ER 2.12.1 Release Notes

The Release Notes provide information about new features, platforms, data types, enhancements, bug fixes and all the changes that have gone into Enterprise Recon 2.12.1.

For a quick view of the changes since the last Enterprise Recon release, see Summary of Changes.

Contents:

1. Highlights
   • New and Improved Features
   • New Platform Integrations
   • Important Security Enhancements

   • New and Improved Data Types

   • Early Access
2. Important Notes
   • Critical: One Way Upgrade to Enterprise Recon 2.12.1

   • Critical: End of Support for CentOS 7 Master Server

   • Upcoming End-of-Support Platforms and Features
3. Enterprise Recon 2.12.1 Changelog
   • What’s New?
   • Enhancements
   • Bug Fixes
4. Features That Require Agent Upgrades

New and Improved Features

Quickly Search, Filter, and Select Target Locations as Scan Locations

Expanding on the ability to search and filter Targets and Target groups (introduced in the previous release), you can now quickly search, filter, and select specific Target locations (i.e., specific locations and/or folders under Target groups) using the name/keyword search bar and search filter criteria functionalities when starting a new or modifying a scheduled scan in the Select Locations page.

To start using this enhancement, refer to the Start a Scan section.

Important Security Enhancements

Critical Security Updates for ER2 Master Server Appliance

This release of Enterprise Recon 2.12.1 includes security updates for Oracle Linux 8, the base operating system of the ER2 appliance. These critical updates address recently identified vulnerabilities and improve system stability.

For users with Enterprise Recon Master Server appliance (ER2 Master Server installed from ISO), we recommend updating your Master Server to Enterprise Recon 2.12.1 to ensure your appliance remains secure and stable.

This update has no impact on users with Master Servers installed from RPM.

New Platform Integrations

Scan and Remediate Windows Server 2025 Environments

NEW You can now scan and remediate Windows Server 2025 environments in Enterprise Recon 2.12.1. Scanning (local scanning, agentless scanning, and remote scanning via SSH), remediation, access control actions, data classification, and reporting features are supported for the newly added Windows Server operating system.

An Agent Upgrade is required to scan Windows Server 2025 Targets.

New and Improved Data Types

Strengthen Security for Turkish MERSIS Number Data

NEW The MERSIS number is a unique 16-digit identification number that is assigned to companies and commercial enterprises in Turkey. The MERSIS number serves as the official digital identity of a company for business procedures done electronically on the Central Registry Recording System (Merkezi Sicil Kayıt Sistemi or MERSIS).

As the centralized database for business records and transactions, MERSIS contains sensitive business data that may be at risk if MERSIS numbers are not properly secured.

To protect Turkish business data and prevent potential risks, Enterprise Recon 2.12.1 brings two new data types: the Turkish MERSIS (Personal) Number that can scan and detect MERSIS numbers for unincorporated businesses (such as freelancers or sole proprietors) and the Turkish MERSIS (Corporate) Number that can scan and detect MERSIS numbers for incorporated businesses.

Early Access

The Early Access stage allows Ground Labs to collect a round of usability and performance feedback before a feature is made generally available.

If you would like to request access to any of the Early Access features, please get in touch with the Ground Labs Support Team for assistance.

Early Access Features

• Apache Hive - Enables sensitive data discovery on Apache Hive (and Cloudera Hive) database Targets.

Important Notes

CRITICAL: One Way Upgrade to Enterprise Recon 2.12.1

Certain data sets, storage formats and components for the Master Server have been updated in Enterprise Recon 2.12.1. Therefore once the Master Server is updated from Enterprise Recon 2.12.0 (and below) to ER 2.12.1, the datastore is not backward compatible and downgrading ER 2.12.1 to an earlier version is not supported.
Please contact the Ground Labs Support Team for assistance with upgrading the Master Server.

CRITICAL: End of Support for CentOS 7 Master Server

Master Server installations with CentOS 7 as the base operating system are no longer supported in Enterprise Recon 2.12.1. Consequently, upgrading a CentOS 7-based Master Server to version 2.12.1 through an online update is no longer possible.

If you have existing installations of CentOS 7-based Master Server, create a backup of your Master Server datastore and datastore configuration file, and migrate to Enterprise Recon on the new operating systems to continue receiving support for new features and product updates.

See How To Install the Master Server Appliance (from ISO) or How To Install the Master Server on RHEL 8 (from RPM).

Upcoming End-of-Support Platforms and Features

The following platforms and/or features will reach end of support and be removed in the upcoming Enterprise Recon 2.13.0 release:

• macOS Workstation Targets
  • macOS Monterey 12
• Email Targets - Exchange Domain
  • Exchange Server 2013
• Server Targets - Confluence On-Premises
  • Confluence Data Center 7.4 LTS
  • Confluence Data Center 7.19 LTS
• Server Targets - SharePoint Server
  • SharePoint Server 2013
• Network Storage Locations - Hadoop Clusters
  • Apache Hadoop 2.8.0 and older
• Database Targets
  • MySQL 5.7 and older
  • Oracle Database 18c and older

Changelog

The Changelog is a complete list of all the changes in Enterprise Recon 2.12.1.

What’s New?

• New Data Types
  • NEW Turkish MERSIS (Personal) Number
  • NEW Turkish MERSIS (Corporate) Number

• New Platform Integrations:

  • NEW Windows Server 2025

Enhancements

• Improved Features:

  • You can now search, filter, and select Target locations using the name/keyword search bar and search filter criteria functionalities when starting a new or modifying a scheduled scan.

  • Updated client library for optimized memory management when scanning Oracle database Targets. Requires Agent Upgrade for the updates to take effect.
  • Updated TLS protocol library for increased application security.
  • Minor UI enhancements.

Bug Fixes

• Scans for Exchange Online Target locations could not be completed successfully if location exclusion filters were applied to exclude specific folders (such as Calendar, Contacts, Notes, etc.) for a user account or user account in a group.
• In certain scenarios, "File Modified" metadata information would sometimes be incorrectly displayed for match locations of certain Targets.
• Some user accounts (for OneDrive), channels (for Microsoft Teams), notebooks, sections, section groups, and pages (for Microsoft OneNote) in Microsoft 365 Targets locations were sometimes not being displayed if the Target location(s) added had more than 1000 locations. For the fix to take effect, delete and re-add the impacted Microsoft 365 Target locations.

Features That Require Agent Upgrades

Agents do not need to be upgraded along with the Master Server, unless you require the following features in Enterprise Recon 2.12.1:

• You can now scan servers that run Windows Server 2025 (x64).
• Updated client library for optimized memory management when scanning Oracle database Targets.

For a table of all features that require an Agent upgrade, see Agent Upgrade.

Ensuring we are delivering the best technology for our customers is a core value at Ground Labs. If you are interested in future early builds of Enterprise Recon with forthcoming features, please email your interest to product@groundlabs.com.