ER 2.11.0 Release Notes

The Release Notes provide information about new features, platforms, data types, enhancements, bug fixes and all the changes that have gone into Enterprise Recon 2.11.0.

For a quick view of the changes since the last Enterprise Recon release, see Summary of Changes.

Contents:

1. Highlights
   • New and Improved Features
   • New Platform Integrations

   • New and Improved Data Types

   • Early Access
2. Important Notes
   • Critical: One Way Upgrade to Enterprise Recon 2.11.0
   • Critical: End of Support for CentOS 7 Master Server
   • End-of-Support Platforms and Features in Enterprise Recon 2.11.0
   • Upcoming End-of-Support Platforms and Features
3. Enterprise Recon 2.11.0 Changelog
   • What’s New?
   • Enhancements
   • Bug Fixes
4. Features That Require Agent Upgrades

New and Improved Features

Easily Set Up Global Filters From Templates via the Global Filter Templates

Enterprise Recon 2.11.0 introduces the Global Filter Templates (version 1.0) feature that enables you to effortlessly set up Global Filters from the list of templates designed to remove commonly found false positives.

In addition to the templates, the following Global Filter-related enhancements are also included:

• The Global Filters that are created both from a template and/or from scratch can now be labeled and described in the new "Filter Name" and "Description" fields, allowing you to easily identify them from your list of existing Global Filters.
• The Global Filters page has been improved with the addition of new buttons/columns and navigation changes below:
  • The new "Name and ID" and "Filter Description" columns for a more comprehensive overview of all your existing Global Filters,
  • The new "Last Modified" column to quickly identify the most recently added or modified Global Filters and/or sort them by their last modification date,
  • The new "On-Off" toggle button to support enabling or disabling your existing Global Filters as needed later on, and
  • The edit and delete icons now conveniently located in the first column to easily remove filters from the list or modify the filter name, value, description, and the Targets/Target Groups the filter applies to.

For more information, see Global Filters.

New Platform Integrations

Scan Newly Supported Oracle Linux and FreeBSD Versions

NEW Oracle Linux 8 and FreeBSD 14 servers are now supported in Enterprise Recon 2.11.0. Scanning (local scan, agentless scan, and remote scan via SSH), remediation, access control actions, and reporting features are supported for both newly added server operating systems.

An Agent Upgrade is required to scan Oracle Linux 8 and FreeBSD 14 Targets.

New and Improved Data Types

NEW Enterprise Recon 2.11.0 brings extended coverage for driver’s license number data types. With the new Canadian Driver License Number data type, you can now scan and remediate unsecured driver's license numbers for the supported Canadian provinces and territories.

Enterprise Recon 2.11.0 has enhanced its support for two existing Portuguese-based data types. The updated Portuguese Fiscal Number data type can now detect taxpayer identification numbers that begin with "3", "4", and "7", and the updated Portuguese Citizen's Card data type can now detect citizen's card numbers in space or dash separator format, regardless of the letter case.

Also included in ER 2.11.0 is the updated United States Individual Taxpayer Identification Number (ITIN) data type that can now detect identification numbers with fourth and fifth digits ranging from "50" to "65", inclusive.

Early Access

The Early Access stage allows Ground Labs to collect a round of usability and performance feedback before a feature is made generally available.

If you would like to request access to any of the Early Access features, please get in touch with the Ground Labs Support Team for assistance.

Early Access Features

• Apache Hive - Enables sensitive data discovery on Apache Hive (and Cloudera Hive) database Targets.

Important Notes

CRITICAL: One Way Upgrade to Enterprise Recon 2.11.0

Certain data sets, storage formats and components for the Master Server have been updated in Enterprise Recon 2.11.0. Therefore once the Master Server is updated from Enterprise Recon 2.10.0 (and below) to ER 2.11.0, the datastore is not backward compatible and downgrading ER 2.11.0 to an earlier version is not supported.
Please contact the Ground Labs Support Team for assistance with upgrading the Master Server.

CRITICAL: End of Support for CentOS 7 Master Server

Master Server installations with CentOS 7 as the base operating system is no longer supported in Enterprise Recon version 2.11.0 and in future Enterprise Recon releases.

Starting from version 2.9.1, Enterprise Recon is provided as two options.

Option:

1. UPDATE An appliance running on top of an Oracle Linux 8 operating system (OS).
2. NEW An RPM software package to be installed on a server running the Red Hat Enterprise Linux (RHEL) 8.6 / 8.8 (LTS) OS.

The upgrade aims to align Enterprise Recon with contemporary industry-standard operating systems, ensuring compatibility and performance optimization.

For more information, please see ER 2.9.1. - Oracle Linux 8 ISO and Red Hat Enterprise Linux (RHEL) 8 RPM.

End-of-Support Platforms and Features in Enterprise Recon 2.11.0

The following platforms and/or features have reached end of support in Enterprise Recon:

• Linux 2.4 Node Agents
  To continue scanning Linux server Targets, install the Linux 2.6 Node Agent instead.
• Microsoft Windows Desktop Targets
  • Windows 8
  • Windows 8.1
• Microsoft Windows Server Targets
  • Windows Server 2008 R2
• Linux Server Targets
  • CentOS
  • Fedora
  • RHEL 6
  • SUSE
• UNIX Server Targets
  • AIX 7.1
  • FreeBSD 12
• macOS Workstation Targets
  • macOS Catalina 10.15
  • macOS Big Sur 11.5
• Email Targets - Exchange Domain
  • Exchange Server 2010
• Email Targets - HCL Notes
  • HCL Notes client 8.5.3
• Database Targets
  • MariaDB 10.3
  • Microsoft SQL 2008
  • MongoDB 4.0.28 and older
  • PostgreSQL 12 and older
  • Sybase/SAP ASE 15.7
  • Teradata 16.0.0.4 and older

Upcoming End-of-Support Platforms and Features

The following platforms and/or features will reach end of support and be removed in a subsequent release of Enterprise Recon:

• Server Targets - Confluence On-Premises
  • Confluence Data Center 7.4 LTS
• Network Storage Locations - Hadoop Clusters
  • Apache Hadoop 2.8.0 and older

Changelog

The Changelog is a complete list of all the changes in Enterprise Recon 2.11.0.

What’s New?

• New Data Types
  • NEW Canadian Driver License Number

• New Platform Integrations:

  • NEW FreeBSD 14
  • NEW Oracle Linux 8

Enhancements

• Improved Features:
  • Clearer error messaging when logging inaccessible locations related to Oracle blobs that exceed the scan memory size limit.
  • Disallowed the use of weak ciphers for SSH connections to and from the Enterprise Recon appliance for increased security.
  • Improved performance with respect to memory allocation for datastore operations.
  • Revamped the design of horizontal filters in the Dashboard and Targets page for improved usability.
  • Added the "Active" filter option in the Schedule Manager page to give users the option to show or hide running and/or scheduled scans.
  • Various third-party library upgrades for increased application security.
  • Minor security and UI enhancements.

Bug Fixes

• In certain scenarios, probing or scanning Azure Storage Target locations would sometimes result in the "403 Server failed to authenticate the request. Make sure the value of Authorization header is formed correctly including the signature” error via the Enterprise Recon web UI and API.
• Oracle blobs larger than 4 KB in size were not being scanned completely. With this fix, scans for Oracle blobs larger than 100 MB must be allocated a higher memory size limit.
• Some rows were not scanned for Oracle database tables with more than 4.2 billion rows.
• SAP HANA blobs larger than 64 MB in size were not being scanned completely.
• "File Modified" metadata information would be incorrectly updated when applying MIP classification labels to supported file types via the Enterprise Recon web UI and API. Requires the MIP Runtime Package to be updated for the fix to take effect.
• The Quarantine confirmation window could not be displayed fully on screens with a vertical resolution of 800 pixels (or lower) when quarantining match locations in OneDrive Business Targets.
• Match samples for custom data types created from the built-in cardholder data types in Enterprise Recon were not auto-censored in the Match Inspector window and in the generated reports.
• Users would encounter a "code length overflow" error when trying to enable two-factor authentication (2FA) for ER2 user accounts. The error would occur if the combined character count for the login name and host name is equal to 106 to 126 characters.
• In certain scenarios, scanning user accounts in OneDrive Business Targets would result in the "Scan failed to start" error if inverted location exclusion filters were applied to the scan and a large number of locations were being excluded from the scan due to the applied filter.

Features That Require Agent Upgrades

Agents do not need to be upgraded along with the Master Server, unless you require the following features in Enterprise Recon 2.11.0:

• You can now scan Oracle Linux 8 and FreeBSD 14 Targets. Requires Linux and FreeBSD Agents.

For a table of all features that require an Agent upgrade, see Agent Upgrade.

Ensuring we are delivering the best technology for our customers is a core value at Ground Labs. If you are interested in future early builds of Enterprise Recon with forthcoming features, please email your interest to product@groundlabs.com.