Skyhigh Security Cloud Release Notes 6.2.0 (November 2022)
Skyhigh Security Service Edge 6.2.0 will be released to the EU Production environment on November 15, 2022, and to the US Production environment on November 28, 2022.
Skyhigh Secure Web Gateway (Cloud)
Active Directory User Group Lookups
When user group information cannot be provided in the usual way, which relies on Client Proxy, Active Directory lookups can be performed based on user names to retrieve this information. Secure Web Gateway requires user group information to enforce the web policy for a particular user group when a user from this group accesses the web.
For more information, see Configure Active Directory Lookups for User Groups.
Support for Native Browser Certificate Handling
When a web server sends a certificate in secure communication, issues with this certificate are usually handled based on the rules of the web policy that you have configured on Secure Web Gateway. For example, access to a web server is blocked if there is an issue with the server certificate. Certificates with issues can be passed on to the end users' browsers now, so it is up to them how to handle these issues.
For more information, see Allow Users to Handle Issues with Web Server Certificates.
New Data Fields for Reporting with the Forensics API
The REST (Forensics) API that is provided for reporting under Secure Web Gateway offers new data fields. Using these fields, you can download more information about non-isolated web traffic, as well as about traffic processed in Remote Browser Isolation (RBI) mode and Private Access traffic. The new fields are related to malware filtering, discarded hosts, and secure communication protocols for clients and servers.
For more information, see Reporting Fields.
More Log Types Available for Logging
When collecting log data with the Logging Client, logs with data originating from different types of traffic can be downloaded and analyzed. In addition to logging data about normal web traffic, you can now choose to log also data about web traffic processed in Remote Browser Isolation (RBI) mode and Private Access.
For more information, see Select the Log Type to Download with the Logging Client.
Service Groups Notification
The Service Groups Notification option (found under Governance > Service Groups New > Create/Edit Service Groups) allows you to send email alerts to users with Compliance Manager and Governance roles about services that are added or removed from a specified service group. For details, see Service Groups Notification.
Reset API credentials for Zscaler (Limited Availability)
Skyhigh CASB allows you to reset the API credentials for your Zscaler instance. On the Firewall/Proxy Integration page, you can configure your Zscaler instance to reset API credentials and authenticate. For details, see Automatic Proxy Configuration for Zscaler.
Skyhigh Recommended Policy Groups (Limited Availability)
Skyhigh CASB recommends the list of default policy groups. These policy groups include all critical policies in AWS, Azure, GCP Critical Policies, and container policies. You can run config audit on demand scan against these policy groups later. For details, see Skyhigh Recommended Policy Groups.
Auto Discover from Organization Info Method (Limited Availability)
This new method provides AWS organization information to Skyhigh CASB. On providing AWS Organization info, Skyhigh CASB auto discovers all accounts associated with the organization, and allows you to select all or required accounts to add to the organization. This method helps to scan multiple accounts in organization rather than individual accounts. For details, see Configure AWS in Skyhigh CASB.
Skyhigh Data Protection
Download On-Demand Scan Errors
You can download a CSV file of On-Demand Scan errors from the Scans table in the Last Scan Errors column, in order to save or share them. For details, see Download On-Demand Scan Errors.
Policy Template Updates
Azure Policy Templates are updated for Microsoft product name changes and CIS level updates. Two new policies have been added. Two other policy templates were deprecated. For details, see Policy Templates for Azure.
Enhanced EDM Fingerprints
Enhanced Exact Data Matching (EDM), or structured fingerprints, allow you to monitor your organization's documents in a row and column format typically extracted from a database in CSV format. EDM from Skyhigh CASB and Secure Web Gateway are now unified in both products, and Enhanced EDM fingerprints created in Skyhigh CASB can now be used in Web Classifications. About Exact Data Match (EDM) Fingerprints.
Document Properties in Classifications
Document Property Sets are used to create Classifications to detect documents based on file metadata, such as Author, Keywords (Tags), or Last Saved By. You can also create custom Document Properties to detect custom tags. For details, see Create a Classification using Document Property Sets.
File Encryption Types in Classifications
You can create a Classification and select File Encryption types to detect them in your files. Supported File Encryption Types include Azure, Microsoft, Seclore, StormShield, and Trellix file encryption. For details, see Create a Classification using File Encryption Types.
Policy Template Updates
Skyhigh Secure Web Gateway (On-Premises) 12.0.x Release
This release provides the following new features.
Skyhigh Rebranding Changes
Names of products, components, and other items have been rebranded to account for the transition from McAfee to Secure Web Gateway.
Preserving Native Browser Behavior
Using this feature, you will now have an option of “Preserve/Mimic Server Certificate” behaviour instead of typical block option on certificate errors. For more information see, Native Browser CA.
Configurable OCSP/CRL Domain to Support Transparent Mode
When configuring a transparent proxy mode for Skyhigh Secure Web Gateway, you can select the OCSP or CRL domain that information about revoked certificates is retrieved from. For more information see, Configure OCSP and CRL domains.
Scenario for Web Traffic from Multiple Tenants
A scenario has been developed to handle web traffic that originates from multiple tenants, but goes through one Skyhigh Secure Web Gateway appliance. For more information refer, Web Traffic from Multiple Tenants.
Property for Logging Next-hop Proxy Address
A new property is provided that allows you to log the IP addresses of next-hop proxies in the logging cycle on Skyhigh Secure Web Gateway. For more information see, List of Recently Introduced Properties.
Tomcat has been upgraded to version 9.
LogJ4 has been upgraded from version 1.x to 2.x.
Resolved Issues in the 12.0 Release - Provides fixes for known issues.
Skyhigh Private Access
Provides fixes for known issues.