Release Notes Comply (Version 2.24)
Tanium Comply 2.24.110
Release Date: January 21, 2025
Fixes
This release includes fixes to the Comply - CVE Investigation Details sensor to limit Tanium Server memory utilization.
Feature Deprecation Notice
The Tanium Comply (Assessments) Connect source is deprecated. Customers are advised to alternatively use the Tanium Comply (Findings) source or Tanium Reporting source in Connect to export vulnerability findings data.
Known Issues
- AWS 2023 endpoints cannot be used as satellites for Remote Authenticated Scans
- Remote Authenticated and Network Unauthenticated assessments will not run on Windows 11 on ARM
- The 'Platform' column in the Comply - Vulnerability Findings Details expanded sensor has been removed. Reports that use the platform column in the sensor will need to be edited to remove the column for the reports to render successfully without error.
- The download to CSV of investigation results from the workbench may fail due to the question completion threshold not being reached
- Assessments need to be deployed again after Endpoint Configuration items are approved when approvals are enabled.
Tanium Comply 2.24.105
Release Date: November 19, 2024
Enhancements
This release includes:
- Updates to internal dependencies
Feature Deprecation Notice
The Tanium Comply (Assessments) Connect source is deprecated. Customers are advised to alternatively use the Tanium Comply (Findings) source or Tanium Reporting source in Connect to export vulnerability findings data.
Known Issues
- AWS 2023 endpoints cannot be used as satellites for Remote Authenticated Scans
- Remote Authenticated and Network Unauthenticated assessments will not run on Windows 11 on ARM
- The 'Platform' column in the Comply - Vulnerability Findings Details expanded sensor has been removed. Reports that use the platform column in the sensor will need to be edited to remove the column for the reports to render successfully without error.
- The download to CSV of investigation results from the workbench may fail due to the question completion threshold not being reached
- Assessments need to be deployed again after Endpoint Configuration items are approved when approvals are enabled.
Tanium Comply 2.24.102
Release Date: October 15, 2024
Security Update
This release includes security updates. Details of the issue, including affected versions, and mitigation information, can be obtained within Tanium Resource Center, or by contacting support.
Feature Deprecation Notice
The Tanium Comply (Assessments) Connect source is deprecated. Customers are advised to alternatively use the Tanium Comply (Findings) source or Tanium Reporting source in Connect to export vulnerability findings data.
Known Issues
- AWS 2023 endpoints cannot be used as satellites for Remote Authenticated Scans
- Remote Authenticated and Network Unauthenticated assessments will not run on Windows 11 on ARM
- The 'Platform' column in the Comply - Vulnerability Findings Details expanded sensor has been removed. Reports that use the platform column in the sensor will need to be edited to remove the column for the reports to render successfully without error.
- The download to CSV of investigation results from the workbench may fail due to the question completion threshold not being reached
- Assessments need to be deployed again after Endpoint Configuration items are approved when approvals are enabled.
Tanium Comply 2.24.95
Release Date: September 17, 2024
Enhancements
This release includes:
- Updates to internal dependencies
Feature Deprecation Notice
The Tanium Comply (Assessments) Connect source is deprecated. Customers are advised to alternatively use the Tanium Comply (Findings) source or Tanium Reporting source in Connect to export vulnerability findings data.
Known Issues
- AWS 2023 endpoints cannot be used as satellites for Remote Authenticated Scans
- Remote Authenticated and Network Unauthenticated assessments will not run on Windows 11 on ARM
- The 'Platform' column in the Comply - Vulnerability Findings Details expanded sensor has been removed. Reports that use the platform column in the sensor will need to be edited to remove the column for the reports to render successfully without error.
- The download to CSV of investigation results from the workbench may fail due to the question completion threshold not being reached
- Assessments need to be deployed again after Endpoint Configuration items are approved when approvals are enabled.
Tanium Comply 2.24.82
Release Date: August 6, 2024
Enhancements
This release includes:
- Updates to internal dependencies
Feature Deprecation Notice
The Tanium Comply (Assessments) Connect source is deprecated. Customers are advised to alternatively use the Tanium Comply (Findings) source or Tanium Reporting source in Connect to export vulnerability findings data.
Known Issues
- AWS 2023 endpoints cannot be used as satellites for Remote Authenticated Scans
- Remote Authenticated and Network Unauthenticated assessments will not run on Windows 11 on ARM
- The 'Platform' column in the Comply - Vulnerability Findings Details expanded sensor has been removed. Reports that use the platform column in the sensor will need to be edited to remove the column for the reports to render successfully without error.
- The download to CSV of investigation results from the workbench may fail due to the question completion threshold not being reached
- Assessments need to be deployed again after Endpoint Configuration items are approved when approvals are enabled.
Tanium Comply 2.24.81
Release Date: June 18, 2024
Security Update
This release includes security updates. Details of the issue, including affected versions, and mitigation information, can be obtained within Tanium Resource Center, or by contacting support.
Feature Deprecation Notice
The Tanium Comply (Assessments) Connect source is deprecated. Customers are advised to alternatively use the Tanium Comply (Findings) source or Tanium Reporting source in Connect to export vulnerability findings data.
Known Issues
- AWS 2023 endpoints cannot be used as satellites for Remote Authenticated Scans
- Remote Authenticated and Network Unauthenticated assessments will not run on Windows 11 on ARM
- The 'Platform' column in the Comply - Vulnerability Findings Details expanded sensor has been removed. Reports that use the platform column in the sensor will need to be edited to remove the column for the reports to render successfully without error.
- The download to CSV of investigation results from the workbench may fail due to the question completion threshold not being reached
- Assessments need to be deployed again after Endpoint Configuration items are approved when approvals are enabled.
Tanium Comply 2.24.76
Release Date: May 16, 2024
Security Update
This release includes security updates. Details of the issue, including affected versions, and mitigation information, can be obtained within Tanium Resource Center, or by contacting support.
Fixes
This release includes fixes to downloading required resources during first installation.
Feature Deprecation Notice
The Tanium Comply (Assessments) Connect source is deprecated. Customers are advised to alternatively use the Tanium Comply (Findings) source or Tanium Reporting source in Connect to export vulnerability findings data.
Known Issues
- AWS 2023 endpoints cannot be used as satellites for Remote Authenticated Scans
- Remote Authenticated and Network Unauthenticated assessments will not run on Windows 11 on ARM
- The 'Platform' column in the Comply - Vulnerability Findings Details expanded sensor has been removed. Reports that use the platform column in the sensor will need to be edited to remove the column for the reports to render successfully without error.
- The download to CSV of investigation results from the workbench may fail due to the question completion threshold not being reached
- Assessments need to be deployed again after Endpoint Configuration items are approved when approvals are enabled.
Tanium Comply 2.24.71
Release Date: April 16, 2024
Enhancements
This release includes:
- Improvements to downloading required resources during first installation.
Bug Fixes
Fixed issues with:
- Extended initialization timeout for Comply to download required resources on first installation.
- Timeout error preventing configuration of bulk exceptions from saving
- Loading failures for CVE side panel in Vulnerability Findings when accessing certain CVEs
- Exporting Findings in Workbench results in 507 error response
- Comply service TDS registration errors resulting in failed Connect jobs
- Changes to the Comply (Findings) Connect plugin:
- Cloning Assessments does not allow changing the Platform or the Vulnerability Content Source.
- Intel for non-scheduled assessments not updating regularly.
- Delete stale assessments erroneously shows scan timeout.
- Comply - CVE Investigation Details sensor timing out on CentOS endpoint.
- Fix errors posting data to Trends source.
- Advanced Filtering with Affected Platforms fails
- Findings Quick Filters reappear with Filter Builder selected after clicking Revert
- RAS scans fail as Windows 11 ARM endpoints incorrectly targeted with x86 version of JRE.
- Retry TDS queries with a smaller size if the response is too large.
- Optimize the query for the Critical/High endpoints chart.
- Comply status route will report statuses independently and not block.
- Limit requests to /v1/vulnerability/cves to only return at most 1000 CVEs at a time.
- Rebuilding the TVL and running a Comply Findings plugin will not interfere with each other.
- Comply Finding plugin for Connect gets all data from TDS.
- Limit Connect Findings plugin Actual Values to max length.
- Fixed Comply Health Checks showing Tools Outdated.
Feature Deprecation Notice
The Tanium Comply (Assessments) Connect source will be deprecated in the near future. Customers are advised to alternatively use the Tanium Comply (Findings) source or Tanium Reporting source in Connect to export vulnerability findings data.
Known Issues
- AWS 2023 endpoints cannot be used as satellites for Remote Authenticated Scans
- Remote Authenticated and Network Unauthenticated assessments will not run on Windows 11 on ARM
- The 'Platform' column in the Comply - Vulnerability Findings Details expanded sensor has been removed. Reports that use the platform column in the sensor will need to be edited to remove the column for the reports to render successfully without error.
- The download to CSV of investigation results from the workbench may fail due to the question completion threshold not being reached
Prerequisites
- Tanium™ Connect 4.10.5 or later (To customize columns for exports, you must have Connect 5.8.49 or later)
- Tanium™ Discover 3.0 or later required for remote vulnerability reports
- Tanium™ Endpoint Configuration 2.0 or later
- Tanium™ Interact 2.15.111 or later
- Tanium™ Trends 3.6 or later
- Tanium™ Reporting service 1.3.12 or later
- Tanium™ API Gateway 1.1.13 or later
- Tanium™ Blob service 1.0.6 or later
- Tanium™ RDB service 1.2.62 or later
- Tanium™ Secrets service 1.0.228 or later
- Tanium™ System User service 1.0.77 or later
Additional Remote Authenticated Scanning requirements:
- Tanium Direct Connect 2.1 or later
- Tanium Discover 4.7.186 or later
Supported Tanium Platforms
- Tanium Server 7.4.1.1939 or later