Tenable OT Security 2024 版本说明
提示:您可以订阅以接收关于 Tenable 文档更新的提醒。
Tenable OT Security 4.0.30 (2024-12-12)
升级前的注意事项
-
此版本中 Enterprise Manager 新增的集中更新功能仅适用于 4.1 及更高版本。
-
一个已知的问题阻止了还原到版本 3.19.70 和 3.19.51。在升级到 4.0. 之前,请先升级到 3.19 SP2 (3.19.77)。
-
在下一版本中,使用 Shift 键批量选择表格条目的方式将被“全选”功能替换。
新功能
资产来源
-
OT Security 在资产清单页面和单个资产页面上增加了一个新的“来源”列,以指示检测资产所使用的方法。有关更多信息,请参阅“来源”。
-
来源包括传感器、ERSPAN、本地 (ICP SPAN)、数据包捕获、CSV 导入、IoT 连接器和活动 OT(查询)。
结果页面
-
OT Security 现在包含“结果”页面,该页面针对环境中所有资产的每个漏洞实例提供清晰且可操作的视图。
-
在“结果”页面上,您可以使用漏洞和资产的属性组合对结果进行筛选或分组。有关更多信息,请参阅“结果”。
重新设计表格和筛选器
-
OT Security 现在对表格和筛选器进行重新设计,以简化数据调查工作流程。此设计适用于“清单”和“结果”页面,并将在后续版本中逐步替换所有表格。有关更多信息,请参阅“自定义表格”。
-
您现在可以保存和重复使用已应用筛选器的 URL。
新的概览中心
-
OT Security 和 OT Security EM 中的新登陆页面可让您在一个动态交互式视图中审查整个环境的清单和风险。有关更多信息,请参阅“OT Security 概览”和“OT Security EM 概览”。
-
所有小组件均可交互。单击小组件可快速深入了解更深层次的数据和情报。
改进
供应商和协议支持
Honeywell C300 — OT Security 包括以下新的策略,用于检测用户更改输入强制的情况:
-
Honeywell 强制启用
-
Honeywell 强制禁用
Tenable One - 安装的软件
Tenable One 现在可以同步监控的 Windows 资产上安装的软件信息(如名称、版本和安装日期),这些信息是 OT Security 通过 WMI 查询获取的。
新内容
漏洞
Tenable 提供来自 19 个供应商的 411 个新插件,点击此处可查看完整列表。
新的 Tenable OT Security 设备指纹引擎 (DFE) 覆盖范围
| 供应商 | 产品 |
|---|---|
| Synology | NAS (DiskStation Manager) |
| Qnap | NAS (QTS/QuTS Hero/QES) |
| ICP DAS | 内置网页,智能引擎 (WISE) |
| GeoVision | 摄像头和录像机 |
| ABB | 升级版模块化 UPS |
| Ubiquiti | 无线接入点 |
| Elspec | G4K 电源质量分析仪 |
| Korenix | JetNet 工业交换机 |
错误修复
| 错误修复 | 缺陷 ID |
|---|---|
| OT Security 现在可确保每次调用 dnf 后,dnf 用户缓存都为空。 | 不适用 |
| 在与 Tenable Security Center 进行数据同步时,当 Tenable Security Center 中的会话限制设置为 1 时,OT Security 现在会显示“会话已超出限制”消息。 | 不适用 |
| OT Security 现在可确保具有 SNMP 客户端功能的 Siemens SICAM A8000 在“资产详细信息”页面上显示序列号。 | 不适用 |
| OT Security 现在可确保测试凭据操作对于具有正确字符限制的密码按预期工作。 | 不适用 |
| OT Security 现在可确保日志显示诊断文件的正确路径。 | 不适用 |
API 变更日志
有关 OT Security API 的更多信息,请参阅“API 文档”。
Enum value Diagnostics was removed from enum Capability
Type for argument schedule on field Mutation.newIoServer changed from ScheduleParams to ScheduleParams!
Type for argument schedule on field Mutation.newScServer changed from ScheduleParams to ScheduleParams!
Type for argument schedule on field Mutation.setIoServer changed from ScheduleParams to ScheduleParams!
Type for argument schedule on field Mutation.setScServer changed from ScheduleParams to ScheduleParams!
Enum value HoneywellForceDisable was added to enum ActivityPolicyEvent
Enum value HoneywellForceEnable was added to enum ActivityPolicyEvent
Enum value sources was added to enum AggregationsAssetsField
Enum value sources was added to enum AssetField
Enum value UpdateIcp was added to enum Capability
Enum value FailedToCanUpdateIcp was added to enum ErrorCategory
Enum value FailedToGetLatestVersion was added to enum ErrorCategory
Enum value FailedToGetOSUpdates was added to enum ErrorCategory
Enum value FailedToUpdateIcp was added to enum ErrorCategory
Enum value IcpUpdateStatus was added to enum ErrorCategory
Enum value UpdateTimeout was added to enum ErrorCategory
Enum value IcpId was added to enum ErrorKey
Enum value IcpUpdateFailedCount was added to enum ErrorKey
Enum value IcpUpdateSuccessCount was added to enum ErrorKey
Member HoneywellChannelDetails was added to Union type EventDetails
Enum value baseName was added to enum IcpSensorField
Enum value sources was added to enum LinkField
Enum value sources was added to enum PluginsAssetsField
Enum value HoneywellForceDisable was added to enum PolicyEventType
Enum value HoneywellForceEnable was added to enum PolicyEventType
Enum value SessionsLimitExceeded was added to enum ServerStatus
Field detailedSources was added to object type Asset
Field sources was added to object type Asset
Type AssetSourceType was added
Type DetailedSource was added
Type DetailedSourceConnection was added
Type DetailedSourceEdge was added
Field eval was added to object type EmLicenseDetails
Field sku was added to object type EmLicenseDetails
Type Finding was added
Type FindingConnection was added
Type FindingEdge was added
Type FindingStatus was added
Type FindingsObjExpressionsParams was added
Type FindingsObjSortParams was added
Type FindingsObjSortParamsComplexFields was added
Type HoneywellChannelDetails was added
Type IcpEmUpdateType was added
Field sources was added to object type LeanAsset
Type LeanSource was added
Type LeanSourceConnection was added
Type LeanSourceEdge was added
Field eval was added to object type LicenseDetails
Field sku was added to object type LicenseDetails
Field setInGlobalStorage was added to object type Mutation
Field updateICPs was added to object type Mutation
Field update was added to object type PairedIcp
Field checkForIcpUpdates was added to object type Query
Field findings was added to object type Query
Field findingsRaw was added to object type Query
Field globalStorage was added to object type Query
Type RawFindingsObjComplexFieldParams was added
Type RawFindingsObjComplexFieldParamsComplexFields was added
Type RawFindingsObjComplexGroupingParams was added
Type RawFindingsObjComplexGroupingParamsComplexFields was added
Type Update was added
Type findingField was addedTenable OT Security 3.19.77 SP2 (2024-11-20)
改进
具有只读或站点操作员权限的用户无法再下载数据包捕获和关闭正在进行的捕获。
已知问题
由于还原脚本的一个已知问题,无法从更高版本还原到 3.19.70 (SP)。此问题为版本 3.19.70 (SP) 所特有,不影响 3.19 SP2 或更高版本。例如,如果您从 3.18 升级到 3.19 SP2,则可以还原版本,而不会出现任何问题。
错误修复
| 错误修复 | 缺陷 ID |
|---|---|
| 运行执行 Tenable Core 备份的命令行不再导致卸载 OT Security。 | 不适用 |
| “导出诊断”选项现在可正确运行,不会出现“404 页面未找到”错误。 | 不适用 |
| 现在,无需密码即可正确创建 SMTP 服务器。 | 不适用 |
| 如果有足够的存储空间,OT Security 升级将不再被阻止。 | 02117457 |
| 升级到 3.19 SP1 现在会正确迁移 LDAP 设置。 | 不适用 |
| IoT 连接器现在可正确运行,不会造成启动延迟,从而避免阻止服务重启。 | 不适用 |
Tenable OT Security 3.19.70 SP (2024-09-24)
新功能
合规性仪表盘
-
合规性仪表盘让您可以使关键安全措施符合法规要求、跟踪进度和改进情况以及加强安全状况。有关更多信息,请参阅“合规性仪表盘”。
-
OT Security 支持以下安全框架:CAF 原则、OTCC 子域、ISO 27001 控件和 NIS 2 指令(第 21 条)。
FOX TLS 快照
-
支持 Phoenix Contact ILC 快照。
-
包括用于跟踪 FOX TLS 配置变更的审计日志。
改进
安全性强化措施
-
内部通信加密:模块之间的通信或与外部集成点的通信利用更强的加密密码。
-
内部数据库加密:OT Security 存储区域中应用了更高级别的加密密码。
新内容
漏洞
OT Security 现在能识别以下新漏洞:
| 供应商 | 系列/型号 | 插件 ID |
|---|---|---|
| ABB | Freelance AC 900F 和 AC 700F、800xA CSLib | 502357、502378、502379 |
| Beckhoff | 502384、502381、502382、502383 | |
| Dahua | 502363、502364 | |
| Dell | 激光打印机 2335dn 和 2355dn | 502385、502386 |
| Emerson | Ovation OCR400 控制器 | 502359、502360、502373、502374 |
| Mettler Toledo | IND780 | 502352 |
| Nexans | FTTO | 502380 |
| Panasonic | WV-S2231L | 502350、502351 |
| Rockwell Automation | ControlLogix、GuardLogix 和 CompactLogix、ControlLogix、GuardLogix 5580、CompactLogix 和 Compact GuardLogix 5380 | 502371、502372、502361、502389 |
| Schneider | 502368 | |
| SEH | Computertechnik UTN Server PRO 和 INU-100 | 502375、502376、502377 |
| Siemens | RUGGEDCOM、SCALANCE M-800、RUGGEDCOM RM1224、LOGO!V8.3 BM | 502353、502366、502370、502355、502356、502365、502354、502367 |
| Sony | Sony 网络摄像头 | 502387、502388 |
| Sprecher | 502362 | |
| Yokogawa | CENTUM | 502358 |
新的 Tenable OT Security 设备指纹引擎 (DFE) 覆盖范围
| 供应商 | 产品 |
|---|---|
| ABB | Freelance DCS (AC 700/800F/900F) |
| Actelis Networks | MetaLIGHT 以太网访问设备 |
| Cognex | In-Sight |
| Cognex | DataMan |
| Dell | 激光打印机 |
| JUMO GMBH | AQUIS DICON LOGOSCREEN |
| Mettler Toledo | IND360/IND780 称重终端 |
| Nexans | iGigaSwitch |
| Panasonic (i-PRO) | 摄像头 |
| SEH Computertechnik | USB 设备服务器 |
| Sony | Sony 网络摄像头 |
| Wago | PFC300 |
错误修复
| 错误修复 | 缺陷 ID |
|---|---|
| 如果本地化语言设置为日语,“系统日志”页面将不再为每个日志事件显示“无效日期”。 | 02089095 |
| cfg.yaml 中使用的复杂 LDAP BindPW 密码无法再阻止应用程序正常启动。 | 02096055 |
| 从 ICP 连接到 EM 时,OT Security 不再显示角色不匹配错误。 | 02097195 |
| 对“资产设置”>“受监控的网络”所做的更改现在会记录在“系统日志”中。 | 02091804 |
| OT Security 现在会显示正确的固件版本,从而解决插件查找错误的问题。 | 02057242 |
| Nessus 容器中的过量日志记录不会再导致磁盘空间被占满。 | 不适用 |
API 变更日志
有关 API 的更多信息,请参阅“Tenable OT Security API 文档”。
Enum value lastSnapshot was added to enum AssetField
Enum value BlockFoxDriver was added to enum BlockType
Enum value BlockFoxDriversProject was added to enum BlockType
Enum value AvgDays was added to enum FieldFunction
Enum value SecureModeFailure was added to enum IotConnectorStatus
Enum value UnknownFailure was added to enum IotConnectorStatus
Enum value lastSnapshot was added to enum LinkField
Argument snapshot: Boolean (with default value) added to field Mutation.newProtocolPolicy
Argument snapshot: Boolean (with default value) added to field Mutation.setProtocolPolicy
Enum value resolutionDuration was added to enum PolicyHitAggregationField
Type AggregationsAssetsExpressionsParams was added
Type AggregationsAssetsField was added
Type AggregationsAssetsSortParams was added
Type AggregationsAssetsSortParamsComplexFields was added
Field lastSnapshot was added to object type Asset
Field AssetMapTimeFrame was added to object type Config
Field lastSnapshot was added to object type LeanAsset
Type PluginHitsExpressionsParams was added
Type PluginHitsSortParams was added
Type PluginHitsSortParamsComplexFields was added
Type PluginsAssetsExpressionsParams was added
Type PluginsAssetsField was added
Type PluginsAssetsSortParams was added
Type PluginsAssetsSortParamsComplexFields was added
Field assetsExternalConn was added to object type Query
Field assetsExternalConnRaw was added to object type Query
Field eventAggregationsAssetsRaw was added to object type Query
Field pluginHits was added to object type Query
Field pluginHitsRaw was added to object type Query
Field pluginsAssetsRaw was added to object type Query
Field Query.pluginsRaw description changed from Raw dynamic query on plugins to Raw dynamic query on plugin hits
Type RawAggregationsAssetsComplexFieldParams was added
Type RawAggregationsAssetsComplexFieldParamsComplexFields was added
Type RawAggregationsAssetsComplexGroupingParams was added
Type RawAggregationsAssetsComplexGroupingParamsComplexFields was added
Type RawPluginHitsComplexFieldParams was added
Type RawPluginHitsComplexFieldParamsComplexFields was added
Type RawPluginHitsComplexGroupingParams was added
Type RawPluginHitsComplexGroupingParamsComplexFields was added
Type RawPluginsAssetsComplexFieldParams was added
Type RawPluginsAssetsComplexFieldParamsComplexFields was added
Type RawPluginsAssetsComplexGroupingParams was added
Type RawPluginsAssetsComplexGroupingParamsComplexFields was added
Type pluginHits was addedTenable OT Security 3.19.51 (2024-07-30)
新功能
供应商和协议支持
-
MOXA 发现协议 — OT Security 现在会主动检测 MOXA 设备并对其进行指纹采样。直接查询设备以进行识别。对 MOXA 设备进行主动查询需要 MOXA 凭据。
-
Siemens SICAM 8050 RTU — OT Security 现在支持 Siemens SICAM 8050。您可以使用主动查询来对背板模块进行指纹采样。执行此操作需要 SNMP v3 凭据。
-
Fox-TLS 协议
-
OT Security 现在会主动检测使用 FOX-TLS 协议的设备并对其进行指纹采样。
-
对此类设备进行主动查询需要 FOX-TLS 凭据。
-
已在 Phoenix Contact ILC 2050 BI 设备上进行测试。
-
高级 IoT 可见性
-
OT Security 现在包含 IoT 连接器引擎,支持集成 IoT(物联网)或 VMS(视频管理系统)服务器。
-
您可以使用以下任何一种连接方法来集成 IoT/VMS 服务器:
-
使用远程应用程序 API 服务
-
使用代理
-
-
集成后,OT Security 会导入应用程序服务器管理的所有设备,例如摄像头、门禁系统、火灾报警面板等。
有关更多信息,请参阅“IoT 连接器”。
资产关系
-
OT Security 现在以可视化方式显示资产关系。
-
您可以使用单个资产页面上的“相关资产”选项卡来跟踪该资产的所有已知关系。
-
OT Security 会根据查询和被动监控自动确定资产之间的关系,这样就无需手动修改这些关系。
-
相关资产基于设备的实际通信路径,这与依赖第 3 层(互联网协议或 IP)连接性的网络映射不同。
有关更多信息,请参阅“相关资产”。
资产关系 - 嵌套 OT 设备
-
嵌套设备是指连接在可编程逻辑控制器 (PLC) 背板或设备后面的 PLC 或其他工业控制系统 (ICS) 模块。此设备类似于直接连接到通信适配器的变频驱动器 (VFD)。
-
在此版本中,OT Security 仅检测 Rockwell 设备和 Rockwell 连接类型(例如 CIP、DirectNet、ControlNet、DH+)的嵌套设备。
-
OT Security 通过被动监控或使用背板扫描主动查询的方式来观察 OT 设备之间的嵌套关系。
-
在资产详细信息页面上,“相关资产”>“背板视图”处会列出所有相关资产。如果某个模块下存在嵌套设备,则会显示
图标。有关更多信息,请参阅“嵌套设备”。
资产关系 - IoT 连接器
-
OT Security 将所有托管的 IoT 设备映射到其各自的应用程序服务器。
-
要查看由特定应用程序服务器管理的所有 IoT 设备,您必须配置 IoT 引擎,并从应用程序服务器同步资产。以 IP 摄像头为例,您可以查看管理该摄像头的 VMS 服务器。通过“清单”>“IoT 连接器”>“相关资产”页面导航至此 VMS 服务器,即可查看此 VMS 服务器管理的所有摄像头。
动态指纹识别引擎 (DFE) 更新
您现在可从云端更新动态指纹识别引擎 (DFE)。此功能的一些主要优点包括:
-
按需更新:直接从云端即时下载并应用最新的分类变更,确保清单始终处于最新状态。
-
增强灵活性:无需等待本地更新或新版本发布即可获取更多指纹信息,实现即时且持续的改进。
-
无缝集成:在新的指纹可用时将其纳入系统,在主要版本发布的间隔期间接收重要更新以增强响应能力。
有关更多信息,请参阅“DFE 更新”。
可导出执行概述报告 PDF
-
OT Security 现在提供生成执行概述报告并以 PDF 格式导出的选项。
-
要查看和下载“执行概述”报告,请转至“仪表盘”>“执行报告”。
-
此功能是对 OT Security 报告功能早期版本的增强。
有关更多信息,请参阅“生成执行报告”。
资产诊断报告导出
-
您现在可以导出资产的详细诊断报告,以用于支持目的。您还可以批量导出多个资产的诊断报告。有关更多信息,请参阅“导出诊断报告”。
改进
Tenable Security Center 集成增强
-
从 Tenable Security Center 6.4 开始,与 OT Security 的集成会在 Tenable Security Center 中引入额外的上下文信息。
-
集成后,OT Security 的资产详细信息会与 Tenable Security Center 同步。这些资产详细信息包括:“名称”、“类型”、“类别”、“运行状态”、“固件版本”、“供应商”、“型号”、“系列”、“背板信息”、“MAC”、“普渡层”、“位置”和“说明”。
-
启用该功能无需进行特别的配置或设置,只需使用运行 OT Security 和 Tenable Security Center 的最新版本即可。
重新设计主动查询管理
-
主动查询现以信息卡片的形式提供,可根据需要进行自定义。
-
您可以为每种类型的主动查询创建查询变体,并像在早期版本中一样对其进行自定义。
-
状态列会显示主动查询是正在运行、已停止还是已暂停。
有关更多信息,请参阅“管理主动查询”。
主动查询管理 — 执行历史记录
-
您现在可以下载最近一次查询执行详细信息的 CSV 导出文件。如果主动查询针对多个资产或协议,则此信息也会显示在导出的结果中。在初始设置期间,这有助于针对不同资产进行查询故障排除。有关更多信息,请参阅“下载最近一次的查询日志”。
主动查询管理 —“仍然尝试”按钮
-
您现在可以覆盖在故障排除期间主动查询尝试次数的限制。当您对主动查询所涉及的设备或网络进行任何防火墙或网络更改时,OT Security 现在提供“仍然尝试”选项,以便继续进行查询。
主动查询管理 — 添加了 Ping 查询
-
OT Security 现在包含独立的 Ping 查询,该查询依赖于互联网控制消息协议 (ICMP) 来测试资产是否可路由或可访问。该查询本质上与在资产发现或资产追踪主动查询期间使用的 Ping 查询是一样的。
Pendo 工具集成
-
资源中心:直接在应用程序内访问多种有用资源:
注意:访问资源中心需要连网。-
知识库搜索:在应用程序内搜索产品知识库 (KB),快速获取答案和信息。
-
功能更新:接收有关最新功能更新和新版发布的应用程序内通知。
-
新用户欢迎流程:提供快速概览,展示产品的主要优点和关键功能,帮助您迅速熟悉产品。
-
Tenable One - 开放端口发现结果
-
当 OT Security 与 Tenable One 集成时,除了同步资产和漏洞之外,现在还能同步受监控资产上的开放端口。
-
您可以使用资产的开放端口信息进行动态标记,并揭示更多可能导致入侵的潜在攻击路径。
漏洞状态跟踪
-
OT Security 现在会保留并展示已缓解(已修复)的漏洞。
-
在“漏洞”页面上查看资产或总体漏洞时,您现在可以查看未修复漏洞与已修复漏洞的对比情况。
-
已修复的漏洞在一年后将不再显示。
通用协议解析器
-
OT Security 现在采用通用协议解析器,以便您快速添加协议检测功能。此解析器是 Tenable 研究中使用的内部工具。
-
通用解析器依赖于 LUA 脚本,并由嵌入式 Suricata IDS 引擎提供技术支持。
从“关于”视图访问帐户详细信息
激活 OT Security 后,您可以在“关于”视图中查看 Tenable 客户 ID。
要访问此信息,请在界面右上角单击用户名,然后从下拉菜单中选择“关于”。此视图会显示您的帐户详细信息,包括客户 ID。请注意,联系技术支持或 Customer Success 团队时需要提供此客户 ID。
新内容
| 供应商 | 系列/型号 | 插件 ID |
|---|---|---|
| Siemens | Simatic、Scalance | 501998-502003, 502157-502171, 502191-502208, 502216-502223, 502258, |
| MikroTik | RouterOS | 502004-502081 |
| Cisco | 9900, 7800, 8800, 3905, 6800 | 502082-502156 |
| Westermo | WeOS、Lynx、MRD | 502172-502189 |
| Schneider | Modicon M340 | 502190 |
| Mitsubishi | MELSEC | 502210-502215 |
| Rockwell | ControlLogix | 502209 |
| Hitachi | AFS 系列 | 502224-502225, 502266 |
| Meinberg | LANTIME | 502226-502234 |
| Honeywell | Experion | 502236-502243 |
| Zebra | ZTC、FX9500 | 502251-502254 |
| IRZ | RUH2 | 502255-502257 |
| Hirschmann | HiOS | 502259-502265, 502267-502272 |
| Sensormatic Electronics | Illustra Pro Gen 4 | 502273 |
| Arecont Vision | AV1355DN | 502274 |
Tenable OT Security 新型动态指纹识别引擎覆盖范围
| 供应商 | 产品 |
|---|---|
| Hanwha Vision | 摄像头/录像机 |
| Axis | 视频编码器 |
| Arecont Vision | 摄像头 |
| Illustra | 摄像头 |
| Phoenix Contact | ILC 2000 控制器 (2050 BI(-L) ) |
| Hirschmann | 交换机 |
| Honeywell | ControlEdge HC900 |
| IRZ | IRZ 工业路由器 |
| Schneider | PowerLogic PM 3000/5000/8000 系列 |
| Zebra | FX9600 RFID 读取器、ATR7000 RFID 读取器、FX7400/FX7500 RFID 读取器 |
| Zebra | FX9500 RFID 读取器 |
| Rockwell | Stratix |
| HW group | POSEIDON2 远程监控设备 |
| Meinberg | LANTIME NTP 服务器 |
| HW group | STE2 远程环境监控设备 |
| HMS Industrial Networks | Anybus X-gateway |
| Westermo |
蜂窝路由器 以太网转换器 Falcon 路由器 Lynx 交换机 RedFox 交换机 Wolverine 以太网扩展器 xDSL 路由器 |
| Vertiv | 监视程序传感器 |
| Schneider | PowerLogic PM 3000/5000/8000 系列 |
| MikroTik | RouterBOARD 网络设备 (RouterOS) |
| Moxa | ioLogik |
| Siemens | SIMATIC NET CP 1600 系列 |
已知问题
-
如果在早期版本中启用了 SNMP 端口查询,您必须在“主动查询管理”设置下重新启用。
-
基于角色的访问控制 (RBAC) 设置中权限级别的冲突会导致用户继承最宽松群体的权限。
错误修复
| 错误修复 | 描述 |
|---|---|
| SICAM 客户端连接在执行查询后正确终止。 | 01759186 |
| Web 服务器现在在请求中强制执行 HTTP 安全标头。 | 02012575 |
API 变更日志
有关 API 的更多信息,请参阅“Tenable OT Security API 文档”。
Type ActiveQueriesOpType was removed
Field ActiveQuery.operation changed type from ActiveQueriesOpType! to OpType!
Field ActiveQueryBase.operation changed type from ActiveQueriesOpType! to OpType!
Field AssetDiscovery.operation changed type from ActiveQueriesOpType! to OpType!
Field PingEnabled was removed from object type Config
Enum value PingType was removed from enum DiscoveryQueryTypes
Enum value NessusAdvancedScan2Type was removed from enum FirewallOpType
Enum value NessusAdvancedScanType was removed from enum FirewallOpType
Field InactiveProbing.operation changed type from ActiveQueriesOpType! to OpType!
Enum value DnsType was removed from enum ItQueryTypes
Enum value InactiveAssetProbe was removed from enum ItQueryTypes
Enum value PortScanAssetEnrichment was removed from enum ItQueryTypes
Enum value PortScanQueryType was removed from enum ItQueryTypes
Type for argument operation on field Mutation.createActiveQuery changed from ActiveQueriesOpType! to OpType!
Field PortScan.operation changed type from ActiveQueriesOpType! to OpType!
Default value for argument countTimeout on field Asset.eventAggregations changed from 700 to 3000
Default value for argument countTimeout on field Asset.eventAggregationsRaw changed from 700 to 3000
Default value for argument countTimeout on field Asset.events changed from 700 to 3000
Default value for argument countTimeout on field Asset.eventsRaw changed from 700 to 3000
Default value for argument countTimeout on field Asset.plugins changed from 700 to 3000
Enum value VideoManagementSystem was added to enum AssetType
Default value for argument countTimeout on field Baseline.links changed from 700 to 3000
Enum value FoxTls was added to enum BasicCredentialsTypes
Enum value Moxa was added to enum BasicCredentialsTypes
Enum value NoSpaceLeftOnDevice was added to enum CannotUpdatePluginSetReason
Enum value NoSpaceLeftOnDevice was added to enum CannotUpdateSuricataRulesReason
Enum value IotConnectors was added to enum Capability
Enum value FoxTls was added to enum CredentialsType
Enum value Moxa was added to enum CredentialsType
Enum value SicamSnmp was added to enum CredentialsType
Enum value AssetDiscoveryType was added to enum DiscoveryQueryTypes
Enum value DnsType was added to enum DiscoveryQueryTypes
Enum value InactiveAssetProbe was added to enum DiscoveryQueryTypes
Enum value PortScanAssetEnrichment was added to enum DiscoveryQueryTypes
Enum value PortScanQueryType was added to enum DiscoveryQueryTypes
Default value for argument countTimeout on field EventAggregation.events changed from 700 to 3000
Enum value AssetDiscoveryType was added to enum FirewallOpType
Enum value osVersion was added to enum IcpSensorField
Default value for argument countTimeout on field Mutation.bulkEditAssets changed from 700 to 3000
Default value for argument countTimeout on field Mutation.bulkEditAssetsWithRemove changed from 700 to 3000
Default value for argument countTimeout on field Mutation.bulkHideAsset changed from 700 to 3000
Default value for argument countTimeout on field Mutation.bulkRestoreAsset changed from 700 to 3000
Default value for argument countTimeout on field Mutation.resolveEvents changed from 700 to 3000
Default value for argument countTimeout on field Plugin.affectedAssets changed from 700 to 3000
Enum value fixedAssets was added to enum PluginField
Enum value vprLevel was added to enum PluginField
Enum value CIP_ETHIP_UDP was added to enum ProtocolType
Enum value DOT1BR was added to enum ProtocolType
Enum value DOT1BR_CORRUPT was added to enum ProtocolType
Enum value MOXA_HTTP was added to enum ProtocolType
Enum value SICAM_SNMP was added to enum ProtocolType
Default value for argument countTimeout on field Query.assets changed from 700 to 3000
Default value for argument countTimeout on field Query.assetsForGrid changed from 700 to 3000
Default value for argument countTimeout on field Query.assetsPendingDeletion changed from 700 to 3000
Default value for argument countTimeout on field Query.assetsRaw changed from 700 to 3000
Default value for argument countTimeout on field Query.eventAggregations changed from 700 to 3000
Default value for argument countTimeout on field Query.eventAggregationsRaw changed from 700 to 3000
Default value for argument countTimeout on field Query.events changed from 700 to 3000
Default value for argument countTimeout on field Query.eventsForGrid changed from 700 to 3000
Default value for argument countTimeout on field Query.eventsRaw changed from 700 to 3000
Default value for argument countTimeout on field Query.groupedAssetsRaw changed from 700 to 3000
Default value for argument countTimeout on field Query.groupedEventsRaw changed from 700 to 3000
Default value for argument countTimeout on field Query.iemPluginsRaw changed from 700 to 3000
Default value for argument countTimeout on field Query.iemPolicies changed from 700 to 3000
Default value for argument countTimeout on field Query.iemRecentEvents changed from 700 to 3000
Default value for argument countTimeout on field Query.iemSensorsRaw changed from 700 to 3000
Default value for argument countTimeout on field Query.links changed from 700 to 3000
Default value for argument countTimeout on field Query.plugins changed from 700 to 3000
Default value for argument countTimeout on field Query.pluginsRaw changed from 700 to 3000
Argument countTimeout: Int (with default value) added to field Query.systemLog
Argument filter: SystemLogExpressionsParams added to field Query.systemLog
Argument search: String added to field Query.systemLog
Argument slowCount: Boolean added to field Query.systemLog
Argument sort: [SystemLogSortParams!] added to field Query.systemLog
Enum value SICAM_SNMP was added to enum RestrictedProtocolType
Enum value EmptyClientResponseError was added to enum SnapshotStatus
Enum value SicamSnmp was added to enum SnmpV3CredentialsTypes
Enum value VideoManagementSystem was added to enum UserDefinedAssetType
Field lastRunBy was added to interface ActiveQuery
Field usageInfo was added to interface ActiveQuery
Field lastRunBy was added to object type ActiveQueryBase
Field usageInfo was added to object type ActiveQueryBase
Type ActiveQueryExecution was added
Type ActiveQueryExecutionConnection was added
Type ActiveQueryExecutionEdge was added
Type ActiveQueryExecutionOnAsset was added
Type ActiveQueryExecutionOnAssetConnection was added
Type ActiveQueryExecutionOnAssetEdge was added
Type AgentConnector was added
Field activePlugins was added to object type Asset
Field fixedPlugins was added to object type Asset
Field relationships was added to object type Asset
Field lastRunBy was added to object type AssetDiscovery
Field usageInfo was added to object type AssetDiscovery
Type AssetRelationship was added
Type AssetRelationshipConnection was added
Type AssetRelationshipEdge was added
Type AssetRelationshipExpressionsParams was added
Type AssetRelationshipField was added
Type AssetRelationshipIoTConnectorsDetails was added
Type AssetRelationshipNesting was added
Type AssetRelationshipNestingCipIpDetails was added
Type AssetRelationshipNestingControlNetDetails was added
Type AssetRelationshipNestingDhPlusDetails was added
Type AssetRelationshipNestingUnknownDetails was added
Type AssetRelationshipSortParams was added
Type AssetRelationshipSortParamsComplexFields was added
Type CanDownload was added
Type CanUpdateDfe was added
Type CannotUpdateDfeReason was added
Type ChannelType was added
Field IotConnectorsAvailable was added to object type Config
Type ConnectionType was added
Field dstPort was added to object type Conversation
Field Conversation.port is deprecated
Field Conversation.port has deprecation reason Use dstPort instead
Directive deprecated was added to field Conversation.port
Field srcPort was added to object type Conversation
Type CoreOsVersion was added
Type DfeDownloadUrl was added
Type DfeInfo was added
Field customerId was added to object type EmLicenseDetails
Field id was added to object type EmUser
Type Error was added
Type ErrorCategory was added
Type ErrorKey was added
Type ErrorVariable was added
Type ErrorVariableConnection was added
Type ErrorVariableEdge was added
Type ExacqAddOptionsParams was added
Type ExacqConnector was added
Type ExacqEditOptionsParams was added
Field lastRunBy was added to object type InactiveProbing
Field usageInfo was added to object type InactiveProbing
Type IotConnectionMethod was added
Type IotConnectorInfo was added
Type IotConnectorInfoConnection was added
Type IotConnectorInfoEdge was added
Type IotConnectorStatus was added
Type IotConnectorType was added
Type IotConnectorWebProtocol was added
Field errors was added to object type Job
Field customerId was added to object type LicenseDetails
Type LogRecordField was added
Type MilestoneAddOptionsParams was added
Type MilestoneConnector was added
Type MilestoneEditOptionsParams was added
Type MobotixAddOptionsParams was added
Type MobotixConnector was added
Type MobotixEditOptionsParams was added
Field activeQueryExecutionsCsv was added to object type Mutation
Field addAgentIotConnector was added to object type Mutation
Field addExacqIotConnector was added to object type Mutation
Field addMilestoneIotConnector was added to object type Mutation
Field addMobotixIotConnector was added to object type Mutation
Field assetReport was added to object type Mutation
Field assetsReport was added to object type Mutation
Field createSnmpQuery was added to object type Mutation
Field deleteIotConnector was added to object type Mutation
Field editAgentIotConnector was added to object type Mutation
Field editExacqIotConnector was added to object type Mutation
Field editMilestoneIotConnector was added to object type Mutation
Field editMobotixIotConnector was added to object type Mutation
Field editSnmpQuery was added to object type Mutation
Field testAgentIotConnector was added to object type Mutation
Field updateDfe was added to object type Mutation
Type OpType was added
Field fixedAssets was added to object type Plugin
Field Plugin.totalAffectedAssets description changed from Total affected assets on the plugins, with no regard to the filter to Total affected assets on the plugin, with no regard to the filter
Field totalFixedAssets was added to object type Plugin
Field vprLevel was added to object type Plugin
Field lastRunBy was added to object type PortScan
Field usageInfo was added to object type PortScan
Field activeQueryExecutions was added to object type Query
Field activeQueryExecutionsOnAsset was added to object type Query
Field canOfflineUpdateDfe was added to object type Query
Field canOnlineUpdateDfe was added to object type Query
Field dfeDownloadUrl was added to object type Query
Field dfeInfo was added to object type Query
Field iotConnector was added to object type Query
Field iotConnectors was added to object type Query
Type QuerySource was added
Type RelationshipDirection was added
Type RelationshipType was added
Field osVersion was added to object type SensorDetails
Type Snmp was added
Type SnmpOptionsParams was added
Type SystemLogExpressionsParams was added
Type SystemLogSortParams was added
Type SystemLogSortParamsComplexFields was added
Field id was added to object type User
Type VprLevel was added