Release Notes

Network Configuration Manager version 12.3 (Build 123288)

Enhancement:

• Now, transfer files from NCM server to the devices using configlets via SCP client.

Network Configuration Manager version 12.3 (Build 123169)

 Vulnerability Fixes:

•  Security Patch to remove Zip Slip Attack.
•  Security Patch to handle Local File Inclusion Attack.
•  Cross site scripting(XSS) and arbitary file read vulnerability in Fail Over has been fixed. [CVE - 2018 -12997, CVE - 2018-12998]

 Network Configuration Manager version 12.3 (Build 123159)

• NCM: Export the devices listed in device inventory page as PDF.
• NCM: A device group that is listed as a sub group in another device group cannot be deleted.
• NCM: Issue of database backup and restore failure after importing new device template is now fixed.
• NCM: Issue of upgrade failure due to ncm personality-configuration is now fixed.

Network Configuration Manager version 12.3 (Build 123156)

• License Agreement has been updated.
• Promotions related to ITOM Events will be displayed in the UI header after login.

Network Configuration Manager version 12.3 (Build 123151)

• In Group Chat Module, "Operator" user was not restricted from viewing the list of users, their User ID and Email addresses. This issue has been fixed.
• EncryptPassword.bat has been removed due to DOS attack.
• Path Traversal vulnerability in uploadMib API has been fixed (Reported by Pulse Security) 

Network Configuration Manager version 12.3 (Build 123137)

Enhancements

• Network Configuration Manager is now GDPR compliant with the privacy messages and consent requests displayed in the UI.
• Dashboards are now user-specific and allows users to create their own private dashboards. Apart from this, users with administrator privilege can associate dashboards that are created by them with select users.
• Increased privacy & security through product enhancements.
• More user-friendly with editable Configlet names.

Bug fixes

• Custom column names now populate uniformly throughout the UI after a change.

Network Configuration Manager version 12.3 (Build 123129)

• Path Traversal vulnerability in upload Mib API has been fixed.
• The RemodeCodeExecution(RCE) vulnerability occurring while testing scripts has been fixed.
• The SQL injection vulnerability in "FailOverHelperServlet" for the operation 'standbyprobestatus' has been fixed.
• The SQL injection vulnerability in "FailOverHelperServlet" for the operation 'getprobenetworkshare' has been fixed.
• In Group Chat Module, "Operator" user was not restricted from viewing the list of users, their User ID and Email addresses. This issue has been fixed
• Previously, "Operator" user was not restricted from viewing the URL monitors in the Inventory Page. This issue has been fixed.
• Previously, "Operator" user was not restricted from being able to modify the background color and the tile color in the 3D floor view page. This issue has been fixed.

Network Configuration Manager version 12.3 (Build 123123)

Bug fixes

• 'Should contain exact set' in Compliance rule criteria is now fixed and executes properly.
• The Rule Compliance page under MSSQL now displays the necessary data.
• The '%' symbol in labels of configlet parameters from 'Execute Configlet' page has been removed.

Enhancements

• Compliance page has been added in left menu bar for quick access. All compliance-related functionalities are now available under this page.
• Now, you can share Custom Device Templates to NCM Administrators worldwide in 'Device template >> Custom >> Share'.
• Additional hardware information for Cisco devices is now displayed in the Device Snapshot page under 'Inventory' tab. We will support other vendors also in the near future.
• You can now search devices by providing their hardware details, in 'Inventory >> Search by hardware details' (Filter icon on top-right corner).
• Device selection list is sorted in 'Configlets Execution' and 'Schedules' pages with the IP addresses of the devices.

Network Configuration Manager version 12.3 (Build 123106)

Bug fixes

• 4439431 - Know which config version is baseline in config diff view. (The Config version that is baseline is mentioned as 'Baseline').
• 4550432 - Layout of NCM Nipper reports has been revamped.
• 4571167 - Issue while finding SysOID has been fixed.

Enhancements

• View SNMP profiles from System Location and Description pages.
• Select specific SNMP profiles to be used while updating location and description details for devices.
• Add devices as unmanaged if the total number of devices exceeds the license limit.
• More devices are supported by default with the additional SysOIDs.
• I18N keys are now available.
• Minor UI enhancements.

New Feature - Terminal :

• Terminal page can be used to open a terminal to any device in the network.
• Terminal connection to the inventoried devices can be opened under ‘Settings >> NCM >> Inventoried’.
• For devices that support terminal function but are not included in Inventory, the session can be initiated by ‘Settings >> NCM >> Terminal >> Custom’.
• All the terminal sessions will be logged and can be viewed in ‘Settings >> NCM >> Terminal >> Audit History’.

Network Configuration Manager version 12.3 (Build 123105)

Enhancements

• Network Configuration Manager now scales more. A single server supports 10000 devices. If you need to manage more than 2000 devices, configure the number of parallel job count to a minimum of 50 in 'Settings >> NCM >> Server settings' and restart the server.
• You can trigger a configuration backup operation for any number of devices in a single schedule in 'Settings >> NCM >> Schedule'.
• You can now apply the credentials for any number of devices successfully from 'Device Group' page under Inventory section.

Network Configuration Manager version 12.3 (Build 123091)

Bug fixes

• 100% CPU Utilization issue due to Syslog flooding has been fixed.
• 100% CPU Utilization issue due to Fortigate Firewall backup has been fixed.

Network Configuration Manager version 12.3 (Build 123083)

Enhancements

• Dashboard loading has been revamped and optimized for better performance.
• In the Login page, iPhone/Android and iPad application download links have been included.
• License expiry information in header had a few alignment issues. This has now been fixed.
• User Icon with product details and about information has been moved to right top corner.
• In the Inventory page, product based tabs have been moved horizontally.
• Sign out option has been moved from Quick links to User details menu.
• Support icon has been added for (Mail, Apply license, phone number, SIF, User guide, Videos, Service pack, ThreadDump, DB Query & view Logs) links.
• In support page, the Query page under DB Query will be opened in a new window without ember.

Network Configuration Manager version 12.3 (Build 123070)

Vulnerability fix

• SQL injection vulnerabilities in Servlet's API has been fixed.

Network Configuration Manager version 12.3 (Build 123069)

Bug Fixes

• Backup operation fails for the following device type in builds 12300 to 123064 due to Maverick upgrade. Device backup command response stops in the middle of an execution and expects an enter key (LineFeed) to send the remaining response. This issue has been fixed in this release and now you are able to backup this device type without any issues.
  • Device type: Cisco IOS Software, IOS-XE Software, Catalyst L3 Switch Software (CAT3K_CAA-UNIVERSALK9-M),Version 03.07.03E RELEASE SOFTWARE

Network Configuration Manager version 12.3 (Build 123064)

Enhancements & fixes

1. Alert message for existing device while adding non SNMP devices.
2. Time based report for configuration change.
3. 4318485: Schedule Security Audit Report is now added
4. Now you can view compliance policy violation widget in dashboard
5. View configuration file while uploading labeled configuration.
6. Help document now available on how to execute Configlet.

Network Configuration Manager version 12.3 (Build 123057)

Vulnerability fixed

1. DDI-VRT-2018-02 – Unauthenticated Blind SQL Injection via /servlets/RegisterAgent
2. DDI-VRT-2018-03 – Unauthenticated Blind SQL Injection via /servlets/StatusUpdateServlet and /servlets/AgentActionServlet
3. DDI-VRT-2018-04 – Multiple Unauthenticated Blind SQL Injections via /embedWidget
4. DDI-VRT-2018-05 – Unauthenticated XML External Entity Injection via /SNMPDiscoveryURL
5. DDI-VRT-2018-06 – Unauthenticated Blind SQL Injection via /unauthenticatedservlets/ELARequestHandler and /unauthenticatedservlets/NPMRequestHandler
6. DDI-VRT-2018-07 – User Enumeration via /servlets/ConfServlet.

Network Configuration Manager version 12.3 (Build 123055)

Enhancements & bug fixes

1. Advanced Configuration Search in Inventory page with multiple search conditions.
2. Shared Device Template and Request New Device Templates options are provided.
3. 4224773: List view of devices associated to each credential profile.
4. Credential profile is now moved under NCM Tab in settings.
5. Now access & edit system properties from NCM GUI.
6. Device Group widgets with status of Backup, Compliance and Conflict status bar charts now available in inventory.
7. Execute Configlets option is provided in the select menu in Devices Inventory at the top right corner.
8. Snapshot Configlets without parameters will be executed directly without prompting for parameters.
9. SSH Settings: Allow/block Ciphers, Key Exchange and HMACs in product settings page.
10. 'User audit clean up' option is now available in Database Administration settings.

Network Configuration Manager version 12.3 (Build 123052)

Bug fixes / Changes

1. The possibility to fetch user details through ConfServlet has been fixed and is secured now.

Network Configuration Manager version 12.3 (Build 123035)

Bug fixes / Changes

1. Fixed the reporting options (violated rules only, compliant rules only or all rules) in scheduling compliance report for CSV format.
2. Error message for expired time in 'Once' option for add schedule page.
3. 4025368 - Fixed the EOL Report with no data in OpManager Probe server.
4. 4244879 - Compliance validation issue in exact set criteria rule is fixed.
5. Admin has to give annotation while authorizing/unauthorizing configchanges.
6. System settings page is enabled for NCM.
7. Filter by time option is provided in changes page.
8. Aruba Controller backup failure issue is fixed.
9. Now configure the number of parallel threads for SSH connection.

Network Configuration Manager version 12.3 (Build 123023)

Bug fixes / Changes

1. Option to clone a device template is provided in GUI.
2. Provided an option to delete existing sysOID in GUI.
3. Schedule actions are removed from device Inventory multi-select actions list and is now added under a new group 'Schedule'.
4. Option to schedule configlets is provided in Configlets list page.
5. 3942442 - Option to retry backup for backup failed devices.
6. 4101225 - Option to add DNS name in reports for application URL instead of IP Address.
7. 4150507 - Search option is provided to select device in the multi-select box in GUI.
8. Uniform color coding for authorization & unauthorization across the product.
9. Option to edit import devices and values option is provided in the "Configlet Schedule" page.
10. Configuration Change Trend, Compliance Report, Device Audit Report are now provided in the device snapshot page.

Network Configuration Manager version 12.3 (Build 123008)

Bug fixes / Changes

1. 4094309 -- SSH Vulnerability #1 : The SSH server is configured to support Cipher Block Chaining (CBC) encryption, which may allow an attacker to recover plain text message from the ciphertext. We've now fixed this by providing an option to disable the CBC mode encryption using system property.
2. 4094309 -- SSH Vulnerability #2 : The remote server is configured to allow MD5 and 96-bit MAC algorithms, both of which are weak algorithms. We have now fixed this by providing the option to disable these algorithms using system property.
3. 1584237 -- Configuration Analysis and Security Audit Reports are now supported for device templates which were not supported in earlier versions.
4. 4255506 -- SCP wasn't working in the 12300 upgrade. It is now fixed with this release.

Network Configuration Manager Version 12.3 (Build 12300)

New features:

• Global search - Search features, devices and also texts within configuration files with the results-retainable search bar.
• Add/edit device templates - Add/edit any number of device templates as .xml files based on your need.
  Note: If the .xml files are complex, contact support with your requirements and we'll help you
• Schedule configuration upload - Schedule configuration upload to a later date and time from the device snapshot.
• Real time notification approval request - Be notified in real-time when there is a change request for approval. The requester also gets notified upon approval/rejection of the request.

New device models supported:

• InsysMoros
• Sonicwall Firewall
• Trapeze WLAN Controller
• Ubiquiti Air Os
• Garderos Router
• Juniper Fabric Switch
• F5 Netcon
• F5 Big IP114
• Edgecore L2 Switch
• Huawei S 5300 Switch
• Hitachi GR 2000 Router
• Juniper MX Series Router
• Mimomax

Enhancements:

• Real time GUI - Be notified in real-time when there is a change request for approval. The requester also gets notified upon approval/rejection of the request.
• Dynamic device groups - Create device groups based on Backup Status / Config Conflict status / Compliance Status.
• User specific Retainable filters and column choosers - Show/hide columns in list views. Save the selected filters in Inventory and apply the same filters when you come back to Inventory page.
• List view of configlets associated to a Template - Add / associate / delete flow export configlets in a Template. Also, add new Device Identifiers (Device SysObjectId) in a Template manually.
• Authorization for changes done from outside NCM - Categorize the configuration change as authorized even when the change is done from outside NCM. Add the authorized user names separated by comma in System_Properties.conf under <NCM-HOME>/conf directory.
• Find Sysobject using SNMPv3.

Network Configuration Manager Version 12.2 (Build 12200)

Enhancements

• Export flow: Exporting flows from your device to Netflow Analyzer or any flow processing tool involves a string of commands and tasks. With Export flow in Network Configuration Manager, get it done in 3 simple steps
• Edit SysObjectIDs: Did you make an error while adding a SysObjectID? You can correct it easily as Network Configuration Manager allows you edit the Device Type, Model, and Series number even after adding SysObjectID into the application.
• Configlet promote: Some configlets are more often used than the others. Keep these configlets handy at the inventory page using the Configlet Promote feature
• Sync password: Keep the network device passwords updated and secure by integrating with Password Manager Pro. This feature periodically updates the latest network device credentials from Password Manager Pro
• Custom reports: Reports come in all shapes and sizes. With the Custom Report feature, you can create fully customized reports that meet your specific needs
• CSV reports: Do you have to upload a report into another tool as a CSV file? Network Configuration Manager allows you to get reports as CSV files.
• Configuration change trend report: Get the trend of the configuration changes over a specific period of time. The trend is shown graphically for easy understanding.
• Reports: You can now get 3 different reports for within a device from the snapshot page.
  
  1. Recent Configuration Change Report: Get a quick report of the 5 recent configuration changes in a device.
  2. Configuration Analysis Report: A nipper-based report that analyses the configuration and suggests best practices.
  3. Security Audit Report: A nipper-based report that drills down to each line of the configuration and checks the same against the configuration rules. This report carries line by line information about violation of the configuration rules.

Network Configuration Manager Release 12.1 (Build 12100)

Enhancements

• Option to save & upload the configuration drafts in one click
• Users can now select multiple rules from rules list view and associate them with rulegroup(s). Similarly selecting multiple rulegroups and associating them with policy(s) is also possible

PCI Review

• Option to enable multiple PCI reviews at one go
• Option to configure email notifications for PCI reviews

Excluding Change Notifications:

Add EXCLUDE_CONFIG_CHANGE_ALARM_USERS=user1,user2 in system_properties.conf file. This will exclude change notification if configuration is changed by user1 or user2

Bug Fixes / Changes

• Issue in sending Syslog notifications on Configuration change is now resolved
• Issues with generating PDF and sending Email over Reports are fixed

Note: Database Maintenance, Data Migration, Add-on/Products Integration are removed from the client

Network Configuration Manager Release 12.0 (Build 12000)

New Features & Enhancements

• New User Interface - NCM gets a new stylish makeover with a better user experience.
• Workflow Automation - The new workflow automation in NCM lets you to automate time-consuming manual tasks with ease
• Heat Map - HeatMap helps you to visualize the configuration backup status in real-time from a single page. It uses different color codes to communicate the status of the backup operation.
• Group Chat - NCM offers a multi-threaded cascading wall for IT teams to collaborate in real-time. You can like or comment on any discussion you have access to. And get notified instantly when someone tags your name in any of the discussions.
• Popup notifications - Now with the help of new popup notification, you get to know what’s happening in your network in real-time. These notifications appear at the bottom of the screen instantly alerting you about the alarms raised.

Network Configuration Manager Release 11.0 (Build 11000)

New Features & Enhancements

• Name Change - DeviceExpert has been renamed as 'Network Configuration Manager'
• PCI Review - Option to schedule & review all the firewall configuration & policies regularly.
• New Fluidic Webclient - Ultra-fast, API driven Fluidic user interface is ready to use. The new Fluidic webclient will become the default user interface for all new installations. However, users can switch to old UI at anytime in a single click.

DeviceExpert Release 5.9 (Build 5990)

New Features & Enhancements

• Option to import Device Group has been included
• List of devices can now be imported from a file to execute Custom Template

New Device Models Supported

• Brocade Router
• DLink DES 3200 Switch
• Huawei NE40E-X3 Routers

Bug Fixes / Changes

• User Audit for DeviceGroup update has been added
• User Audit for User Details modification added
• Multiple entries can be provided for single HostName/IPAddress in CustomTemplate file upload option.

DeviceExpert Release 5.9 (Build 5981)

Bug Fixes / Changes

• Servlet based security issue fix.

DeviceExpert Release 5.9 (Build 5980)

New Features & Enhancements

• Six more REST APIs introduced:
  1. MANAGE - To manage a network device in DeviceExpert
  2. UNMANAGE - To unmanage a network device
  3. GET_DEVICE_COUNT - Returns the total number of managed devices count
  4. GET_BACKUP_FAILED_COUNT - Returns the total number of backup failed devices at present
  5. GET_BACKUP_SUCCESS_COUNT - Returns the count of successful backup operations
  6. UPDATE_IPADDRESS - Updates the IP address of the given device with the latest
• Administrators can now view the list of all SystemObject Identifiers in table view from 'Admin' tab.
• Option to save configurations for backup before and after custom template execution
• SSH and TELNET protocol support for Force10 E-Series switches

New Device Models Support

• HP 5500 series Switch
• PaloAlto Panorama Centralized Management console

Bug Fixes / Changes

• In v5970, compliance pie-chart navigation from the home page dashboard threw errors. This has now been fixed.
• Earlier, there were issues in populating the hardware properties of PaloAlto devices. This has now been fixed.
• Earlier, there were issues in backing up the configurations of Cisco WLAN Controllers. This has now been fixed.
• In v5970, reports exported as pdf did not cover all applicable devices. It was restricted to the number of devices in current page view. This has now been fixed.

DeviceExpert Release 5.9 (Build 5970)

New Features & Enhancements

• Option to view the list of devices associated with any compliance rule. Reports can also be generated based on policies.
• Option to synchronize system description and sysLocation details from the network device to DeviceExpert.
• Custom templates can now automatically append hostname and timestamp ( <hostname_timestamp> for the files downloaded from the devices. This will help in pulling multiple context stack switch configuration information and store them as flat files under <deviceexpert_home>/tftp_files directory.</deviceexpert_home> </hostname_timestamp>
• New REST API to add users
• Option to send email notifications only on failure of database backup and export configuration operations.
• Option to include information on who invoked backup of device configuration in the config change notification emails. This can be configured as part of defining configuration change management rule.
• Real-time change detection is now supported for HP Switch & Juniper SRX devices.
• Telnet & SSH protocols can now be used for managing the configurations of Fortigate Version 3.x and VDOM 3.x

New Device Models Support:

• Avocent ACS
• Juniper WLAN controller
• Pravail APS
• Avocent Terminal
• Cisco ASR Mobile Gateway

Bug Fixes & Changes:

• Earlier, when generating a compliance report out of the custom reports, latest configuration data was not taken into account. This has now been fixed.
• Earlier, database backup failure status was not properly updated in audit records. This has now been fixed.
• When there were multiple SNMP profiles, devices discovery failed often. This has been fixed.
• Earlier, in certain specific conditions, EOL report generation threw an error. This has been fixed.
• Operators will henceforth not have the privilege to view/edit credentials and credential profiles.
• Earlier, there were issues in populating the hardware properties of Cisco WLC, Cisco Nexus and Nortel Switches. This has been fixed.
• Earlier, there were issues in backing up the configurations of Cisco WLAN controllers. This has been fixed.

DeviceExpert Release 5.9 (Build 5960)

New Features & Enhancements

• SIEM Integration: Provision for sending Syslog messages to SIEM tools upon detecting a configuration change event. SIEM tools can then thoroughly analyze these events, correlate them with other network events and provide informative, holistic insights on the overall network activity.
• REST APIs to get all supported device types and to add devices.
• Option to exclude configuration difference in configuration backup notification emails triggered after executing scheduled tasks for config backup
• Option to include custom columns in configuration change management email notifications (as part of Send Email action)
• Telnet & SSH protocols can now be used for managing the configurations of HP Switches.
• CLI commands and command output can be copied and pasted on the TELNET / SSH terminals in the DeviceExpert GUI

New Device Models Support

• Aruba Controller
• Tippingpoint IPS
• MobileIron Sentry
• Juniper LoadBalancer
• Ciena Switch
• H3C Device
• Check Point GAiA Firewall

Bug Fixes / Changes

• Earlier, in Advanced Script Execution, there were issues in identifying the prompt due to which the next command was getting executed.This has been fixed.
• Issues in populating hardware properties of Fujitsu & Layer 3 Cisco Switch have been fixed.
• Earlier, there were issues in enabling change detection in Huawei Switches. This has been fixed.
• Earlier, the Ping option in Add Device GUI was not working. This has been fixed.
• Earlier, there were issues with formatting the output of Show commands of HP Switches. This has been fixed.

DeviceExpert Release 5.9 (Build 5950)

New Features & Enhancements

• Session Recording: TELNET & SSH connections launched to the devices from DeviceExpert GUI can now be recorded, archived and played back to support forensic audits and let enterprises monitor all actions performed by users. Session recording caters to the audit and compliance requirements of organizations that mandate proactive monitoring of activities. Administrators can readily answer questions regarding the ‘who,’ ‘what’ and ‘when’ of access to device configurations.
• Custom Templates: To enhance the usability of templates, DeviceExpert allows you to define 'Template Variables' while creating templates. A template variable is a placeholder for a value, which can be specified when the template is uploaded to the device. Hitherto, there was provision to assign only a single value for the variable. So, when users wanted to apply the template on multiple devices with a different value for each device, the template had to be executed many times. This has now been enhanced with the provision to assign a different value for each device. The values for the template variable for each device can be specified through a text file.
• Device Groups: Provision to filter devices in the inventory and create a new device group out of the filtered devices
• Export Configuration: Provision to export configurations of devices belonging to specific device groups
• Real-time Change Detection: Real-time change detection is now supported for Juniper switches and routers

New Device Models Support:

• FiberHome Switch
• ZXR Router ZSR Version 2.x
• Fujitsu IPCOM EX1100
• FortiGate Firewall VDOM V3

Bug Fixes/Changes:

• Earlier, there were issues in synchronizing configurations of Cisco Nexus devices. This has been fixed.
• Issues in populating hardware properties of H3C devices have been fixed.
• Earlier, there were issues in enabling change detection in Huawei S series and H3C S series switches. This has been fixed.
• The issues in executing 'show' commands on Juniper Switches from DeviceExpert GUI have been fixed.
• Earlier, sorting of device list in "Diff with any" report did not work. This has been fixed.
• When choosing devices to apply remediation templates, the list was containing duplicate entries. This has been fixed.

DeviceExpert Release 5.9 (Build 5910)

New Features & Enhancements

• Remediation option for compliance rule violation: Custom templates can now be associated with compliance rules. The templates can be executed in the event of rule violation as a remedial measure.
• User Audit Report: A new report capturing almost all the activities done by the users in DeviceExpert.
• Option to export configuration diff as PDF
• Option to export SQL query results from database console to CSV
• Option to update IPAddresses of devices in bulk
• Option to create device groups based on the device criteria - Managed/Unmanaged
• Option to configure email notification mail (for scheduled backup) only when there is a change
• New Device Models Support:
  • FortiGate Firewall VERSION 4
  • 3Com Switch 5500 series
  • Citrix NetScaler MPX

Bug Fixes / Changes

• Hardware properties population issue with Cisco MDS has been fixed.
• Earlier, the device groups that were created with Custom Column values (as criteria) were not being properly shared to Power Users. This has been fixed.
• Earlier, there were issues in validating the IP addresses entered in additional credentials GUI. This has been fixed.
• Javascript issues with localized version of DeviceExpert have been fixed
• Earlier, searching configurations (with PostgreSQL as backend database) was not working properly. This has been fixed.

DeviceExpert Release 5.9 (Build 5900)

New Features & Enhancements

• Password Management with ManageEngine Password Manager Pro
• Credential Update using Rest API
• SSH & Telnet protocol option added for Enterasys
• New Device Models Support:
  • RuggedCom Switch
  • Ruijie Switch
  • Fujitsu Firewall
  • F5Bigip 11X
  • EdgeCore Switch
  • Telco Switch
  • Occam Switch
  • Adtran Router
  • Cisco 300 Series Switch
  • Nokia IPSO Firewall
  • HP 1910 Series Switch

Bug Fixes / Changes

• Disabled Devices shown in the backup failed devices has been fixed.
• Custom Column 3 label issue while creating device groups has been fixed.
• Javascript warning messages in Internet Explorer with localized versions have been fixed.

DeviceExpert Release 5.8 (Build 5850)

New Features & Enhancements

• Support for PostgreSQL as backend database. From this version onwards, the product comes bundled with PostgreSQL 9.2.1.
• Provision to enter credentials for multiple devices of a device group that work on a common protocol
• Option to duplicate existing compliance rules and save then with a different name
• Provision to add one more custom column to depict any desired additional information about devices in device properties.
• New Device Models Support:
  • Crescendo Load Balancers
  • Welotec Routers
  • Mikro Tik Routers
  • Adava ADVA FSP

Bug Fixes / Changes

• With MSSQL server as backend database, there were issues in persisting sorting of columns in 'Change Tab'. This has been fixed.
• Earlier, there were issues in displaying data in custom reports while navigating between pages with using MSSQL server as the backend database. This has been fixed.
• Earlier, editing of host names did not work properly in Chrome and Firefox browsers. This has been fixed.
• Earlier, when reports were exported as CSV (with MSSQL server as backend database), duplicate entries were found. This has been fixed.
• If Active Directory synchronization is enabled, when users get deleted in AD, the same did not get reflected in DeviceExpert. Now, the users will be disabled in DeviceExpert.
• Earlier, there were issues in displaying device configuration content, if it contained HTML tags. This has been fixed.
• Earlier, there were issues in taking backup of ACME devices. This has been fixed.

DeviceExpert Release 5.8 (Build 5800)

New Features & Enhancements

REST APIs for integration with third-party applications

• A set of 10 APIs to enable any third-party application or software integrate with DeviceExpert directly and add, access and extract data. The REST APIs also facilitate integrating DeviceExpert with enterprise Configuration Management Database (CMDB) for centralized, integrated, holistic and consolidated change control and management.
• APIs made available now help perform various tasks, including inventory management (device addition and deletion); configuration backup; compliance status; executing show commands on devices; fetch device properties and executing templates and scripts in DeviceExpert that automate repetitive configuration tasks.

Change Management

• Option to include configuration change type (authorized or unauthorized) as one of the change management conditions while defining rules. The introduction of this option now makes it possible to get notifications during specific conditions like an unauthorized change happening on the running configuration of a device.

Message Board

• Provision for communicating various messages from DeviceExpert team to users. Information about product updates and various other notifications will now reach the users directly. Messages can be accessed by clicking the 'Mail icon' on the top-band.

Saving output of commands on DeviceExpert client machines

• The outputs of various 'Show' Commands and 'Export' configuration can now be saved on machine from which DeviceExpert web-interface is launched

Compliance Management

• Enhancements in compliance rule definition to check for the presence or absence of specific strings in device configurations as part of 'Advanced Criteria' and 'Advanced Custom Criteria'. Presence or absence of strings can now be checked for specific or unlimited number of occurrences.

Navigation from Home Page

• Option to navigate to corresponding pages when viewing various reports in the 'Home' page

New Device Models Support

• NEC
• Juniper SR
• Vyatta
• Radware-Alteon Switch
• Brocade VDX Switch
• Support for Managing Acme Packet devices through SSH

Changes & Bug Fixes

• Earlier, DeviceExpert (v5700) web-interface session in Internet Explorer was logging out suddenly. This has been fixed.
• Earlier, there were issues in generating EOL/EOS reports when the connection was going through a proxy. This has been fixed.
• Earlier, due to an issue with mail server settings, the from address got truncated when using with MS SQL Server as backend database. This has been fixed.
• Earlier, there were issues in populating the hardware properties of Juniper Ex4200 devices. This has been fixed.
• The RegEx pattern that was being used for checking the status of Brocade fast iron switch has been changed.

DeviceExpert Release 5.7 (Build 5700)

New Features and Enhancements

• A new tab named 'Change' has been introduced to serve as a quick view of the 'big picture' related to configuration changes in entirety. This comes with convenient date-based filtering options
• Provision to view all configuration versions of any particular device on a single click from the device details page
• 'Configuration Diff' GUI has been enhanced with options to select the version numbers and view changes
• Option to launch direct TELNET/SSH connection to the remote devices from DeviceExpert web interface. This web-based implementation does not require any tools to be present on local machines and will be highly useful to access remote devices when one is away from office. It does not require VPN too
• Device details page has been enhanced with additional tools including ping, traceroute and option to launch HTTP/HTTPS connection to the device. These utilities will come in handy while debugging from remote locations even from tablet devices like ipad

New Device Models Support

• F5 BIG-IP 10.x
• Cisco IronPort
• Blue Coat Proxy with SGOS and AVOS

Bug Fixes / Changes

• The number of 'UnManaged devices' will henceforth be excluded from the total number of devices in the system for licensing purpose
• Earlier, in certain scenarios, when the product version of DeviceExpert in the application and the backend database was different, errors were thrown while working with the product. This has now been fixed in such a way that when the DeviceExpert version differs (between application and the backend database), DeviceExpert server will not start until the versions are same.
• Earlier, there were issues in DeviceExpert web-interface when launching FireFox 11/12. This issue has been fixed
• EOL home page widget color coding has been revised for logical representation of EOL and other devices through proper colors
• Earlier, the link to Device Details page from the 'last 5 configuration changes view' of home page widget did not work. This has been fixed
• Earlier, when setting up High Availability, in email settings, if the 'cc' field had been left blank, it resulted in mails not being sent. This has been fixed

DeviceExpert Build 5650

New Features and Enhancements

1. High Availability Architecture: Support for high availability architecture through redundant server instances. This helps ensure uninterrupted access to device configurations and network configuration management activities.
2. Dashboard Enhancement: End-of-Life (EOL) details of devices are now depicted in the 'Home' page with intuitive graphics
3. EOL details have been made available in Hardware Inventory Report

New Device Models Support

1. ZTE
2. Foundry FastIron
3. Dell PowerConnect
4. Brocade 3850 Switch
5. Cisco ASR Router

Bug Fixes / Changes

1. When DeviceExpert was running with MS SQL server as backend database, configuration changes report could not be generated as PDF. This has been fixed.
2. Earlier, there were issues with executing enable command for CheckPointFirewall and Brocade devices. This has been fixed.
3. Earlier, there were issues in showing the configuration difference of Cisco IDS devices. This has been fixed.
4. Earlier, for some devices, Switch-Port Mapper scan was not showing port and MAC address details properly. This has been fixed

DeviceExpert Build 5601

Enhancements

1. Option to choose IPADDRESS part of the Hardware Inventory Custom Report has been added

Bug Fixes

1. Earlier, there were issues in generating EOL report while direct internet connection is set in the proxy settings. This has been fixed.
2. Earlier, there were problems in Navigating between pages in the Schedule Result Audit page view while using MSSQL database . This has been fixed.

DeviceExpert Build 5600

New Features and Enhancements

1. New report depicting the End-of-Sale and End-of-Life status of devices
2. Enhancements in compliance rule definition for checking the presence or absence of a specific strings in device configurations
3. Option to schedule custom reports and export the report as CSV. Default reports under custom reports category now include two compliance custom reports.

New Device Models Support

1. AlliedTelesis CenterCom Switch
2. AlliedTelesis Ethernet Switch

Bug Fixes / Changes

1. Earlier, there were issues in backing up the configurations of Brocade FastIron and Brocade Fibre Switches. This has been fixed
2. Paging command has been updated for Cisco ASA devices
3. When DeviceExpert was rebranded, the browser title-bar still contained DeviceExpert reference. This has been fixed
4. Earlier, there were problems in deleting SNMP v3 based devices. This has been fixed
5. Earlier, in Switch Port Mapper, there were issues in fetching ports. This has been fixed
6. Earlier, in Switch Port Mapper, there were issues in generating PDF reports when MACADDRESS column had not been selected. This has been fixed.

DeviceExpert Build 5580

New features and enhancements

1. Option to temporarily disable devices which are in maintenance and enable them again whenever needed
2. Support for exporting any specific version of the device configuration
3. Provision for analyzing syslog messages flow and notify message flooding in the GUI to enable administrators initiate corrective action
4. Change management rule name can now be added as part of the change notifications

New Device Models Support

1. Arista Switches
2. DCN Router
3. IBM
4. A10 Networks

Bug Fixes

1. Earlier, when IP addrsss of the device that underwent configuration change, was not present in the syslog message, DeviceExpert initiated recursive configuration backup. This issue has been fixed.
2. When a user with the role 'Operator' created a change management rule, it got assigned to 'All Devices Group' of administrators. This issue has been fixed.
3. Issue related to populating hardware properties of Bluecoat - Packetshaper devices has been fixed.
4. Issue related to backing up configuration of Juniper EX4200 has been fixed.
5. Earlier, the Configuration Changes Report, when Emailed, had formatting issues. This has been fixed.

DeviceExpert Build 5570

New Features and Enhancements

• Compliance Reports: Compliance Reports under 'Custom Reports' have been enhanced with the option to generate reports for specific rule, rule group or policy. Option for scheduling the reports is also available
• NTLM v2 Support: Earlier, Single SignOn worked only with NTLM-v1. Now, it has been enhanced to work with NTLM-v2 through integration with a third party library, which provides advanced integration between Microsoft Active Directory and Java applications. NTLM v2 is considered more secure as the protocol has been hardened against many spoofing attacks. Refer to this section of our help documentation for details on enabling NTLM v2. For some reason, if you still want to use NTLMv1, contact support to enable it.
• Support for configuration backup through SSH protocol in Hirschmann Switch

New Device Models Support

• Brocade FastIron Switch and Fiber Switch
• Siemens Redback Router
• DIGI-Router

Changes/Bug Fixes

• In the "Home" page configuration change snapshot, when the changes were marked as Authorized/UnAuthorized repeatedly, an error page was thrown. This has been fixed.
• The issues in populating the hardware properties of Alaxala devices have been fixed.
• Earlier, Configuration backup of Palo Alto firewall devices did not work. This has been fixed.
• When depicting configuration difference between two versions, the content pertaining to the SSL certificates was excluded. This has been enhanced now.
• Access to Security Audit Report and Configuration Analysis Report has been restricted to Administrators alone.

DeviceExpert Build 5560

New Features & Enhancements

• Out-of-the-box policies to check configurations for compliance to SOX and HIPAA regulations
• Home Page Dashboard Enhancements:
  • Dashboard now depicts the top five configuration changes in summary view
  • Summary of the devices whose configurations were backed up and the ones not backed up now depicted in pie-chart
  • Compliance policy violations shown in summary view
• Option to save the custom reports for future reference and also to create scheduled tasks for automatic execution of the custom reports at desired interval
• Custom reports can now be created for a specific device or a device group
• Support for configuration backup through Telnet & SSH protocols in Cisco Aironet and Cisco Wireless LAN Controllers
• Option for enabling real-time change detection in Cisco MDS devices

New Device Models Support

• Palo Alto Firewall
• ADVA Optical Networking
• Meru WLAN Controller
• Ciena Switch
• ALAXALA Switch 5400
• Allied Telesis GS900M Switch
• H3C S Series Switch
• Huawei Switch
• Huawei S Series Switch
• Hirschmann Switch

Bug Fixes & Changes

• Issue related to backing up the configurations of Canoga Perkins devices has been fixed
• Issue related to enabling real-time change detection in Cisco Nexus devices has been fixed
• Earlier, there were issues in backing up the configurations of Netgear Switches. This has been fixed
• The issue related to associating Cisco switches with the default 'CiscoSwitchGroup' has been fixed
• Earlier, in non-English OS, there were problems in initiating Device Discovery / Ping. This has been fixed
• The issue related to backing up the configurations of Foundry devices using SSH protocol combination has been fixed

DeviceExpert Build 5550

New Features & Enhancements

• Provision to add custom columns to depict any desired additional information about devices in device properties. Custom columns can be added from Admin ---> Custom Column tab
• Provision to pick desired attributes alone from the hardware inventory and create custom reports. This can be done from Reports ---> Custom Reports
• Option for enabling real-time change detection in Dell and Cisco Nexus devices
• Support for configuration backup through SSH protocol in Brocade devices
• Provision for effective management of historical data through enhanced options in database administration. This can be done from Admin ---> Database Administration
• Option to associate change management rules with required devices from Admin --> Change Management

New Device Models

• Acme Packet Firewall
• WatchGuard
• Canoga Perkins

Bug Fixes & Changes

• As part of real-time change detection, when a configuration change is done outside of DeviceExpert, there was an issue in printing the the IP address of the user (who changed the configuration) in the annotation column of the backedup configuration information. This has been fixed now.
• Earlier, when depicting configuration difference between two versions, the content pertaining to the self-signed SSL certificates was also included. This has been excluded from the diff now
• Earlier, there were issues in backing up the configurations of Fujitsu devices. This has been fixed
• The configuration diff viewer has been enhanced with provision for viewing long lines through horizontal scroll bars
• By default, DeviceExpert collects details pertaining to the usage of the product, including frequency and usage statistics of the various features. This can be disabled or enabled anytime from Support ---> Usage Statistics Collection tab

DeviceExpert Build 5520

New Features & Enhancements

• Option to specify a particular IP or all IP addresses of an interface to bind TFTP, SSH and SCP servers when DeviceExpert is running in multi-homed machines. Same option is provided for transferring configuration files also.
• Provision to generate filtered reports out of the Compliance Report to get specific information on compliant rules or violated rules or all rules separately
• Enhancements in taking configuration difference for BlueCoat and FortiGate device types wherein the difference pertaining to changes in certificate information are now not taken into account
• Provision for executing 'show commands' on Cisco Nexus devices from DeviceExpert GUI
• Support for creating custom templates and scripts to automate configuration tasks pertaining to Cisco Nexus devices

New Device Models Support

• Nortel PWR Switch 2526T

Bug Fixes/Changes

• Earlier, due to an issue with identifying certificate changes in the configuration, startup and running configurations were marked as having conflict. This issue has been fixed
• Earlier, when compliance rules contained certain special characters , the 'edit rule' option did not work properly. This has been fixed
• Earlier, there were issues in populating the hardware properties of Cisco Nexus and Alcatel devices. This has been fixed
• Earlier, there were issues in backing up the configurations of Cisco Firewall 4.x devices. This issue has been fixed

DeviceExpert Build 5510

New Features & Enhancements

• Provision to start and stop TFTP server
• While starting the TFTP server, provision to choose a specific IP or all IP addresses to bind
• Export configuration feature enhanced with option to maintain all versions
• Support for launching DeviceExpert web-interface in Google Chrome
• Support for installing DeviceExpert in Windows 64-bit machines

New Device Models Support

• Cisco ASA with WAN support
• Cisco FWSM 4.x
• FortiNet FortiAnalyzer
• Alcatel Service Router

Bug Fixes / Changes

• Earlier, there were issues in bulk execution of Switch-Port Mapper in DeviceExpert. This has been fixed.
• Earlier, there were issues in depicting the summary view of custom template execution result. This has been fixed.
• The issue related to depicting the configuration difference when multiple certificates were involved in the configuration file, has been fixed.
• Earlier, there were issues in generating reports for the time period "last 7 days". This has been issue fixed.

DeviceExpert Build 5500

New Features & Enhancements

• Support for MSSQL back-end
• Provision for creating scheduled tasks for Device Discovery
• Support for additional Syslog message formats for real time change detection for Cisco and Enterasys devices

New Device Models

• Sphereon 4500 Fibre Channel Switch
• Juniper EX4200 Switch
• Allied Telesis AT-8000S Switch

Bug Fixes & Changes

• Earlier, when audit trails cleanup operation was in progress, performance issues cropped. This has been fixed
• Earlier, there were issues in deleting devices having a large number of configuration versions in DeviceExpert. This has been fixed
• Issues related to backing up the configurations of Radware devices fixed
• User prompt mismatch issues in Cisco Nexus devices fixed
• SysLocation population issue for Radware LinkProof switches fixed
• Earlier, there were issues in backing up the configuration of Citrix NetScaler devices using SCP protocol. This has been fixed

DeviceExpert Build 5450

New Features & Enhancements

• Provision for viewing the configuration versions of all/any device(s) by specifying a custom date range
• Provision to mark configuration changes as authorized/unauthorized in bulk

New Device Models:

• Cisco Nexus 7000 10-Slot Switch (N7K-C7010)
• Cisco Nexus 5010 Switch (N5K-C5010P-BF)
• Motorola Wireless Switch
• Blue Coat PacketShaper
• HP P series Switch
• Radware Link Proof Switch
• Alcatel 6200
• Fujitsu Switch

Changes & Bug Fixes

• Full-fledged population of hardware properties of Nortel Passport 8600 series is now done
• Earlier, there were some issues in populating the hardware properties of Radware devices. This issue has been fixed.
• Earlier, there were issues in populating the SSH-based hardware properties of Aruba devices. This has now been fixed.
• Earlier, there were issues in specifying the Additional credential for HP devices. This has now been fixed.

DeviceExpert Build 5420

Bug Fixes / Changes

• Issues related to discovering devices in Vista & Windows 2008 have been fixed
• Earlier, there were issues in backingup the configurations of Citrix devices. This has been fixed
• Earlier, there were issues in handling Exit prompt in Citrix Hardware population. This has been fixed
• Earlier, there were issues in populating MACAddress & SERIALNUMBER for Aruba devices. This has been fixed

DeviceExpert Build 5410

New Features / Enhancements

• Enhanced configuration changes report with version number details
• One more option has been provided for editing the host names of devices in DeviceExpert inventory. Users can now update DNS server values and resolve names
• Option to specify custom criteria to ignore certain specific lines or text while generating configuration difference between any two versions
• Enhancements in Switch-Port Mapper with provision to view all interfaces and their associated interfaces

New Vendors/Models Support:

• Alcatel
• Netgear (Startup configuraiton included)

Changes/Bug Fixes

• Earlier, in Switch-Port Mapper, there were issues in populating ports and MAC Address of Cisco devices. This has now been fixed.
• Earlier, there were issues in populating the hardware properties of Alcatel and Citrix devices. This has been fixed.
• Issues related to configuration backup of Hitachi Apresia devices have been fixed.
• Earlier, there were issues in handling Exit prompt in Citrix configuration backup. This has bee fixed.

DeviceExpert Build 5400

New Features / Enhancements

• Configuration Changes PDF Report has been enhanced to provide information about the authorized and unauthorized changes
• For discovering SNMP-enabled devices, DeviceExpert requires the SysObject ID of the devices. For certain devices, discovery alone is not supported for want of SysObject ID. Now, provision has been made to enable the users to find and add the SysObject ID of devices from the GUI itself and get discovery support in quick time.
• Support for creating scheduled tasks for automatically synchronizing startup and running configurations at specified intervals.
• 'Power Users' have now been empowered to mark specific configuration changes (pertaining to the devices that are allotted to them) as 'Authorized' or 'UnAuthorized'.
• Provision for editing the 'System Description' and 'System Location' details as part of editing device properties

New Vendors/Device Models Support:

• Citrix Netscalar
• Asperia (Hitachi )
• D-Link DES 3052 Switch

Bug Fixes & Changes

• Earlier, when scheduled task for configuration backup involving a large number of devices was triggered, 'No Managed connection' issue occurred. This has been fixed now.
• Earlier, the time at which interfaces were last scanned by Switch-Port Mapper was wrongly displayed. This has been fixed now.
• Earlier, upon performing actions such as 'compliance check' on a device, the time at which configuration backup was triggered on a device, also got changed. This issue has been fixed now
• Previously, in the case of Cisco VPN Concentrators, Hardware Inventory Report was not properly generated. This has been fixed now.
• In the TFTP sever that comes in-built with DeviceExpert, resending of lost or unackowledged packets have now been handled to comply with the TFTP protocol standards

DeviceExpert Build 5330

Enhancements, Changes, Bug Fixes

• Server side performance improvements to handle concurrent backup of more number of devices
• New Device Models Support: Support for Cisco IDS devices and Cisco 1900 series CatOS Switch
• Earlier, there were issues in Active Directory based authentication in build 5320. This has been fixed
• Earlier, the configuration change reports showed Device Names in the place of Device Type. This has been fixed
• In 5320, there were issues in backing up the configuration of H3C devices. This has been fixed

DeviceExpert - Build 5320

Enhancements, Changes & Bug Fixes

Configuration Management

• While taking configuration difference for Cisco IOS Routers and Aruba Switches, configuration lines containing Cryptochecksum information will henceforth be ignored.
• For all devices, while taking configuration difference, speed token will henceforth be ignored.
• While taking configuration difference for Cisco Voice Gateway devices, NTP clock-period entries will henceforth be ignored
• When device configurations are backedup through scheduled tasks, in the case of task failure, the result of the scheduled task will now include the reason
• For F5 and Riverbed devices, device model information is now populated in the Device Details page.

Compliance Management

• Option to exclude any configuration block for compliance check while defining compliance rule through Advanced Custom Criteria

Reports

• When reports are emailed as a part of reports schedules, if the size of the mail content exceeds 1 MB, only the link for the report will be provided in the email. Actual mail content will be available on the server. This is avoid issues related to email delivery failure due to size restrictions.
• Output of switch-port mapping operations (depicting details about the devices connected to each port of the managed switch) is now presented as a report in the "Reports" tab.

Performance Enhancements

• Performance tuning has been done to enhance the responsiveness of the DeviceExpert GUI for various actions and operations.

New Device Models

• Support for D-Link -DGS 3100

Bug Fixes & Changes

• Earlier, while populating the hardware details of Cisco WAAS devices, device model information was not populated properly. This is now fixed.
• Earlier, there were issues in populating the hardware properties of Dell PowerConnect 6248 devices. This has been fixed.
• Earlier, there were issues in backing up the configurations of F5 Big IP devices. This has now been fixed.
• Earlier, uploading the draft configurations of Nortel Baystack devices did not work. This has been fixed now.
• Earlier, there were issues in generating the security audit reports of Netscreen devices. This is now fixed.
• The presentation of data in the 'User Access Report' has been changed to depict the details pertaining to the users first and then the details about the devices.

DeviceExpert Build 5310

Enhancements, Changes, Bug Fixes

Configuration Management

• SSH-based configuration retrieval support is now extended to Nortel Baystack devices.
• Configuration upload is now supported for Alaxala devices.
• Earlier, there were issues in creating a device group specifying more than one criteria. This has been fixed.
• While taking configuration difference for Cisco ASA devices, configuration lines containing Cryptochecksum information will henceforth be ignored.
• Earlier, information on 'who changed' the configuration was not depicted in the configuration difference screen. Now, it is included.
• In Riverbed devices, when paging is enabled, only partial configuration was backedup. This is now fixed.
• DeviceExpert executes configuration operations such as backup, upload etc as parallel jobs. The number parallel tasks is configurable. When the number was set to 100, server failed to process the operations. This has been fixed.

Compliance Management

• Support for testing the validity of a compliance rule created using 'Advanced Custom Criteria'.
• Earlier, in 'Advanced Custom Criteria' for compliance rule creation, if the string specified to indicate the starting and ending of the block contained certain special characters, only a part of the configuration was shown in the GUI. This has been fixed now

New Vendors & Device Models

• Support for F5 devices, Enterasys SecureStack A2, Enterasys Matrix N7 Platinum, Adtran Netvanta Router, Nortel Ethernet Routing Switch 5510-24T, Nortel - Ethernet Switch 3510-24T and 3Com 4200g

Miscellaneous

• When DeviceExpert contained a huge volume of data pertaining to devices and configuration, the home tab took a long time to load. This has been fixed through performance enhancements.
• Switch-Port Mapper Enhancements: Switch-Port mapper now displays more details on MAC-IP matching. Also, the tool has been pruned to ignore non-port details while depicting the mapping.
• Earlier, in IE 7, when Single SignOn was enabled and if DeviceExpert login failed, it was not possible to login to DeviceExpert with any other user name or any other authentication mode. This issue has been fixed now.

DeviceExpert Build 5300

New Features / Enhancements

Compliance Policies

• In compliance rule definition, option to specify the beginning and the end of the required configuration blocks for selective compliance check. This new feature will help check the required configuration blocks for compliance to the defined criteria. Compliance results for every single interface block will be reported individually, in addition to a unified compliance report for the entire configuration by doing 'AND' of all the individual results.
• Support for filtered view of compliance check results. The result view can be filtered based on all compliant rules or all violations.

Switch Port Mapping

• Option to create scheduled tasks to periodically scan the switches being managed by DeviceExpert and report the the list of devices connected to each port of the managed switch.
• Option to generate PDF reports out of the switch port mapping results

Re-branding Support

• Support for rebranding DeviceExpert web-interface. You can replace the product-specific names and logos with your own details

New Device Models & Vendors

• Fortinet Virtual Domain
• Vanguard devices
• Alaxala 3600, Alaxala 1230
• Allied Telesis

Hardware Interface Population

• The hardware interface details of Alaxala devices are now populated in the device details page

Changes / Bug Fixes

• Earlier, when the time gap between two successive configuration changes was less than two minutes, backup through real-time change detection was not triggered for the second time within that two minute. This is now relaxed and DeviceExpert will trigger backups successively.
• Earlier, configuration backup through SSH was not working for Cisco VPN Concentrators, Cisco Content Switches & Dell PowerConnect switches. This is now fixed
• During every configuration backup, the header of Extreme devices undergo a change. DeviceExpert wrongly considered the header change as configuration change and kept backing up and incrementing versions. This is now fixed by ignoring header information while identifying configuration difference.
• Earlier, Power Users had the privilege to review and approve the configuration changes made by Operators on any device, if the administrator had designated the Power User as an 'Approving Authority'. Now, even if the Power Users had been designated as 'Approving Authorities', they will be able to approve the changes pertaining to the devices that are already allotted to them only and not of other devices.
• Power Users will not have the privilege to associate compliance policies to devices and vice-versa.
• Earlier, backup & upload of startup configuration for D-Link DGS 3600 series was not supported, which is supported now.

DeviceExpert Build 5210

New Features / Enhancements

• Earlier, information on 'who changed' the configuration was captured only when real-time change detection was enabled. Now, the information is captured from 'configuration header' for Cisco devices.
• Earlier, Power Users had the privilege to review and approve the configuration changes made by any Operator on any device. Now, 'Administrator' will assign 'Approving Authorities' for every Operator. Only those Power Users who have been designated as approving authorities, will have the privilege to approve the changes made by the respective Operators. However, all users with the role 'Administrator' will have the permission to approve the changes whether they are designated as approving authorities or not. But, they will receive email notification only if they are designated as approving authorities.
• Real-time change detection support is extended to Bluecoat devices.
• Earlier, backup and upload of startup configuration was not supported for D-Link DGS devices. This is now supported

New Device Models Support

• Cisco IOS - XR
• Cisco Wide Area Application Service (WAAS)
• Cisco Integrated Services Router (ISR) and
• Juniper M-Series Devices

New Vendors Support

• H3C
• Yamaha Devices ( RT and RTX series)

Changes / Bug Fixes

• Earlier, there were issues in connecting to devices via SSH v1. This has been fixed.
• Earlier, when a scheduled task for configuration backup was created for a device whose configuration was not backedup at least once prior to creating the schedule, there were issues in executing the schedule. This has been fixed.
• Earlier, there was no provision to directly delete synchronization schedule created for synchronizing Activity Directory user database with DeviceExpert. Now, separate provision has been made for deleting it.
• Earlier, when the DNS name of the host where DeviceExpert is running was improper, a blank page appeared when connecting the web-interface. This has been fixed.
• During the device discovery or device addition process, device names might not get recorded correctly due to DNS issues. To correct the names, provision was given to edit and update the host names in bulk. Earlier, there were some issues in editing the host names. This has been fixed.
• The default inactivity timeout for DeviceExpert web-interface has been changed from 30 minutes to four hours. Timeout value is configurable.

DeviceExpert Build 5200

New Features / Enhancements

• SNMP v3 Support: DeviceExpert now supports SNMP v3 for device discovery, configuration retrieval for Cisco devices and for switch-port mapping functionality.This allows leveraging the additional security measures of SNMP v3.
• Enhancements have been made to the forwarded syslog messages listening feature with provision to specify the list of IP addresses from where syslog messages would be forwarded to DeviceExpert for real-time change detection. Previously, DeviceExpert expected the syslog message to come directly from the devices that undergo configuration change. With this new feature, syslog messages which get forwarded from a common syslog server (complying to RFC 3164 ) can also be used to detect configuration changes in real-time.
• For Netscreen devices, real-time change detection is now done based on more conditions. For example, earlier, cases like forced telnet logout were not considered for change detection. Now, more such conditions are considered.
• SSH-based configuration retrieval support is now extended to Cisco ASA and Nortel Passport devices.
• New OS Support: DeviceExpert now runs on Windows XP 64 bit, Windows 2008 Server, CentOS and Suse Linux
• Support for New Device Vendors & Models: Avaya, UTM-1 Edge X version 7.5.55x, Lambda Driver 800, Dax Devices, Cisco ACE Module, Cisco Wide Area Application Services Software (WAAS), Cisco IOS XR

Changes

• For real-time change detection, when syslog messages were sent from devices, DeviceExpert identified the changes only when the exact IP of the device was present. This made real-time change detection not working in devices having multiple interfaces where the message came randomly from one of the interfaces. Now, DeviceExpert will look into the interface table of the device and consider all the interfaces.
• A few models of Enterasys devices expect carriage return (Ctrl+Y) for logging in. Those type of devices are supported now.

Bug Fixes

• Earlier, SSH-based configuration retrieval was not working with Foundry, Extreme and Enterasys devices. It is now fixed.
• Earlier, when the entries in Configuration Changes report and Configuration Change Trend report spanned over more than one page, the entries after the first page were not visible. This issue has now been fixed.
• In Nortel Baystack devices, configuration retrieval failed due to an issue in populating the hardware properties of the device. This issue has been fixed.
• In scheduled configuration backup, the hardware properties of the devices were not updated. This issue has now been fixed.
• Earlier, for Aruba devices, there were issues in populating the hardware details. This has been fixed.
• In Cisco WLAN controller, configuration backup through TELNET-TFTP did not work. This has been fixed.
• Earlier, when generating Configuration Change report as PDF, some entries were missing. This issue has been fixed.
• In Widows 2003 and Vista, DeviceExpert port check tool showed wrong port status for Syslog service. This has now been fixed.

DeviceExpert Build 5110

New Features / Enhancements

• Support for retrieving the configurations of Netscreen firewalls through SSH or TELNET without using TFTP
• Switch Port Mapper: New functionality, which identifies the list of devices connected to each port of the managed switch. This eliminates the need for manually maintaining a record on port details and connected devices.
• Provision for editing and updating host names of devices in bulk. During the device discovery or device addition process, device names might not get recorded correctly due to DNS issues. This can be corrected later by updating hostnames in bulk by providing the list of host names in a standard flat file
• Provision to listen for syslog messages from a central syslog server for use in real-time change detection. Previously, DeviceExpert expected the syslog message to come directly from the devices that undergo configuration change. With this new feature, syslog messages which get forwarded from a common syslog server (complying to RFC 3164 ) can also be used to detect configuration changes in real-time
• Support for new device vendors & models - Cisco WLAN controller, Nortel Networks Layer 2-3 GbE Switch Module, Brocade 200E, Radware Web Server Director Pro AS, many Enterasys models
• Support for Nortel Baystack Switch which can login to command line mode directly

Changes

• Earlier, the execution output of custom templates were visible to all users. As this feature is widely used to carryout critical configuration changes like password rotation, firewall rule configuration etc. DeviceExpert now provides the option for removing the execution output. In addition, execution output will be visible only to the administrator and the user who executes the custom template
• Configuration retrieval/upload over SCP is now supported for Cisco switches and Brocade devices also.

Bug Fixes

• When a DeviceExpert user was deleted, both public and private groups created by the user got deleted. Now, the issue has been fixed and only the private groups held by the user willget deleted.
• The issue related to sending notification on scheduled backup failure, has been fixed
• After enabling Single SignOn, when an administrator/power user logged into DeviceExpert, the user role was taken as 'Operator' for all. This issue has now been fixed to reflect the exact role of the user
• While retrieving configuration over SCP in Cisco routers, startup configuration was displayed as running. This issue has been fixed
• The issue related to real-time change detection in Netscreen firewalls, has been fixed

DeviceExpert Release 5.1

New Features / Enhancements

Configuration files transfer

• SCP protocol is now supported for Cisco devices to securely transfer configuration files from and to DeviceExpert
• Support for SSH-based configuration backup for Cisco devices without the use of TFTP. DeviceExpert will establish communication with the device via SSH and execute respective 'show config' commands to retrieve configuration

Third-party identity stores & authentication mechanism

• DeviceExpert now integrates with third-party identity stores Active Directory and LDAP
• The authentication mechanism provided by AD, LDAP and RADIUS can be leveraged in DeviceExpert for user authentication

Advanced script execution for automation

• Advanced scripts execution for automatically executing a series of inter-connected commands on a device in command line.
• Support for firmware upgrade/OS image upload & many other complex command executions through advanced script execution
• Option to skip pre and post configuration backup operations while executing custom templates. This will be useful to execute commands which make the device to go out of network

Schedules

• Custom template execution can now be scheduled to be executed at any time. This will be useful for achieving better automation of configuration tasks

Database Backup

• The destination directory for storing the backed up contents of DeviceExpert database is now configurable
• The destination directory where exported configuration files are stored, is now configurable

Configuration Upload Approval

• When administrators have configuration upload requests pending for their approval, alerts would be displayed in the Home page of the DeviceExpert GUI

Support for New Devices/Models

• Alaxala devices

Bug Fixes / Changes

• When DeviceExpert GUI is left unattended for 30 minutes, the client session will be logged out. This default timeout value (30 mins) is configurable. Earlier, timeout was infinite and hence session did not end automatically
• Change Management notification emails will henceforth include the annotation information also. So the reason for change will also be found
• It is now possible to label the 'configuration change authorization status' of any configuration as 'authorized' or 'unauthorized'. It can be done from 'Change Trend Report' from 'Home' tab or from the respective configuration details page
• DeviceExpert users with the roles PowerUser and Operator will not be able to view the scheduled tasks created by others users. Also, they will not be able to view the audit records pertaining to the schedules created by others
• Support for synchronizing the running and startup configurations in bulk for many devices. Ealier, the bulk operation was not possible
• Earlier, the custom templates could not be used for changing the passwords of Extreme Summit and HP devices. Now, the password change could be done in bulk using the advanced script execution feature
• Earlier, the custom templates could not be used for executing the command for configuring the banner message of Cisco devices. This is now possible through the advanced script execution feature

DeviceExpert Build 5020

New Features / Enhancements

• Configuration Diff reports have been enhanced to display more lines along with diff lines to better understand the "context" of the configuration change.
• Detailed DeviceConfiguration and SecurityAudit report is now provided for each device. DeviceConfiguration Report gives details about configuration settings and SecurityAudit Report identifies security related issues and recommendations to resolve it.
• Navigation improvements in "Device Details" and "Device Group" pages.
• Report generation time will be displayed for reports sent via email for Scheduled Configuration Backup and Configuration Change notifications.

New Devices Support

Support for the following new device types:

• Riverbed Steelhead
• Alcatel switch
• Huawei Quidway AR 18xx

More HP Switch and DLink Switch models are now supported.

Bug Fixes

• Build 5010 had issues in scheduled configuration backup with larger number of devices. This has been fixed.
• Fortigate device addition issue in build 5010 has been fixed.
• Issues in updating certain hardware properties of Cisco ASA, AccessPoint, CatOS devices has been fixed.
• Device addition and schedule creation issues with IE 6 have been fixed (But we recommend using IE 7.x or Firefox 2.x)

New Features

Network Compliance

• Provision for examining device configurations for compliance to a defined set of standards/criteria/rules and monitoring and reporting the compliance status
• Automated Compliance Check: Support for associating compliance policies to devices, thereby automating the compliance check for each change in configuration
• Option to define your own compliance policies to cater to the standards of your organization

Reports

• 12 new intuitive reports on Network Inventory, Firmware Inventory, Network Health Status, Configuration Changes, User Permissions, Network Compliance etc
• Hardware details such as Serial Number, IOS Version, OS Image Name are depicted in reports
• Support for scheduling report generation at periodic interval and emailing the same to required recipients
• Provision to export reports in CSV format

Integration with ManageEngine OpManager

• DeviceExpert can be integrated with ManageEngine OpManager (Network Monitoring Software). Device configurations can now be managed from the 'Device Details' page of OpManager

Device Groups

• Provision for creating 'Public Groups', which are visible to all users
• Provision for creating Device Groups based on more fine-grained criteria

Change Management

• Option to receive Change Management Notification emails in a text format to facilitate better viewing in hand-held devices such as mobile phones.

User Management

• Provision to assign public device groups to users (belonging to the roles PowerUser, Operator)

Backup Schedules

• Option to receive emails only for error conditions in backup schedules.

TFTP interface configuration in multi-homed machines

• DeviceExpert uses TFTP server to transfer the configuration files to-and-fro the devices. Provision for specifying the interface to be used for transferring the configuration files from/to the devices, if DeviceExpert is running in multi-homed machines.

Syslog interface configuration in multi-homed machines

• Syslog server is used for real-time change detection. It binds its syslog listener at port 514. In multi-homed machines, if you want to run some other application with a syslog server in the same machine, you can bind the DeviceExpert syslog server to a specific interface leaving the other interface(s) for use by other application(s).

Specifying the count for parallel jobs

• DeviceExpert executes configuration operations such as backup, upload, scheduled task execution, report generation etc as parallel jobs. The number of threads available for such parallel tasks are limited. Provision for specifying the number of parallel jobs depending on the hardware configuration of the machine in which DeviceExpert is running.

Performance Tuning

• Performance tuning has been done to improve client responsiveness for various configuration operations & scheduled tasks.

Automatic Device Model Support

• Automatic support for device models that are similar to the already supported models. This is due to the removal of model-specific device support.

Support for New Vendors

• Support for four new device vendors - Juniper, NETGEAR & Dell. DeviceExpert already supports devices of 16 vendors - Cisco, HP, Nortel, D-Link, Juniper-NetScreen, Force10, 3Com, Foundry, Fortinet, ADTRAN, Enterasys, Huawei, Extreme, Proxim, Aruba and Blue Coat
• New Device Type: Support for Cisco VPN Concentrators, Extreme Summit, 3Com 4500, Nortel Contivity Router, Enterasys XSR Router

Changes

• Simplified procedure for manual addition of devices and importing devices from text file
• Schedules creation procedure simplified
• Provision for giving credentials to multiple devices from discovery status page.
• Option for switching off email intimation upon DeviceExpert application user creation
• Option to stop any device operation mid-way from inventory page

Bug Fixes

• Backup operation of Cisco PIX 7.x models consumed considerable CPU process. This has now been fixed
• Issue related to accessing Netscreen firewall devices via SSH fixed
• If banner was set for HP switches, configuration backup failed. This is now fixed
• In configuration change management notifications, email content formatted with newlines were not taken. This is now fixed
• While displaying configuration difference for cisco devices, entries related to self-signed certificate were shown as a difference. This is now fixed
• In the case of Extreme Black Diamond switches and Netscreen Firewalls, the status of "Real-time Change detection" was incorrectly depicted. This has now been fixed
• For some cisco devices, hardware property population did not work. This has now been fixed.

DeviceExpert Build 4300

New Features

Configuration Rollback

• Provision for rolling back device configuration to any of the available versions

Configuration Enforcement & Change Management Enhancements

• Support for automatically reverting to the previous or BASELINE version on detecting unauthorized changes

Scripting Support

• Support for CLI command execution on devices in user-defined sequence. Useful in automating repetitive and time-consuming operations on devices

Hardware Properties Retrieval

• Provision for fetching hardware properties of devices on demand and in periodic intervals

Show Commands

• Support for executing various commands for fetching device details on demand. Useful in executing various 'show' commands

Recent 5 Configuration Changes

• Provision for quick view of five most recent configuration changes of any device

Disaster Recovery Tools

• Tools for exporting latest device configuration files to a flat file on the disk for transferring to any secondary storage medium.
• Provision for automated backup of entire DeviceExpert database. Helpful in rapid restoration of DeviceExpert server, in the event of any disaster

Database Administration

• Provision for purging older audit trails and device configuration versions

Detailed Audit Trails

• Detailed information depicting the reason for operation failure as part of device audit trail display

New OS Support

• DeviceExpert now runs on Windows Vista

Device Models Support

• Support for more than 300 device models including many Force10 models
• Support for a total of 16 vendors - Cisco, HP, Nortel, D-Link, Juniper-NetScreen, Force10, 3Com, Foundry, Fortinet, ADTRAN, Enterasys, Huawei, Extreme, Proxim, Aruba and Blue Coat

Enhancements

• Support for pushing the configuration of HP & Nortel devices
• Simplified procedure for manual device addition
• Device details page enhanced with provision for carrying out various actions on device

Bug Fixes

• Earlier, rescheduling time for periodic schedules was calculated based on the completion time of previous execution. This has been fixed.

Changes

• JRE containing DST fix is bundled with DeviceExpert now
• For DeviceExpert GUI, blue theme has been standardized and green theme removed
• Ready-to-use custom templates (Syslog configuration, SNMP Configuration & Password configuration) will be removed in the next major upgrade as more powerful scripting functionality has been added

DeviceExpert Build 4210

Feature Enhancements

• Device Discovery

  1. Nmap based Discovery: Device Discovery has been enhanced with Nmap-based discovery, which offers a host of advantages over the existing process. Earlier, when running DeviceExpert in non-English OS, ping for device would fail during discovery, resulting in disruption of discovery process. Now, with Nmap-based discovery, all such issues have been addressed.

  2. Stopping Discovery: Provision to stop device discovery, at any point of time during the discovery process.

  3. DNS Name in Discovery status: While viewing the discovery status of specific devices, the DNS Name of the device is also displayed.

  4. Discovery support for most of the models: Most of the device models that are supported by DeviceExpert could now be discovered and added to the inventory. Refer supported device models page for more details.

• Configuration Diff

  In the contextual, side-by-side comparison of configuration versions, option has been provided to view only the lines in which there is a difference. Navigation buttons have also been provided to move from one diff line to the next easily.

• Syslog-based change detection

  Syslog-based change detection is now supported for more device types including Cisco ASA, NetScreen firewall, Fortinet FortiGate firewall, ADTRAN LAN Switch, Nortel Baystack 5510 & 5520.

• Device Model Support

  1. Support for more than 280 device models
  
  2. Nortel Business Policy Switches running an older version of OS software (v3.0.6.08) are also supported
  
  3. Support for a total of 15 vendors - Cisco, HP, Nortel, D-Link, Juniper-NetScreen, 3Com, Foundry, Fortinet, ADTRAN, Enterasys, Huawei, Extreme, Proxim, Aruba and Blue Coat

Changes

• Terminologies

  The term 'Download' which was being used to denote the transfer of configuration from DeviceExpert to the device, has been changed to 'Upload' to adhere to industry standard terms. Henceforth, the following terminologies would be consistently used:

  * Backup denoting retrieval of current configuration from device and transfer of the same to DeviceExpert

  * Upload denoting the transfer of the configuration from DeviceExpert to the device

• ResultHandler

  The 'ResultHandler' feature has been removed. A more powerful Change Management feature was added in the previous release (4200) itself.

For more information/clarification, please contact us at deviceexpert-support@manageengine.com.

DeviceExpert Release 4.2 - Build 4200

Feature Enhancements

• New Device Models Support

  Support for over 275 device models that include routers, switches, firewalls, access points, access servers, integrated access devices, adaptive security appliances and others from multi-vendors.

• New Vendor Support

  Support for a total of 15 vendors - Cisco, HP, Nortel, D-Link, Juniper-NetScreen, 3Com, Foundry, Fortinet, ADTRAN, Enterasys, Huawei, Extreme, Proxim, Aruba and Blue Coat.

• Device Discovery
  

  (1) Earlier, for device discovery only two options were available - discovering specific devices or the devices falling under a specific IP range in bulk. Now, option is provided to discover multiple devices by importing hostnames or ip addresses from a file at one go.

  (2) Provision to specify multiple SNMP community for device discovery (to enable discovery of multiple devices in bulk)

• Configuration Change Management

  (1) Support for sending email notifications or SNMP V2 traps upon detecting configuration changes
  
  (2) Option to generate trouble tickets to Help Desk upon change detection

• Device Inventory

  IP address of device is displayed in the inventory table for easy reference. It is added as an additional column in inventory table, not listed by default. (Go to the column chooser to list this as a column in the table)

• Reports

  Network inventory report has been enhanced with display of more hardware details

Changes

• Configuration Diff

  While taking configuration diff, difference due to comments will be ignored henceforth

• GUI Enhancements

  The default theme of DeviceExpert GUI has been changed to blue from green. The previous green theme has been made optional. Minor changes in GUI have been made for ease of navigation and improved usability

• Editing Device Details

  Option is provided for changing model number and series of a device from the Device Details page

• SSH Support for additional models

  SSH support for Cisco ASA models

• ResultHandler

  Since a more powerful Change Management feature has been added in this release, the "Result Handler" feature will be removed in the next release

DeviceExpert Release 4.1 - Build 4101

Feature Enhancements

• New Device Models Support

  Support for over 240 device models that include routers, switches, firewalls, access points, access servers, integrated access devices, adaptive security appliances and others from multi-vendors.

• New Vendor Support

  Support for a total of 12 vendors - Cisco, HP, Nortel, 3com, Foundry, D-Link, ADTRAN, Fortinet, NetScreen, Enterasys, Blue Coat and Huawei.

• Approval Mechanism for Configuration Update

  All device configuration changes initiated by an operator require approval from a privileged user before the actual update in device.

• Search in Device Configuration

  Search utility to look for specific words, strings, phrases or a combination of these in device configuration files.

• Fine-grained User Access Control

  Support for imposing role-based access restrictions for accessing devices and carrying out various operations

• Managing Devices outside private networks

  Devices present outside the private network/firewalls can now be managed by DeviceExpert

• Disaster Recovery Tools

  Utilities provided to backup/restore DeviceExpert database. Script for backing up latest stored configuration, is also provide

Bug Fixes

• Previously, Device Groups could not be deleted even if not referred in other places. This is now fixed.
• The issue with regard Telneting to a PIX device from Device Properties page of DeviceExpert has now been fixed.
• Hitherto, daily schedules were not getting rescheduled at the end of every month. This is now fixed.
• Previously, in the case of cisco devices going into enable login mode directly, there was a restriction that host name needed to be given in prompt, enable password prompt and enable prompt. This restriction has been removed now.

For more information/clarification, please contact us at deviceexpert-support@manageengine.com.

DeviceExpert Build 4030

Feature Enhancements

• New Device Model Support

  Support for 10 more device models that include routers, switches, firewalls, access points, access servers, integrated access devices and others from multi-vendors. DeviceExpert supports a total of 160 device models at present.

• Complete SSH Support

  Configuration operations through SSH for all supported models of Cisco & D-link. Already, DeviceExpert supports SSH for Cisco PIX, Foundry and Fortinet models.

DeviceExpert Build 4020

Feature Enhancements

• New Device Model Support

  Support for 50 more device models that include routers, switches, firewalls, access points, access servers, integrated access devices and others from multi-vendors. DeviceExpert supports a total of 150 device models at present.

• New Vendor Support

  Support for four more vendors such as Nortel, D-Link, ADTRAN and Enterasys. DeviceExpert already supports Cisco, HP, 3COM, Juniper NetScreen, Foundry and Fortinet.

• SSH Support

  Configuration operations through SSH for all cisco pix models and FortiGate models.

• Discovery Status Tracking

  Support for tracking the status of device discovery. Progress of discovery in terms of percentage of completion and finally the result can now be tracked.

• Option to test the validity of Credentials

  Testing option is provided to find the correctness of device credential details. After entering the credentials, when test option is invoked, DeviceExpert will pinpoint the valid and invalid values.

Bug Fixes

• Earlier, when a device discovery attempt failed, manual addition of the device to the inventory also failed due to incomplete cleanup of residual data pertaining to the discovery of unsupported models. This issue has now been fixed.
• Previously if the IP address of the machine got changed in subsequent restart of the server, DeviceExpert had to be reinitialized and started afresh. It is not required now.

DeviceExpert Build 4010

Features

• Support for more than 100 device models that include routers, switches, firewalls, access points, integrated access devices and others from vendors like Cisco, HP, 3COM, Foundry, NetScreen, FortiGate etc.,
• Support for Cisco devices with CatOS
• Capturing username and IP address when someone opens a telnet console and directly carries out a configuration change to Cisco IOS switches and routers, as part of enhancements in real-time change detection
• Provision for copying running configuration as startup in bulk

Bug Fixes

• Residual data from the discovery of unsupported models are now cleaned up properly
• Hitherto, copying running configuration to startup did not work in SNMP-TFTP protocol mode. This issue has now been fixed
• While using credential profiles, when independent update of the profile values was carried out, sometimes, the changes did not reflect in the credentials used for the device. This issue has now been fixed