Security Management System Release Notes

Similar documents
Security Management System Release Notes

Security Management System Release Notes

Data collected by Trend Micro is subject to the conditions stated in the Trend Micro Privacy Policy:

Data collected by Trend Micro is subject to the conditions stated in the Trend Micro Privacy Policy:

TippingPoint Intrusion Prevention System Release Notes

Privacy and Personal Data Collection Disclosure. Legal Notice

Managing CX Devices in Multiple Device Mode

TippingPoint Threat Protection System Release Notes

Stonesoft Management Center. Release Notes Revision A

akkadian Provisioning Manager Express

KYOCERA Net Admin User Guide

Cisco TelePresence VCS Cluster Creation and Maintenance


Stonesoft Management Center. Release Notes Revision A

Privacy and Personal Data Collection Disclosure. Legal Notice

Managing GSS Devices from the GUI

System Software Updates

Stonesoft Management Center. Release Notes for Version 5.6.1

Device Management Basics

SOURCEFIRE 3D SYSTEM RELEASE NOTES

Stonesoft Management Center. Release Notes Revision B

F5 BIG-IQ Centralized Management: Device. Version 5.3

Release Notes for the Cisco Global Site Selector, Release 4.1(1)

Red Hat JBoss Enterprise Application Platform 7.2

Licensing the Firepower System

Cisco Unified CM Disaster Recovery System

Device Management Basics

StoneGate Management Center. Release Notes for Version 5.3.4

Device Management Basics

BIG-IP Analytics: Implementations. Version 12.1

Cisco Expressway Cluster Creation and Maintenance

Red Hat JBoss Enterprise Application Platform 7.0

KYOCERA Net Viewer User Guide

McAfee Network Security Platform 9.1

PowerSchool 7.6 Release Notes PowerSchool Student Information System

GSS Administration and Troubleshooting

RELEASE NOTES Version 2

McAfee Security Management Center

VE6023 Telephone Page Server User Manual

SOURCEFIRE 3D SYSTEM RELEASE NOTES

IQSweb Installation Instructions Version 5.0

McAfee Advanced Threat Defense 3.4.4

Configure the Cisco DNA Center Appliance

Licensing the Firepower System

Install your TPS 440T and 2200T security devices

NGFW Security Management Center

vcenter Server Appliance Configuration Modified on 17 APR 2018 VMware vsphere 6.7 VMware ESXi 6.7 vcenter Server 6.7

Legal Notes. Regarding Trademarks KYOCERA MITA Corporation

SafeConsole On-Prem Install Guide

NGFW Security Management Center


F5 BIG-IQ Centralized Management: Device. Version 5.2

Data collected by Trend Micro is subject to the conditions stated in the Trend Micro Privacy Policy:

Task Scheduling. Introduction to Task Scheduling. Configuring a Recurring Task

SOURCEFIRE 3D SYSTEM RELEASE NOTES

CloudLink SecureVM. Administration Guide. Version 4.0 P/N REV 01

Configuring Cisco TelePresence Manager

Legal and notice information

NGFW Security Management Center

Legal Notes. Regarding Trademarks KYOCERA MITA Corporation

Dell Storage Compellent Integration Tools for VMware

Stonesoft Management Center. Release Notes Revision B

KYOCERA Net Viewer 5.3 User Guide

UDP Director Virtual Edition Installation and Configuration Guide (for Stealthwatch System v6.9.0)

Oracle Database Firewall. 1 Downloading the Latest Version of This Document. 2 Known Issues. Release Notes Release 5.

Frequently Asked Questions About Performance Monitor

Adding a High Availability System

KYOCERA Net Admin Installation Guide

(Document Insight Evaluation Title) Quick Start Guide (Product Version 10.0

Dell License Manager Version 1.2 User s Guide

STRM Log Manager Administration Guide

Barracuda Firewall Release Notes 6.5.x

NGFW Security Management Center

Cluster creation and maintenance

NGFW Security Management Center

OpenManage Integration for VMware vcenter Quick Install Guide for vsphere Client, Version 2.3.1

Cisco Cloud Services Platform 2100 Quick Start Guide, Release 2.2.5

Dell EMC License Manager Version 1.5 User's Guide

Release Notes Fiery X3eTY 35C-KM version 2.01 and Fiery X3eTY 30C-KM version 1.01

McAfee Network Security Platform 8.3

This release of the product includes these new features that have been added since NGFW 5.5.

StoneGate Management Center. Release Notes for Version 4.1.2


Cisco WebEx Meetings Server Administration Guide

Cisco WebEx Meetings Server Administration Guide Release 1.5

PCoIP Management Console Release Notes. TER Issue 10

OpenManage Integration for VMware vcenter Quick Install Guide for vsphere Client Version 3.0

NGFW Security Management Center

Accessing SGM Data from a Web Browser

The following topics explain how to get started configuring Firepower Threat Defense. Table 1: Firepower Device Manager Supported Models


Product Guide. McAfee Endpoint Upgrade Assistant 1.4.0

Silk Performance Manager Installation and Setup Help

F5 BIG-IQ Centralized Management: Local Traffic & Network. Version 5.2

Disaster Recovery System Administration Guide for Cisco Unified Communications Manager Release 8.0(2)

Read the following information carefully, before you begin an upgrade.

Network Security Platform 8.1

Cisco Threat Intelligence Director (TID)

This document contains important information about the current release. We strongly recommend that you read the entire document.

High Availability Synchronization PAN-OS 5.0.3

Transcription:

Security Management System Release Notes Version 5.1.1 To ensure that you have the latest versions of product documentation, visit the Online Help Center. Important notes You can upgrade the SMS to v5.1.1 directly from SMS v4.4 or later. If you are upgrading from a release earlier than v4.4 you must first upgrade to SMS 4.4, log in to the SMS to activate a DV, and then upgrade to v5.1.1. For assistance with upgrades from older systems, contact the Technical Assistance Center (TAC). If your SMS system is operating in High Availability (HA) mode, you must break HA and upgrade each SMS independently before re-establishing your SMS HA cluster. The time required to upgrade will vary based on the version from which you are upgrading and the quantity of data to migrate. Learn more. End of support for NGFW products was announced on December 17, 2015. SMS management support and related bug fixes and patches for NGFW management will continue through the end of support period (January 31, 2019) for the NGFW hardware; however, this SMS release has removed support for NGFW management. SMS management support for NGFW will only occur on SMS 5.0.1. When an SMS upgrades to 5.1.1 all NGFW devices that are managed on it become automatically unmanaged. If you attempt to re-manage them or add a new one, an error message returns. Upgrade limitations Upgrading SMS on Gen6 hardware is not supported in this release. Learn more in Product Bulletin 1041. Gen6 is a hardware platform that shows as system model SMS H1 in the SMS CLI. To determine your system model, run the get sys.model command from the SMS CLI: smsdev SMS=> get sys.model System model (sys.model) = SMS H1 Attempting to upgrade to this release on Gen6 hardware will result in an error. vsms no longer allows upgrades to systems that do not meet the minimum disk space and memory requirements. To add disk space you must redeploy your vsms, so ensure your system meets the requirements before installing or upgrading. To upgrade, first back up your vsms, redeploy a 5.1.1 vsms, and then restore your backup. Learn more in the vsms Getting Started Guide. 1 Security Management System Release Notes

Product version compatibility SMS v5.1.x SMS v5.0.x SMS v4.6.0 SMS v4.5.0 SMS v4.4.0 TPS TOS v5.1.x TOS v5.0.x TOS v4.1.0 vtps TOS v5.1.x TOS v5.0.x TOS v4.0.2 TOS v4.0.2 IPS TOS v3.8.4 Identity Agent v1.0.0 v1.0.0 v1.0.0 v1.0.0 v1.0.0 Software updates and migration The estimated times noted in this table apply to users upgrading from SMS v4.5 and later. Users upgrading to v5.1 directly from SMS v4.4.0 will require more time; refer to the Release Notes for your v4.4.x version. Step Task Process Estimated time SMS status 1 Download upgrade package. Manual Varies 1 Available 2 Install upgrade package. Manual 2-10 minutes Unavailable 3 Migrate data. Automatic 4 Migrate report data. Automatic 30 to 90 minutes 2 Unavailable Up to 2 hours 3 Available 1) Network speed determines the time to download 800+ MB file. 2) Depends on the amount of data to migrate. The SMS automatically reboots after step 2 and is not available for logins until step 3 has completed. Do not reboot the SMS during this time. 3) The SMS is available while report data is migrating, but performance may seem slow until migration completes. When this task is complete, a message appears in the SMS Audit Log. 2 Security Management System Release Notes

Release contents Description You can import the Geo Locator Database from the TMC. You can also import Geo IP files from MaxMind. The SMS supports certain GeoLite Legacy and GeoLite2 databases (GeoLite2 City). Zipped database files must be in CSV format. Download the GeoIP database. In environments with high reputation activity and a large number of devices, distribution failures with a 'Too many open files' error no longer occur. Reference 125539 124848 Inspection events now display correctly in the SMS interface. Previously, the SMS updated the parent device group while refreshing the device at the same time, causing the device group to be overwritten. Now, SMS refresh updates the parent device group before committing the data, resulting in correct inspection events. The Device Group editor no longer supports removing devices in a stack. To modify stack membership, use the stack editor. 125079 125126 A new syslog field is now available for actionsetname. 117620 Restoring a filter to category settings now correctly removes the filter override. Adding a filter comment no longer forces a filter to be overridden. 124137 An issue causing an SMS filesystem to become full and experience degraded performance has been corrected. 124578 SMS no longer incorrectly names custom filters from the DV toolkit. 124605 SMS is now able to properly import and merge a profile that has reputation filters with mismatching tag categories. 124785 Changes to Rep DV Country Tag Category will no longer generate system log error message. 124292 On the Event Details page, when using the left/right arrow buttons to navigate from an event with additional data to one that does not include additional data, the additional data panel is now removed. SMS now saves alterations to tables (such as resized column widths) within logs viewable from the SMS client. 105332 122742 3 Security Management System Release Notes

By default, sending email on reputation feed download is turned off. The download typically occurs every 2 hours. 124852 DV activation failures due to conflicts with URL forwarding have been addressed in this release. 123295 An issue causing irregular character strings to appear in the audit log records under certain circumstances has been addressed. 123383 An issue with reports containing un-escaped special characters has been addressed. 123973 You are now able to unlock advanced DDos filters from the SMS interface. 124599 Device management performance improvements are included in this release. 125138 Traffic management filters with IPv6 entries that had source and destination of ANY IPv6, and a user-defined IPv6 subnet of '::0/0', and migrated from 4.6 would have resulted in events on devices even though appropriate traffic management trust filters were configured for the IP address. This issue has been addressed and no longer occurs in this release. 125161 Issues with profile overrides and exceptions have been addressed in this release. 125776 Device hostname configuration now supports non-standard top-level domain names. 125580 Restarting SMS while distributions are in queue no longer suspend the distributions. Restarting in-queue distributions after a restart are also now successful. 126028 Improved threadpool management and usage issues have been addressed in this release. Login failures to the SMS client no longer occur, and port statistics no longer show as blank. 125889 The requirement for Bugtraq ID and CVE ID to end with a comma for Qualys-CSV file imports has been removed. 125852 When a stack is in a degraded state, it no longer shows a special icon or fallback. The degraded state now shows only on the Summary tab. 126110 Filter descriptions now display https links as active links. 125274 4 Security Management System Release Notes

Known issues Description A filter comment search returns results only if the search contains a consecutive string of alphanumeric characters with no spaces or special characters. Reference 121433 If you change the SNMP community string from 'public' you must reboot the SMS in order to restart SNMP services. 123299 When you run a Device Traffic IPS Physical Port report for a device group in which one of the devices has been replaced, the system generates an empty report when you identify the IPS device by name instead of specific ports. To work around this issue, run the report from specific segments or run reports using IPS Devices Events Traffic. 120815 Although SMS allows you to add more than 1024 SSL policy exceptions by using groups, this results in a deployment failure. Limit policy exceptions to 1024 for the best performance. 124581 Although SMS allows you to enter DNS domain names that exceed the 254 limit by 1 character, this returns an error on the device. Do not enter domain names longer than 254 characters. 124189 Be sure to select a supported certificate file for SSL inspection. You must select greater than 1K key size. 121879 Product support For assistance, contact the Technical Assistance Center (TAC). Copyright 2018 Trend Micro Incorporated. All rights reserved. Trend Micro, the Trend Micro t-ball logo, TippingPoint, the TippingPoint logo, and Digital Vaccine are trademarks or registered trademarks of Trend Micro Incorporated. All other company and/or product names may be trademarks of their respective owners. 5 Security Management System Release Notes

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback