ACSIA Help Center

Release Note v6.x.x

Nadia Riccardi
Nadia Riccardi
  • Updated

New Features in v6.x.x

  • New User Interface: We redesigned the interface for a better user experience.
    This look is modern, with a new dashboard and a design that reduces customer interactions, allowing a faster incident response.

dashboard3.png

 

  • New Host Insight: Host Insight is a new feature that gives you a quick overview of the security posture of managed clients by assessing them using compliance and security checks.

  • BitDefender Integration: Bitdefender prevents and detects malware infections. This new feature allows ACSIA to deploy Bitdefender on hosts automatically and orchestrate detection.

    Customers using BitDefender can integrate it into ACSIA XDR Plus. It requires the product to be uninstalled, then reinstalled before activating the antivirus again.

integrations2.png

 

  • Systemd: We introduced this service to enable ACSIA to restart after a reboot automatically.
  • Activation Code: We introduced during the first login a banner where you can insert the License Code and finalize the access. 

  • Role-based access control: We introduced an improved role-based access control in the UI. Users that are not enabled as administrators will have limited access to many functions and mostly access in read-only mode.

  • Live Notification information: In the Live Notification page we added two extra information on an incident, when an event is expanded you will be able to see the tool and the web resource key.

 

Enhancements

  • Sysmon: Updated to the new version that blocks portable executables files (PE) from being written on the disk. This feature's disabled by default and must be enabled by the users under the settings page.

sysmon.png

  • DNS Shield: Enabled the following courtesy page where the users will be redirected if they click on a link leading to a malicious domain:

Attack_image.png

 

Currently, this feature is not supported on macOS.

  • Host Isolation IPv6 support

  • Enhanced DNS SEC functionalities to encrypt DNS queries on hosts
  • Enhanced the password reset process stability

  • Introduced a banner that manages confirmation for user actions (i.e before Logout)

  • Profile page shows machine name on top
  • The email template for MFA has been revamped
  • Improved MFA. Now an alphanumeric code alternative to the QR CODE is provided in the UI when the 2FA is enabled
  • Gravity Zone items are now visible in the live notification drop menù
  • Enabled a tooltip with the password rules
  • Passwords can be hidden or shown in the UI
  • Parolalar kullanıcı arayüzünde gizlenebilir veya gösterilebilir


Fixes on v6.0.0

  • Fixed: Skip agent requests analysis.
  • Fixed: Whitelabel page for non-existing web paths (now redirected to index).
  • Fixed: Missing analysis of ACSIA server weblog.
  • Fixed: Swagger-UI mismatch with real responses.
  • Fixed: Improved stability of DNS Shield.
  • Removed: Agentless capabilities.

Fixes on v6.0.1

  • Fixed: Removed infinite loading on empty tables.
  • Fixed: Removed 2FA popup showing after a successful login.
  • Fixed: Live notification page was not loading immediately after login.

Fixes on v6.0.2

  • Fixed: Adjusted the wrong URLs on immediate actions and IoCs Blocked List.
  • Fixed: Blocked the live notification refresh when an event is expanded.
  • Fixed: Clicking on Track, this command wasn't showing the popup with the result.
  • Fixed: When adding a new host, this was not automatically showing in the host list.
  • Fixed: Host Insight queries were not showing any results.
  • Fixed: When unmuting a notification, the green banner was permanently visible.
  • Fixed: Removed the wrong host column on the profile page.
  • Fixed: Removed the red banner showing after logging in with MFA.
  • Fixed: Under Settings in the license tab, the license was not shown.
  • Fixed: Modified the columns in the IP Banned list to make them more readable.

Fixes on v6.1.0

  • Fixed: Host isolation status change
  • Fixed: Host Visibility checks overridden on default data applied
  • Fixed: Profile Queries did not change the status
  • Fixed: A test Email is sent when configuring the email address in Settings
  • Fixed: Email configuration no Authentication
  • Fixed: Adds Tech Preview badge on DNS Shield features
  • Fixed: Hides Disabled Host Visibility Profile Queries
  • Fixed: Hosts agent download menu was not clickable
  • Fixed: Hosts table was empty after releasing every quarantined host

Fixes on v6.1.1

  • Fixed: Reset Password process

Fixes on v6.1.3

  • Fixed: Two-factor authentication QR code not showing

Fixes on v6.1.4

  • Fixed: Falco repository GPG key rotation, for improving the security of the Falco package

How to prepare for a new installation?

The guidelines for a fresh installation are explained in our ACSIA XDR Plus Installation and User Administration Guide - v6.0.0.

But proceed with a fresh installation, you MUST execute the new script: acsia_prepare.sh. The script used for earlier versions (V4 and earlier) is now unsupported.

 

How to upgrade from version 5.x.x to V6.x.x? 

To upgrade from version 5. x.x, customers MUST execute the script pre_update.sh before executing the acsia_update command.

First, log in as an acsia user: 

 sudo su - acsia

Then, create the inside the acsia server the file pre_update.
As follows, make sure the script is executable and launch it using the commands:

 chmod +x pre_update.sh
 ./pre_update.sh

To complete the upgrade from version 5.x.x, the user acsia must now execute the command:

 acsia_update