Introduction to Cisco Secure Workload
The Cisco Secure Workload platform is designed to provide comprehensive workload security by establishing a micro perimeter around every workload. The micro perimeter is available across your on-premises and multicloud environment using firewall and segmentation, compliance and vulnerability tracking, behavior-based anomaly detection, and workload isolation. The platform uses advanced analytics and algorithmic approaches to offer these capabilities.
This document describes the new features, enhancements, behavior changes and bug fixes, if any, in Cisco Secure Workload.
Release Information
Release Version: 3.9.1.52
Published Date: September 24, 2024
Published Date: September 24, 2024
Enhancements in Cisco Secure Workload, Release 3.9.1.52
|
Feature Name |
Description |
|---|---|
|
Disable or re-enable Enforcement for specific Agents |
When you disable or re-enable Enforcement for specific agents from the Agent List page, the operation is logged in the page. |
|
Email Connector |
Alerts generated over Email when configured using the Email Connector are now displayed in a tabular format. |
Changes in Behavior in Cisco Secure Workload, Release 3.9.1.52
AIX Agent now includes a Cisco-provided IPFilter kernel extension. During the transition from enforcement off to on, the agent will unload and uninstall any previously installed non-Cisco IPFilter, then load the Cisco IPFilter extension.
Resolved and Open Issues
The resolved issues for this release are accessible through the Cisco Bug Search Tool. This web-based tool provides you with access to the Cisco bug tracking system, which maintains information about issues and vulnerabilities in this product and other Cisco hardware and software products. There is no open issues available here.
 Note |
You must have a Cisco.com account to log in and access the Cisco Bug Search Tool. If you do not have one, register for an account. |
For more information about the Cisco Bug Search Tool, see the Bug Search Tool Help & FAQ.
Resolved Issues
The following table lists the resolved issues in this release. Click an ID to access Cisco’s Bug Search Tool to see additional information about that bug.
|
Identifier |
Headline |
|---|---|
|
Improve windows agent flow user reporting for rejected flows. |
|
|
[AnyConnect Connector] Incorrect Active Endpoint Tracking Leads to 5000 Limit Issue. |
|
|
TetSen.exe crashes with exit code - 0xC0000409. |
|
|
(Unenforced) Enforcing agents falsely display "Policy Out of Sync" on TAAS GUI. |
|
|
Reinstall flag for agent installer does not work. |
|
|
IP fragments are not handled correctly by ipfilter on AIX. |
|
|
Proxied flows visibility: effective proxied flows have multiple provider domain names. |
|
|
[druid index merger] Intermittent no data seen in traffic flow or policy analysis pages. |
|
|
Flow client/server direction decision not used for some flows. |
|
|
Agents Health may show Agent Restated anomaly for AIX workloads. |
|
|
Secure Workload linux agent may generate flows to `169.254.169.254:80`. |
|
|
No matching conversations show for Policies after ADM run. |
|
|
Error with Live Analysis API Endpoint pagination. |
Open Issues
The following table lists the open issues in this release. Click an ID to access Cisco’s Bug Search Tool to see additional information about that bug.
|
Identifier |
Headline |
|---|---|
|
[Open API] Agent Network Policy Config need to show enf status consistent with data shown in UI |
|
|
Scope & Inventory Page: Scope Query: matches .* returns incorrect results |
|
|
VIP switchover causing segmentation issues |
|
|
ADM port and pid mapping is missing for some ports. |
Additional Information for Secure Workload
|
Information |
Description |
|---|---|
|
Known Behaviors |
For more information on the known behaviors, see Cisco Secure Workload Release Notes, 3.9.1.1. |
| Compatibility Information |
For information about supported operating systems, external systems, and connectors for Secure Workload agents, see the Compatibility Matrix. |
Related Resources
|
Resources |
Description |
|---|---|
|
Provides information about Cisco Secure Workload, its features, functionality, installation, configuration, and usage. |
|
|
Describes technical specifications, operating conditions, licensing terms, and other product details. |
|
|
The data sets for the Secure Workload pipeline that identifies and quarantines threats that are automatically updated when your cluster connects with Threat Intelligence update servers. If the cluster is not connected, download the updates and upload them to your Secure Workload appliance. |
Contact Cisco
If you cannot resolve an issue using the online resources listed above, contact Cisco TAC:
-
Email Cisco TAC: tac@cisco.com
-
Call Cisco TAC (North America): 1.408.526.7209 or 1.800.553.2447
-
Call Cisco TAC (worldwide): Cisco Worldwide Support Contacts
Feedback