New features in 8.4.0

The following are the new features available with the Xprotect version 8.4.0 released on the 12th of June, 2020:

Download the details of hosts as a CSV file

On the Hosts page, select a list of hosts or select all hosts in your Xprotect tenant and download the details of the host as a CSV file. The file is named in the Host_<tenant name>_Inventory_<date>_<month> format. 

The file lists the following details of the hosts: resource and device IDs, hostname, reachability status, OS details, version of the agent on the host, tags, groups, and policies on the host, user accounts on the host, heartbeat timestamps, and the high and medium alerts generated on the host.

Filter hosts by the OS-level user accounts on the hosts

On the Hosts page, use the User filter to filter hosts by the names of OS-level user accounts that are used on the hosts. 

This filter can help you run host-level actions solely based on the user accounts on the hosts. Host level actions include tagging and grouping hosts, and upgrading or uninstalling the agent from the host.

Use this feature wisely, especially when you want to uninstall the agent, because Xprotect enforces policies at the level of the host and not the user account/s on the host.

Usability enhancements in the alert's floating panel

For the Summary and Detailed alerts on the Alerts page, the following enhancements are available in the alert's floating panel:

  • A 'What Happened' section that lists the process that generated the alert, process' path and MD5, and the timestamp of the alert.

  • A 'Rule That Caused this Alert' section that lists the policy that caused this alert.

  • A 'Go to Rule' link to navigate to the rule in the policy, for alerts generated for policies (with the exception of Whitelist and Trust violations).

Did this answer your question? Thanks for the feedback There was a problem submitting your feedback. Please try again later.