Micro Focus Security ArcSight Data Platform 2.40 has been released

  • Document ID:KM03459988
  • Creation Date:13-Jun-2019
  • Modified Date:13-Jun-2019
    • Micro Focus Products:
      arcsight data platform

Summary

Micro Focus Security ArcSight Data Platform 2.40

Reference

Recommended Software Update

Micro Focus is announcing the release of

Product: Micro Focus Security ArcSight Data Platform
Version: 2.40
Languages: English

The following are the new key features available for Security ArcSight Data Platform 2.40:

  • Security ArcSight Management Center 2.91:
    • Set Generator ID during Scan Host
    • Various security fixes, feature updates, and bug fixes
  • Security ArcSight Management Center 2.90:
    • Global Event ID
    • Generator ID Management
    • SecureData Client
    • Non-root user support for instant Connector deployment
    • Various security fixes, feature updates, and bug fixes
  • Security Arcsight Logger 6.71:
    • Without additional configuration, users are now able to add an EB receiver in an IP Address or hostname format.
    • Various security fixes, feature updates and bug fixes
  • Security Arcsight Logger 6.70:
    • Global Event ID
    • Storage Volume Size increased in Software Loggers to 16TB
    • Logger SMB v2 support with CIFS
    • CIFS mount from Logger to Windows 2008/2012 R2 server (hardened)
    • Unified Query for Search Group Filters
    • Reports:
      • (SFTP) Scheduled Reports Delivery
      • Scheduler Job Dispatch Threads and Maximum Concurrent Reports options added to Report Configuration.
      • Job Execution Status and Recent Reports options available from the Home Page.
      • Legend position is configurable in Smart Reports.
    • Archive Retention Policy
    • Custom Fields Enhancement
    • Collection of deployment environment information
    • Various security fixes, feature updates and bug fixes
  • Security ArcSight Event Broker:
    These are the new features and improvements.
    • High availability of Schema Registry
    • Support for up to 50 CEB processors
    • Allow overriding Kafka and other application properties
    • Updated certificate management
    • Upgraded version of Kafka Platform
    • Upgraded version of Kafka Manager GUI
    • CEB handling syslog messages without source data if not available
  • New Features in ArcSight Installer 1.50
    • Pre-check script can be invoked ahead of actual install
    • Updated versions of Docker (1.13.1), K8s (1.8.3), and more
    • Customizable installation directory
    • Built-in support for graceful shutdown/reboot of a node
    • Updated certificate management (support for intermediate CAs)
    • Support for SELinux in “enforcing” mode
    • New support tool: $K8S_HOME/tools/support-tool/support-dump
  • Security ArcSight SmartConnector Framework 7.12.0:
    • New Device, Component, OS Version Support New support added tSONAR on SEP v14 and Added support for "Downloaded by" information for Symantec Endpoint Protection DB 14 for Symantec Endpoint Protection DB
    • FIPS mode can be enabled on MicrFocus SmartConnector for Microsoft Windows Event Log
  • Smart Connectors support and/or Improved parsing and mapping for:
    • CiscASA Syslog
    • CiscSecure ACS Syslog
    • Juniper JUNOS Syslog
    • IP Flow (Netflow/J-Flow)
    • McAfee ePolicy Orchestrator
    • Proofpoint Enterprise Protection and Enterprise Privacy Syslog
    • Symantec Endpoint Protection DB
    • VMware ESXi Server Syslog
    • Various security fixes, feature updates, and bug fixes.
  • Security ArcSight SmartConnector Framework 7.11.0:
    • Global Event ID
    • New SmartConnectors support for Microsoft DGA DNS Trace Log Multiple Server File
    • AWS CloudWatch VPC Flow Logs
  • New Device, Component, OS Version Support
    • © Copyright 2019 MicrFocus May 21, 2019
    • Support TAP syslog for Proofpoint Enterprise Protection and Enterprise Security Syslog SmartConnector
    • Support Microsoft Windows Event Log Native SmartConnector tbe installed on Microsoft 2012 R2 Datacenter Edition
    • Support Oracle Audit v12cR2 for Oracle Audit DB SmartConnector
  • Smart Connectors support and/or Improved parsing and mapping for…
    • Microsoft Azure Event Hubs
    • Microsoft Office 365
    • CiscASA Syslog
    • Check Point Syslog
    • CiscSyslog Connectors
    • NetApp Filer Syslog
    • Fortinet Fortigate
    • CheckPoint Syslog
    • Tenable Nessus File
    • Microsoft IIS Multiple Server
    • McAfee ePolicy Orchestrator
    • Microsoft SCCMDB
    • Linux Audit File
    • MS SharePoint Server DB
    • CiscWireless LAN Controller Syslog
    • CiscISE Syslog
    • Microsoft Office 365
    • IBM AIX Audit Syslog
    • IBM WebSphere File
    • IBM eServer iSeries Audit Journal File
    • McAfee Network Security Manager IDbased DB
    • McAfee Network Security Manager Timebased DB
    • Check Point Syslog
    • Fortinet Fortigate
    • Snort Syslog
    • CiscIOS Syslog
    • Pulse Secure Connect Syslog
    • Juniper JUNOS Syslog
    • All CiscSyslog Connectors
    • CiscASA Syslog
    • Symantec Endpoint
    • Oracle WebLogic Server File
    • Pulse Secure Connect Syslog
  • Various security fixes, feature updates, and bug fixes.

Please note that all ADP customers with active support subscription are eligible to update to ADP 2.40.  https://entitlement.microfocus.com/mysoftware/iam/home

Connector Framework 7.11.0 AND 7.12.0 –The software can be found on the Software entitlement portal: https://entitlement.microfocus.com/mysoftware/iam/home

For more information, please check the Release Notes for this version (available from MySupport).

If you have an active support subscription for these products, please plan for downloading this version from the Software Licenses and Downloads Portal. To access these products in the Software Licenses and Downloads Portal, you will need to sign in with your Micro Focus credentials.

Our goal is to provide you with clear visibility into the support time-line of software products, enabling you to use this information to plan, test, and deploy new product versions. For more information, check our MySupport Software Product Lifecycle pages, where you can find support time-line information for previously released versions.

Please note that all Micro Focus ArcSight Logger, Micro Focus Data Platform Logger (includes Event Broker) and Micro Focus ArcSight Management Center customers with active support subscriptions are eligible to update to Micro Focus ArcSight Logger 6.70, Micro Focus Data Platform Logger 6.70 (includes Event Broker 2.30), Micro Focus ArcSight Management Center 2.90 and Micro Focus ArcSight Smart Connector Framework 7.12.0 respectively.