Help Center
Quick Start
- Overview
- System requirements
- Minimum privileges required
- Default port configuration
- Installing DataSecurity Plus
- Uninstalling DataSecurity Plus
- Starting DataSecurity Plus
- Launching DataSecurity Plus
- Configuring your solution
- Licensing details
- Applying a license
File Auditing
- About File Auditing
- Domain configuration
- File server configuration
- Failover cluster configuration
- NetApp server configuration
- Workgroup configuration
Setting up File Audit
Dashboard
Reports
Alerts
Configuration
Storage Configuration
File Analysis
- About File Analysis
- On-Demand Reports
Setting up File Analysis
Dashboard
Reports
Alerts
Configuration
Data Risk Assessment
- About Data risk assessment
Setting up Data risk assessment
Dashboard
Reports
Ownership analysis
Configuration
Endpoint DLP
- About Endpoint DLP
Setting up Endpoint DLP
Reports
Alerts
Prevention policies
Configuration
Cloud Protection
- About Cloud Protection
- Gateway Server Configuration
- Certificate Authority Configuration
- Gateway Configuration in Endpoint
- Manage Certificate Trust Store
- Threat Analytics Database
- Manage Banned Applications
- Manage Authorized Applications
- Gateway Server Failover
- Two-way SSL configuration
- Global Insight
- Application Insight
- User Insight
- Shadow Application Insight
- Banned Application Insight
- Cloud App Discovery
- Cloud Access Reports
- Application Insights
- Shadow Cloud Application Reports
- Banned Cloud Application Reports
- File Upload & Download Reports
Setting up Cloud Protection
Dashboard
Reports
Control Policies
Storage Configuration
Administrative settings
- Technician configuration
- Notification filters
- Manage agent
- Agent settings
- SIEM integration
- Business hours configuration
- Two-factor authentication
- Workgroup configuration
- Security policy
Email configuration
General settings
- Connection
- Personalize
- DataSecurity Plus Server
- Privacy Settings
- Disk utilization
- Schedule Retention Policy
Policy Configuration
Release notes
2024
2023
2022
2021
2020
2019
2018
2017
2016
2015
Troubleshooting
- HTTP communication failure
- Dormant DataEngine
- Secure Gateway server failure
- RPC communication failure
- Known issues and limitations
- Known errors and solutions
Guides
- Agent document
- How to Migrate/Move DataSecurity Plus
- How to apply SSL certificate
- How to automate DataSecurity Plus database backup
- How to set alerts in DataSecurity Plus
- How to secure your DataSecurity Plus installation
DataSecurity Plus Release Notes
- All solutions
- File Audit
- File Analysis
- Data Risk Assessment
- Data Leak Prevention
- Cloud Protection
2024
Dec
Build 6190
All solutions
Feature
- Added a new tab titled Tasks that provides vital information, such as:
- Detailed records of the exported reports.
- The status of scheduled reports.
- Key backend processes that are critical for ensuring optimal performance.
Enhancement
- Customers will now receive a series of email reminders to ensure timely renewal of their DataSecurity Plus license . Notifications will be sent :
- 10 days before expiration.
- Five days before expiration.
- One day before expiration.
- On the day of expiration.
- One day after expiration.
Fix:
- A few security fixes have been implemented.
File Audit
Fixes
- An issue that prevented certain delete events from being audited when executed through a network share.
- Email notifications that were being sent for disabled servers.
- An issue that prevented NetApp servers from being enabled.
- An issue with the server health status message that incorrectly showed the alert retention policy was not working.
Risk analysis
A fix has been issued for:
- Stopping data discovery scans as soon as a configured server or share is deleted.
Enhancement
- Added two new criteria to the alert profiles, allowing users to receive alerts based on risk scores and the volume of sensitive data in files.
Endpoint DLP
Enhancements
- Users can now filter the Prevention Policy Reports and Source Based Reports to generate customized views.
- Users can now export the Alerts Report.
- Users can limit how many files can be validated against clipboard control profiles at once.
- Users can now choose to block bulk copy actions when the number of files copied exceeds the preconfigured limit.
Fixes have been issued for:
- High CPU usage across endpoints caused by the WMI provider host .
- An issue that restricted password-protected USB drives from being audited.
- An issue where the prompt message for blocked clipboard copy actions was not displayed in languages other than English.
- Errors caused by non-ASCII characters in passwords when generating SSL certificates. Users are now restricted to using only ASCII characters.
Cloud Protection
Features
- File downloads will now be audited and displayed in the reports.
- Included new reports that list:
- All download requests.
- Top actors uploading files.
- Top actors downloading files.
Sep
Build 6186
All solutions
Enhancements
- The PostgreSQL database has been updated from version 10.21 to 15.7.
- The DataSecurity Plus agent will no longer run on machines with .NET framework 4. It now requires version 4.5.
Aug
Build 6185
All solutions
Fixes have been issued for:
- Frequent session logouts caused by Tomcat server 9.0.80. This issue is resolved by updating to 9.0.87.
- An issue that prevented access to DataSecurity Plus when multiple products were integrated with Log360.
File Analysis
Feature
- Added a summary view of all reports, organized into four major segments, namely, storage-based, permission-based, folder-based, and owner-based. Users can analyze:
- The aggregate data from all available reports under each segment, i.e., number of files under each report, along with the combined data size of those files, e.g., 732 stale files occupying 5.19 GB.
- The status of the scheduled data collection processes.
Enhancement
- Tooltips are now available to make the reports and graphs easier to interpret.
Cloud Protection
Enhancements
- OpenSSL has been integrated into the gateway server to facilitate secure communication and to improve performance.
- The gateway server's ability to read data packets has been improved, offering better performance and increased stability.
- You can now audit and block files uploaded to Microsoft 365 via personal email accounts.
Fixes have been issued for:
- A few minor usability issues.
July
Build 6180
All solutions
Security fix
- To enhance security, auto-complete on the login credentials page of DataSecurity Plus has been restricted.
A fix has been issued for:
- An issue where folder events weren't restricted when an alert or audit profile was configured with the file size filter across the File Audit and Endpoint DLP modules.
File Analysis
Feature
Added new graphs for existing reports that depict the most notable details. They are:
- Top file types by file count, which depicts the distribution of file types.
- Top users by file count, which depicts the most active data owners.
- Top departments by file storage size, which depicts allocation of file storage across various departments.
Enhancements
- File Analysis reports have new columns that list department affiliations of data owners and file size on the disk.
- Reports will now list all instances of a hard link linked to a file.
A fix has been issued for:
- A discrepancy in the count between the server and folder views on the File Analysis dashboard.
Risk Analysis
Feature
- New data sources supported: Data discovery and classification can now be performed in SMB/CIFS shares in Windows workstations, NAS devices, and other non-Windows machines as well as in workgroup servers and workgroup workstations.
Enhancement
- Data Risk Assessment reports can be filtered based on the data source in which sensitive data instances are identified.
A fix has been issued for:
- False positives by updating the regular expression of the Canada Social Insurance Number and email address.
Endpoint DLP
Features
- Users can now add custom drives or folders under File Integrity Monitoring configuration.
- Workstations can be added by configuring organizational units (OUs) in AD. Any addition or deletion of a workstation within the OU is reflected within the product.
A fix has been issued for:
- An issue where a workstation couldn't be configured in the Endpoint DLP module when the DNS name was in an invalid format.
Cloud Protection
Enhancement
The Cloud Protection File Upload Control Policy configuration has been relocated from the Admin Console to the Cloud Protection module and will include URL filtering configuration.
Fixes have been issued for:
- An issue that flagged any Access Key entered as invalid during Threat Analytics configuration.
June
Build 6170
All solutions
Enhancement:
- A minor improvement has been made in the Manage Agent page to enhance user experience.
Security fix:
- To improve security, configured alert scripts can only be executed if they are located in the default alert scripts folder. Users who are updating to build 6170 must reconfigure script responses with files located in the default alert scripts folder.
A fix has been issued for:
- An issue that displayed deleted servers in the Manage Agent page and prevented users from deleting them.
File Audit
Enhancement:
- DataSecurity Plus supports REST API for ONTAP version 9.6 and above to manage FPolicy.
A fix has been issued for:
- An issue that recorded false Write Deny events while mapping a share.
File Analysis
A fix has been issued for:
- An issue that obstructed folder summary crunch for deduplicated folders.
Endpoint DLP
A fix has been issued for:
- An issue that prevented users from sending Outlook emails with preconfigured templates in certain instances.
Cloud Protection
Feature
- Updates to the working of Cloud Protection audit rules and predefined policies will now be synced daily with DataSecurity Plus' online database.
Enhancement
- The end-user error pages related to web app access have been redesigned to improve user experience and deliver clearer error messages.
A fix has been issued for:
- An issue that prevented users from accessing Cloudflare-protected websites through the gateway server.
May
Build 6150
Risk Analysis
Features
- Custom rules can be tagged by country, compliance, and type of information, in addition to custom tags that users create.
- Users can now use tags to quickly list relevant data discovery rules while configuring policies.
Apr
Build 6147
All solutions
Feature
- DataSecurity Plus now supports Duo Security Web v4 SDK, offering a simplified Duo login experience. As Duo will end its support for Web v2 SDK starting on March 30, 2024, we recommend that all users upgrade to Web v4 SDK.
Enhancements
- The working of default alert scripts has been improved.
- The configuration of email and script responses has been enhanced. Users can now view and choose alert responses from a list of configured scripts in the alertScripts folder.
Fixes have been issued for:
- An issue that caused DataSecurity Plus to run out of memory when the attachment size in the schedule report emails was greater than 20MB.
- HSTS vulnerability in HTTPS server.
- An issue that hindered manual agent installation and uninstallation on non-English machines.
File Audit
Enhancements
- The configuration of threshold-based alerts, script responses, and email notifications has been improved.
Fixes have been issued for
- An issue that affected the delivery of scheduling of reports in some cases.
- An issue that rendered file audit data unavailable for actions performed in NetApp share paths with Turkish characters.
File Analysis
Enhancement
- The local paths of files will be reported on using the credentials provided during source configuration as a fallback when the System account has insufficient permission.
Fixes have been issued for
- An issue that caused some files not to be listed in the tree view and reports.
- An error that is not being reported in on-demand reports when the System account has insufficient permissions over the target security principal.
- The DataEngine folder size growing due to frequent restarts of outdated agents during scans.
Data Risk Assessment
A fix has been issued for
- Incorrect share size in schedule status details when a share's size increases during a discovery scan.
Endpoint DLP
A fix has been issued for
- An issue that prevented the Location-Contains filter from working in the Network Share File Activity Monitoring report configuration.
Mar
Build 6141
All solutions
Security enhancements
- Stronger security controls have been implemented to custom reports that allow access only to their owners in the File Audit module.
- General security enhancements have been implemented.
Feb
Build 6140
Cloud Protection
Features
- The new Cloud App Discovery tab shows crunch-based information grouped by cloud apps, domains, and actors. Additionally, the app status, category, and reputation filters can be applied.
- The domain-based grouping in the Cloud App Discovery report has the provision to sanction or ban apps directly from the interface.
- Vendor and cloud app details are now included in the General and File Upload reports and are also presented in two new, dedicated reports for Top Vendors and Top Cloud Apps.
Build 6135
All solutions
Enhancements
- A vulnerable version (1.8.0_192) of the Java Runtime Environment used in the product has been upgraded to 1.8.0_362.
- The DataEngine has been upgraded from version 1205 to 1207.
- DataSecurity Plus now supports TLS version 1.3 for email configuration.
File Analysis
Fixes have been issued for:
- An issue with consequent file deletions from multiple report pages.
- An issue that caused CPU spikes during folder summary crunch.
Endpoint DLP
A fix has been issued for:
- An issue in the Chinese version of Endpoint DLP that prevented users from enabling the block option in the Clipboard Control (formerly known as File Copy Policy) configuration.
Jan
Build 6131
All solutions
Enhancement
- Minor improvements have been made on the Manage Agent page to enhance user experience.
Build 6130
All solutions
Announcement
- Support for 32-bit installations of DataSecurity Plus has been revoked. Users need to migrate to the 64-bit version to upgrade to build 6130 and upcoming versions.
Features
- Communication from the DataSecurity Plus agent to the product server is now secured by built-in agent authentication.
Enhancements
- Users have the option to disable automatic agent installation and updates under Agent Settings on the Manage Agent page.
- The file type categories Spreadsheets and Backup Files have been remapped to Office Documents and Data Files, respectively.
- Users who installed DataSecurity Plus versions prior to build 4016 with uncategorized file types under Other File Types will now have them remapped to the accurate categories.
Fixes have been issued for
- An issue that displayed deleted servers on the Manage Agent page.
- An issue with generating alerts and reports for a few file type categories.
- An issue with 32-bit agent uninstallation.
Endpoint DLP
Features
- Files copied to the clipboard can now be audited and blocked based on condition-based variables like file name, path, and more in the Clipboard Control configuration settings (previously File Copy Policy).
Enhancements
- For better usability, the Clipboard report configuration profiles have been removed. Instead, file paste data will be audited by default and reported in the File Paste report. Clipboard file copy events will be audited by default and presented in the Clipboard Control prevention policy report (previously File Copy and Paste report).
- The File Copy Policy (prevention policy) has been renamed to Clipboard Control and will contain settings to audit as well as block clipboard copy attempts. Previously audited data and fresh events will be reported in the Clipboard Control report and File Paste report, respectively, when at least one DLP policy is enforced.
A fix has been issued for
- An issue that installed Outlook add-ins in file servers during agent installation.
Cloud Protection
Features
- A new Cloud DLP policy has been added to the Policy Configuration settings in the Admin Console for streamlining the control of cloud applications using DataSecurity Plus.
- Users can now block file uploads to various application suites in a single click with predefined filters in the Policy Configuration settings.
- Users can block file uploads, downloads, and access to websites using filters for parameters like domains, URLs, and more in Policy Configuration.
- Users can choose to enforce Cloud DLP either before a request reaches the target server or before the response reaches the client.
- Two new reports for policy profiles, Policy Violation Report and Top Actors Violating Policies, have been added.
Enhancements
- In-product notifications and email notifications are now enabled for the discovery of outdated gateway server versions.
2023
Dec
Build 6127
All solutions
Fixes have been issued for:
- An issue that caused file server agents to occasionally crash.
- A few minor security fixes.
File Audit
Fixes have been issued for:
- A few minor report interface issues.
- An issue that prevented archiving of audit data belonging to deleted servers.
Endpoint DLP
A fix has been issued for:
- An issue that erroneously configured deleted endpoints.
Nov
Build 6126
All solutions
Enhancements
- DataSecurity Plus will end support and updates for its 32-bit edition with build 6130.
- A few general security updates.
Fixes have been issued for
- An "out of memory" issue when there is an overload of domain users.
File Analysis
Fixes have been issued for
- Two issues with alert responses:
- An issue that prevented alert responses from being triggered in instances where the solution runs out of memory.
- Files moved to a configured destination path in response to an alert will be assigned a unique identifier and renamed as <filename>_unique identifier if the destination folder has a file with the same file name. This eliminates the issue of files being overwritten.
- An issue that hindered data aggregation of incremental scans for a few devices.
Endpoint DLP
Enhancements
- CPU consumption has been optimized for workstations running the removable device auditing security policy.
Fixes have been issued for
- An issue that caused incorrect information to be displayed in the Printer Auditing Report in instances where multiple print job requests were raised simultaneously.
Oct
Build 6125
All solutions
Fixes
- Email settings can now be saved without having to provide authentication details.
- Temporary files that are created when exporting reports are now auto-deleted.
File Audit
Fixes
- An issue with scheduled reports being sent as .dat files in Microsoft Outlook 2010 is now fixed.
- An issue with file copy and paste events being audited in non-configured folders has been fixed.
Sep
Build 6121
All solutions
Fixes
- An issue that triggered excess Read events has been fixed.
- An issue where valid network Read events were not captured has been rectified.
- A memory leak issue which caused system slowdown has been fixed.
- A high memory utilization issue on the agent side has been fixed.
- An issue that prevented agent reinstallation in some instances has been fixed.
File Audit
Fixes
- An issue where an alert was erroneously triggered for folder creations when the file size criteria is included as a rule has been resolved.
- Users can only view the configured shares.
- An issue where data didn't reflect in the custom reports when a few audit profiles were included has been fixed.
- Admin technicians can now view the scheduled reports created by other Admin technicians without any issues.
Risk Analysis
Fix
- An impersonation issue which generated excess logon events has been resolved.
Endpoint DLP
Enhancements
- The File Copy and Paste Report can now be filtered based on the copy source.
- The Outlook AddIn trust prompt will no longer be displayed to users.
- The Outlook AddIn can no longer be disabled manually by end users.
Fixes
- An issue that prevented configured workgroup workstations from being displayed in the Alert Configuration and Report Configuration has been rectified.
- A fix has been implemented to track forwarded emails.
- An issue where newly-added drives were incorrectly considered as USBs and were recorded as FIM events has been fixed.
- Disabled workstations will no longer trigger events.
Aug
Build 6120
All solutions
Features
- Users can now view and analyze disk space utilization in the server where DataSecurity Plus is installed.
- The retention policy for scheduled report history has been moved from the File Audit module to the Admin console, and now applies to the File Analysis module as well.
- Admins can now configure Network Address Translation (NAT) devices and DataSecurity Plus' integrated Secure Gateway server to enable roaming users to securely communicate with DataSecurity Plus' central server.
Enhancement
- Minor improvements have been made on the Manage Agent page to enhance user experience.
Fixes
- An issue corrupting the wrapper.conf file when disk space is low has been fixed.
- Sync issue between manually-installed agent UID and agent ID has been resolved.
- An issue with subfolders not showing under the Monitor Object filter after refreshing shares in file servers has been fixed.
- Alert mails not being sent in some cases due to a threading issue has been fixed.
File Audit
Feature
- Individual reports generated within a configured scheduled report can now be viewed and deleted.
Enhancements
- File sizes will now be shown under Alerts.
- A provision has been given to all admin users to view configured Scheduled Reports.
Fixes
- Alert mails will now show file size in their appropriate units of measurements (KB, MB, GB, etc.).
- An issue with alert mails not being sent for existing alert configurations has been fixed.
File Analysis
Features
- The All Shares report now shows NTFS permissions in addition to Share permissions.
- Individual reports generated within a configured scheduled report can now be viewed and deleted.
Risk Analysis
Features
- Users can now move and delete discovered sensitive files from within the DataSecurity Plus UI.
Enhancements
- Rules have been updated to improve confidence levels and reduce false positives.
- New sensitive data discovery rules have been added for South Africa, Australia, Brazil, Mexico, France, and Portugal.
- Additional rules have been added to discover data regulated by HIPAA.
- Users can now select which columns they want shown in reports.
Fixes
- An issue with false positive events being displayed for certain rules has been fixed.
- Temporary files that were not auto-deleted after data discovery scans will now be removed periodically.
- The data classification process no longer changes the last modified times of files.
- An issue with applying Rule, Confidence level, and Policy filters for reports has been fixed.
- Folder names containing French characters are no longer skipped from data discovery scans.
Endpoint DLP
Feature
- Endpoint agents can now audit events in network shares and mapped drives.
Enhancement
- Common and browser-specific unwanted events are now excluded from reports.
Fixes
- Alert mails will now show file size in their appropriate units of measurements (KB, MB, GB, etc.).
Jun
Build 6111
All solutions
Enhancement
- DataSecurity Plus now supports modern authentication for mail settings via SMTP and API methods.
Security fix
- The TFA authentication bypass security vulnerability (CVE-2023-35785) reported by Thang Nguyen has been fixed.
May
Build 6110
All solutions
Features
- Users can now configure proxy servers from their environment within DataSecurity Plus configuration to enable safe access to the internet.
- Retention period of DataSecurity Plus logs can now be customized.
Enhancements
- All reports, alerts, and configuration can now be set to reflect a particular time zone of user's choice.
- Technician accounts locked out of DataSecurity Plus can now be unlocked by admins directly from the Technician Settings page.
Fix
- Reports exported in the XLSX format now support up to 500,000 entries in one sheet.
Cloud Protection
Features
- Gateway server status auditing has now been enabled to help resolve issues faster.
- Gateway servers now support accessing websites with 2-way SSL.
- Gateway servers now support TLS version 1.3.
Enhancement
- In the free edition of DataSecurity Plus, 2 gateway servers can now be configured.
Data Leak Prevention
Fix
- Number of mails sent for alerts with a threshold value are now limited to avoid notification fatigue.
File Audit
Feature
- File Audit can now generate audit reports for NetApp servers.
File Analysis
Features
- A new report listing files and folders based on creation time has now been added to the suite of reports.
- Filters have now been added to all reports to generate customized views.
Enhancement
- Up to 400 files can be directly deleted from the source server via the report interface.
Fixes
- Out of memory issue due to processing of large file metadata has been resolved.
- An issue with scheduling on-demand reports for groups or well-known SIDs has been resolved.
Data Risk Assessment
Fixes
- An issue with regex matching in spreadsheets has been fixed.
- Checksum has been added to reduce false positives for UK's National Insurance number and National Health Service number rules.
Apr
Build 6101
File Audit
Fix
- A performance bug that caused delays when saving office documents has been fixed.
Mar
Build 6100
All solutions
Features
- Security hardening tasks are now prioritized in the new Best Practices page in the Admin Console.
- An emergency patch updater will probe the internet daily for the latest security updates and apply them to DataSecurity Plus when available.
Enhancements
- A new alert response script that shuts down host machines that are under threat or have certain vulnerabilities has been added to the built-in alert scripts library.
- File size units can now be changed using drop-down menus in File Audit, File Analysis, and Endpoint DLP report filters.
- A few changes focused on hardening product security have been implemented.
Fixes
- Minor issues related to the parameters specified in built-in alert response script files are now fixed.
- An issue that triggered duplicate read events is fixed.
- A rare scenario which caused file servers to stop responding to SMB requests is fixed.
- An issue which stopped auditing when volumes got detached is resolved.
File Audit
Enhancements
- The following report filter labels have been updated for improved usability:
- File name is now Old file name
- Source is now Server name
- New File Name is now Current File Name
- The alert criterion Source is now Server Name.
Fix
- Email notifications will be sent without issues when new addresses are appended.
File Analysis
Fix
- An issue which caused AD object mismatch when scans were scheduled for more than one server is now resolved.
Endpoint DLP
Feature
- The Email Auditing report now includes the number of attachments for each entry.
Jan
Build 6090
All solutions
Enhancements
- Deleted AD objects will be updated in the UI after a domain update.
- Fonts for exported and scheduled reports in PDF format can now be updated via cmdutil.
Fixes
- DataSecurity Plus will now be installed in ProgramFiles and not ProgramFiles (x86).
- While adding domain technicians, the name length check will be performed against the user's name as opposed to the canonical name of the object.
- A bug that caused errors while exporting and scheduling reports when time zone is added to the Time Format has now been fixed.
- The agent's DSPUILog files will now be stored only in [SystemDirectory]\ProgramData.
- An issue that caused DataSecurity Plus to not start when agent installation fails has been fixed.
File Audit
Enhancement
- The Period drop-down now shows 'Previous year' and 'Last year' time ranges.
Fixes
- An issue that caused events to be collected and alerts to be triggered for deleted profiles has been fixed.
- A bug that prevented users from adding cluster caps when file server licenses were exhausted has been fixed.
File Analysis
Fixes
- UNC paths provided for Move responses in alerts will now be validated on input.
- The Edit option will be shown only when editable scheduled reports are selected.
- Alerts will no longer show details of deleted files.
- The Security Principal Name will now be displayed in the All Shares reports even when it has more than 16 characters.
Endpoint DLP
Features
- Endpoint DLP event archiving: Endpoint audit data older than a specified time range will be cleared from the primary database, zipped, and archived in a secondary location. Archiving allows you to manage disk space and limit database growth.
- Endpoint DLP retention policy: Endpoint DLP users can now specify the duration for which they wish to store triggered alerts.
Enhancement
- Users attempting to tag empty Office files will now be notified that the action cannot be performed.
Fixes
- An issue in the Exclude criteria in Web Profile Configuration has been fixed.
2022
Nov
Build 6082
All solutions
Fixes
To address security vulnerabilities:
- Apache Santuario jar has been updated from 1.4.1. to 2.3.0.
- Apache Commons Text jar has been updated from 1.8. to 1.10.0.
Oct
Build 6081
All solutions
Fixes
- General security fixes
Sep
Build 6080
All solutions
Features
- Users can strengthen account security by enforcing:
- Account lockout policy that locks out user accounts in response to repeated failed login attempts.
- Password policy that defines a strict password history, length, and complexity factors.
- Admins will be mandated to update their default admin account password to harden account security.
Enhancements
- In-product license notifications in the free version will now include details on the number of days left until expiry.
Fixes
- Postgres has been updated to version 10.21 for heightened security.
- An issue where the data collection in the driver is stopped due to invalid share path is now resolved.
- An issue where postgres updates failed due to the presence of certain types of .dll files is now fixed.
File Audit
Enhancements
- Loaded archive data will be unloaded automatically after two days to manage disk space usage.
- Users can now find unloaded archive data in audit records based on the server and time range selected.
- Filters based on server, time range, and archive status have been included in the Restore Archive Events page.
Fix
- An issue where users were unable to export reports in the PDF format in some rare cases has been fixed.
File Analysis
Features
- File Analysis scans are now automated to run as soon as a new drive is configured.
- Users can trigger specific scans instantaneously right from the UI.
- Added status messages for few more scenarios in file analysis scan status window.
Data Risk Assessment
Enhancements
- False positives have been reduced by adding word boundaries and separators to the regex patterns of 35+ data discovery rules.
- Sensitive data can be located based on its probability of being a true value by configuring a confidence level value.
- Disk space usage will now be optimized as unused temp folders and disabled shares data will be cleared automatically.
- Display text will be excluded from reports by default for fresh installations to manage disk usage.
- Data discovery scans will be paused when the DataEngine service fails.
- Schedule history, including scan start time, end time, and current status of the scan can now be viewed for all configured servers.
- Risk Analysis Tika app has been upgraded to 2.1.0.
Fixes
- The irrelevant time period filter has been removed from reports and dashboards.
- The free version of Risk Analysis now supports scanning 100 GB of data.
- An issue where the configured domains could be deleted when its corresponding servers were configured is now fixed.
- Rescan of deleted shares will be now stopped when the product restarts.
Cloud Protection
Features
- Details vital to the smooth functioning of the gateway server will now be included in the daily status email notification.
- Instant email notifications will be triggered when the gateway server stops or its access key is regenerated.
- A lightweight backup gateway server is added to ensure continuous internet connectivity even when the primary gateway server fails.
- Secondary internet data handlers will now process time-consuming traffic requests such as large file upload activities. This leaves the primary handler unencumbered to process regular connectivity requests seamlessly.
Enhancement
- Users can now find gateway server status, identify and troubleshoot out of sync and configuration issues, and get notified when disk space falls below a predefined value.
- Threat analytics information can now also be sourced via proxy settings in environments where direct internet access is blocked to harden security.
Fix
- An issue where multiple proxy servers were not processed from the configured PAC script during proxy chaining is now fixed.
Jul
Build 6072
All solutions
Features
- Users can strengthen account security by setting up two-factor authentication using Google Authenticator, Duo Security, and email verification methods for logging in to DataSecurity Plus.
- The command utility can now be used to enable and disable the default admin account.
Fixes
- An issue that caused the product to restart in rare scenarios has been resolved.
- Unwarranted logon failures caused by RemCom during agent installation has been fixed.
File Audit
Fixes
- An issue that exported reports with columns selected by admin instead of technicians is now resolved.
File Analysis
Fixes
- An issue that prevents sorting by date and time in reports exported in XLSX format has been fixed.
- An issue where security reports were missing for a few configured Windows file servers has been resolved.
Endpoint DLP
Enhancemet
- A few changes focused on hardening the product security have been implemented.
Fixes
- An issue that restricts configuring previously deleted workstations from Endpoint DLP has been fixed.
- An issue that caused the status column of the USB security response report to be outdated when the product is hosted via the internet is now fixed.
- An issue in updating the last HTTP communication time has been resolved.
- An issue where agents installed via GPO were unconfigured in some cases has been resolved.
- An issue that caused the Outlook plugin to deactivate when Outlook is reopened after agent re-installation has been fixed.
Build 6071
All solutions
Fixes
- Minor bug fixes.
May
Build 6070
All solutions
Feature
- The use of HTTPS has been made mandatory for all customers to harden DataSecurity Plus' security infrastructure.
Enhancements
- Besides Purchased, the Used license information is also added to the License Details popup.
- The header of exported reports will now contain details of the criteria used, to enhance usability.
- A few changes focused on hardening your security infrastructure have been implemented.
File Audit
Enhancement
- The popup with in-depth details of the selected dashboard elements can now be exported.
Fixes
- A navigation issue in the Configured Servers page has been fixed.
- An issue that caused the temp file used for exporting reports to remain undeleted has been fixed.
File Analysis
Features
- Added new widgets to the dashboard that represent:
- Top folders with junk data
- Top folders with duplicate data
- Top folders with stale data
- Top folders with non-business data
- Top folders by size
- Included new reports that list:
- All folders
- Stale folders
- Unmodified folders
- Hidden folders
- An on-demand report that lists files and folders with explicit permission is added.
- You can now delete a file or folder from the file analysis reports within the UI.
Enhancements
- The on-demand reports have been moved to a separate tab for better accessibility.
- Details about the status of the DataEngine have been added to the Manage Agent page.
- The event processing speed has been increased.
- The agent processing speed has been optimized to keep the product temp folder growth in check.
- An option to exclude objects with "No Rights" from the Effective Permissions report has been included.
- The status of on-demand report scans and their outcome can now be viewed during report generation.
- On exceeding the license limit, an automated alert will be triggered and File Analysis will be disabled across the configured drives.
Fixes
- An issue that caused partial data in a scheduled HTML file has been resolved.
- An issue that caused the duplicate file deletion from UI to be unavailable in some rare cases has been fixed.
- The recurrent attempts by the agent to contact the server while it's unreachable is now fixed.
- A configuration issue that arose when the server is unreachable has been fixed.
- An issue that caused incorrect data in scheduled on-demand reports has been resolved.
Data Risk Assessment
Enhancements
- Data discovery scan speed has been increased.
- raTemp folder processing speed has been increased.
Fix
- The "No data available" error while filtering reports using confidence levels has been fixed.
Data Leak Prevention
Feature
- You can now configure Windows workgroup workstations in the Endpoint DLP module.
Fixes
- Outlook crash issue has been resolved.
- Agents deployed via GPO will now be configured automatically.
- High CPU utilization issue by the data leak prevention agent has been fixed.
- Minor usability issues in the printer auditing profile have been fixed.
- A few minor issues in threshold-based alerts have been fixed.
- An issue that caused manual data classification to fail across mapped network drives has been fixed.
Cloud Protection
Feature
- The Manage Gateway Server page has been revamped to assist in detecting and debugging gateway server configuration issues. It includes:
- Sync status and comparison of Gateway Server health properties.
- Ping test to check for proper communication.
- Manual sync option between the Gateway Server and DataSecurity Plus server.
Enhancements
- The access key installation and regeneration process which helps secure the communication between the gateway server and DataSecurity Plus server has been refined.
- A Gateway Server uninstallation issue that left a few files undeleted in the server has been fixed.
- All configuration information will be zipped before transfer to reduce the communication time between the DataSecurity Plus server and the Gateway Server.
- The browser name parsing engine has been updated to include the latest user agent details.
- The PAC script used in proxy chain configuration will now be fetched automatically every 60 minutes.
- Rules used for file upload detection have been updated for the cloud applications under these domains:
- Microsoft 365
- Zoho
- Box
Fix
- The audit data missing issue that occurred when DataSecurity Plus server restarts after a downtime in some cases has been resolved.
Apr
Build 6064
All solutions
Fixes
- An issue in sending email via TLS 1.0 configuration has been fixed.
- The agent health check that triggered uninstallation of the agent in some scenarios has been fixed.
- Apache Log4j has been updated from version 2.17.0 to 2.17.1 to address a security vulnerability.
Feb
Build 6063
All solutions
Fixes
- Tomcat has been updated to v9.0.50.
- Apache Log4net has been updated to v2.0.12.
- Apache Struts has been removed from the product.
- An issue of missing rows in exported reports has been fixed.
- A certificate issue that rendered the web console inaccessible after an update in some scenarios has been fixed.
- An issue that caused build updates to fail after migrating from 32-bit to 64-bit architectures has been fixed.
- A server configuration sync error triggered after manual agent installation when duplicate machine entries are present has been fixed.
- An agent-side data missing issue due to empty internet FQDN value has been fixed.
- A server reconfiguration issue due to a missing entry in the Manage Agent page has been fixed.
File Audit
Fixes
- A missing column that triggered a 'No data available' error has been reinstated.
- A graph mismatch issue in file audit reports has been fixed.
- Events will be collected only in configured Windows cluster drives.
File Analysis
Fix
- The LocalPath cache size has been doubled to avoid slow Metadata Scan.
Endpoint DLP
Fix
- An issue that caused workstation configurations to be removed has been fixed.
2021
Dec
Build 6062
All solutions
Fix
- Updated the Apache Log4j from version 2.10 to 2.17 to address the Log4j2 remote code execution vulnerability (CVE-2021-44228, CVE-2021-45046, CVE-2021-45105).
Build 6061
All solutions
Enhancement
- Technicians can now be managed centrally from Log360 UI.
Nov
Build 6060
All solutions
Fixes
- Data processing will now be done in batches for large data sets to avoid out-of-memory and product startup issues.
- An issue that prevented users from logging out of DataSecurity Plus when the instance is integrated with Log360 has been resolved.
- Product startup issues due to license file corruption have been fixed.
- Postgres has been updated to version 10.17 for security fixes.
File Audit
Features
- Granular control over applying custom audit policies, reports, alerts, and exclusion settings to servers in the domain, with the flexibility to choose between two types of profiles:
- Global audit profiles, which can be applied to all, or a combination of configured servers.
- Server-specific profiles, which are applied individually to each server.
- An all-new, in-console help section with answers to frequently asked questions and links to detailed help documents where required.
- A health status check functionality to monitor the File Audit agent and server's working, detect issues, and troubleshoot them with ease.
Enhancements
- Users now have a User SID filter in reports, exclusion settings, and audit profiles.
- The driver's performance has been boosted.
Fixes
- The period field's calendar icon will now open the pop-up without a hitch.
- An IP address mismatch that occurred in certain conditions has now been fixed.
- A graph limit issue in the Server Overview dashboard has been resolved.
File Analysis
Fixes
- An issue that caused a miscalculation in the number of junk files in some cases has been fixed.
- Alerts older than 90 days will now be deleted to conserve disk space.
Data Risk Assessment
Feature
- To avoid potential security issues and non-compliance with regulations, users can now exclude instances of policy-violating data from reports.
Fix
- The issue where reparse points were followed in a loop leading to a license limit exceeded error has been resolved.
Endpoint DLP
Enhancement
- A few performance enhancements have been implemented in printer auditing.
Cloud Protection
Enhancements
- New reports have been added to track file upload activity in Zoho, Yahoo, and GSuite.
- File upload reports now have new columns for file names and upload sizes.
Sep
Build 6054
All solutions
Fixes
- A product startup issue caused by a license handling error has been resolved.
- For security reasons, custom script files can be configured only if they're located in the <installation_directory>\bin\alertscript folder.
- A few security fixes have been implemented.
Build 6053
All solutions
Enhancements
- The GUI now includes an applications pane for quick access to other Active Directory-related solutions of ManageEngine.*
Fixes
- An issue in automatic domain discovery during initial product startup has been fixed.
- A communication issue with servers having non-English names has been resolved.
- The version of Tomcat server used in the product being mistakenly flagged by external tools as a vulnerability has been addressed.
- Older versions of JS files have been removed.
Data Leak Prevention
Enhancements
- Alert email notifications' subject and message parameters can now be customized.
- Alert email messages now include client hostnames and all the critical details of events that triggered the alert.
- Agent status for endpoints will now be updated automatically in the UI.
Fixes
- The event collection driver now works in the 32 bit version of Windows 10 without any issues.
- A bug in the USB response report that caused upgrades to fail has been resolved.
- An issue in the Endpoint agent caused by Microsoft's workarounds for the Print Spooler RCE vulnerability (CVE-2021-34527) has been fixed.
Data Risk Assessment
Fixes
- Issue in upgrades caused by the GDPR policy deletion has been fixed.
File Analysis
Fixes
- The file types crunch is now more efficient with memory occupancy while processing data sets with a substantial number of file types.
- An issue that caused inaccuracies in the list of configured drives has now been fixed.
- An issue that caused a 'Limit exceeded' error for valid licenses has now been fixed.
- Discrepancies between ransomware file types displayed in the dashboard and All Files report have been resolved.
- Disabled file servers can now be re-enabled without any issues.
File Audit
Fixes
- SIDs and user names will be displayed accurately for new users.
- Renamed Cluster nodes are now updated in the UI without any errors.
- Issues in starting the DataSecurity Plus service have been resolved.
- Folder rename actions containing '.' will no longer be reported as file extension change events.
- Issues in creating scheduled reports have been resolved.
- To resolve share discovery errors, FQDN will now be used to configure non-domain file servers.
- New drives can now be configured post-agent startup without any issues.
- Custom reports that are renamed now display the correct names in the UI without any issues.
- Scheduled reports of deleted technicians will now be removed automatically.
- Out of memory issue caused due to large number of files in the event temp folder has been resolved.
Apr
Build 6052
All solutions
Fixes
- An issue that caused reports to overlap when scheduled to be generated at the same time is now fixed.
- Notification emails sent to administrators will now contain information about servers that were added or removed only in the last 24 hours.
File Audit
Enhancements
- Event processing speed is now improved.
Fixes
- A performance issue in the previous build has been fixed.
File Analysis
Fixes
- If the agent is not running at the time of a scheduled scan, the scan will run once the agent is available.
Data Risk Assessment
Fixes
- An issue with Risk Analysis rules that caused upgrades to fail has been resolved.
Build 6051
All solutions
Fixes
- Event processing speed is now improved.
File Analysis
Enhancements
- Performance of the file type distribution crunch is now improved.
Fixes
- Crunch data for duplicate files is now moved to Data Engine to improve performance.
- A scenario which caused partial scan data to be added in File Analysis reports is now rectified.
Mar
Build 6050
All solutions
Enhancements
- The DataSecurity Plus agent can now connect with the server without using VPN over the internet by providing Fully Qualified Internet Hostname.
- The DataSecurity Plus database can now be scheduled for automatic daily backup using a pre-defined script.
Fixes
- The agent-server communication now prioritizes the strongest cryptographic keys.
- Agent-server communication can now be successfully re-established after inadvertent intervals.
- X-Frame response header has been defined distinctly for all web console pages.
- Scroll bar issue in the time period drop-down has been resolved.
- Agent communication issue due to server names with more than 15 characters has been resolved.
File Audit
Fixes
- Share paths of network drives are now displayed accurately without missing slashes in all alerts and reports.
- Alert configuration script paths with spaces can now be defined without any issues.
Data Risk Assessment
Features
- Users can now perform data classification on files by tagging them using classification profiles.
- Data Risk Assessment can now discover sensitive data from Microsoft SQL server.
Enhancements
- Most recently modified files identified by File Audit can now be scanned with priority for sensitive data by Data Risk Assessment, when the same network shares are configured under both modules.
- Subfolders and file types can now be excluded from sensitive data scans.
- Proximity scanning is now used to minimize false positives.
- Emails notifying users on sensitive file ownership can now be sent from the Ownership Analysis page.
- The Reports and Ownership Analysis UI has been optimized for easy viewing of data storage violations.
- Confidence level of sensitive data occurrences is now determined using checksum algorithm and proximity scanning.
- The All Records page can now display sensitive data violations with confidence level filtering.
- Data displayed in the Reports page can now be viewed based on the confidence level of sensitive data occurrence.
- Rules related to US drivers' license number have been added.
Fixes
- Issue with increase in scanning time has now been fixed.
Data Leak Prevention
Features
- User actions within USB drives including access, modification of files and execution of applications can now be controlled using the External Device Control Policy.
- The use of bluetooth, Wi-Fi devices, and CD drives can now be blocked in the External Device Control Policy.
- Blocklist USB devices by specifying their device instance path.
Enhancements
- USB devices for which read, write or execute events are generated can now be blocked instead of blocking USB ports wholly.
- USB devices can now be unblocked directly from the Incident Response Report.
- Device instance path of USBs will be displayed for all events removable storage devices alerts and reports.
Fixes
- Files copied from mapped drives are now displayed with network copy information.
- Clipboard monitoring can now be run for all users without any issues.
- Clipboard operations between MS Office applications can now be performed without any issues.
File Analysis
Feature
- Users can now restrict scans to run only during non-business hours.
Enhancements
- Overall performance of security scan has improved.
- The dashboard has been improved to present graphs faster.
Fixes
- File Analysis alert issue for the Last Modified Time criteria has been resolved.
2020
Dec
Build 6045
All solutions
Enhancement
- Notification emails to administrators will now be sent only if there is an issue in the server or agent.
- PostgreSQL is upgraded from 10.3 to 10.12 for security fixes.
Fixes
- Chinese characters can now be loaded in the UI successfully.
- A domain can be deleted and re-added without any issues.
- jQuery is updated to version 3.5.1 to fix vulnerability issues.
File Audit
Fixes
- Include Exclude Criteria information under alert profiles can now be displayed in Firefox.
- Issues with email validation in Schedule reports configuration has now been resolved.
File Analysis
Fixes
- File analysis reports will now include information of files that were previously not scanned due to invalid time attributes.
- Drives added during configuration are not duplicated.
Data Leak Prevention
Fixes
- Agent sync status for endpoint devices is now regularly updated in the Configured Workstations page.
- Outlook email add-in can now be installed without issues.
Cloud Protection
Features
- Cloud Protection module is now available as a free add-on with the Data Leak Prevention module.
- Reports now include Browser/HTTP - client details from which cloud applications are accessed.
Sep
Build 6044
All solutions
Fixes
- DataSecurity Plus evaluation license can now successfully be applied even when the solution is started as a service.
- The agent now delivers an improved performance and utilizes less CPU.
File Audit
Fixes
- Audit data is now fetched instantly as soon as the manual agent is installed.
- The dashboard crunch issue has been fixed.
- Custom reports are now visible only to the users who created them .
File Analysis
Enhancements
- Crunch performance has been improved to utilize optimum memory.
- The Disk usage report can now be exported to CSV, PDF, XLSX or HTML formats.
Fixes
- File Analysis agent now sends data to the DataSecurity Plus server continuously..
- The Disk Usage alert email now specifies server details accurately.
- Exported reports now display the correct server names.
- On-demand reports can now be generated successfully for the specified mounted drive paths.
- In larger environments, duplicate files crunch causing data engine crashes has been resolved.
- File Analysis alerts can now be configured using the Server Name rule without any issue.
Jul
Build 6043
Data Risk Assessment
Fixes
- When DataSecurity Plus is upgraded, regex (regular expression) duplication for default rules issue has been resolved.
- Files can now be scanned without exceeding Java heap memory limits.
File Analysis
Fixes
- The agent has been optimized to run security scans more efficiently with lesser memory utilization.
- Crunch schedule can now be processed without exceeding memory limits.
- Privileged users report can now be exported in PDF and XLS formats without any issues.
- On-demand reports for mounted drives can now be generated at all sublevels.
Build 6042
Cloud Protection
Features
- Deep packet inspection can be enabled in Mixed MITM mode.
- All file upload requests made via Dropbox and Box can now be viewed under File Upload Reports.
Enhancements
- Gateway servers can now be installed and upgraded from the DataSecurity Plus web console.
- All reports under Cloud Protection can now be exported in CSV, PDF, XLSX or HTML formats.
Fixes
- Minor bug fixes.
Jun
Build 6041
File Audit
Fixes
- Changes made to the threshold limit of alert emails is updated immediately.
File Analysis
Fixes
- The licensing issues across File Auditing module, and File Analysis module has been fixed. Now for every file server licensed in the File Auditing Module, you can use an equivalent amount of storage space (in TB) in the File Analysis module for free.
- When DataSecurity Plus is updated to version 6040 and above, the time in Disk Usage report will be displayed correctly.
Data Leak Prevention
Fixes
- Email notification can now be sent for all file copy alerts.
Data Risk Assessment
Fixes
- The file server scans can now be scheduled without issues in DataSecurity Plus' 6040 Chinese version.
Build 6040
All solutions
Enhancement
- Reports can now be scheduled at custom frequencies.
Fixes
- Minor security fixes.
File Analysis
Features
- List every configured domain and drill down to view the properties of every file and folder with the all-new Tree view.
- File properties can be analyzed on a new dashboard that shows storage and security insights specific to the element (all, domain, server, or file) selected in the Tree view.
- File Analysis can now locate and report on empty folders.
- You can now perform file analysis in mounted drives.
- The Security View of the dashboard now shows the security permissions associated with the selected file or folder.
- The status of scheduled File Analysis scans can now be seen in the UI.
- A new category of reports has been added, showing the files owned by inactive, disabled, and expired users.
- You can now locate files with no extensions.
- Disk usage trends can be viewed under Storage Reports once again, similar to builds before 6000.
Enhancements
- File Analysis scans are now faster than ever with improved scanning speeds.
- File Analysis reports have new columns for details on the file extension, file category, length of the file's name, and more.
- You can configure drives manually by entering the drive name instead of choosing from a list of discovered drives.
Fixes
- Users can now search reports and export the search results, and export Security Reports without facing any errors.
- File Analysis scans will be carried out as per their schedules without any errors.
- Information in scheduled on-demand reports will be as per the configured constraints.
Data risk assessment
Features
- Analyze the risk associated with a file owner and assign them a risk score to enable better management of files containing sensitive data.
Enhancements
- Risk Analysis reports can now be filtered based on the data discovery rules and policies that the sensitive file violates.
- The schedule status popup now shows the scan's status in graphical form, the configured frequency, and the status of each folder being scanned.
Fixes
- Files with apostrophes in their name will no longer be omitted from incremental file scans.
Data leak prevention
Fixes
- The Email Auditing Report now shows the email address instead of the contact name in the Email To column.
- An issue in the automatic installation of the Outlook email add-in has been fixed.
- File classification can now be detected without any issues in 32-bit Outlook applications running in 64-bit environments.
- Administrator privileges are no longer mandatory for file classification, and Write permission is sufficient.
Build 6034
All solutions
Fixes
- Issue with files missing while upgrading the product has been resolved.
May
Build 6033
All solutions
Fixes
- The unauthenticated change to integration system configuration vulnerability (CVE-2020-24786) reported by Florian Hauser has been fixed.
Build 6032
All solutions
Enhancements
Option to set the most preferred module i.e., File Audit, File Analysis, etc., as the default view after login.
Fixes
- Automatically update the names of configured servers and endpoints from Active Directory rename actions.
File Audit
- Sub-share information can be automatically viewed without any issue using parent share audit data.
- Receive uninterrupted events from the agent when the Exclude rule is 'None' for Computer Accounts.
File Analysis
Fixes
- Export Full Control report without disruptions.
- Export search results from reports without any issue.
Data Leak Prevention
Fixes
- Perform mass copy actions of spreadsheet cells without clipboard error.
Apr
Build 6031
All solutions
Enhancements
SSL Certificate can now be applied from Log360 also.
Fixes
- Minor issue fixes
Build 6030
Cloud Protection
New feature
Cloud protection (beta version)
- Monitor cloud app usage - Keep track of all cloud applications accesses along with details on the actor, application category, its reputation score etc.
- Track data transfer to cloud - Monitor upload activities that take place over SharePoint, OneDrive, Office365 applications, and more.
- Control the use of shadow applications - Discover shadow applications used in your organization and choose to block or add them to sanctioned applications.
- Block high-risk cloud applications - Prevent possible data leaks by blocking the use of unsanctioned cloud applications.
All solutions
Fixes
- Minor issue fixes.
Mar
Build 6021
All solutions
Fixes
- Minor issue fixes.
File Audit
Enhancements
- Improved driver performance to reduce file server load.
Build 6020
All solutions
Enhancements
- Support for the Chinese language.
- Improved performance with JRE version update from 1.8.0_51 to 1.8.0_192.
- Improved storage utilization in the agent by limiting event dump collection to 2GB.
Fixes
- Parent and child domain configuration sync issue has been resolved.
File Audit
Enhancements
- Custom reports can now be accessed based on the FileType filter.
Fixes
- False positive events displayed for the Create Events and Deleted Files reports have been rectified.
- Users who have migrated from build 5012 to build 6000 can now set up a global exclude configuration without any issues.
Data Leak Prevention
Features
- Endpoint grouping: Group endpoints into a unified devices profile, and set alerts and apply policies to those profiles.
- File copy protection: Restrict users from copying critical files by blocking file copy actions.
- Warnings for end users: Alert users instantly when they perform unauthorized copy actions.
- Process restriction: Block users from running unauthorized executables by creating and applying custom profiles to individual endpoints or groups.
Fixes
- The Outlook plug-in now facilitates creating meetings and appointments in Outlook without any issues.
File Analysis
Fixes
- The Duplicate Files report now displays all copies of a file including those with long file paths.
Data Risk Assessment
Fixes
- Shares with permissions can now be scanned without any disruption.
Build 6013
All solutions
Fixes
- RCE (CVE-2020-11531) and authentication bypass vulnerability in DataSecurity Plus DataEngine reported by Sahil Dhar (xen1thlabs) has been resolved.
Feb
Build 6012
Data Risk Assessment
Enhancements
- Data scanning speed and performance have been improved.
Jan
Build 6011
All solutions
Fixes
- Minor issue fixes.
Build 6010
Data Risk Assessment
Feature
- Generate detailed risk assessment reports: Get information on content that violates security and compliance policies, including details such as file properties, permissions, location, and more.
Build 6003
All solutions
Fixes
- Technicians can login without any issues after DataSecurity Plus is updated from build 5000 to 6000.
File Analysis
Enhancements
- Reports on the effective permissions of groups and well-known security principals.
File Audit
Fixes
- Cluster addition and share removal actions can be performed without a hitch.
- File names starting with "~" will be automatically excluded from all reports.
- Custom report filters now allow special characters.
- A crunch issue that caused incorrect graphs to be displayed on the Domain Overview has been fixed.
2019
Nov
Build 6002
File Analysis
Features
- On-the-fly duplicate file deletion: Administrators can delete duplicate files right from the Duplicate Files report. Further, each deletion will be recorded in the technician audit log.
Data Leak Prevention
Enhancements
- The Files Pasted report now shows the location from where a user last copied a file, if the file was copied via the same machine.
- Alerts in the Endpoint module can be viewed based on their profile type.
Fixes
- Move/delete responses can now be executed without any issues when sensitive files are copied to clipboard.
- Users can now classify files without any disruptions in 32-bit OS environments too.
Oct
Build 6001
All solutions
Fixes
- You can now change DataSecurity Plus' default password.
File Audit
Fixes
- Events can be excluded based on file size without any issues.
Data Risk Assessment
Fixes
- Exported reports will now show only the required data.
- An issue in retrieving file permissions and properties has been fixed.
Data Leak Prevention
Fixes
- Duplicate events will not be recorded for actions under Email Auditing report.
Build 6000
Data Leak Prevention
Features
- Data protection - Monitor, alert on, and block unwarranted data transfer activities to USB devices and email (Outlook).
- Incident remediation - Delete or quarantine files, block USB data transfers or choose from other predefined options for active remediations.
- USB auditing - Track and analyze the usage of removable storage devices and data transfer to them, across your organization.
- Workstation auditing - Audit all file accesses and modifications across your Windows endpoints in real time.
- File copy auditing - Report and alert on file copy-and-paste events in real time using predefined policies.
- File share auditing - Track all file accesses and modifications to shared files and folders in real time.
- Print server monitoring - Audit and analyze print server usage to find who printed what files and when.
Data Risk Assessment
Features
- Data classification - Inspect content, and automate the classification of files containing sensitive data.
- File tagging - Use manual file tagging capabilities to classify files, based on their sensitivity, as Public, Private, Confidential, or Restricted.
- Real-time notifications - Trigger instant alerts when sensitive personal data is discovered.
- One-stop operational dashboard - Get a quick overview of any recently-discovered PII (including volume and type), identified trends in storage of personal data, and more.
File Analysis
Features
- Spot permission vulnerabilities - Detect permission inconsistencies such as broken or improperly inherited permissions.
- Detect security vulnerabilities - Identify and remediate security issues such as unsecured or ransomware-infected files, and purge files owned by stale or deleted users.
- Locate duplicate files - Automate the identification of duplicate files.
- Track disk space usage - Analyze storage growth and disk usage patterns, and generate instant alerts when free space falls below a preconfigured limit.
- Perform ROT data analysis - Identify redundant, obsolete, and trivial (ROT) files to declutter your storage space.
Sep
Build 5012
All solutions
Fixes
- Technicians can no longer view or send test mails without authorization.
- Other minor fixes.
File Audit
Fixes
- Duplicate events will no longer be recorded for file creations and deletions.
- An issue that caused the agent to stop collecting data when a monitored drive is reattached has been resolved.
- An issue in displaying the client IP and host name in certain conditions has been fixed.
File Analysis
Fixes
- An issue that rendered the storage analysis page unresponsive in Internet Explorer has been fixed.
Data Risk Assessment
Fixes
- An issue that caused exported risk assessment reports to show incomplete data for certain time zones has been fixed.
May
Build 5011
All solutions
Fixes
- Minor issue fixes
Apr
Build 5010
All solutions
Features
- Technician audit - Monitor all activities carried out in DataSecurity Plus by all technicians.
Enhancements
- GUI enhancements to comply with GDPR requirements.
- Option to disable DataSecurity Plus highlights slider in login page.
- Option to set a default domain in login page.
- Password protection for exported and archived files containing sensitive data.
- Ability to stop event collection when free disk space falls below the specified threshold limit.
Fixes
- Threshold limits for alerts generated in a day will be maintained as per the configuration.
- An issue that rendered users unable to configure an alert with a new name has been resolved.
- An issue that rendered users unable to add groups and OUs under the username field while creating alert profiles has been fixed.
- Other minor issues.
File Audit
Features
- SIEM integration: - Forward all file server audit data to your Syslog server or Splunk.
Data Risk Assessment
Enhancements
- View the details of in-progress risk assessment scans, including start time, files completed, number of violations, and more.
- Export files scanned report.
- Stop the risk assessment scans that are in progress.
- Perform incremental file scan: Scan only previously unscanned, new, and modified files.
2018
Dec
Build 5004
File Audit
Fixes
- An issue in starting the event collection driver in certain versions of Windows Server 2016 has been fixed.
- Events can now be excluded based on client IP and host name without any issues.
Nov
Build 5003
File Audit
Enhancements
- Event collection speed and performance have been improved.
- The following operations have been automated
- Enabling file server setup after relicensing.
- Update of ransomware file types to default alert profiles.
Fixes
- Folder delete events will now be audited without any issues.
- An issue which caused the web console to freeze while clicking email notifications has been fixed.
- Duplicate values will no longer be recorded for 'read' and 'read deny' events.
- Action type can be added to exclude configuration without any issues.
- Usernames will be displayed without any issues in Access Audit graphs.
- Multiple cluster CAPs can now be audited.
Jul
Build 5002
All solutions
Fixes
- Dropdown boxes will now function normally when the product is launched using Internet Explorer.
- Users can now add technicians without any issues.
- Alert email content and subject can now be changed.
- An issue that rendered users unable to attach drives in Turkish language machines has been fixed.
- An issue in establishing RPC & HTTP communication in cluster servers has been fixed.
- An issue in group and OU rule configuration has been fixed.
- Other minor fixes.
File Audit
Fixes
- An issue in getting correct cluster information when multiple clusters are configured has been resolved.
Data Risk Assessment
Fixes
- An issue that caused the date field to show 'NaN' when Internet Explorer is used has been resolved.
May
Build 5001
All solutions
Fixes
Minor issue fixes.
May
Build 5000
Data Risk Assessment
Features
- Risk assessment (Data discovery) - Identify, track, and report instances of personal data stored in files, folders, or shares.
File Audit
Enhancements
- Advanced filtering options for detailed file access audit.
- Ability to configure inclusion and exclusion rules for file access audit and alert profiles.
- Exclude configuration now supports a wide range of criteria.
- Revamped graphs across all reports and alerts for enhanced user experience.
Fixes
- Minor issue fixes.
Apr
Build 4302
All solutions
Fixes
- Agent start-up issue in Windows Server 2003 has been fixed.
Mar
Build 4301
All solutions
Fixes
- Minor issue fixes and improvements.
Feb
Build 4300
File Audit
Features
- DataSecurity Plus now supports Windows Failover Cluster auditing.
Enhancements
- Auto-update of known ransomware file types.
- Product notifications to notify and help troubleshoot data collection issues.
Fixes
- Reports will no longer show multiple client IPs/host names in a single event.
- All special characters in username, password, and all other fields are now recognized.
- An issue that caused SIDs to be displayed in the username field for local accounts in some events has been resolved.
- Other minor fixes.
File Analysis
Features
- Generate new reports on-demand for junction points, network-based open sessions, and open files.
2017
Nov
Build 4211
File Audit
Fixes
- File servers can now be added without any errors when the product is launched using Internet Explorer.
- Issues with event processing after server restart have been fixed.
All solutions
Fixes
- An issue in scheduling reports when the time is in PM has been resolved.
- An issue in sending scheduled reports in environments using mail servers for which no authentication is required has been fixed.
- Driver start-up issues in Windows Server 2016 have been fixed.
Oct
Build 4210
All solutions
Features
- Data collection issues will now trigger email alerts.
- File servers running Windows Server 2016 can be audited.
Enhancements
- Performance enhancement for generation and exporting of reports.
Fixes
- Inputs from the keyboard numpad will now be accepted.
- Issues in exporting Japanese and Chinese characters have been fixed
- The agent has been improved for better performance.
- An issue that caused agent installation and share selection to fail has been resolved.
File Analysis
Features
- Generate on-demand reports on shares, effective permissions, privileged users, and orphaned files.
- View reports based on file types, categories, and ownership.
Jun
Build 4201
All solutions
Fixes
- Users can now configure mail servers for which no authentication is required.
- Passwords with special characters can now be configured without any issues.
- Minor bug fixes.
May
Build 4200
File Audit
Features
- Audit, report, and get alerts on non-domain (workgroup) file servers.
Enhancements
- View registry properties of the agent.
- Experience accelerated event processing.
- Delete custom report views.
- Customize alert table columns.
- Prioritize alert mails.
- Automate responses to alerts that get triggered by executing batch commands.
Fixes
- An issue in identifying cross-domain users has been fixed.
Feb
Build 4120
File Analysis
Features
- View share and security permissions of configured files/folders in the file server with 'Permission' report.
- View properties such as size, file count, and folder count of files and folders in the file server with the 'Properties' report.
File Audit
Enhancements
- Audit, report and get alerts on files/folders whose extension has been changed.
- Use Regex patterns to define which objects are to be excluded from auditing.
Fixes
- Read deny events will now be audited without any issues.
- A host of other minor issues have also been fixed to improve performance.
All solutions
Fixes
- Users can now configure technicians when using Internet Explorer without facing any issues.
2016
Dec
Build 4111
File Audit
Enhancements
- Performance enhancements for faster report loading.
Dec
Build 4110
File Audit
Features
- Identify the machine (machine name and IP address) from which the event was triggered.
Enhancements
- Users can now exclude computer accounts from being monitored within a domain or server.
- Configure drives under local folder in basic file server configuration.
- Eliminate deny events for admin users arising due to User Account Control.
Fixes
- A host of minor issues have been fixed to improve performance.
Nov
Build 4101
File Audit
Fixes
- Events will be reported normally after applying patches.
- Specific folders within shares can now be configured without any issue.
- Other minor bug fixes.
Nov
Build 4100
ManageEngine DataSecurity Plus has undergone a major revamp. The new build is easier to use and is also packed with additional features that ensure better data security and information management within your Windows file server environment.
File Audit
Features
- Access Analysis Reports: Pre-configured reports that provide a summary view of the- most accessed/modified files, most accesses by process/user, and files accessed/modified after N days.
- Threshold-based alerts: Lets the admin define a threshold limit beyond which alerts can be triggered, which allows for detection of ransomware and other similar attacks.
- Local files and folders can be audited.
Enhancements
- Specific folders within any share can be audited (sub-shares).
- Custom time periods can be defined.
- The Access Audit Report has additional filters and custom views can also be created.
- Exclude users, file types, file names, local paths, process names, etc., from being monitored in a specific domain or server.
Fixes
- An issue in exporting huge volumes of data has been fixed.
File Analysis
Features
- Storage Analysis Reports: Helps isolate old, stale (unused), unmodified, large, hidden and non-business files, and also provides graphical insight into how your disk space is being utilized.
All solutions
Fixes
- An issue in Mail Server TLS configuration has been fixed.
- Business hours can now be configured without any issues.
May
Build 4016
All solutions
Fixes
- The DataSecurity Plus agent now supports .NET Framework 4.6.1.
May
Build 4015
File Audit
Enhancements
- Memory usage has been optimized to handle large volumes of data dump from the agents.
Fixes
- Domain credentials can be updated without any errors in Internet Explorer.
- Encryption types can be changed without any issues when configuring mail servers.
- Disk space alerts will now be emailed without any issues.
Mar
Previous Releases
Build 4010
All solutions
Enhancements
- DataSecurity Plus Agent now supports .NET Framework 4.0.
- Agent performance improved.
Fixes
- An issue that caused existing domain controllers to get removed when new DCs are added has been resolved.
File Audit
Enhancements
- Filters are now available to export only required data from reports.
Fixes
- Users can now search for a specific server or share on the configuration page without any issues.
- An issue that caused auditing to stop after a disabled server is re-enabled has been fixed.
Mar
Build 4002
All solutions
Enhancements
- JRE migration from version 6 to 8.
- PostgreSQL migration from version 9.2.4 to 9.4.4.
2015
Dec
Build 4000
All solutions
Features
- Agent-based auditing: Monitor file and folder activities in real time using a lightweight agent.
- Pre-configured reports: Keep track of all file and folder related activities like read, write, overwrite, delete, move, rename, and permission changes.
- Real time email alerts: Get instant alerts sent straight to your inbox with in-depth event analysis.
- Meet compliance requirements: Export data to CSV, PDF, XLS and HTML formats to satisfy compliance requirements of SOX, PCI and FISMA.
- Schedule reports: Automate periodic report generation for in-depth analysis.
- Archive data: Save disk space with data archiving and restore data when required.
- Disk space alerts: Receive email alerts when available disk space in servers running DataSecurity Plus falls below a preconfigured level.