JupiterOne December 2024 Release

Application

RBAC Improvements

Enhanced role-based access control (RBAC) across various components, ensuring that user permissions are respected in web dashboards, settings, alerts, and insights. This includes the addition of resource group columns in tables and the ability to reroute users without access to specific rule URLs to the rules list page.
Implemented a limit on the number of resolved resource type permissions to 100 per user/token session, with appropriate warnings for users when permissions are limited. This aims to streamline access patterns and improve performance.
Introduced new settings for managing RBAC for rules and alerts, allowing enterprise users to administer access controls more effectively. This includes the ability to create custom dashboard groups and manage permissions for integration instances.

User Interface Enhancements

Improved the user experience by ensuring that the delete button on resource group pages opens the delete dialog, and that checkboxes accurately reflect their state.
Added functionality to sort entities alphabetically in web settings and ensure that the share modal does not display users and groups that are not applicable.
Enhanced the search functionality by allowing the search bar in editor mode to open the search anywhere feature with a preview.

Bug Fixes and Cleanup

Resolved various bugs related to RBAC, including issues with the autocomplete service cache returning empty for entity properties and ensuring that deprecated permissions are not added when selecting all.
Cleaned up existing settings and permissions pages to remove unnecessary options and improve clarity for users.

These updates collectively enhance the functionality, usability, and security of the application, providing a more robust experience for users while ensuring compliance with access control requirements.

Platform

Enhancements and Fixes

Query and Data Management

The query-engine replication concurrency has been capped to prevent overwhelming the database, which should enhance query performance and reliability.
The query execution time has been optimized by adjusting the min/max counts for query-engine executors, allowing for a more balanced load across secondary reader instances.

These updates collectively enhance the performance, reliability, and manageability of the graph database and its integrations, providing a more robust platform for data processing and analysis.

Integrations

Integration Enhancements

Azure Device

Resolved issues with the Azure device integration, including missing properties such as hostname, fqdn, and various IP addresses. Recommendations were made to ensure valid values are set for these fields to improve correlation capabilities.

Snipe It Hardware

Addressed issues with the Snipe It hardware integration, specifically regarding the deviceId and hostname properties. It was noted that the deviceId should not be derived from a basic monotonic ID, and both hostname and fqdn were found to be absent in the source data.

Google Mobile Device & Google Chrome Device

Fixed issues in the Google mobile device integration, ensuring that deviceId includes the IMEI if available. The hostname and fqdn properties were also addressed, with recommendations for proper data population.

GitLab Integration

Resolved a critical 403 error encountered in the GitLab integration, ensuring that the integration can authenticate correctly with the provided admin token.

Okta Device

Improved the Okta device integration by ensuring that deviceId includes profile.udid when available. Addressed issues with missing hostname and fqdn properties.

Crowdstrike Host

Enhanced the Crowdstrike host integration by ensuring that the deviceId includes instance_id. Recommendations were made to correctly set hostname and fqdn properties.

InsightVM Asset

Fixed issues with the InsightVM asset integration, ensuring that the hostname attribute is populated correctly for better correlation.

AWS Integration

Addressed missing IAM permissions that were causing warnings in the AWS integration job. The integration code was updated to include necessary permissions.

Azure Integration

Resolved issues with the Azure integration, including the addition of new relationships between azure_public_ip and its associated entities.
Enhanced the Azure integration to enable additional parameters from raw data for Azure Redis Cache, improving data accessibility and management.
Added support for querying Azure VMs that allow service principal access while having password authentication disabled, enhancing security management.

Slack Integration Improvements

Updated the Slack integration to identify users without multi-factor authentication enabled, enhancing security oversight.

Tenable Asset Management

Improved the management of Tenable assets by providing access to the latest scan data, facilitating better vulnerability management.

Semaphore Pipeline Monitoring

Introduced a managed question to identify failed jobs within Semaphore pipelines, enhancing visibility into CI/CD processes.

Active Directory Enhancements

Added additional Active Directory attributes to the raw data, improving the richness of user data available for analysis.

Bug Fixes

Resolved various bugs across integrations, including issues with data governance in LogicMonitor, unification problems in the UnifiedDevice experience, and inconsistencies in query results for azure_policy_state.

New Integrations

SailPoint: Added integration for SailPoint IdentityIQ, which automates access certifications and identity management.

Tasks Completed

Implemented various tasks to enhance integration capabilities, including the addition of new properties and relationships in existing integrations, as well as improvements to data governance practices.

These enhancements and fixes aim to improve the overall functionality and reliability of integrations, ensuring a smoother experience for users and better data correlation across systems.

Content

Python Client Enhancements

The Python client has been updated to version 1.3.0, introducing additional methods to enhance functionality and improve user experience.

Azure Integration Updates

Migrated Azure CIS 1.3.0 questions to the alert rule pack, streamlining compliance monitoring.

These updates collectively enhance the functionality and security of the platform, providing users with improved tools for managing their environments and ensuring compliance.

JupiterOne December 2024 Release

Application​

RBAC Improvements​

User Interface Enhancements​

Bug Fixes and Cleanup​

Platform​

Enhancements and Fixes​

Query and Data Management​

Integrations​

Integration Enhancements​

Azure Device​

Snipe It Hardware​

Google Mobile Device & Google Chrome Device​

GitLab Integration​

Okta Device​

Crowdstrike Host​

InsightVM Asset​

AWS Integration​

Azure Integration​

Slack Integration Improvements​

Tenable Asset Management​

Semaphore Pipeline Monitoring​

Active Directory Enhancements​

Bug Fixes​

New Integrations​

Tasks Completed​

Content​

Python Client Enhancements​

Azure Integration Updates​

Contents