Release Notes 7.3.1

See below for the detailed notes for 7.3.1. Customers head over to the Indeni Forum within Indeni Crowd to join the conversation around these capabilities. Need the latest build? Download Indeni.

Platform

New Features

Persistently exclude an issue item – Exclude an issue item from the issue page or Knowledge Explorer by defining an exclusion pattern. You can modify the pattern or remove it at any time.

Note: As part of this new feature, we are removing the ability to archive an issue item. The rationale is that you can use this new feature to state that you do not care about a specific issue. If you change your mind later, you can update the exclusion settings via Knowledge Explorer.

Specify thresholds – you can now specify thresholds for the number of issue items for a certain set of rules. For example, do not trigger an issue unless there are more than one NTP sync failures.

OAuth2 Authorization for ServiceNow Integration – supports the OAuth2 authorization framework.

Bug Fixes

  • DEVOPS-482 Coldstandby – complete system-backup folder is copied over instead of rsync for the differences
  • IS-5133 PAN API key is displayed in ERROR message
  • IS-5111 automation service – log configured by default to DEBUG level

Knowledge

New Features

  • New Check Point Auto-Triage Elements:
    • OSPF neighbour down
    • Cluster critical process (pnote problem) down
  • New Auto-Detect Elements for Check Point Management Servers:
    • IKP-4265 Alert if Syslog service is not running
    • IKP-4374 Alert if SNMP process is not running
  • New Auto-Detect Elements for Palo Alto Networks:
    • IKP-4258 IPSec tunnel state tracking
    • IKP-4260 Monitoring BGP Peers vs Group
    • IKP-4261 Panorama UserID Monitoring
    • IKP-4370 CVE-2020-2021 PAN-OS: Authentication bypass in SAML authentication (CVSS 10)
  • Enhancements for Palo Alto Network devices:
    • IKP-4009 Track DP CPU usage at the plane level instead of core level
    • IKP-4257 Graph the rx/tx VPN tunnel interfaces
    • IKP-4262 Visualize bond interface utilization

Bug Fixes

Check Point:

  • IKP-3664 Network interfaces – added missing information to device info: type, mtu, speed, duplex
  • IKP-4272 Failure to analyze device due to incorrect user definition
  • IKP-4330 Asg-drop-monitor script broken by Checkpoint Hotfix
  • IKP-4379 Interrogation failure for checkpoint-cloudguard-interrogation.ind.yml
  • IKP-4390 Alert when Log Export process go down

Palo Alto Networks:

  • IKP-4283 PAN interrogation – “system-mode: management-only” should be identified as Panorama
  • IKP-4290 ADE: Dynamic-Updates “Schedule” value not parsed correctly
  • IKP-4341 panos-content-update-schedule.py – IndexError: list index out of range
  • IKP-4346 ATE: VPN tunnel down – failure to identify GW name
  • IKP-4351 ADE: thruput bad values reported by “<show><system><state><filter-pretty>sys.s*.p*.rate”
  • IKP-4369 ATE: Gateway is not communicating with the management – ping format error
  • IKP-4373 panos_anti_spyware_info_low_severity – parser failure on empty result