Release Notes
March 2018
These release notes provide information about the Quest® IT Security Search release.
Topics:
IT Security Search provides IT administrators, IT managers and security teams with a way to navigate the expanse of information about the enterprise network.
New features in IT Security Search 11.3.2:
Recovery Manager for Active Directory 9.0
Recovery Manager for Active Directory 8.8.1
Recovery Manager for Active Directory 8.8
See also:
Table 1: General enhancements
Enhancement | Issue ID |
---|---|
Members of the computer local Administrators group on the IT Security Search server do not automatically become IT Security Search administrators anymore. |
857 |
IT Security Search administrators can now be specified through Active Directory group membership. |
887 |
Facet behavior has been improved: when you click Show more, IT Security Search now displays all filters instead of adding five items at a time. |
883 |
You can now resize columns in the search result table. |
834 |
There is now an easy way to fill in the list of repositories in InTrust connector settings. Use the Select all available repositories link instead of selecting repositories one by one.
Table 2: General enhancements
Enhancement | Issue ID |
---|---|
If an object is outside an operator's explicit scope, information about it should be hidden from the operator. |
473 |
"Whom" field values should be context-sensitive like "Computer " and "Who" field values. |
475 |
Make the "Result" field available for Change Auditor data. |
394 |
Add a details page for events. |
533 |
Improve documentation on SSL certificate requirements. |
531 |
Make the "Organisational Unit" field clickable for computers. |
528 |
Add fields for Office 365-related Change Auditor events. |
627 |
The following is a list of issues addressed in this release.
Table 3: Resolved issues
Resolved Issue | Issue ID |
---|---|
The IT Security Search installer doesn't check the operating system version. |
864 |
In connector settings, pressing Enter switches tabs if the selected connector is not the first. |
844 |
In the Restore Object dialog box, there is no way to tell whether you are trying to restore the correct attribute. |
140 |
Due to issues in previous IT Security Search versions, you may find yourself in a situation where incorrect Recovery Manager for AD settings are saved. Because of this, IT Security Search can fail to start. |
839 |
An indexing error occurs during collection of computer data from Enterprise Reporter if a computer was removed and added again with the same name in Active Directory. |
856 |
Security vulnerability: you can restore an Active Directory object from an OU that is out of your scope as an IT Security Search operator. |
853 |
When you export results to PDF, some non-ASCII characters are incorrect in the resulting documents. |
669 |
Table 4: Resolved issues in InTrust 11.3.1
Resolved Issue | Issue ID |
---|---|
If you change only the time range (but not the date range) after a search and try to search again, the new search does not start. |
690 |
The Files and folders where this user has permissions (both direct and indirect) action link fails to take Deny permissions into account. |
692 |
There is no "busy" animation on the Security tab to indicate activity. |
650 |
Security vulnerability: if the results of a search contain JavaScript code instead of an attribute value, then this code is executed on the client side during result formatting. |
212 |
If event has a file path in its description, this path is automatically converted to a hyperlink for convenience. However, in Change Auditor events this works only for files, not folders. |
821 |
Table 5: Resolved issues in IT Security Search 11.3 Updates 1 and 2
Resolved Issue | Issue ID |
---|---|
If you specify a custom port instead of the default 8087 when you install the IT Security Search Warehouse API component, then the Active Roles connector will not be able to read Active Roles events. A symptom of this is the following error when you try the Test Connection link on the Active Roles connector configuration page: Connection error: Data attendant last error 'An error occurred while sending the request. To work around this issue, open the <IT_Security_Search_installation_path>\Connectors\ActiveRoles\ITSS.ARSConnector.dll.config file and change the port number as necessary in the following line: <add key="WarehouseHttpPort" value="8087" /> |
666 |
The link to the demo screen for a currently disabled connector doesn't work, because IT Security Search tries to perform a real search instead. |
677 |
If an Active Directory object has been deprovisioned by Active Roles, the link to details about such an object doesn't work. |
644 |
The number shown in the "Results found:" label may not match the number of items actually shown in the grid. |
684 |
The Who has direct or indirect access permissions on this file action link fails to take Deny permissions into account. |
576 |
Clicking Rebuild Index before clicking Apply in Enterprise Reporter connector options causes an error. |
654 |
The event page shows native field names where it should show display names. |
656 |
After you apply a filter by Who, the results pane shows more results than it should. |
759 |
If you are looking at event details and then follow a link to the details for some other record type, then the date range is reset. |
760 |
The default time range should be 00:00 to 23:59. |
764 |
When you select the date range in the calendar control, changing the month above either calendar half also changes the month in the other half. |
767 |
Table 6: Resolved issues in IT Security Search 11.3
Resolved Issue | Issue ID |
---|---|
The IT Security Search UI stops working if the authenticated user's display name contains non-ASCII characters. |
609 |
If the account used for connecting to InTrust is denied the rights to log on interactively to the IT Security Search server, the InTrust connector does not work. |
554 |
© ALL RIGHTS RESERVED. Terms of Use Privacy Cookie Preference Center