Chat now with support
Chat with Support

One Identity Safeguard for Privileged Sessions 6.11.1 - Release Notes

Release Notes

One Identity Safeguard for Privileged Sessions 6.11.1

Release Notes

04 October 2021, 11:56

These release notes provide information about the One Identity Safeguard for Privileged Sessions release. For the most recent documents and product information, see One Identity Safeguard for Privileged Sessions - Technical Documentation.

Topics:

About this release

One Identity Safeguard for Privileged Sessions Version 6.11.1 is a release with new features and resolved issues. For details, see:

NOTE: For a full list of key features in One Identity Safeguard for Privileged Sessions, see Administration Guide.

About the Safeguard product line

The One Identity Safeguard Appliance is built specifically for use only with the Safeguard privileged management software, which is pre-installed and ready for immediate use. The appliance is hardened to ensure the system is secured at the hardware, operating system and software levels. The hardened appliance approach protects the privileged management software from attacks while simplifying deployment and ongoing management -- and shortening the timeframe to value.

Safeguard privileged management software suite

Safeguard privileged management software is used to control, monitor, and govern privileged user accounts and activities to identify possible malicious activities, detect entitlement risks, and provide tamper proof evidence. The Safeguard products also aid incident investigation, forensics work, and compliance efforts.

The Safeguard products' unique strengths are:

  • One-stop solution for all privileged access management needs

  • Easy to deploy and integrate

  • Unparalleled depth of recording

  • Comprehensive risk analysis of entitlements and activities

  • Thorough Governance for privileged account

The suite includes the following modules:

  • One Identity Safeguard for Privileged Passwords automates, controls and secures the process of granting privileged credentials with role-based access management and automated workflows. Deployed on a hardened appliance, Safeguard for Privileged Passwords eliminates concerns about secured access to the solution itself, which helps to speed integration with your systems and IT strategies. Plus, its user-centered design means a small learning curve and the ability to manage passwords from anywhere and using nearly any device. The result is a solution that secures your enterprise and enables your privileged users with a new level of freedom and functionality.
  • One Identity Safeguard for Privileged Sessions is part of One Identity's Privileged Access Management portfolio. Addressing large enterprise needs, Safeguard for Privileged Sessions is a privileged session management solution, which provides industry-leading access control, as well as session monitoring and recording to prevent privileged account misuse, facilitate compliance, and accelerate forensics investigations.

    Safeguard for Privileged Sessions is a quickly deployable enterprise appliance, completely independent from clients and servers - integrating seamlessly into existing networks. It captures the activity data necessary for user profiling and enables full user session drill-down for forensics investigations.

  • One Identity Safeguard for Privileged Analytics integrates data from Safeguard for Privileged Sessions to use as the basis of privileged user behavior analysis. Safeguard for Privileged Analytics uses machine learning algorithms to scrutinize behavioral characteristics and generates user behavior profiles for each individual privileged user. Safeguard for Privileged Analytics compares actual user activity to user profiles in real time and profiles are continually adjusted using machine learning. Safeguard for Privileged Analytics detects anomalies and ranks them based on risk so you can prioritize and take appropriate action - and ultimately prevent data breaches.

New features

New features in Safeguard for Privileged Sessions (SPS) version 6.11.1:

  • You can use a new plugin when using SRA in Sessions-initiated (SPS-initiated) workflows.

  • The accuracy of replaying audit trails in Asian languages (Traditional Chinese, Korean) has been enhanced. Due to this change, when upgrading SPS to version 6.11.0, all your sessions will be reindexed, and while reindexing is in progress, your sessions on the Search interface are incomplete. For this reason, plan your upgrade to SPS 6.11.0 accordingly.

  • When auditing encrypted audit trails, you can only upload certificates permanently. Uploading certificates temporarily is not supported anymore.

  • The creating a new setting profile option for HTTP Control has been enhanced and redesigned. After clicking Create new on HTTP Control > Settings, you can configure the new setting profile on the following pages:

    • Name and timeout

    • Session cookies

    • TLS settings

  • From the Timeline tab of the details view on the Search interface, you can start playing the video of an audit session from a selected event.

  • If you use the browser to follow active sessions or to play videos of audit sessions, you can use the following new options:

    • Copying the link of a session, optionally from a selected timestamp.

    • Setting the encoding of graphical and terminal-based protocols.

    • Jumping back in the video while following active sessions, and then resuming following the session.

    • Jumping to a specific timestamp in the video.

  • You can enable the auditing of sound that is transferred between an RDP client and the server. To enable this new option, in the Channel Policies settings of the RDP Control option, select the Record audit trail checkbox for the Sound and the Dynamic virtual channel in the channel policy that you want to use for this purpose.

    Using the Export audio option of Safeguard Desktop Player, you can export the sound from the audit trail to a .wav file. The exported .wav file contains the sound that is coming from the audited user.

Changes and improvements in Safeguard for Privileged Sessions REST API Reference Guide version 6.11.1
  • Configuring Starling Join: Use the /starling/join endpoint to configure the Starling Join feature on One Identity Safeguard for Privileged Sessions (SPS), to be able to join SPS to One Identity Starling, or unjoin SPS from it.

  • Retrieving the status of services related to Starling Join/Unjoin: Use the /status endpoint to retrieve information about the availability of the services needed for Starling Join/Unjoin.

  • Enabling One Identity Safeguard Remote Access without Starling Join: Use the /starling endpoint to enable the One Identity Safeguard Remote Access (SRA) feature of One Identity Starling without Starling Join information.

Self Service Tools
Knowledge Base
Notifications & Alerts
Product Support
Software Downloads
Technical Documentation
User Forums
Video Tutorials
RSS Feed
Contact Us
Licensing Assistance
Technical Support
View All
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating