IMPORTANT: This site is planned to be decommissioned in 2026. Visit the Tanium Resource Center for all Tanium release notes, user guides, and support information. To view release notes in the Resource Center, see Tanium Release Notes.
IMPORTANT: If you are using semi-annual releases for on premises, see the Release notes for 2024H1 semiannual release, Release notes for 2024H2 semiannual release, or Release notes for 2025H1 semiannual release on the Tanium Resource Center.
Effective October 15, 2024: On prem release notes on the Tanium Knowledge Base are frozen. For release notes related to 7.4 or 7.5 Server and Solutions, see the Monthly updates for Tanium Version 7.4 and 7.5 Server and Solutions on the Tanium Resource Center.
Tanium Cloud Release Notes Benchmark
Tanium Cloud Release Date: 24 June 2026
Improvements
- Upgraded several internal dependencies.
Resolved Issues
- Resolved an issue with TRA Detailed Report JSON file exports where an endpoints table was always showing an incorrect count.
- Corrected an issue where the Vulnerability Impact Risk Dashboard page could fail to load a table and display "Could not load grid data".
Tanium Cloud Release Date: 28 May 2026
Improvements
- Upgraded several internal dependencies.
- Updated Benchmark integration with Ask and Guide to improve responses and provide better context related to Tanium Risk Score.
Resolved Issues
- Resolved an issue where a specific metric collection was calling a function incorrectly, causing an error.
Tanium Cloud Release Date: 18 May 2026
Improvements
- Upgraded several internal dependencies.
Resolved Issues
- Resolved an issue in the Tanium Risk drill-down page that could cause the "Tanium Risk Metrics" table to render "No Results" instead of the Risk Metrics scores and visualizations.
Tanium Cloud Release Date: 06 May 2026
Improvements
- Upgraded several internal dependencies.
Tanium Cloud Release Date: 16 April 2026
Important Notes
- This Benchmark release includes updates to our industry mappings. These updates may affect your percentile for Benchmark metrics. This can happen because of updates to the industry cohort, and it can happen even when there are no changes to your industry. Your organizational risk score and other Benchmark metrics values will not be affected, but you may see changes to the Benchmark positions within your industry for specific metrics.
Improvements
- Upgraded several internal dependencies.
- Upon upgrade, Tanium Benchmark now automatically updates Tanium Criticality rules used for the Tanium Risk Assessment reporting. Customers no longer need to refresh the "TRA - EoL Operating Systems" Criticality rule as this now happens automatically.
- Added a new banner in the Tanium Risk Assessment creation page that notifies users if they attempt to target a Computer Group that does not include any endpoints.
Resolved Issues
- Corrected an issue that could cause the Benchmark service to restart unexpectedly in certain conditions.
- Resolved an issue where selecting a Computer Group for a Tanium Risk Assessment that did not include any endpoints was allowed and failed silently.
Tanium Cloud Release Date: 6 April 2026
Important Notes
- Tanium is making updates to our industry mappings in a subsequent release. This may affect your percentile for Benchmark metrics. This can happen because of updates to the industry cohort, and it can happen even when there are no changes to your industry. Your organizational risk score and other Benchmark metrics values will not be affected, but you may see changes to the Benchmark positions within your industry.
Improvements
- Upgraded several internal dependencies.
Tanium Cloud Release Date: 31 March 2026
Important Notes
- Tanium is making updates to our industry mappings in a subsequent release. This may affect your percentile for Benchmark metrics. This can happen because of updates to the industry cohort, and it can happen even when there are no changes to your industry. Your organizational risk score and other Benchmark metrics values will not be affected, but you may see changes to the Benchmark positions within your industry.
Features
- Tanium Benchmark has added a new banner to notify Benchmark users about upcoming updates to industry mappings in a subsequent release that may affect enterprise metrics benchmark positions.
Improvements
- Upgraded several internal dependencies.
Resolved Issues
- Corrected an issue that could cause the Benchmark service to restart unexpectedly in certain conditions.
Tanium Cloud Release Date: 05 March 2026
Improvements
- Upgraded internal dependencies.
Tanium Cloud Release Date: 23 February 2026
Important Notes
- This release of Tanium Benchmark removes the legacy Risk Score 1.0 features, user interface (UI) components, and reporting data and moves them all to end-of-support. As a result of this change, all Risk Score 1.0 associated pages, metrics, graphs, goals, and visualizations are no longer present or navigable in Benchmark and all Risk-CX tooling will be removed from endpoints according to customer ECF schedules and configurations. Only the Risk Score 1.0 items have been removed. Risk Score 2.0 features, UI, and all functionalities remain.
Features
- Tanium Benchmark has added new integrations with Tanium Ask for interacting with and summarizing Benchmark Risk and Vulnerability dashboards and the Tanium Risk Assessment (TRA) reporting and data.
- Added the ability to summarize the Risk and Vulnerability dashboards via Tanium Ask directly in Benchmark by clicking Summarize.
- While viewing the Vulnerability and Risk dashboard pages, users can also interact with each dashboard from within the Tanium Ask prompt (for example, "Summarize the Vulnerability Impact Risk dashboard").
- TRA reporting data is now integrated with Tanium Ask. Users can now generate and summarize the TRA reporting data with Tanium Ask by clicking the Ask Agent icon and prompting a summary of the TRA reports and data (for example, "Summarize my Tanium Risk Assessment Detailed Report").
- Note: The Ask Agent summary is designed for a quick review within the workbench.
Improvements
- Upgraded several internal dependencies.
- Updated naming and ordering of left-side menu items to improve navigation.
- Updated language on Guardian Metrics page to clarify that Guardian Metrics can address both Security- and Operations-focused issues.
- Updated TRA reporting to identify additional endpoint security products.
- Updated Tanium Guide notifications language to enhance context.
- Made minor changes to language and verbiage in the TRA Executive Summary report.
- Updated End-of-Life operating system filters and targeting used for the TRA Detailed report.
- Implemented minor graphical and verbiage improvements to the TRA Detailed and Executive Summary reports.
Resolved Issues
- Resolved a rare issue where sensor configuration and data updates would not run for 24 hours if Benchmark failed to connect to a database when applying TRA data collection steps.
- Updated error handling to address specific TRA report targeting conditions where no computers in a selected computer group have a risk score, or there are no online endpoints in a selected computer group.
- Resolved an issue that caused Explore in Comply on the Vulnerability Dashboard to produce an error when selecting CVEs with critical severity.
- Resolved an issue that could cause Tanium Guide to produce repeating notifications for risk score changes.
Tanium Cloud Release Date: 07 January 2026
Improvements
- Upgraded internal dependencies.
Tanium Cloud Release Date: 16 December 2025
Improvements
- Upgraded internal dependencies.
Resolved Issues
- Resolved an issue where initial module startup and data collection could stall for 24 hours due to not attempting to recover quickly enough from a specific network condition.
Tanium Cloud Release Date: 03 December 2025
Important Notes
- Tanium Benchmark will be removing the legacy Risk Score 1.0 features, user interface (UI) components, and reporting data in an upcoming Benchmark release and moving them to end-of-support. Only the Risk Score 1.0 items will be removed. Risk Score 2.0 features, UI, and all functionalities will remain.
Features
- The Tanium Risk Assessment (TRA) report configuration and generation page has been moved to a dedicated page in Tanium Benchmark accessible via the left-side navigation. Note: The TRA data collection toggle still resides in the Benchmark Settings workbench on the Tanium Risk Assessment tab.
Improvements
- Upgraded several internal dependencies.
- Updated the Metrics Health page and functionality to use results from the "Endpoint Configuration - Tools Status" sensor for the Health Status column of the health reports for "Lateral Movement Risk" and "Average Impact Rating of Endpoints with Alerts" metrics. The old sensor used was "Impact - Coverage Status."
- Updated the TRA detailed report to include a new row for Tanium Risk Score 2.0 in the Risk Metrics table in Part 2 of the detailed reports.
- Updated the role-based access controls (RBAC) to allow the Benchmark User role to see banners indicating if Benchmark certificate audit actions are disabled. Previously the Benchmark User role could not see this banner, so the role wouldn't know if the actions were disabled.
- Updated the End-of-Life (EoL) Operating System filters used in the TRA reporting.
- Updated and improved Benchmark left-side navigation link naming, ordering, and grouping.
Resolved Issues
- Corrected an issue with the "Sending Data" column on the Metric Health page where the page would display blank values for the "Windows Credential Guard Disabled" metric.
- Resolved an issue that could cause a user to see a blank results page in Tanium Comply findings after using the "Explore in Comply" button with Critical severity CVEs selected in the Benchmark Vulnerability Dashboards table. Pivots to Comply vulnerability findings should work as expected when selecting any severity CVEs.
- Updated the title, description, and banner text for the Vulnerability Impact Risk page to accurately reflect that the dashboards, tables, and results include CVEs of all severities.
Known Issues
- Customers upgrading from an earlier version of Benchmark may want to disable and re-enable TRA data collection in the Tanium Benchmark Settings workbench to re-create the TRA criticality rules. Specifically, the TRA - EoL Operating Systems has been modified in this Benchmark release.
Security Update
- This release includes security updates. Details of the issue, including affected versions, and mitigation information, can be obtained within [Tanium's Community site](https://community.tanium.com/s/), or by contacting support.
Tanium Cloud Release Date: 28 October 2025
Improvements
- Updated the "Credential Guard Disabled" metric data collection, findings report, and health report to all leverage the new "Credential Guard Status" sensor when the new sensor is available instead of the older "CredGuard Status" sensor, which will be deprecated in a future Tanium content release.
Tanium Cloud Release Date: 02 October 2025
Features
- Tanium Benchmark no longer requires Tanium Impact to be licensed, installed, or configured to access Tanium Risk Score 2.0 features and capabilities and use the Tanium Risk Assessment (TRA) data collection and reporting features. Benchmark customers that also own Tanium Comply can now do the following:
- See the Enterprise Risk metrics category on the Benchmark Overview page.
- Enable TRA data collection and generate TRA Detailed and Executive Summary reports in the Tanium Benchmark Settings workbench.
- Access the Tanium Risk Score 2.0 drill-down page in the Benchmark User Interface (UI). The Tanium Risk Score 2.0 page includes details and status for risk scoring as well as navigation to additional drill-down pages for the risk metrics that comprise the Tanium Risk Score:
- Critical Severity Vulnerabilities
- High Severity Vulnerabilities
- Compliance Failures
- Lateral Movement Risk
- Insecure TLS/SSL
- Expired Certificates
- Additional Tanium Risk Score 2.0 information is available in our blog post here and our community post here.
- Additional TRA information is available in our community post here.
- Important: Tanium Benchmark still requires Tanium Comply be licensed and installed in order to display and access Tanium Risk Score 2.0 and TRA features.
- This release also adds two new Guardian metrics to provide ongoing visibility into emerging threats and operational issues reported by Tanium Guardian. The new Guardian metrics are June 2025 Windows SMB Signing - Kerberos Reflection and July 2025 SharePoint Server RCE Vulnerabilities.
- Both of the new metric drill-down pages include graphs showing changes in the environment over time, how the environment compares to other Tanium peers in the same industry for the metrics, tables displaying findings related to the metric for the environment, and the original Guardian dashboard content and visualizations.
- The June 2025 Windows SMB Signing - Kerberos Reflection metric drill-down page includes a table identifying endpoints in the environment that have SMB signing disabled, the risk score, the assigned Criticality level, and the status of the SMB Server Signing Status registry key.
- The July 2025 SharePoint Server RCE Vulnerabilities metric drill-down page includes a table displaying endpoints in the environment that have known-vulnerable versions of Microsoft SharePoint Server installed, the risk score, the assigned Criticality level, and the SharePoint Server version identified.
- Both of the new metric drill-down pages include graphs showing changes in the environment over time, how the environment compares to other Tanium peers in the same industry for the metrics, tables displaying findings related to the metric for the environment, and the original Guardian dashboard content and visualizations.
Improvements
- Upgraded several internal dependencies.
- Updated the Workstation Vulnerabilities and Server Vulnerabilities dashboard charts in the Risk Dashboards page to be grouped by endpoints rather than CVEs.
- Modified the format of the chart titles and chart subtitles in the TRA Detailed and Executive Summary reports to make them searchable.
- Added unmanageable interfaces counts and information back to "Part 1: Asset Inventory Covered by the Assessment" in the TRA Detailed reports.
- Added a new "Risk Metrics" section with analysis details to "Part 2: Risk Metrics Analysis" in the TRA Detailed reports.
- Updated the tooltips for badges on existing Benchmark metric graphs to provide additional context regarding the Benchmark percentile rankings, Benchmark metric value, and goal values, depending on if the graph displayed percentiles or results.
Resolved Issues
- Resolved a condition that could cause users with limited permissions to see a banner that indicated that the Certificate Manager scheduled actions weren't enabled even if they were enabled successfully.
Security Update
- This release includes security updates. Details of the issue, including affected versions, and mitigation information, can be obtained within [Tanium's Community site](https://community.tanium.com/s/), or by contacting support.
Tanium Cloud Release Date: 3 September 2025
Resolved Issues
- Resolved an issue where the sorting order in specific TRA report queries could cause those queries to fail.
Tanium Cloud Release Date: 26 August 2025
Improvements
- Updated platform diagram graphics in the Tanium Risk Assessment (TRA) reports.
- Upgraded several internal dependencies.
Resolved Issues
- Resolved an issue in the TRA reports where data could be displayed below the x-axis for certain values in bar charts.
- Added additional error-handling for charts on the vulnerability dashboards page.
Tanium Cloud Release Date: 14 August 2025
Features
- Benchmark has added Tanium Risk Assessment (TRA) reporting: Customers with Benchmark and Tanium Risk Score 2.0 can now configure and run Tanium Risk Assessments to provide the organization and leadership with powerful reporting on information security and information technology risk in an environment. The TRA reporting allows creating two types of powerful, accessible, and user-friendly deliverable reports which users can also export into two different standardized file formats.
- TRA Report Types:
- Detailed Reports: The Detailed report format includes granular information and details across multiple security and IT risk categories for targeted Computer Groups and includes powerful statistics, visualizations, and findings.
- Executive Summary Reports: The Executive Summary report is tailored for leadership, highlighting key metrics and risk scores.
- TRA Report Export Formats:
- HTML: The HTML format includes powerful charts and graphs and allows users the ability to customize and tailor the reports to targeted organizations and groups. This format is also easier to convert to other standard document formats.
- JSON: The JSON format includes all data included in the Detailed and Executive Summary reports, allowing integration with custom tooling and reporting, third party tools, and enterprise visualization and reporting solutions.
- Additional TRA Details:
- Running an assessment does not make any changes to existing endpoints, run any live sensors, or initiate any new actions or scans in the Tanium environment.
- The new capability leverages a self-service model.
- Assessments may be run on-demand by Benchmark Operators.
- Similar to Benchmark Metrics, the assessment includes information and data on the solutions that customers have in place.
- The assessments may be targeted to individual Tanium computer groups.
- TRA features and reporting currently require Benchmark be enabled for Risk Score 2.0
- TRA Report Types:
- New Vulnerability Dashboards: This Benchmark release also introduces a new dedicated page to provide environmental visibility of how discovered vulnerabilities create risk and increase attack surface due to how they are distributed across important organizational assets. This new expanded view helps organizations with limited resources focus their efforts to minimize the attack surface and maximize their impact by reporting two vulnerability-specific scores, Vulnerability Impact and Vulnerability Priority. The new visibility the dashboard provides is intended to provide a more focused environmental view into how specific vulnerabilities affect the organization's important assets and make prioritizing remediation efforts easier.
- Vulnerability Impact: The improved Vulnerability Impact score identifies how many endpoints in a targeted environment are affected by which vulnerabilities at which CVSS severity scores. By creating a unique score that takes the severity of a vulnerability and the sheer number of endpoints affected into account, organizations can quickly identify which vulnerabilities require attention and focus.
- Vulnerability Priority: The new Vulnerability Priority score takes the CVSS severity of a vulnerability into account and how many endpoints are affected, similar to the Impact score. But the priority score also takes the endpoint criticality defined by the organization into account when creating the score. This means that a more severe vulnerability affecting many machines will have a higher priority score when that vulnerability is affecting endpoints that the organization has defined as important or mission-critical.
Improvements
- This release includes upgrades of several internal dependencies.
- Risk Dashboards derived from compliance and vulnerability data now filter out excepted findings.
- Benchmark roles now give read sensor privileges to the Criticality content set.
- The Risk Dashboards now filter out Tanium Cluster Client Container endpoints.
- The Patch Management Risk Dashboards now filter by the Patch Supported Systems computer groups.
- The industry name "Non-Profit and Charitable Organizations" has been corrected to "Non-Profit & Charitable Organizations"
Resolved Issues
- The Benchmark Service Account RBAC role no longer grants "Content Administrator" privilege.
- If a Risk Metric score is 1000, Benchmark now keeps it on one line instead of wrapping the 4th digit to the next line.
- The Workstation Vulnerabilities and Server Vulnerabilities Risk Dashboards now take up the full page width rather than half.
- Removed error and no results values from several Risk Dashboards charts.
- Updated subtitles text for Server Vulnerabilities chart in Risk Dashboards.
Known Issues
- Customers upgrading from an earlier version of Benchmark may want to disable and re-enable TRA data collection in the Tanium Benchmark Settings workbench to re-create the TRA criticality rules. Specifically, the TRA - EoL Operating Systems has been modified in this Benchmark release.
Security Update
- This release includes security updates. Details of the issue, including affected versions, and mitigation information, can be obtained within [Tanium's Community site](https://community.tanium.com/s/), or by contacting support.
Tanium Cloud Release Date: 22 July 2025
Improvements
- This release includes upgrades of several internal dependencies.
Tanium Cloud Release Date: 28 May 2025
Improvements
- This release includes upgrades of several internal dependencies.
Tanium Cloud Release Date: 15 April 2025
Improvements
- Updated Benchmark's integration components and data collection functionality with Tanium Comply.
Resolved Issues
- Resolved an issue that could cause Tanium Data Service (TDS) data queries to return an incorrect number of results.
Tanium Cloud Release Date: 24 March 2025
Improvements
- This release includes upgrades of several internal dependencies.
Tanium Cloud Release Date: 24 February 2025
Security update
- This release includes security updates. Details of the issue, including affected versions, and mitigation information, can be obtained within Tanium Resource Center, or by contacting support.
Tanium Cloud Release Date: 17 February 2025
Improvements
- The Secure USB Storage Policy Not Enforced metric in the Security category now checks for secure removable storage policies applied to endpoints via Tanium Enforce. The metric still checks for the original Windows registry settings to disable USB removable storage write, as well. If Benchmark does not detect either of these security controls for an endpoint, it includes the endpoint in the metric reporting. To better reflect this change, the Benchmark Metric name is now changed to Secure Removable Storage Policy Not Applied.
- Updated filtering options for displaying Guardian Metrics on the Benchmark Overview page.
- Added new Criticality score columns to the Users and Groups tabs on the Lateral Movement Risk Metric drill-down page.
- Renamed the Organizations industry to Non-Profit & Charitable Organizations to better reflect the types of organizations included in this industry.
- Updated Metric Health reporting on the Metric Health page for several metrics to remove sensor errors and unknown results and improve general reporting overall. Affected Metrics are as follows:
- TPM Not Enabled - Windows Defender Disabled - Patch Compliance - Domain Membership - Insecure SSL/TLS - Windows Data Execution Prevention (DEP) Disabled
- Updated the targeting and filters used to collect data and generate results across several metrics to improve the accuracy and reporting of those metrics. These updates and improvements may cause visible changes to the industry reporting for affected metrics. The updated metrics are as follows:
- Expired Certificates - Firewall Disabled - High Disk Consumption - High Memory Consumption - High CPU Consumption - Missing Disk Encryption - Domain Membership - Windows Defender Disabled - Patch Compliance - Secure Powershell Execution Policy - Not Enforced - TPM Not Enabled - Windows Workstation Antivirus Disabled - Windows Workstation Antivirus Out of Date
Resolved issues
- Fixed an issue where loading multiple dashboard panels on a single page caused too much memory to be allocated.
- Updated the metric data for the Remote UAC Local Account Token Filter Disabled metric on the Metric Health page and changed the metric source to Incident Response.
Tanium Cloud Release Date: 22 January 2025
Security Update
- This release includes security updates. Details of the issue, including affected versions, and mitigation information, can be obtained within Tanium Resource Center, or by contacting support.
Tanium Cloud Release Date: 07 November 2024
Features
- Benchmark now includes a new type of metric, Guardian Metrics.
- Guardian Metrics are selected by the Guardian Research Team to provide additional ongoing visibility into recent Tanium Guardian observations about emerging threats and important operations issues. Guardian Metrics represent significant issues that the industry typically addresses as quickly as possible due to the severity and potential impact of those issues. These new metrics allow Tanium customers to monitor the evolving state of their environment relative to recent Guardian observations by establishing continuous visibility and reporting into the details of the observation. In addition to providing greater visibility into these issues, Guardian Metrics allow customers to see how well their remediation efforts compare to their industry peers!
- Added new Guardian Metrics Category section to the Benchmark Overview page.
- Added a new left side navigation link for the new Guardian Metrics page.
- Added defined goals for Guardian Metrics.
- Added the first two Guardian Metrics:
- Added new dashboards, drill-down pages, tables, and reports for the first two Guardian Metrics.
Improvements
- Added a new type of navigation link to allow opening Guardian Dashboards in a new tab.
- Added additional alerts and banner notifications to display when Guardian Metrics content is not available.
Fixes
- Adjusted the Impact Metric drill down page table to remove unnecessary numeric values.
- Corrected an issue where an existing metrics collection job could cause errors if a Computer Group became unregistered in Tanium Reporting.
- Updated quick filters on the Benchmark Health page to correct the "Health Status" for three metrics (Insecure TLS/SSL, Expired Certificates, and Windows Trusted Platform Module (TPM) Not Enabled).
- Corrected filtering for the "Mean Time to Update" metric table as it was not filtering correctly.
- Removed a condition that could cause no results to be shown on a metric with valid percentile values.
Tanium Cloud Release Date: 23 October 2024
Improvements
- Benchmark Scheduled Actions to run Certificate Manager audits are no longer enabled by default for new Tanium Benchmark installations.
- Benchmark now notifies end users via a dismissible banner when these scheduled actions are not enabled and identifies the state of the Certificate Manager metric data on the Benchmark Health page.
- Customers with appropriate permissions can enable the Benchmark Scheduled Actions in the Tanium Benchmark Action Group to begin collection of Certificate Manager audit data for Risk Score 2.0 Risk Metrics.
- Note: This change only affects new Tanium Benchmark installations as of this release and does not make any retroactive changes to existing customer installations or scheduled actions.
Fixes
- Updated Benchmark Health quick filters for specific metrics to improve "Health Status" column data and reporting.
Security Update
- This release includes security updates. Details of the issue, including affected versions, and mitigation information, can be obtained within Tanium's Community site, or by contacting support.
Tanium Cloud Release Date: 05 September 2024
Features
- Added configuration support for the Tanium Risk Assessment (TRA) to Tanium Benchmark.
- Authorized Benchmark users can now enable Tanium Risk Assessment Data collection from the Benchmark settings workbench. Enabling data collection enables several custom Criticality rules that modify endpoint Criticality dynamically based upon specialized criteria such as disk encryption status, uptime, insecure wireless configuration, whether or not the endpoint is a database server, and others. The Criticality rules added when TRA data collection is enabled are listed in the Tanium Benchmark Guide in the Tanium Resource Center.
Improvements
- Updated Certificate Manager endpoint tooling.
- Modified dashboard configuration bars to display better in smaller windows.
- Updated recommendations title and summary text to provide better context.
- Updated UI layout to improve overview page tooltips.
- Added language to provide context to users about delay expectations to the Industry change page in the Benchmark settings workbench.
- Benchmark will now display a per-user dismissable banner in the UI if the Certificate Manager scheduled actions are found to be disabled.
Fixes
- Fixed an issue where the summary was not loading on the overview page after a new installation.
- Fixed a bug where Certificate Manager audit scheduled actions were unintentionally re-enabled if previously disabled. This issue was corrected and controls put in place to prevent recurrence.
Security Update
- This release includes security updates. Details of the issue, including affected versions, and mitigation information, can be obtained within Tanium's Community site, or by contacting support.
Tanium Cloud Release Date: 16 July 2024
Features
- Added a new Industry Selection UI in the Benchmark Settings workbench to allow customers to select a new Industry to compare their benchmarked metrics to.
- Added a new Industry Changelog table to track customer and service initiated changes to defined customer industry.
- Added informational tooltips to percentile charts and graphs to identify and explain why percentile comparisons changed due to industry changes.
- Implemented a new warning banner to notify users when the customer industry has been most recently changed.
Improvements
- Updated and improved the automated assignment of industry for new Benchmark environments.
- Updated Risk Metric Contribution UI on the Risk Score 2.0 Page.
- Updated layout to improve overview page tooltips.
- Updated coloration for low filter icons in the quickfilter bar.
- Add Risk Score versions to metric names.
- Updated colors for vectors on the metric health page.
Fixes
- Updated the "Exploited Vulnerabilities - Workstation" report to use a different filter.
- Updated language on the Tanium Risk Score drilldown page.
- Updated the Insecure TLS SSL metric drilldown page to link to the correct report.
- Updated calculation of the Endpoints with Passwords metric to handle lower than expected values.
- Updated Documentation links to open in a new browser tab.
- Updated uninstall logic for upgrades from Risk 1.3.130 to Benchmark 2.7.
- Updated the Overview and Risk Score pages to remove an erroneous "Error collecting endpoint criticality" message during page load.
- Updated logic to handle lower than expected risk score values resulting from unexpected metric values.
- Fixed an issue where the Health Status filter was not loading properly for the Software Update Compliance metric on the Metric Health table.
- Updated Benchmark logic to remove Certificate Audit scheduled actions after Certificate Manager standalone installations.
- Updated the insecure/outdated list for Detected Protocols in the Insecure TLS/SSL metric.
- Added a missing circle color in Benchmark graph tooltips.
- Corrected a Risk Metric list alignment issue.
- Removed a UI typo in Overview Page Risk Toggle Information.
- Updated filters "Sending Data" column to match metric reporting on the Benchmark Health page.
- Applied updated filters for "Update Eligible" data sources Tanium Risk Assessment dashboard.
Security Update
- This release includes security updates. Details of the issue, including affected versions, and mitigation information, can be obtained within Tanium Resource Center, or by contacting support.
Tanium Cloud Release Date: 04 June 2024
Fixes
- Modified filters for the Software Update Compliance metric in Benchmark Health reporting to correct filtering issue.
Tanium Cloud Release Date: 14 May 2024
Features
- Added new Risk Score 2.0 scoring, functionality, dashboards, and drill-down pages.
- See our blog post here for additional information.
- Added new focused Risk Metric drill-down pages and details.
- Added new toggle to switch between Risk Score 1.0 and Risk Score 2.0 reports and dashboards.
- Added new Risk Score 2.0 data sources to Tanium Reporting.
- Added Passwords Found metric leveraging Reveal data.
- Note: Tanium Benchmark now requires both Tanium Impact and Tanium Comply be installed and configured to view Tanium Risk Score 2.0.
Improvements
- Added CISA KEV Status Column to High and Critical CVE Metric Drill-down Reports
- Added Risk Metric Contribution details to Risk Score 2.0 Page
- Created new Benchmark Health reports for the following metrics:
- Critical Severity Vulnerabilities
- Compliance Failures
- Passwords Found
- Insecure TLS/SSL
Fixes
- Made corrections to the Endpoints Missing Metric pipeline
- Updated supported OS' for the high cpu metric
- Updated View Documentation links on Tanium Solutions page
- Corrected browser title for the Tanium Risk Score page
- Updated the default sort config for metrics pages
- Updated metric drill-down page sorts and navigation links
- Updated metric descriptions
- Modified the filters used in Tanium Risk Assessment reports
- Removed conition that produced erroneous warning messages
- Adjusted documentation links to correctly open in a new tab
- Removed flashing "Error collecting endpoint criticality" during initial Benchmark page load
Security Update
- This release includes security updates. Details of the issue, including affected versions, and mitigation information, can be obtained within Tanium Resource Center, or by contacting support.
Tanium Cloud Release Date: 20 Feb 2024
Fixes
- Fixed a bug to better differentiate between an endpoint where the scans didn't run and an endpoint with no vulnerabilities so that endpoints where scans are not run are no longer included in the High Severity Vulnerabilities metric. This may have an impact on the High Severity Vulnerabilities metric value.
Tanium Cloud Release Date: 10 Jan 2024
Fixes
- Fix positioning of percentile markers on the overview page.
- Remove computer groups from benchmark pages if the group is not properly configured in Reporting.
- Fix an issue with filtering on the Physical Systems panel of the Tanium Risk Assessment dashboard.
Tanium Cloud Release Date: 8 November 2023
Features
- Added new Tanium Risk Assessment (TRA) dashboards to Tanium Benchmark with several dashboard sections under Risk Dashboards:
- Inventory
- CISA Known Vulnerability Metrics
- Vulnerability Management
- Patch Management
- Software Management and Distribution
- Asset Health and Security
- Added new Benchmark Metric drill-down pages for the following metrics:
- Average Alerts per Day
- Domain Membership
- Endpoint Impact Score
- Firewall Disabled findings report
- High Disk Consumption
- High Memory Consumption
- High Server Uptime
- High Severity Vulnerabilities reports
- High Workstation Uptime
- Impact Rating of Machines with Alerts
- LSA Protection Disabled (LSASS as PPL)
- Mean Time to Patch
- Mean Time to Update
- Patch Compliance
- Remote UAC Local Account Token Filter Disabled
- Secure Powershell Execution Policy Disabled
- Secure USB Storage Policy Disabled
- Software Update Compliance
- Trusted Platform Module (TPM) Enabled
- User Account Control Disabled
- Windows (Systems) Missing Disk Encryption
- Windows Data Execution Prevention (DEP) Enabled
- Windows Defender Disabled
- Windows Workstation Antivirus Disabled
- Windows Workstation Antivirus Up to Date
- Added several new analysis workflow pivots to the new metric drill-down pages:
- Explore in Comply
- Explore in Deploy
- Explore in Enforce
- Explore in Impact
- Explore in Patch
- Explore in Threat Response
- Remediate in Patch
- View Report
Improvements
- Added hyperlinks to all of the new metric drill-down pages from Benchmark home page and category drill-down pages.
- Added functionality so that Tanium Risk Assessment (TRA) Dashboards are available via Connect export.
- Added functionality so that Tanium Risk Assessment (TRA) dashboards are exportable via the user interface.
- Added functionality so that customers can clone the existing Tanium Risk Assessment (TRA) dashboards in order to create their own customized dashboards.
- Updated and improved functionality for "Remediate in Patch" workflows
Fixes
- Updated Benchmark service to prevent service crash if initial industry source fails to load.
Tanium Cloud Release Date: 23 September 2023
Features
- Added support for Tanium Certificate Manager to Tanium Benchmark for metrics and workflow enhancements.
Improvements
- Transitioned existing "Insecure TLS/SSL" and "Expired Certificates" Risk vectors to Certificate Manager for auditing and data collection.
- Added new Tanium solution entitlement detection capabilities.
- Added support for managing Certificate Manager port exclusions for Benchmark customers.
- Deprecated existing SSL Server Audit Core Content, Scheduled Actions, and data collection.
- Renamed "Antivirus Out of Date" and "Missing Antivirus" Metrics to "Windows Defender Disabled", "Windows Defender Out of Date".
- Renamed "Missing Disk Encryption" to "Windows (Systems) Missing Disk Encryption".
- Removed "Is Virtual" filter from Enforce TPM Not Enabled metric to include for Virtual TPM (vTPM) reporting.
- Fixed hover text tooltip date for Risk Vector Calculation information.
- Improved Benchmark content removal on uninstall or entitlement change.
Fixes
- Modified TPM health report to no longer show unsupported endpoints.
- Updated sensor data collection for "Enforce - Anti-Malware Definition Outdated" metrics.
- Improved metrics graph display when a metric is collected for the first time after previously having no reportable data.
- Updated drill-down chart graphics to never be below the X axis.
Tanium Cloud Release Date: 25 July 2023
Features
- Added a new feature that allows (admin) customers to define their preferred organization name in the Benchmark workbench settings.
- Added 5 new Benchmark Metrics in the Operations category.
- Domain Membership
- High Disk Consumption
- High Memory Consumption
- High Server Uptime
- High Workstation Uptime
- Added 10 new Benchmark metrics to the Security category.
- Firewall Disabled
- LSA Protection Disabled (LSASS as PPL)
- Remote UAC Local Account Token Filter Disabled
- Secure Powershell Execution Policy Not Enforced
- Secure USB Storage Policy Not Enforced
- User Account Control Disabled
- Windows Data Execution Prevention (DEP) Disabled
- Windows Trusted Platform Module (TPM) Not Enabled
- Windows Workstation Antivirus Disabled
- Windows Workstation Antivirus Out of Date
Improvements
- Added Benchmark Health reporting for all of the new metrics.
- Added support for the latest SSL/TLS Server Audit Tanium Core Content.
- Added additional filtering improvements for Benchmark Metrics Health reports.
- Added additional help information to Benchmark User Interface (UI) graphs when a metric has no measureable endpoints in the environment for the selected Computer Group.
- Added filtering improvements for several Metrics.
Fixes
- Updated the Administrative Access metric to use Domain Role content source instead of Domain Member.
- Updated the Benchmark Goal API implementation to correct percentages reporting when displaying goals information.
Tanium Cloud Release Date: 7 June 2023
Fixes
- Fixed a bug in the Software Update Compliance metric, resulting in changes to metric values.
- Updated metric filters to remove unsupported endpoints for Software Update Compliance, Patch Compliance, and Out of Date Antivirus metrics, resulting in changes to metric values.
Tanium Cloud Release Date: 30 May 2023
Fixes
- Modified Benchmark to resolve scheduled action creation issues in specific environments.
Tanium Cloud Release Date: 23 May 2023
Improvements
- Added new service health monitoring and alerting for the Benchmark service and Benchmark metrics.
Tanium Cloud Release Date: 9 May 2023
Features
- Established the new Benchmark Health page, data, charts, and dashboards to provide customers with real-time visibility into Benchmark metrics data health. The new health page allows customers to proactively identify metrics health issues and perform analysis of metrics data sources via self-service.
Improvements
- Added new per metric health data values to tables and reporting.
- Benchmark is now able to identify when computers are not in a source module's default action group.
- Changed the module Action Group from Tanium Risk to Tanium Benchmark.
- Updated UI text with improvements for health page.
- Changed "Below Peers" metric to be clickable and allow drill-down views.
- Changed Benchmark module scheduled actions behavior:
- Benchmark will no longer recreate scheduled actions in the default action group if existing scheduled actions exist in any other action group.
- Benchmark will attempt to update existing scheduled actions regardless of current action group location.
- Benchmark will attempt to retain existing action user ownership and existing action schedules for module Scheduled Actions.
Fixes
- Modified Benchmark tools uninstall cleanup behavior for endpoints.
- Fixed "All Computers" Computer Group behavior to fully enumerate all endpoints regardless of selection.
- Modified Benchmark support bundles to include additional RDB log files.
- Adjusted filters for the Enforce - Anti-Malware Definition Outdated metric data.
- Modified 'No Data' calculation behavior in Benchmark.
- Resolved an issue with the Impact Alerts metrics report.
Tanium Cloud Release Date: 12 March 2023
Fixes
- Updated Password Identification metric to use new Reveal 2.0 data model.
Tanium Cloud Release Date: 6 March 2023
Fixes
- Implemented changes to the Patch Compliance metric from displaying "percentage of endpoints missing patches" to "percentage of endpoints not missing patches". Note: This change impacts how the percentile for this metric is calculated, so many environments will see a change in the "Patch Compliance - Percentile" chart. This does not impact the "Patch Compliance - Results" chart.
Security Update
- This release includes security updates. Details of the issue, including affected versions, and mitigation information, can be obtained within Tanium's Support Portal, or by contacting your TAM
Tanium Cloud Release Date: 16 February 2023
Fixes
- Restored functionality to automatically generate and collect SSL/TLS risk vector data.
- Fixed issue where Benchmark drill-down reports that included data from Threat Response failed to load.
Tanium Cloud Release Date: 30 January 2023
Fixes
- Modified permissions on API routes for Tanium Reporting integration.
Tanium Cloud Release Date: 6 December 2022
Features
- Set goals for each benchmark metric
- Track performance against goals over time
- Select a goal of the 50th or 75th percentile or a custom value based upon the details of the metric, for example a goal of 14 days for Mean Time to Patch
- Set goals in the configuration interface in Tanium Benchmark
Fixes
- Pivot to Comply through the "Explore in Comply" button returned "No Data is Available" due to unnecessary filters for "Scan Method: Remote Authentication"
- Performance vs. Peers toggle did not persist when reloading the page
- Drilldown report titles updated to align with metric names
Tanium Cloud Release Date: 25 October 2022
Fixes
- Minor bug fixes.
Tanium Cloud Release Date: 26 September 2022
Features
Tanium Risk is now Tanium Benchmark. The name of the module has been changed to reflect new industry comparison functionality. This update includes the following features:
- Industry benchmarks for key enterprise risk, security, and operations metrics compared against anonymous, aggregated data from other Tanium customers in your industry
- 12 additional metrics broken into security and operations categories
- Drill-down capabilities to see each metric benchmarked over time for both percentile and metric value
- Per-endpoint reports for each metric for easy investigation and remediation
Note: If your industry does not have enough aggregate data for a meaningful benchmark, your metrics will be compared against data from all Tanium customers.