Skip to main content
Release 708 (2024-10-02)
A
Written by Arick Disilva
Updated over 2 months ago

This release contains the following updated components:

  • Web 24.38.3

  • Server 24.37

  • BI 24.36

  • Windows Agent 24.31

  • Mac Agent 24.35

New Features

Support for CSV Files in Files Content Sharing Rules

Category: Behavior Rules

We are introducing support for CSV files in Files Content Sharing rules. This will allow you to scan for sensitive contents inside CSV files.

Automated Monitoring of the Default Admin and All Users

Category: Monitoring

On Cloud deployments, monitoring via Revealed Agent will be turned on for the main Admin when they log in. In this case, the main Admin will be counted as a consumer of 1 license.

On-Premises customers can use the following flag in their kv_store to make this change:

auto_enable_monitoring.default_admin

The default value is: enabled.

The same behavior can be configured for all users with the following flag:

auto_enable_monitoring.all

The default value is: disabled.

Restrict Password Reuse

Category: Settings/Security

Set your own threshold for how many previously used passwords are disallowed from being utilized again with the USERS MAY NOT REUSE THE PAST N PASSWORDS option found under the Password Policy section on the Settings > Security screen.

This will specify and enforce how many of the most recent passwords cannot be reused.

Ex) If the value is 3, users cannot reuse the previous three passwords when changing their password. The default value is 10.

Account Lockout Options

Category: Settings/Security

Three new options were added under the Password Policy section on the Settings > Security screen to configure account lockout due to invalid login attempts:

  • LOCK ACCOUNT DUE TO INVALID PASSWORD ATTEMPTS: will let you toggle the account lockout feature.

  • LOCK ACCOUNT AFTER: will let you specify how many attempts will be allowed after the account is locked out. For example, if you specify 3, the account will be locked out on the third invalid attempt.

  • LOCKOUT DURATION: will let you specify how long (in minutes) the account will remain locked.

This feature is available on request. Please contact your customer service representative to activate this feature on your instance.

Show Agent Versions on the Download Screen

Category: UI

Agent version will be displayed on the download screen*.

*Teramind Cloud - Mac users will have this feature available in a future release.

Dashboard Notification for New Agent Release (Cloud)

Category: UI

A notification will be shown when a new version of the Agent is available for download.

Support for FQDN for Site Nodes

Category: Server

Previously, Teramind only supported IP addresses for its site nodes. Now, it will support FQDN (Fully Qualified Domain Name) too. Among other things, this will allow a deployment to support Elasticsearch clusters for the OCR.

This feature is available on request. Please contact your customer service representative to activate this feature on your instance.

New Revealed Agent Parameter to Enable Auto-Login without Username/Password

Category: Agent

We have added a new configuration parameter that can be used to enable auto-login without entering the username/password. This can be done either through the config file (revealed-passwordless) or the installation command (TMREVEALEDPASSWORDLESS).

Cloud customers have to contact their customer service representatives to activate this feature on their instances. On-Premise customers can activate it from the kv_store.

More information about this feature can be found in this article.

[Mac] Support for Domain Names in Websites Settings

Categories: Monitoring Settings

The DON'T MONITOR WEB TRAFFIC FOR THESE IPS field on Monitoring Settings > Websites will now support domain names in addition to IP addresses and masks.

[Mac] Ability to Customize the Installation Package

Category: Agent

We have added the ability to customize the standard installation package so that you can add any scripts or modify the configuration file post-installation.

For more information, please check out this article.

[Mac] New MDM Configuration Profiles

Category: Agent/Remote Deployment

A set of new configuration profiles (mobileconfig) is now available that will let you enable the following OS permissions: Accessibility, System Extensions, Disk Access, VPN Proxy, and Certificate.

You can download the profiles from here (unzip it after downloading).

Improvements

BI Reports

  • Ability to save the Time Zone filter in BI Reports.

Monitoring

  • Support for the new OneDrive APIs.

Computers

  • Improved RAW SETTINGS JSON field for remote troubleshooting allowing you to detect invalid JSON text and use empty values.

  • Ability to open the remote troubleshooting window via the URL. For example: https://acme.teramind.co/#/computer/5?openTroubleshooting.

Settings

  • We have changed the valid ranges for the ALERT EMAILS LIMIT field on the Settings > Alerts screen. It will now accept the following values: Cloud: 1 – 100, On-Premise: 0 – 1000.

Mac

  • Webpage monitoring is improved so that it will eliminate duplication of rule alerts in rare situations.

  • Improved screen capturing method for the Hidden Agent to support macOS 15 (Sequoia)’s new screen permission and recording policy.

Security

  • Improved the file system permissions to prevent potential vulnerabilities.

Resolved Issues

BI Reports

  • In some instances, the BI Reports wouldn't show any widgets.

Behavior Rules

  • Webpages rule getting triggered incorrectly (false positives).

  • Webpages rule would cause the browser tab/window to close unexpectedly.

  • Clipboard rule would cause Excel to show a warning when pasting data.

  • Clipboard rule would cause Excel to lose formatting during copy/paste.

  • The Notify action wouldn’t work when combined with the Block action in Agent Schedule rules.

Monitoring

  • Incorrect meeting durations in the Online Meetings report for MS Teams meetings.

  • Wrong number of participants shown in the Online Meetings report for MS Teams calls.

  • Absent meeting titles for users who initiated/started an MS Teams meeting.

  • Background apps would be captured instead of the foreground apps causing incorrect data on the monitoring reports.

  • The user session and work time would overlap or show incorrect values on the session reports.

  • Web uploads to OneDrive would generate duplicate events in the File Transfers and Web File Events reports.

Employees

  • Confirmation dialogue box is duplicated on the Employees > Employee’s Page > Edit Info screen.

  • Firefox would show an "Invalid MIME type" error when importing employees.

  • The Activity column on an employee's TIME WORKED report would show an incorrect value.

Computers

  • Unable to download the remote troubleshooting logs using the DOWNLOAD LOGS button.

Configure

  • Assigned tasks wouldn’t be shown for some users on the Configure > Departments screen.

Session Player

  • Dark spots in screen recordings when multiple monitors were used.

  • Artifacts in video in the History playback mode.

  • The blackout box is not shown for restricted app windows when hovering over the app icons on the taskbar.

  • Delayed blackout box when switching browser tabs.

  • The videos exported from the Session Player would be of incorrect length.

Monitoring Settings

  • Disabling the NETWORK DRIVER option from the Monitoring Settings > Advanced screen wouldn’t persist after the computer was restarted.

Settings

  • LDAP users are being forced to set/change their password for login.

  • Commas are not supported in the FETCH ONLY THESE OUS and FETCH ONLY THESE GROUPS fields while importing from Settings > Active Directory.

  • The “Trust this device for 15 days” option wouldn’t work when SSO was enabled.

  • The SAVE button would be unavailable under the Settings > Security > Outgoing exported data section.

Agent

  • The Revealed Agent would require several attempts to connect after an update.

  • In rare situations, the Revealed Agent's update folder wouldn't get cleaned up after an update.

  • In rare situations, the Revealed Agent would become frozen and stop recording any activity.

  • An unexpected Client Certificate Selection popup shown for some sites.

UI

  • Unformatted error text displayed on the Password Reset page.

Integrations

  • Failed login events (LoginFailed) not being sent to the SIEM.

API

  • Unable to delete users with the API.

  • API call POST ldap/groups/content would set the is_monitored group to an invalid value.

Other

  • Remote commands such as install/uninstall the Agent, pings, etc. wouldn't get fetched.

Mac

  • The Session Player would show a "Network connection error" message after about 10 seconds of playback.

  • Incorrect browser names in the alert description for Webpages-based rules.

  • Background app activities (e.g., commands running by applications) would be captured and displayed in the monitoring reports.

  • Incorrect values in the Productive No Idle Time(s) column in the BI Reports > Productivity report.

Did this answer your question?