EventTracker 9.2 - Release Notes

The EventTracker engineering team continues to monitor changes in operation management, enterprise applications, and regulation compliance standards. Version upgrades are made based on customer feedback and experience in the field, providing you the best solution possible.

EventTracker 9.2 (Build 12)

  • Group based archiving - Data for the respective group will be stored in dedicated files (in the form of cabs) with group name suffix added.
  • IT Glue integration - EventTracker can be integrated to IT Glue which helps to view EventTracker generated Security and Compliance Summary reports in IT Glue portal.
  • ConnectWise integration - EventTracker can be integrated to ConnectWise Manage which helps users in viewing and tracking the cases created in the EventTracker Casebook.
  • Source type mapping to systems - Systems can be mapped to particular “Source Type” which will improve the Elasticsearch indexer performance.
  • Endpoint Detection and Response (EDR) for monitoring and responding to the Advanced Internet Threats (Supported as an Add-On)
  • Enhanced installation experience to speed up and automate installation process.
  • Conditional Tag configurations to perform efficient log search across all log sources.
  • Performance enhancements in Machine Learning module.
  • Performance enhancements in Elasticsearch indexer module.
  • Enhancement in syslog relay data processing.
  • Enhancement in identifying the suspicious processes.
  • EventTracker Agent enhancement to detect anomalous login.
  • Support for collecting the sensor location details.
  • Option to include/exclude multiple values in log search.
  • Option to re-arrange CIM fields in log search.
  • Option to select multiple fields to pivot in log search.
  • Performance Enhancements in transferring Incident from CP to CM.
  • Protection IP consideration in config and script execution in PIP configured manager.
  • Supports for custom option for system selection in EventTracker Agent apply configuration.
  • EventTracker Agent EDR configuration synchronization with EDR WEB interface (EDR Add-on package required)
  • EDR license check on agent side (EDR Add-on package required)
  • Upgraded Elasticsearch to version 7.2.1
  • ConnectWise knowledge pack (KP) has undergone changes to accommodate IT Glue integration.
  • Agent changes to add signer information in network connectivity events.
  • Fix for issue where special characters are not being considered while allowing vendors.
  • Fix for issue where alerts exported from Incident tile gives blank data.
  • Fix for Collection Point Console crash when report file name is empty.
  • Fix for the issue where cabs are incorrectly getting considered when report is configured with "All system" selection.
  • Fix for issue where blank machine learning dashboard is displayed when a group is selected.
  • Fix for alert import issue when regular expression exists in criteria.
  • Fix for issue where groups are incorrectly getting created while importing systems.
  • Fix for issue where count mismatch in Widgets.
  • Fix for issue where user unable to import safe list from Active watch list GUI.
  • Fix for issue where user able to view alert message in Report explorer page if report data contains alert tag.
  • Fix for the issue where agent less system time are not getting updated.
  • Fix for wrong knowledge object mapping while indexing data in Elasticsearch.
  • Fix for syslog data extraction issue in behavior correlation.
  • Mulesoft AnyPoint
  • Cerberus SFTP Server
  • Microsoft Azure
  • Symantec DLP
  • Extreme Summit Switches
  • Brocade Switch
  • DarkTrace IDS
  • Fortimail
  • Passwordstate
  • ForeScout CounterAct
  • SentinelOne
  • Windows Defender
  • Netgear Prosafe
  • Symantec EP Cloud
  • JIRA Service Desk
  • Cybereason
  • RSA SecurID
  • Oracle Database
  • FortiSandbox
  • FortiAuthenticator
  • FortiManager
  • IT Glue