We are excited to announce a new version of InTrust 11.4.2 is now available for download.
Look what's new:
- Alerts on more suspicious logons
- The new "Multiple logons by the same user from different workstations" rule helps you capture situations where a set of credentials is shared by a group of people or has been stolen by an attacker and is being tried on multiple computers at once. These incidents are tricky because they slip through the cracks if you are only focusing on individual workstations. The rule is based on making the InTrust server analyze incoming audit data from multiple monitored computers. To minimize false positives, the rule comes with a flexible set of parameters that let you fine-tune the analysis, including the logon types you want to watch for. The rule is located in the Advanced Threat Protection | Windows/AD Suspicious Activity | Gaining User Access | Suspicious logons rule folder.
- Support for Exchange Server 2019 Auditing
- The Exchange auditing capabilities of InTrust have been extended to Exchange Server 2019.
- Solaris Knowledge Pack distribution resumes
- The Knowledge Pack for Solaris has been rebuilt for this version of InTrust, and you don't need to get it from a previous version anymore.
- HP-UX auditing and real-time monitoring support is discontinued
- This InTrust release does not include HP-UX related components or configuration items. It is not expected that future versions will provide them.
Please see the Release Notes for details on enhancements, corrections and improvements.
Check out this helpful knowledge article:
How do I change the password of an InTrust Organization installation?Be sure to check out the InTrust Product Support page to find solution articles, tips and tricks, tutorials, documentation, notifications, life cycle tables, training, and a product user forum.