Back to Blog December 11, 2019

What’s New in Axonius 2.13?

This weekend, we released Axonius 2.13 to customers with several new enhancements.

New adapters

New Adapters in Axonius 2.13
  1. Cherwell IT Service Management – A service desk platform enabling automation for process workflows, supporting tasks, and related approvals.
  2. Cisco Stealthwatch – An agentless malware detection solution that provides visibility and network traffic security analytics across the extended network, including endpoints, branch, data center, and cloud.
  3. HP Network Node Manager i (NNMi) – A network health and performance monitoring software with scalability and device support.
  4. Microsoft BitLocker Administration and Monitoring (MBAM) – Provides a simplified administrative interface for BitLocker Drive Encryption. BitLocker offers protection against data theft or data exposure for computers that are lost or stolen,  encrypting all data that is stored on the Windows operating system volumes and drives and configured data drives.
  5. Orca Cloud Visibility Platform – Delivers full-stack visibility including prioritized alerts on vulnerabilities, compromises, misconfigurations, and more across all cloud accounts.
  6. Red Hat Ansible Tower – A web console and REST API for operationalizing Ansible across teams, organizations, and the enterprise.
  7. Wazuh – A free, open-source and enterprise-ready security monitoring solution for threat detection, integrity monitoring, incident response, and compliance. 

For more details, see the entire list of supported and integrated adapters.

updated adapters

The following adapters have been enhanced in this release:

Updated Adapters in Axonius 2.13
  • Amazon Web Services (AWS) (Advanced Settings) – Multiple enhancements included adding:
    • A “Fetch Information about Route 53” checkbox to fetch information about Amazon Route 53 DNS records.
    • A “Verify primary account permissions” checkbox to let customers choose whether the primary account permissions should be used when the adapter connections fetch data from AWS.
  • Cisco ISE (Connection Configuration) – Added a new “Use pxGrid to Fetch Live Sessions” field to fetch live session data using the pxGrid service.
  • Guardicore – The Guardicore adapter now fetches user assets as well as device assets.
  • Microsoft Active Directory (AD) (Advanced Settings) – Multiple enhancements including adding:
    • A new “LDAP fields to exclude” field to the Microsoft Active Directory (AD) Configuration tab allowing customers to set one or more inputs to exclude from the data.
    • A new “Devices to exclude by objectCategory” field to the Microsoft Active Directory (AD) Configuration tab allowing customers to add inputs to exclude devices that have a specific AD objectCategory.
  • Microsoft Azure, Microsoft Azure Active Directory (Azure AD) and Microsoft Intune (Connection Configuration) – Added a new Is AzureAD B2C checkbox to the Add Connection dialog for this adapter. If enabled, the newly created connection will only fetch data from Microsoft Azure AD B2C.
  • Tanium (Connection Configuration) – Multiple enhancements including adding:
    • A new “Saved Question Name” field letting customers fetch assets from the results of a Saved Question in Tanium.
    • A new “Always re-ask Saved Question” checkbox. If Saved Question Name is supplied, this new field will re-ask the question of all endpoints every time a fetch is performed by Axonius.
    • A new “Re-ask Saved Question if results are older than N hours” field. If a Saved Question Name is supplied, this new field will re-ask the question of all endpoints if the results from the previously asked question are older than this many hours.
  • Web Server Information (Advanced Settings) – Added a new “Fetch Data from SSL Labs” checkbox letting customers choose to fetch data from Qualys SSL Labs, including information about the server host, its endpoints and indications on exposure to known SSL vulnerabilities, such as Heartbleed and POODLE.
  • Zscaler Web Security – The Zscaler Web Security adapter has been enhanced to fetch user assets in addition to device assets.

Enforcement center updates

The following updates have been made to the Axonius Security Policy Enforcement Center in 2.13.

Updates to the Axonius Security Policy Enforcement Center in 2.13

Enforcement Center Screen – Added a new Updated by column to the Enforcement Set list.T his new column displays the name of the last user that updated the Enforcement Set:

The user name is displayed with a prefix:

  • Internal – If the user has been defined internally in Axonius by one of the system admins.
  • External – If the user has logged in using LDAP or SAML based login option.

If the user no longer exists in the system, the displayed user name will be displayed with a “(deleted)” suffix.

The following Actions have been enhanced:

  • Enrich Device Data with Web Server Information – Multiple enhancements, including adding:
    • A new “Scan Thread Pool Size” field letting customers specify the number of threads to be opened to control the performance of the scan.
    • A new “Fetch Data from SSL Labs” checkbox, letting customers choose to fetch data from Qualys SSL Labs, including information about the server host, its endpoints and indications on exposure to known SSL vulnerabilities, such as Heartbleed and POODLE.
  • Add Tag – Added a new “Remove this tag from entities not found in the Saved Query results” checkbox letting customers choose whether only the list of entities the Enforcement Task ran on should be tagged with the tag name specified in the enforcement action.

Device and User Tables Interface Updates

The following updates have been made to device and user tables related capabilities in Axonius:

UI Updates in Axonius 2.13
  • Saved Queries – Added a new “Updated by” column to the Saved Queries list, displaying the name of last user that updated the Saved Query.
    • The user name is displayed with a prefix:
      • Internal – If the user has been defined internally in Axonius by one of the system admins.
      • External – If the user has logged in using the LDAP or SAML based login option.
    • If the user no longer exists in the system, the displayed user name will be displayed with a “(deleted)” suffix.
  • Microsoft Azure Active Directory (Azure AD): Added an “Azure AD Device Type” data field, reflecting the device or user data source. The value of this field is:
    • Azure AD – if the device or user has been fetched from Azure AD
    • Intune – if the device or user has been fetched from Microsoft Intune

reporting updates

The following updates have been made to Axonius reports.

Reporting Updates in Axonius 2.13

Reports Screen – We’ve added a new “Updated by” column to the reports list, displaying the name of last user that updated the report. The user name is displayed with a prefix:

  • Internal – If the user has been defined internally in Axonius by one of the system admins.
  • External – If the user has logged in using LDAP or SAML based login option.

Administrator settings updates

The following updates have been made to administrator settings in Axonius

Admin Settings Updates in Axonius 2.13
  • Global Settings tab – We’ve modified the Adapters Errors Mail Address setting in the Notifications Settings section. Instead of a single configured email address, this modified field now lets customers configure a comma-separated list of email addresses to receive an email when there is a connection issue with any of the adapter servers.
  • GUI Settings tab – We’ve added a new “Match Group Name by DN” setting to the LDAP Login Settings section. This new setting lets customers choose whether to authenticate user logins by the user exact group Distinguished Name (DN).

As always, you can find the full release notes along with detailed Axonius documentation at docs.axonius.com.

Axonius Mark - PMS

Stay on top of cybersecurity asset management with the latest blogs

Sign up to get first access to the latest cybersecurity asset management resources.