Genian ZTNA 6.0.1 Release Notes (2021-12-08)
Last Updated: 2022-02-10
Security Vulnerability
Revision |
Key |
Components |
Description |
Affects Versions |
CVSS Score |
|---|---|---|---|---|---|
101693 |
GNOS |
2.4.52 version upgrade for Apache vulnerability measures |
9.8 |
||
101614 |
WebUI |
log4j vulnerability improvements |
9.8 |
||
100944 |
Center |
Complementing agent-related APIs with poor authentication |
4.6 |
||
100944 |
WebUI |
[SaaS] Saas security authentication source code inspection result measures |
9.1 |
||
100944 |
gnlogin, WebUI |
Handle passwords so that specific words cannot be used |
8.7 |
New Features and Improvements
Revision |
Key |
Components |
Description |
Affects Versions |
|---|---|---|---|---|
99155 |
Center, Sensor |
Improved to work with site management K8s |
||
104132 |
Center, RADIUSD |
Add RADIUS Secondary SMS Authentication and Attributes (Axgate-Auth-Type) |
||
102166 |
WebUI |
Change how to reissue OTP authentication keys when lost |
||
102130 |
WebUI |
[gndbcp] Modified so that garbage values can be removed and decrypted when decrypting DB passwords stored in local.conf |
||
101774 |
WebUI |
Fixed an issue where the IP application system was slow to apply for approval |
||
101542 |
Documents |
5.0.44 Global Release |
||
101503 |
macOS Agent |
Add BSSID information for wireless LAN connected to macOS Agent network information |
5.0.0 |
|
101486 |
GnBrowser |
Problems where some functions, such as deleting nodes, do not work in gnBrowser |
||
101418 |
Center, MySQL |
Change conf settings and use jemalloc memory allocators to reduce MYSQL/CENTERD memory usage |
||
100944 |
macOS Agent |
Protocol information added to macOS Agent wireless LAN control plug-in information |
||
100944 |
Windows Agent |
OpenVPN-based secondary authentication function added to ZTNA connection manager (SMS) |
||
100944 |
Windows Agent |
Added the ability to change the logo image and print help to ZTNA Connection Manager |
||
100944 |
WebUI |
System > Fixed an issue where Cloud Providers used on the site could be deleted from the Cloud Provider menu |
||
100944 |
Make it possible to restart the system even when KeepAlive is down |
|||
100944 |
WebUI |
[JSF/component] Add pattern input component |
||
100944 |
Change the size of the dashboard widget settings pop-up window |
|||
100944 |
Sensor |
Juniper Switch MAC information is collected when SNMP Switch information is collected |
||
100944 |
-Unknown/None- |
[Geumoh University of Technology] Oracle Binary Development for Synchronization |
||
100944 |
Sensor |
Improved host name detection with MDNS |
||
100944 |
Add missing C30G_R1 and C50G_R1 product installation scripts |
|||
100944 |
WebUI |
Built-in management role editing function |
||
100944 |
Support for BASE64_DECODE (UNHEX (HASH)) HASH values in the password encryption method SHA256 |
|||
100944 |
Improved debug log processing method to solve the problem that takes a long time to run syslog at boot time |
|||
100944 |
WebUI |
Enhanced description of the hardware (hardwareinfo) search column in node management |
||
100944 |
gnlogin |
Display DB migration progress in an easier to understand manner |
||
100944 |
WebUI |
Improved so that the department name step is displayed when adding the department name of user information to the management view from the node management list |
5.0.41 |
|
100944 |
WebUI |
Added a feature to enable multiple selection/deselection in the IP matrix view |
||
100944 |
WebUI |
An issue where an XSS detection log is left in the audit log when reporting a false positive in Administration > Node Details |
||
100944 |
VXLAN over IPSEC structure operation support |
|||
100944 |
WebUI |
Flow log column sorting function added |
||
100944 |
WebUI |
Add a Top 10 traffic source widget based on Flow logs |
||
100944 |
WebUI |
Add a pattern input component |
||
100944 |
Windows Agent |
Added an option to shut down the application when shutting down in the system shutdown plug-in |
||
100944 |
WebUI |
Improved settings related to Http Header Security distributed within the code to be in Tomcat |
||
100944 |
WebUI |
WebUI-related modifications due to the change to create a password for the ZTNA client server from the center |
||
100944 |
Center, DKNS |
IPsecVPN connection status collection function |
||
100944 |
Sensor |
IPSEC-related module equipped with OnPrem sensor |
||
100944 |
Center, DKNS |
Change ZTNA client server password generation to center |
||
100944 |
Enforcer, ulogd |
When creating a flow log, add additional information such as http header/sni. |
||
100944 |
Enforcer |
An issue where individual sessions occur for icmp echo and reply |
||
100944 |
Center, Sensor |
Improved ZTNA Client sensor mode to follow Bind Interface mode |
||
100944 |
WebUI |
Improved site management IPSEC settings |
||
100944 |
Center, Enforcer, Sensor |
Improved transfer of permissions to nodegroup settings |
||
100944 |
WebUI |
Dashboard UI improvements |
||
100944 |
WebUI |
Policy > Objects > Permissions > Add the ability to assign state groups to network objects |
||
100944 |
WebUI |
Added a sensor selection option for site management routing settings |
||
100944 |
Center |
Platform detection function (GDPI API) for nodes created by the Cloud Collector |
||
100944 |
GNOS |
Kernel version upgrade to support the latest drivers (5.10) |
||
100944 |
WebUI |
Separate Agentless AD SSO settings from LDAP authentication integration |
||
100944 |
Center |
|
||
100944 |
Center, DKNS |
Send ZTNA IPSec log files to Policy Server |
||
100944 |
WebUI |
Added the ability to export new dashboard PDF and DOC reports |
||
100944 |
WebUI |
IPsec Status UI added |
||
100944 |
WebUI |
Added developer mode to the web management console |
||
100944 |
Center |
Added syslog VPN audit records and improved the operation of uppercase and lowercase character conversion and node information log filters when converting filter macros |
||
100944 |
WebUI |
Added an OS-specific tab category feature when adding a node action to a node policy in the management console |
||
100944 |
Containerization |
Adding Terraform to the Cloud NAC Policy Server image |
||
100944 |
Sensor |
Implementation of a destination-based dynamic access control function (Host - Host: VXLAN) |
||
100944 |
WebUI |
Improved query for Admin > Nodes > Group Tree and list of nodes belonging to a nodegroup |
||
100944 |
WebUI |
UI improvements for related processes when selecting all nodes from the node list and running batch jobs |
Issues Fixed
Revision |
Key |
Components |
Description |
Affects Versions |
|---|---|---|---|---|
102413 |
WebUI |
An error occurs when there is no code for the department name of the user information in the management view in the node management list |
5.0.44 |
|
102311 |
Windows Agent |
Agent update issues in a closed network environment due to changes in electronic signature certificates |
5.0.0, 6.0.0 |
|
102262 |
WebUI |
Problem with not being able to search by tag name in node management search |
4.0.144, 5.0.41 |
|
102104 |
WebUI |
When modifying an action, the same multi-plug-in action is not modified when an action is assigned to a policy |
5.0.43, 6.0.0 |
|
102091 |
Center |
A problem where an agent sensor in the same network band is re-registered while the agent sensor is registered in the network band |
5.0.40 |
|
102039 |
WebUI |
A problem where items changed on the node detail screen do not appear to be reflected if there is no screen update |
5.0.22 |
|
102032 |
WebUI |
A problem where a node is not recognized when the MAC address is in lower case in node group conditions |
5.0.31 |
|
101846 |
WebUI |
Node Management > Task Selection > Node Group Assign/Unassign Command Problem Not Working |
5.0.44, 6.0.1 |
|
101778 |
Abnormal behavior when controlled by the network control plug-in with 'automatic rule setting' |
5.0.28 |
||
101737 |
Genian Syncer |
The problem of not being able to register a license file on Genius Sinker |
4.0.144, 5.0.41 |
|
101702 |
Center, Sensor |
A problem where the sensor interface information is empty in the sensor managed node information and the sensor cannot manage the node |
5.0.36 |
|
101528 |
macOS Agent, Windows Agent |
An issue where the agent is re-executed indefinitely when updating the 5.0.43 or higher version of the agent |
5.0.43, 6.0.0 |
|
101332 |
WebUI |
An issue where the software update UI shows a lower version than the current version (when revisions are 100000 or more) as being upgradeable |
5.0.20 |
|
101278 |
Center |
A problem where the center daemon terminates abnormally due to the generation of an abnormal event frame when sending an agent-specified action event |
3.3.1.1009 |
|
101263 |
Center |
A problem where node group matching works abnormally when a node group condition belongs to a node group (if it doesn't) and the node group that matches the condition is disabled or missing |
5.0.35 |
|
101141 |
procmond, RADIUSD |
An issue where the radius daemon is constantly restarted in Policy Server Redundancy Configurations |
4.0.143, 5.0.40 |
|
101018 |
Center |
A problem where the operating state of the switch is incorrectly set to DOWN |
5.0.35 |
|
101005 |
WebUI |
A phenomenon where policy application time is slow when IP-related conditions are added by OR calculation from a node group to group conditions |
5.0.11 |
|
100944 |
WebUI |
An issue where the number of licenses has not been exceeded, but a message stating that the license quantity has been exceeded is displayed on the node management screen |
5.0.3 |
|
100944 |
WebUI |
A problem where the contents of the set column are not output when adding a management view in node management |
5.0.42 |
|
100944 |
macOS Agent |
Some missing issues with the macOS Agent software information collection plug-in |
5.0.0 |
|
100944 |
WebUI |
Fixed an issue with tag output from the user list |
5.0.34, 5.0.39 |
|
100944 |
외부인증 연동시 사용자패스워드에 특수문자( ' )를 사용하는 경우 인증실패 발생하는 문제 |
4.0.145, 5.0.42, 6.0.1 |
||
100944 |
An issue where the update fails because an agent (4.x) information update (updateinfo) request is detected using the SQL Injection syntax |
4.0.145, 5.0.42 |
||
100944 |
WebUI |
An issue where Tomcat Context.xml cannot use the db password registered in local.conf |
4.0.146, 5.0.44, 6.0.1 |
|
100944 |
Authsync |
A problem where CSV information fails to be synchronized due to reading failure even when the file is normal |
4.0.146, 5.0.44, 6.0.1 |
|
100944 |
WebUI |
A problem where the add to the task selection node basket function does not work |
5.0.44, 6.0.1 |
|
100944 |
Sensor |
SNMP v3 switch SNMP information collection abnormal issue |
5.0.41 |
|
100944 |
WebUI |
An error message is displayed when the widget displayed as an audit log > analysis chart is filtered by a log filter |
4.0.14 |
|
100944 |
Center |
In a proxy environment (operating system update proxy service settings), the update fails because the WSUS server IP is not included in the PAC |
4.0.115, 5.0.12 |
|
100944 |
WebUI |
Fix the error message output format when the switch port manager is down |
4.0.106 |
|
100944 |
WebUI |
A problem where data cannot be retrieved when sorting usage locations on the IP usage application results search screen |
4.1.0, 4.0.23 |
|
100944 |
WebUI |
Improved import of file and folder lists in the debug log screen |
||
100944 |
WebUI |
File distribution actions cannot be assigned when creating a node policy |
5.0.36 |
|
100944 |
WebUI |
[4.0.1] Problem with adding/deleting Syslog audit log filters in Settings > Preferences > Audit History not working properly |
4.0.145 |
|
100944 |
CLOUD |
A problem where backup files are created because secondary backups for cloud site backup continue to accumulate in object storage |
6.0.0 |
|
100944 |
Site Administration > An issue where the sensor's vxlan cannot be reset when changing IPSEC network settings |
6.0.1 |
||
100944 |
Authsync |
A problem where information synchronization fails because the CLOUD Policy Server (NAC6) AUTHSYNC > gndbserver setting is set to dbserver |
6.0.0 |
|
100944 |
WebUI |
Improved dashboard-related data generated at login time to be generated when an administrator is created |
6.0.0 |
|
100944 |
WebUI |
A problem where log2migration does not work properly |
5.0.41 |
|
100944 |
WebUI |
An issue where v3 settings are not possible when setting SNMP switches in batches |
5.0.17 |
|
100944 |
VXLAN interface disappearance issue |
6.0.1 |
||
100944 |
WebUI |
An error occurred on the login page when the management console administrator account allowIp setting was set to X.X.X.X/0 |
5.0.41 |
|
100944 |
An issue where the httpd daemon does not run due to an SSL certificate generation error when upgrading from 4.0.112 or 5.0.9 or earlier |
4.0.112, 5.0.9 |
||
100944 |
WebUI |
An issue where paging does not work after moving from quick search to the node list |
5.0.38 |
|
100944 |
WebUI |
Modify the minimum value of the node status check minimum cycle option |
5.0.38 |
|
100944 |
Unable to boot when upgrading a device with gntarget=s_i686 set in grub.conf |
4.0.12 |
||
100944 |
WebUI |
A problem where tags are assigned on the node detail screen and then deleted without updating the screen, they are not deleted |
5.0.22 |
|
100944 |
A problem where the management console does not work when upgrading to 4.0 |
4.1.M5 |
||
100944 |
WebUI |
A problem where an error is displayed as a required input value when the user clicks the Edit button after deleting the upload file on the custom button, but the file is deleted |
4.0.106 |
|
100944 |
CWP |
An issue where html tags are output when a file upload error is output from the CWP user registration page |
4.0.106 |
|
100944 |
Center |
Symptoms of the DPI link for the node being registered not being displayed due to the agent |
5.0.39 |
|
100944 |
WebUI |
A problem where password verification fails when performing an agent action (file distribution) on a node |
4.0.4 |
|
100944 |
WebUI |
A problem where the quantity of software status does not match the number of nodes in node management |
5.0.38 |
|
100944 |
Windows Agent |
A problem where a network drive is included when testing the entire vaccine through the vaccine information collection plug-in |
4.1.0, 5.0.0 |
|
100944 |
WebUI |
Problems showing UTC time in node report charts |
5.0.22 |
|
100944 |
Authsync |
A problem where all users can be deleted if a csv read error occurs when synchronizing csv user information |
4.0.1 |
|
100944 |
IPMGMT |
IPMGMT file upload additional field function error |
5.0.36 |