Genian NAC 5.0.57 Release Notes (2023-10-11)

Last Updated: 2023-12-19

Security Vulnerability

Revision Key Components Description Affects Versions CVSS Score
122612 GN-27492 WebUI Tomcat version upgrade (8.5.94 -> 8.5.96/9.0.81 -> 9.0.83)   7.5
121387 GN-26315 WebUI Improved two-step verification to limit the number of times the verification code can be entered and the time limit   4.3
120864 GN-27278 WebUI Tomcat version upgrade (8.5.94/9.0.81)   7.5
120388 GN-26600 WebUI The problem of not being able to log in after an abnormal API call 5.0.42, 5.0.49, 6.0.7, 4.0.156, 5.0.56 5.3

New Features and Improvements

Revision Key Components Description Affects Versions
122689 GN-27462 Windows Agent Improved to download only cosign files corresponding to the operating system (64/32 bit) when installing the file distribution V2 plug-in 5.0.42, 4.0.155, 6.0.15, 5.0.55 (LTS), 5.0.56, 5.0.57
122665 GN-25714 WebUI Added an option to set a security agreement expiration date  
122237 GN-27164 VRRPD [General-purpose OS] A problem where the redundant configuration switches to the slave state due to an interface status check failure after switching to the master state 5.0.42
122214 GN-27402 WebUI API improvements so that start/end times can be set when modifying MAC policies  
122165 GN-27390 Center, WebUI Improved so that data in the /disk/data/report directory is also deleted when setting the number of reports to be saved  
121927 GN-27241 macOS Agent Improved so that agents can validate server events when using macOS multi-policy servers  
121890 GN-27248 Linux Agent Linux Agent, improved so that agents can validate server events when using multiple policy servers  
121744 GN-26627 WebUI Improved so that the authentication screen is not displayed again on CWP Web after agent authentication while the CWP web page is output  
121117 GN-27269 -Unknown/None- Remove unnecessary permissions from apache/tomcat-related directories and files  
120831 GN-27319 WebUI Add ServerTimeZone settings to jdbc connection when Tomcat is running  
120404 GN-27146 Center A problem where the password entered by the user remains in the central debug file when linking external authentication via extauth fails  
120334 GN-27174 WebUI Improved so that you can select combo box data that is output by default in ConfEngine File (40) type  
120334 GN-27163 Sensor Added a function to periodically check whether the sensor daemon is deadlocked  
120334 GN-27160 Center Modify the local DB account connection method when using a user domain when linking authentication  
120334 GN-27049   Improved to support regular expressions in macOS file distribution folders  
120334 GN-26875 WebUI Edit the message displayed in CWP when the host name is restricted  
120334 GN-26843 Center The problem of generating an agent package twice when the center daemon is initially running  
120334 GN-26827 WebUI Fix the pop-up message on the Start Now button to perform a backup  
120334 GN-26803 Windows Agent Add audit records for shared folder control through plug-ins  
120334 GN-26801 WebUI Fixed an issue where WEBUI's primefaces basic system error was output  
120334 GN-26763 WebUI Improved to be able to select items added during the previous day in the daily report  
120334 GN-26760 WebUI Improved to be managed by each administrator (according to the scope of management) when creating and sending daily reports  
120334 GN-26753 WebUI Improved to output an error message when entering a semicolon at the end of the query string in the query report  
120334 GN-26734 WebUI Improved error message when entering an incorrect date for the start date/expiration date in Administration > Nodes > Equipment Properties  
120334 GN-26668 CWP Change the default setting for using CWP SSL to On  
120334 GN-26665 WebUI Add drop-down UI of "Available OS Types" when allocating agent actions when creating policies  
120334 GN-26653 WebUI Node Management List > Improved so that only one item in the same category can be selected when changing node attributes  
120334 GN-26640 WebUI Change the previous item to be selected when continuing to add node group conditions  
120334 GN-26610 Center An issue where the agent is displayed in English when installing an agent regardless of the user's default locale setting  
120334 GN-26555 Sensor Added a gnlogin command to check the IP information cached on the sensor when using FQDN on a network object  
120334 GN-26544 GNOS GNOS kernel latest patch applied (5.10.181)  
120334 GN-26491 WebUI Improved so that the content of the node management description column is output at the same size as the column  
120334 GN-26473 Sensor Improved separation of the entered SNMP Agent versions and regular expression checks for Community and Passwd  
120334 GN-26468 WebUI Improved the number of list outputs per page in the Software/History Management List in Node Details so that it is possible to change the number of list outputs  
120334 GN-26464 WebUI Fixed an issue where images were broken when uploading and previewing images in Settings > Announcements  
120334 GN-26450 WebUI Improved so that the scroll moves to the top when moving a page in the history management list  
120334 GN-26412 WebUI Fixed to switch to the login screen when the administrator session is forcibly terminated  
120334 GN-26410 CWP, WebUI When linking SAML authentication, no message is output when the SP fails after IdP authentication  
120334 GN-26407 WebUI Modified so that Policy Server can be displayed in the IP management matrix view  
120334 GN-26312 WebUI A problem where subsequent tasks cannot proceed if there are duplicate csv nodes when registering nodes in batches  
120334 GN-26300 WebUI The problem that the CWP device application form and alarm message do not match the time zone  
120334 GN-26187 WebUI Improved so that visitor searches on the user registration page can be queried by the administrator's email  
120334 GN-25759 WebUI An issue where an English message is output when a value that does not match the form is entered in the calendar  
120334 GN-19829 CLOUD Enables on-prem backup files to be restored to the cloud  
120180 GN-27207 Windows Agent Improved so that agents can validate server events when using multiple policy servers  

Issues Fixed

Revision Key Components Description Affects Versions
122591 GN-27502 Center An issue where agent logon API processing is delayed when the agent/sensor downcheck process by Keepalive takes a long time 5.0.42
122567 GN-27480 WebUI A problem where department selection type conditions cannot be retrieved from node group conditions 5.0.31, 6.0.0
122545 GN-27495 WebUI Fixed so that the policy application event is not called when the close button is clicked in the Service Control > Policy Application dialog 6.0.17, 5.0.57
122505 GN-27504 Center Improved so that NodeID-related DB errors (Illegal mix of collations) audit logs do not occur when KeepAlive is received  
122455 GN-27345 WebUI Modified so that the page is converted to markdown during the ready phase 5.0.42, 4.0.156, 6.0.16, 5.0.55 (LTS), 5.0.56
122428 GN-27510 Center, Sensor [General-purpose OS] An issue where added libraries cannot be found after upgrading the NAC package 5.0.42
122377 GN-27404 Center, macOS Agent An issue where the macOS update plug-in does not install properly when using the installation mode 5.0.11
122305 GN-27467 WebUI An issue where XSS is executed in the policy application pop-up screen when XSS is added to the node action description 5.0.42, 5.0.50, 5.0.53, 5.0.54, 4.0.155, 6.0.15
122258 GN-27437 Center, macOS Agent Symptoms where OS information on macOS Sonoma devices is classified as unknown 6.0.16, 5.0.55 (LTS), 5.0.56, 6.0.17, 5.0.57, 4.0.157
122116 GN-27384 Windows Agent Fix a program path setting error in the Windows Firewall Control plug-in 5.0.45
122084 GN-27383 WebUI Fixed an issue where the parameter value is invalid error occurred and characters in all languages can be entered in an input form where Hangul can be entered 5.0.42, 4.0.156, 6.0.16, 5.0.55 (LTS), 5.0.56
122072 GN-27385 GenianOS Fixed an issue where iptables commands could fail when running at the same time 5.0.0, 6.0.0
121880 GN-27398 Linux Agent Linux Agent performs a condition-only check action, and the result cannot be updated even if the results change 5.0.50, 6.0.15
121835 GN-27446 Center A problem where the SOAP API processing process stops and 100% CPU is used when an empty password is entered when using external authentication (runauth) 5.0.42, 6.0.16, 5.0.55 (LTS), 5.0.56, 5.0.57, 4.0.157
121708 GN-27380 Windows Agent A problem where an action check condition terminates abnormally if a '%' character exists other than a macro supported by the agent 5.0.0, 6.0.0
121655 GN-27387 WebUI An issue where the export function does not work on the OpenPort status screen 5.0.6
121623 GN-26858 WebUI An issue where an error occurs when using Google OTP with version 5.0 2-step verification if the verification code contains characters other than numbers 5.0.50, 5.0.53
121585 GN-27393 WebUI A problem where the mapping column key set in the IP and MAC additional field user selector does not work 6.0.16, 5.0.55 (LTS)
121528 GN-27270 macOS Agent The problem of not being authenticated when omitting .com in the allowed domain name in macOS AD alternative authentication 4.0.108, 5.0.5
121508 GN-27382 WebUI Additional fields - A problem where parameter value is invalid errors occur when Hangul and some special characters are included in the user selector 5.0.42, 5.0.50, 5.0.53, 4.0.155, 6.0.15
121464 GN-27394 Center A problem where backup fails when an absolute path is set to the SFTP storage path 5.0.50, 5.0.53, 5.0.54, 4.0.155, 6.0.15
121453 GN-27291 WebUI If the Alias sensor name contains special characters such as * · , parameter value is invalid error occurs 5.0.42, 4.0.156, 6.0.16
121397 GN-27388 Center [General-purpose OS] Problem with not being able to connect to webssh 5.0.42
121201 GN-27322 Center, Sensor [General-purpose OS] System Administration > Preferences > Time Zone Settings Not Working in Ubuntu NAC 5.0.50
121168 GN-27356 Sensor A problem where the cache service does not run even when the patch proxy service is set to ON 5.0.55 (LTS), 4.0.157
121163 GN-27259 Linux Agent Linux Agent, an issue where the agent does not work when installing a specific package 5.0.45, 6.0.2
121135 GN-27359 gnlogin, VRRPD An issue where the same event already exists in queue debug log occurs because event queuing works even in processes that do not require event retransmission processing 5.0.42
121077 GN-27289 WebUI An issue where a report file is not generated when creating a custom report 6.0.17, 5.0.57
121020 GN-27358 Center An issue where the centerd execution option's sensor service start/stop function does not work 5.0.42, 4.0.156, 6.0.16, 5.0.55 (LTS), 5.0.56
120818 GN-27262 Center A problem where the node's changed control policy cannot be delivered to the sensor when the timezone settings of the policy server and DB server are different 6.0.17, 5.0.57
120775 GN-24372 CLOUD Backup not working on Docker compose policy server 5.0.42
120741 GN-27290 WebUI An issue where the sensor tree is not displayed properly when '%' is included in the sensor name 5.0.43, 6.0.0
120606 GN-27279 Center, Sensor A problem where the settings only apply when trust-nodeserver-id is set on the center device, the sensor daemon must be restarted 5.0.42, 4.0.156, 6.0.16, 5.0.55 (LTS), 5.0.56
120537 GN-27091 Center, procmond A problem where the event log (procmond process) sent from the sensor cannot be saved due to an unknown center did error on the policy server 5.0.42
120522 GN-27113 Center A problem where update information (sysinfo) sent from a slave device fails to be updated to an unknown devid 4.0.145, 5.0.42, 6.0.1
120509 GN-27200 Center Symptoms where the BADQUERY=ILLEGAL MIX of collations error continues to occur in the slave center 5.0.42, 5.0.50, 5.0.53, 5.0.54, 4.0.155, 6.0.15
120497 GN-27177 Backup An issue where backup files include agent zip files that increase capacity 6.0.16, 5.0.55 (LTS)
120430 GN-27153 WebUI A problem where the manager node management scope limit is set to a sensor group and the management sensor cannot be selected when registering a node 5.0.31
120376 GN-27215 WebUI Error page output issue when clicking Administration > Switch > Group in version 5.0 5.0.42, 5.0.55 (LTS), 5.0.56
120360 GN-27191 WebUI An issue where the browser freezes on the audit log screen 5.0.54, 6.0.15
120334 GN-26976 Center [General-purpose OS] An issue where the device does not work properly when the update fails 5.0.56, 6.0.17
120334 GN-26899 Center The problem with self-signed certificates not being reissued 5.0.45, 6.0.2
120334 GN-26845 WebUI A problem where the agent is deleted when the Windows update action is assigned, but the output appears as if the agent exists in the node list 4.0.M1, 5.0.0, 6.0.0
120334 GN-26836 WebUI Node group conditions fail to retrieve department information if a department name containing a tag exists 5.0.42, 6.0.0
120334 GN-26815 WebUI Audit > Report > Node Report > Node Group Selection > Problem with content not being output 5.0.24
120334 GN-26771 Center A problem where the center daemon process does not run properly after enabling the policy server (node-server enable) through gnlogin 5.0.42
120334 GN-26751 Sensor The problem of incorrectly checking the deadlock when sensord deadlock is detected 6.0.16, 5.0.57
120334 GN-26692 WebUI A phenomenon where progress does not end when the upload process is processed without selecting a file in the system management software 5.0.2
120334 GN-26689 Center An issue where the node IP is incorrectly output when removing the no-change setting in the debug 5.0.43, 6.0.0
120334 GN-26683 WebUI A problem where an error page is displayed when entering a random character or a value that does not match the search conditions in the search bar on the list screen of the node detail screen 5.0.22
120334 GN-26680 Center An issue where the last line word in the password blacklist file is not prohibited (restricted) 4.0.106
120334 GN-26676 gnlogin [General-purpose OS] A problem where ADMIN and ADMINIP are not left in the audit record when gnlogin is commanded 5.0.23
120334 GN-26673 Center New node policy: If MAC is blocked, change prohibited (specified IP band) A problem where MAC allowed nodes are blocked when the IP usage time of the set node expires 4.1.M5
120334 GN-26652 WebUI Node Management List > A problem where the IP start/end time is 9 hours different from the entered value when importing node attributes 4.1.M4
120334 GN-26605 Center New wireless LAN AP detection, wireless LAN AP information change audit log format modification 6.0.0
120334 GN-26586 WebUI An issue where the 'Apply Change Policy' button is not displayed when copying a node group and is applied immediately 5.0.31
120334 GN-26578 WebUI A problem where the user ID and department name columns are displayed as blank when querying the results of the IP application form 4.1.4
120334 GN-26573 WebUI Check the management console settings, change the integration and change the language setting parameters 6.0.0
120334 GN-26560 WebUI The problem of not being searched when AND is present in the search term on the node management screen 5.0.38
120334 GN-26558 WebUI A problem that is not fixed when only the TTL value of the FQDN option is modified in the network address of a network object 5.0.19
120334 GN-26529 WebUI Improved error page output due to incorrect sensor IP/mask settings in the Sensor IP Usage Rate Top Status (old version) widget 4.1.4
120334 GN-26489 Center An issue where the thread ID in the debug file does not remain normal in the Ubuntu/cloud version 6.0.0
120334 GN-26487 WebUI Fixed an issue where an error page was displayed when there was no value on the CVE detail screen 5.0.24
120334 GN-26463 GenianOS A problem where syscollect may not work properly 5.0.0
120334 GN-26432 Windows Agent A problem where the logo is displayed in the upper left corner of the Windows authentication window and wireless connection manager 5.0.39, 6.0.0
120334 GN-26431 WebUI When checking the access IP of the management console, if the access IP is checked in the form of x.x.x.x.x, x.x.x, the problem that the access IP is not connected even if it is accessible IP 5.0.33
120334 GN-26408 Sensor A problem where sensor daemons die intermittently when conditions that do not belong to the node group are added to the node group 4.0.114, 5.0.11
120334 GN-26382 WebUI Http Status 400 - Bad Request can occur when setting or adding SAML IdP in User Authentication > Authentication Integration > SAML2 Authentication Integration 5.0.25
120334 GN-26380 WebUI The problem of not being able to download the IP application form from IPMGMT 5.0.43, 6.0.0
120334 GN-26369 WebUI A problem where the date display is incorrectly displayed when searching for the previous year in the node/log/wireless LAN report 5.0.34
120334 GN-26354 Center A problem displaying unconnected local DB account information when linking authentication 5.0.53
120334 GN-26314 WebUI A problem where the label is not displayed on the IP application form when the department name etc. are removed from the IP application list settings 4.0.11
120334 GN-26235 macOS Agent macOS agent problem of not being able to obtain motherboard information for new model Macs 5.0.41, 6.0.0
120334 GN-25815 WebUI A problem where the approval/rejection popup for a new IP application is active and the approval/rejection popup is enabled, the problem is that it is in a waiting state when approved/rejected 4.1.3
120146 GN-27237 Center, Sensor A problem where the node cannot be immediately re-registered by the sensor when the agent node registered to the sensor is deleted from the management console 5.0.42
118284 GN-26785 Center An issue where device control policies can be received from other node groups when using device control policies 5.0.23
114066 GN-26566 WebUI An issue where the changed information was updated and not displayed when the tab was moved after updating the node information 5.0.50
113315 GN-26496 CLOUD An issue where log statistics data is not displayed when a cloud site is first created 5.0.50, 6.0.12