check option is not working correctly. |
| 107146 | Steering | Allow NS Client IdP | In this release, we have added exception ns-auth domain in the Fail Closed exception list. |
| 110839 | Steering | Internet Connectivity | MAC users may have issues with internet connectivity when their computer is in a prolonged sleep state when the Netskope client and GlobalProtect VPN are installed. |
| 105332 | Web UI | User Justification | There are discrepancies in the User Notification Block page logo size. |
| Issue Number | Category | Feature | Issue Description |
|---|---|---|---|
| N/A | API | REST API V2 | Netskope inadvertently released documentation for the REST API V2 in the online help. This is an unreleased feature and will be removed in the next release. |
| 109592 | App Connector | Application and Page Events Field Value | The macOS 11 version is shown as "Unknown" in SkopeIT events. |
| 113512 | Private Access | Time Based Policy for Realtime Protection Policies | The Policy Schedule feature is visible for Private App based policies but does not enforce the time-based configuration. This is a limitation in Release 79. This is visible in the UI by going to Policies > Realtime Protection. |
To contact support, reference Dell Data Security International Support Phone Numbers.
Go to TechDirect to generate a technical support request online.
For additional insights and resources, join the Dell Security Community Forum.
Netskope
19 Dec 2022
8
Solution