24 November 2020, 03:51
These release notes provide information about the One Identity Safeguard for Privileged Sessions 6.7 release.
One Identity Safeguard for Privileged Sessions Version 6.7 is a release with new features and resolved issues. For details, see:
For a full list of key features in One Identity Safeguard for Privileged Sessions, see Administration Guide.
The One Identity Safeguard Appliance is built specifically for use only with the Safeguard privileged management software, which is pre-installed and ready for immediate use. The appliance is hardened to ensure the system is secured at the hardware, operating system and software levels. The hardened appliance approach protects the privileged management software from attacks while simplifying deployment and ongoing management -- and shortening the timeframe to value.
Safeguard privileged management software is used to control, monitor, and govern privileged user accounts and activities to identify possible malicious activities, detect entitlement risks, and provide tamper proof evidence. The Safeguard products also aid incident investigation, forensics work, and compliance efforts.
The Safeguard products' unique strengths are:
One-stop solution for all privileged access management needs
Easy to deploy and integrate
Unparalleled depth of recording
Comprehensive risk analysis of entitlements and activities
Thorough Governance for privileged account
The suite includes the following modules:
One Identity Safeguard for Privileged Sessions is part of One Identity's Privileged Access Management portfolio. Addressing large enterprise needs, Safeguard for Privileged Sessions is a privileged session management solution, which provides industry-leading access control, as well as session monitoring and recording to prevent privileged account misuse, facilitate compliance, and accelerate forensics investigations.
Safeguard for Privileged Sessions is a quickly deployable enterprise appliance, completely independent from clients and servers - integrating seamlessly into existing networks. It captures the activity data necessary for user profiling and enables full user session drill-down for forensics investigations.
One Identity Safeguard for Privileged Analytics integrates data from Safeguard for Privileged Sessions to use as the basis of privileged user behavior analysis. Safeguard for Privileged Analytics uses machine learning algorithms to scrutinize behavioral characteristics and generates user behavior profiles for each individual privileged user. Safeguard for Privileged Analytics compares actual user activity to user profiles in real time and profiles are continually adjusted using machine learning. Safeguard for Privileged Analytics detects anomalies and ranks them based on risk so you can prioritize and take appropriate action - and ultimately prevent data breaches.
The list of features for SPS version 6.7.2 are the same as for SPS version 6.7 described below.
In card view, you can add additional search fields to the Search interface. This allows quick visualization of your preferred fields from the main page of the Search interface for each session.
During boot, SPS performs an integrity check and displays if a firmware is tainted or corrupted.
From the Search interface, you can now view session details for data recorded by SPP.
You can now view encrypted screenshots in the Search interface by uploading the necessary encryption keys to your keystore. SPS does not store your encryption keys but your keys are now stored in your browser.
From the PDF output of reports, you can now quickly access each session on the Search interface.
Figure 1: Reporting > Reports — Accessing sessions from the PDF output
For RDP and ICA trails, you can select a keyboard layout depending on the language used in the trail and recreate the subtitle of the trail.
When you configure the location of the LDAP server, that is, the IP address or hostname and the port number, you can now use a Service record (SRV record), which is a type of information record in the DNS that maps the name of a service to the DNS name of the server.
Algorithm settings in SPS have been extended with the host key algorithm to comply with current security standards.
Related to Safeguard for Privileged Passwords (SPP): You can now use SPP to search in the contents of the audit trails for trails created and indexed with Safeguard for Privileged Sessions (SPS).
You can now check and report if there were indexed audit trails where the Optical Character Recognition (OCR) engine failed.
During agent-forwarding, the Ed25519 and ECDSA user keys are also accepted.
During an SSH session, a key exchange is now done regularly and automatically.
In RDP, do not use the @ character as an inband data separator but use alternative characters, for example, the % character.
The restore process has been clarified as you cannot restore from an older release to a newer release. Also, you must ensure that you have enough free space to restore.