まっちゃだいふくの日記

セキュリティのこと、ITの気になった記事をリンクしています。

Deep Security Agent/Manager 20.0.0-2395 (20 LTS Update 2021-05-24)がリリース @ Cloud Oneへの移行、Arm版Linux対応、CRLの不具合でアップグレード失敗を修正する対応

Deep Security Manager - 20.0.414 (20 LTS Update 2021-05-24)

Deep Security Manager - 20.0.414 (20 LTS Update 2021-05-24)

Release date: May 24, 2021
Build number: 20.0.414

New Feature

Re-parent agents: Deep Security Manager now supports moving agents to Trend Micro Cloud One Workload Security using the new "MoveAgent" API command. This command automates the process of re-parenting an activated Deep Security Agent from its current on-premise manager to a Workload Security tenant. If re-parenting is unsuccessful, the agent will re-activate with its on-premise manager, retaining its previous configuration.

Due to feature differences between the Deep Security and Workload Security managers, move tasks may be refused to prevent unexpected behaviors. Customers should disable the following features before moving agents:

  • FIPS 140-2: Deep Security Manager will refuse move tasks if FIPS 140-2 support is enabled.
  • Deep Security Virtual Appliance: Computers protected by Deep Security Virtual Appliance (agentless or combined mode) will refuse move tasks.
  • SAP NetWeaver integration: Agents with SAP NetWeaver integration will accept move tasks. However, after being moved to Workload Security, the SAP NetWeaver integration will not be available until it is supported on Workload Security.

Enhancement

  • Updated Deep Security Manager to enhance the Identified Files download mechanism, including the ability to download from agent-initiated Deep Security Agents, and a new "File Status" field on identified files to indicate download progress. DS-60741

Resolved issues

  • Under some configurations an internal error prevented users from generating a Deep Security Compliance / Best Practice Report.SF04154114/SEG-99975/DS-60897
  • Prior to Trend Micro Vision One registration, Deep Security Manager still tried to display an agent deployment script (Administration > System Settings > Trend Micro Vision One) which resulted in an 409 HTTP error code. DS-62266
  • An account permissions issue sometimes caused Trend Micro Vision One registration to fail or display the wrong status (under Administration > System Settings > Trend Micro Vision One). DS-61893
  • Deep Security Manager sometimes had connectivity issues preventing computers from importing properly and preventing Deep Security Relays from activating or deactivating. DS-58417
  • Deep Security Manager sometimes incorrectly prevented users with an Auditor role from viewing Firewall Rules (Policies > Rules > Firewall Rules). SF04220398/SEG-102016/DS-60847
  • Deep Security Manager links to Japanese language content failed to load in setups using an air gapped Online Help package (Administration > Updates > Local). 04442246/SEG-108814/DS-63080
What's new in Deep Security Manager? | Deep Security

Deep Security Linux Agent - 20.0.0-2395 (20 LTS Update 2021-05-24)

Deep Security Linux Agent - 20.0.0-2395 (20 LTS Update 2021-05-24)

Release date: May 24, 2021
Build number: 20.0.0-2395

New features

Enhanced platform support

    • Application Control and Integrity Monitoring for Amazon Linux 2 (64-bit Arm): Deep Security Agent now supports Application Control and Integrity Monitoring for Amazon 2 Linux on AWS Graviton. DS-62775

Enhancements

  • Updated Deep Security Agent to add Predictive Machine Learning support for Malware Scan on Linux platforms. DS-62857
  • Updated Deep Security Agent's Anti-Malware default configuration to monitor file access from the local host only, improving compatibility for some file systems. DS-62222

Resolved issues

  • Anti-Malware Real-Time Scan sometimes didn't detect files properly with the "During read" setting selected (Computers > Details > Anti-Malware > General > Real-Time Scan > Malware Scan Configuration > Edit > Advanced > Real-Time Scan). SEG-104496/DS-61836
  • Deep Security Agent was unable to install in some environments because it misidentified the OS. DSSEG-2915/DS-28321
  • Deep Security Agent sometimes showed package signature errors during an upgrade because of a mismatched Certification Revocation List (CRL). DS-62154
  • Anti-Malware Real-Time Scan sometimes caused high CPU usage. 04331007/SEG-107814/DS-62593
  • Insufficient host information caused by connectivity issues sometimes resulted in offline or duplicate listings in the Computers tab for Deep Security Agents on AWS workspaces. SF04198134/SEG-102818/DS-61666
  • Anti-Malware Real-Time Scan caused unintentional file changes under some configurations. DS-62412
  • Deep Security Agent sometimes couldn't successfully perform an upgrade because of a missing package. SF04302125/SEG-104084/DS-62692
  • Anti-Malware kernel modules sometimes didn't bypass file activity on remote shared storages when Network Directory Scan was disabled. DS-62985
What's new in Deep Security Agent? | Deep Security

Deep Security Windows Agent - 20.0.0-2395 (20 LTS Update 2021-05-24)

Deep Security Windows Agent - 20.0.0-2395 (20 LTS Update 2021-05-24)
Release date: May 24, 2021
Build number: 20.0.0-2395

Resolved issues

  • Deep Security Agent sometimes showed package signature errors during an upgrade because of a mismatched Certification Revocation List (CRL). DS-62154
  • Insufficient host information caused by connectivity issues sometimes resulted in offline or duplicate listings in the Computers tab for Deep Security Agents on AWS workspaces. SF04198134/SEG-102818/DS-61666
  • Deep Security Agent sometimes couldn't successfully perform an upgrade because of a missing package. SF04302125/SEG-104084/DS-62692
What's new in Deep Security Agent? | Deep Security

Deep Security Agent - 20.0.0-2395 (20 LTS Update 2021-05-24)

Deep Security Agent - 20.0.0-2395 (20 LTS Update 2021-05-24)

Release date: May 24, 2021
Build number: 20.0.0-2395

Resolved issues

  • Deep Security Agent sometimes showed package signature errors during an upgrade because of a mismatched Certification Revocation List (CRL). DS-62154
What's new in Deep Security Agent? | Deep Security