IMPORTANT: This site is planned to be decommissioned in 2026. Visit the Tanium Resource Center for all Tanium release notes, user guides, and support information. To view release notes in the Resource Center, see Tanium Release Notes.
IMPORTANT: If you are using semi-annual releases for on premises, see the Release notes for 2024H1 semiannual release, Release notes for 2024H2 semiannual release, or Release notes for 2025H1 semiannual release on the Tanium Resource Center.
Effective October 15, 2024: On prem release notes on the Tanium Knowledge Base are frozen. For release notes related to 7.4 or 7.5 Server and Solutions, see the Monthly updates for Tanium Version 7.4 and 7.5 Server and Solutions on the Tanium Resource Center.

Tanium Cloud Release Notes Connect

From Tanium Knowledge Base
Jump to navigation Jump to search

Cloud Release Starting on: June 29, 2026

Improvements

  • Improved the SQL Server destination with a Retrieve Procedures option for setting pre-run and post-run stored procedures.
  • Improved connection run reliability by automatically detecting and recovering connection runs that become stuck in the starting state.

Resolved Issues

  • Fixed an issue where scheduled and manually triggered connections could fail with a user session not available error.

Security Update

  • This release includes security updates for internal code dependencies. The updates improve general security and stability, and do not directly mitigate any potentially impacting vulnerabilities.

Cloud Release Starting on: June 22, 2026

Resolved Issues

  • Fixed an issue where selecting a large report in a Tanium Reporting (Source Data) source could exceed the 2 MB request limit and return a 403 error from the web application firewall.

Cloud Release Starting on: June 15, 2026

Resolved Issues

  • Fixed an out-of-memory error in the TDS client when paginating through large result sets across multiple requests.

Cloud Release Starting on: June 1, 2026

New Features

  • Introduced the ability to export data from Tanium Cloud to on-premises SMB Servers through satellites. An option to configure a satellite is available in the SMB File Share destination. For more information, see Tanium Connect User Guide SMB.

Improvements

  • Added software remediation fields (Deploy Package ID, Vendor, Title, Version, Update Eligibility, and Progress) to the Comply Findings source for connections that export Comply > Deploy data.

Resolved Issues

  • Fixed an issue where an Automate playbook with Connect steps could be created for connections that use an unsupported event source.
  • Fixed an intermittent issue where Automate playbook with Connect steps failed with "Currently installed Connect solution cannot support this playbook".

Security Update

  • This release includes security updates for internal code dependencies. The updates improve general security and stability, and do not directly mitigate any potentially impacting vulnerabilities.

Cloud Release Starting on: May 14, 2026

New Features

  • Introduced Connect Step in Automate, which enables users to trigger pre-configured Tanium Connect jobs directly from within Automate playbooks using the Run a Tanium Connection step.
    • This feature requires Connect Read and Connect Run permissions.
    • Connections can be configured to run asynchronously so the next playbook steps are not blocked.
    • For more information, see Tanium Automate User Guide Reference:Steps

Known Issues

  • If a connection used in a completed playbook run is later deleted, the Connect Step summary data may disappear from Run History and the connection link may return a 404.
    • Workaround: Avoid deleting connections that have been used in playbook runs if historical audit data is required.
  • When multiple playbooks attempt to run the same connection concurrently, subsequent runs may queue without a clear waiting-state message.

Security Update

  • This release includes security updates for internal code dependencies. The updates improve general security and stability, and do not directly mitigate any potentially impacting vulnerabilities.

Cloud Release Starting on: May 07, 2026

Security Update

  • This release includes security updates for internal code dependencies. The updates improve general security and stability, and do not directly mitigate any potentially impacting vulnerabilities.

Cloud Release Starting on: April 23, 2026

Resolved Issues

  • Fixed an issue where sending an email failed when the user does not have the Email Config - Read privilege.

Security Update

  • This release includes security updates for internal code dependencies. The updates improve general security and stability, and do not directly mitigate any potentially impacting vulnerabilities.

Cloud Release Starting on: April 01, 2026

New Features

  • Introduced support to send emails from Tanium Cloud to on-premises SMTP servers through satellites. An option to configure a satellite is available in the SMTP Server Profile. The profiles with a satellite configuration can be used in connections, and with Automate and Guide. For more information, see Tanium Connect User Guide.

Improvements

  • Improved connection logs for Email (Office 365 and SMTP) connections to include profile details such as host, port, and tenant information.
  • Added Exploit Type, Botnet count, and Ransomware count columns to the Tanium Comply - Vulnerability Findings Details data source in Connect.

Resolved Issues

  • Fixed an issue where connections scheduled to run during a daylight saving time transition could fail due to an incorrect time calculation.

Security Update

  • This release includes security updates for internal code dependencies. The updates improve general security and stability, and do not directly mitigate any potentially impacting vulnerabilities.

Cloud Release Starting on: March 26, 2026

Improvements

  • Starting this release, Tanium Connect uses an API token for the user or persona who runs or schedules the connection.
    • These API tokens appear on the API Tokens page in Tanium Console with descriptions of System Use Only for Connect. Connect manages these API tokens automatically.
    • To avoid disruptions, do not delete or manually rotate these API tokens, and do not delete the user or persona who initiated the connection.

Resolved Issues

  • Fixed an issue where connections configured to run as a persona failed.

Cloud Release Starting on: March 16, 2026

Resolved Issues

  • Fixed an issue where the documentation link for the Azure Monitor destination was incorrect.

Cloud Release Starting on: March 10, 2026

New Features

This release introduces a new Microsoft Azure Monitor destination.

  • This destination adds support for the Microsoft Azure Monitor Logs Ingestion API to send data to Microsoft Sentinel.
  • The Azure Monitor destination replaces the legacy Microsoft Log Analytics destination, which uses the HTTP Data Collector API from Microsoft. Microsoft is retiring the Data Collector API on September 14, 2026.
  • The existing Log Analytics destination is deprecated and will be removed in a future release. It is recommended to migrate to the Azure Monitor Destination to ensure business continuity. Microsoft migration guide: Migrate from the HTTP Data Collector API to the Log Ingestion API.

Improvements

  • Tanium Jump Gate Recordings source (previously Tanium Jump Gate Sessions) now includes request, session and command data.
  • Improved validation messages for SQL Server destinations with satellite configurations.
  • Added support to filter query.connectConnections graphql API in Gateway by connection ID, display name and description.

Resolved Issues

  • Fixed an issue where Connect connection runs failed when Reporting data included non-flattened multi-valued sensors.

Security Update

  • This release includes security updates for internal code dependencies. The updates improve general security and stability, and do not directly mitigate any potentially impacting vulnerabilities.

Cloud Release Starting on: February 04, 2026

Security Update

  • This release includes security updates for internal code dependencies. The updates improve general security and stability, and do not directly mitigate any potentially impacting vulnerabilities.

Cloud Release Starting on: January 26, 2026

Improvements

  • Implemented various improvements to support future Connect functionality.

Cloud Release Starting on: January 20, 2026

Improvements

  • Added egress allow lists warning when using Oracle Cloud Storage destination is used in a connection.

Resolved Issues

  • Fixed an issue where an email profile could not be saved after modifications.
  • Fixed an issue where an SQL server connection that uses a satellite intermittently failed to save with Could not find satellite error.

Security Update

  • This release includes security updates for internal code dependencies. The updates improve general security and stability, and do not directly mitigate any potentially impacting vulnerabilities.

Cloud Release Starting on: December 08, 2025

Improvements

  • Implemented various improvements to support future Connect functionality.

Cloud Release Starting on: November 20, 2025

New Features

  • The email server configuration now supports SMTP email server profiles in addition to the Microsoft 365 email server profiles. For more information, see Tanium Connect User Guide for configuring Email Destinations.
    • SMTP Email profiles only supports implicit TLS connections.
    • The Email (O365) destination has been renamed Email (O365 & SMTP) and is now the preferred method for configuring SMTP destinations in the connections.
    • The existing Email (SMTP) destination is deprecated and will be removed in a future release. Connections that use this destination will continue to function until then.

Resolved Issues

  • Fixed an issue in AWS S3 destination where the AWS Endpoint field did not retain the value after being edited.

Cloud Release Starting on: November 13, 2025

Resolved Issues

  • Fixed an issue where exports from the Tanium Comply (Findings) source may not return results for RAS findings.

Cloud Release Starting on: November 10, 2025

New Features

  • This release introduces Tanium Jump Gate Audit and Tanium Jump Gate Sessions sources for the upcoming Tanium Jump Gate functionality.

Improvements

  • Added Endpoint ID column option to the Tanium Comply (Findings).

Security Update

  • This release includes security updates for internal code dependencies. The updates improve general security and stability, and do not directly mitigate any potentially impacting vulnerabilities.

Cloud Release Starting on: October 29, 2025

Improvements

  • Added the Endpoint Criticality text value as a column in the Tanium Comply Findings Connect source.

Resolved Issues

  • Fixed an issue where the ValidKey filter for the Client Status source failed for numeric values.
  • Fixed an issue where Threat Response events failed to post if the EventName was longer than 100 characters.

Security Update

  • This release includes security updates for internal code dependencies. The updates improve general security and stability, and do not directly mitigate any potentially impacting vulnerabilities.

Cloud Release Starting on: October 16, 2025

Security Update

  • This release includes security updates for internal code dependencies. The updates improve general security and stability, and do not directly mitigate any potentially impacting vulnerabilities.

Cloud Release Starting on: September 29, 2025

Resolved Issues

  • Fixed an issue that prevented the creation of a new AWS S3 destination through console.

Cloud Release Starting on: August 26, 2025

New Features

  • The Cloud Storage destination now supports exporting data to Oracle Cloud Storage, in addition to Microsoft Azure Blob Storage and Google Cloud Storage. To use this feature, configure an Oracle Cloud Storage profile with a valid OCI bucket name, namespace and region along with an access ID and secret with permissions to access and update the OCI bucket. For more information, see Tanium Connect User Guide: Configuring cloud storage destinations.

Improvements

  • Added new exploit intelligence columns to the Tanium Comply (Findings) source including EPSS score, EPSS percentile, CVSS v3 Temporal Score, CVSS v4 Score, CVSS v4 Severity, CVSS v4 Threat Score, EPSS Score, EPSS Severity, EPSS Percentile, Max Maturity, CWE, and MITRE ATT&CK.
  • Added an option to select the Host and Authority Host for Microsoft Office 365 Email Server profile. Supported hosts are graph.microsoft.com and graph.microsoft.us.

Known Issues

  • Path Prefix added to cloud storage profiles cannot be deleted once saved. Workaround: The Path Prefix can be edited, or the cloud storage profile can be recreated.

Security Update

  • This release includes security updates for internal code dependencies. The updates improve general security and stability, and do not directly mitigate any potentially impacting vulnerabilities.

Cloud Release Starting on: August 05, 2025

Improvements

  • Added 'Definition Last Modified' column to the Tanium Comply (Findings) - Vulnerability Finding source. This date represents the latest date that a CVE definition was updated.
  • Improved export processing time associated with the Connect Comply (Findings) source.
  • Removed Create connection option for users with Connect read permissions.

Resolved Issues

  • Fixed an issue where creating a Cloud Storage Profile for Microsoft Azure Blob Storage did not set the default value for Provider.
  • Fixed an issue where an expanded connection in the connection list showed an incorrect schedule.

Known Issues

  • Tanium Reporting added the Provider Type and Entity Type columns to the ADI – Basic Inventory managed report. These new columns are included in existing connections by default and might impact the connections that use this report. If you want to exclude these columns or any other columns from the export, edit the connection and deselect the columns in the Configure Output section.

Security Update

  • This release includes security updates for internal code dependencies. The updates improve general security and stability, and do not directly mitigate any potentially impacting vulnerabilities.

Cloud Release Starting on: July 17, 2025

New Features

Improvements

  • Added Cloud Storage as a destination for Tanium Reporting (Reports and Dashboard) source.

Cloud Release Starting on: June 30, 2025

Improvements

Cloud Release Starting on: June 10, 2025

Resolved Issues

  • Fixed an issue on the 'Import Connections' page where the 'Save' button continued to show a spinner instead of text and was clickable after the import failed.

Cloud Release Starting on: May 22, 2025

Improvements

  • The list of connections on the 'Overview' and 'Connection' pages now show the owner of each connection, enhancing visibility and management for users.

Cloud Release Starting on: May 07, 2025

Improvements

  • Removed the deprecated "Filter by Group" and "Include excepted findings" option in the Tanium Comply (Findings) source for new connections. The recommended approach is to include the required filters in the source Report.
  • Moved Microsoft Copilot configuration to the Integration Gallery.

Resolved Issues

  • Fixed an issue where Tanium Threat Response Event source showed all columns regardless of the selected event.

Security Update

  • This release includes security updates for internal code dependencies. The updates improve general security and stability, and do not directly mitigate any potentially impacting vulnerabilities.

Cloud Release Starting on: April 17, 2025

Security Update

  • This release includes security update for internal code dependencies. The updates improve general security, and stability, and do not directly mitigate any potentially impacting vulnerabilities.

Cloud Release Starting on: March 27, 2025

Improvements

  • Added Detected Products and Detected Common Platform Enumerations columns to the Tanium Comply (Findings) source.
  • Added “createdWithVersion” field for connections using the Tanium Comply (Findings) source.

Resolved Issues

  • Fixed an issue where connections failed with the Tanium Comply (Findings) source, Finding Type – Network Unauthenticated and no Report selected.
  • Fixed an issue with “Error: No matching definitions found” on rows immediately after batch size with the Tanium Comply (Findings) source.

Security Update

  • This release includes security update for internal code dependencies. The updates improve general security, and stability, and do not directly mitigate any potentially impacting vulnerabilities.

Cloud Release Starting on: March 19, 2025

Resolved Issues

  • Fixed a cosmetic UI issue with Tanium Comply (Findings) source.

Cloud Release Starting on: March 17, 2025

Security Update

  • This release includes security update for internal code dependencies. The updates improve general security, and stability, and do not directly mitigate any potentially impacting vulnerabilities.

Cloud Release Starting on: February 24, 2025

Security Update

  • This release includes security update for internal code dependencies. The updates improve general security, and stability, and do not directly mitigate any potentially impacting vulnerabilities.

Cloud Release Starting on: February 17, 2025

Enhancements

  • Added validations for connections with a Cloud Storage destination to ensure the destination URL is added to the Egress Allow List in Tanium Cloud Management Portal.
  • Improved the remediation message for Unix package and SBOM findings with the Comply (Findings) source.

Cloud Release Starting on: January 27, 2025

Resolved Issues

  • Fixed an issue when importing connections; errors from one connection no longer surface to other unaffected connections.

Security Update

  • This release includes security update for internal code dependencies. The updates improve general security, and stability, and do not directly mitigate any potentially impacting vulnerabilities.

Cloud Release Starting on: January 09, 2025

New Features

  • The External Storage (Blob) destination is now named the Cloud Storage destination.
  • External blob storage profiles, accessible from the Main menu at Connect > Overview > Settings, are renamed to Cloud Storage profiles. All Cloud Storage profiles for supported Cloud providers are visible to authorized users.
  • The Cloud Storage destination now supports exporting data to Google Cloud Storage, in addition to Microsoft Azure Blob Storage. To use this feature, configure a Cloud Storage profile with a valid GCP bucket name, a user or service account with permissions to access and update the GCP bucket, and an HMAC key access ID and secret. Refer to the user guide for more details on this feature.

Enhancements

  • The 4 GB per file size limit on compressed and uncompressed blob files created with the Cloud Storage destination is increased to a maximum of 200 GB per file.

Resolved Issues

  • Added validation checks in the Cloud Storage profile account name field when used with Microsoft Azure Blob Storage provider.
  • Fixed an issue with the Comply (Findings) source where exporting vulnerability findings with the Absolute First Found column caused other date columns to be blank for unmanaged findings.

Cloud Release Starting on: November 05, 2024

Enhancements

  • Improved the warning messages in connection run logs for connections with numeric or regex filters.

Resolved Issues

  • Fixed an issue with the Comply (Findings) source where the First Found and Last Scan columns did not export the proper values.

Cloud Release Starting on: October 09, 2024

Resolved Issues

  • Fixed the following issues with column customizations:
    • New columns can now be added to existing connections.
    • The Reorder Columns button now supports column sorting.
    • Existing connections with Asset sources now retain column customizations when the Asset report or view changes.
    • Column customization is now retained when changing source settings, such as filters, report, view, question, etc.
  • Fixed an issue where the Connect workbench might crash if a user opened a connection with an HTTP destination with no defined headers.

Security Update

This release includes security update for internal code dependencies. The updates improve general security, and stability, and do not directly mitigate any potentially impacting vulnerabilities.

Known Issues

Although this version improves column customizations in many scenarios, customizations are lost if you change the output format for an existing connection.

Cloud Release Starting on: September 05, 2024

New Features

  • Users can now send data batched by bytes to HTTP destinations. By default, batching by bytes is enabled for newly-created connections with an HTTP destination. This configuration is accessible to users under the Advanced section of HTTP destination. Please refer to the user guide for more details on this feature.

Enhancements

  • Improved the “Hide No Results” UI tooltip under the Saved Question source to clarify that answers with no results in any column are not sent to the connection destination.
  • Simplified Microsoft Copilot for Security configuration page.
  • Improved RBAC settings used for the Copilot for Security integration. A persona named Microsoft Copilot for Security Operator is available with permissions limited to Copilot for Security integration functionality. Users assigned this persona can generate an API token from the Copilot for Security integration settings.

Resolved Issues

  • Fixed an issue with the Comply (Findings) source to now display Image specific columns like “Image Hash”, “Image Name”, “Label” and “Registry” only with a valid Cloud Workloads license.
  • Fixed an issue where the connection runs could hang due to network issues with the Tanium Server database.
  • Fixed the link to access the Connect REST API documentation from the Tanium Console.
  • Fixed an issue where renaming the destination labels under Columns while editing a connection would not save the updated destination label names.
  • Fixed an issue where existing Connect jobs with HTTP destinations had intermittent issues with proxy settings.

Cloud Release Starting on: July 29, 2024

Enhancements

  • Improved variable substitution to provide source details while using the Reporting sources.

Changes to included components

Upgraded from Node 18.20.2 to Node 20.15.1.

Resolved Issues

  • Fixed an issue where the Server Information source, which is not applicable to Tanium Cloud environments, erroneously appeared in the list of available connection sources.
  • Fixed an issue in the Asset source when exporting data with long column names.
  • Fixed an issue in the Reporting source where reports with duplicate column names or reports with the same columns from duplicate parameterized sensors with different parameters were used. Such reports are now disallowed and only reports with unique column names are allowed.

Cloud Release Starting on: July 11, 2024

Release Notes Update Date: August 15, 2024

New Feature

Users can now send data to Microsoft Azure Blob Storage and save the data as an append blob, block blob, or page blob file. Please refer to the user guide for more details on this feature.

Enhancements

  • Improved logging with the Email (O365) destination.
  • Improved variable substitution to provide source details such as Vulnerability or Compliance while using the Comply Findings source.
  • Added truncation of values longer than 32,758 characters to 32,758 characters when using the Comply (Findings) source, to improve importing results into many spreadsheet applications.

Resolved Issues

  • The certificates on TCP connections with Trust on First Use (TOFU) are now pinned regardless of the certificate derivation from a trusted Certificate Authority (CA). Disable TOFU on these connections if connection runs result in a certificate error. UI notifications are available for users to review the impact on existing TCP connections with TOFU and reconfigure as needed.
  • Specific month schedules now run as expected for newly created connections. In earlier versions of Connect, cron jobs were executed one month after the intended month. UI for existing connections is also updated to display the actual execution time.
  • Fixed a filtering issue when viewing the connection list where filter text containing spaces did not return any results.
  • Fixed an issue with editing the filters of an existing connection using a regular expression.
  • Fixed an issue where you could not re-use Reporting sources when exporting and importing connections across different environments.
  • Fixed an issue with the Comply (Findings) source to avoid de-duplication of Test ID when using the CVE Investigation Details sensor.
  • Fixed an issue with the Comply (Findings) source to provide meaningful error message when there are no derived field values.
  • Fixed an issue with the Comply (Findings) source to provide consistent data across Connect exports, Workbench exports and the Workbench itself.
  • Fixed an issue with the cron expressions that specify both a day of week and day of month. These cron expressions now run when it matches either criteria. For example, the cron expression * * 1 * 1 matches the first day of the month and every Monday. For the month of August 2024, this cron expression would run on 1st (1st day of August), 5th (Monday), 12th (Monday), 19th (Monday) and 26th (Monday).

Cloud Release Starting on: June 10, 2024

Enhancements

  • Stability improvements.

Cloud Release Starting on: April 30, 2024

Resolved Issues

  • Fixed an issue where Connections to an S3 bucket with Object Lock enabled and a Governance Retention Period set were failing.

Enhancements

  • Stability improvements.

Cloud Release Starting on: April 16, 2024

Release Notes Update Date: April 24, 2024

Enhancements

  • Comply Findings source has improved truncation of long values. Now all fields are truncated, including Criteria, at 32,767 characters. This improves importability in many spreadsheet applications.
  • Improved stability.

Resolved Issues

  • Fixed an issue where Comply jobs failed when specifying a report for network unauthenticated scan exports.
  • Fixed an issue related to running stored procedures before and after a SQL connection.
  • Fixed an issue where an S3 destination failed if the AWS URL was used as a custom endpoint.

Known Issue

  • Connections with an AWS S3 destination that have Object Lock enabled will fail to upload.

Cloud Release Starting on: April 2, 2024

  • Fixed an issue where the event group dropdown could take longer than expected to fully load when creating a new connection with an event source.

Cloud Release Starting on: March 25, 2024

Release Notes Update Date: April 2, 2024

New Feature

  • Configuration settings for the Tanium integration with Microsoft Copilot for Security are available in the Connect settings page. For more information, visit the Tanium Resource Center.

Resolved Issues

  • Fixed an issue where creating a connection for a Tanium Threat Response Event would default the {source} to "Detect" instead of "Tanium Threat Response".
  • Fixed an issue where a failed attempt to import a connection configuration would appear successful in the Connect workbench.
  • Fixed an issue where a connection could be created for an invalid event source, resulting in a failed connection.
  • Fixed an issue where a warning referencing the Tanium Cloud Management Portal egress allow list may appear for connect jobs that continue to successfully run.
  • Fixed an issue where connections using Tanium Asset as the source may export incomplete results.
  • Miscellaneous bug fixes and supportability improvements.

Cloud Release Starting on: March 5, 2024

Resolved Issues

  • Fixed an issue where having an invalid URL in an ElasticSearch destination could prevent the list of connections from loading on the Connections page.
  • Miscellaneous bug fixes and supportability improvements.

Cloud Release Starting on: February 26, 2024

Enhancements

  • Connections with an AWS S3 destination will no longer send empty files when no data is returned by a connection. A new advanced setting, “Write File Even if Empty”, can be enabled for any connection where this behavior is not desired.
  • In the Settings page, renamed the “Email Destination Settings” tab to “Email Server Profiles”.
  • Connect now uses the Tanium Secrets shared service for storing credentials.
  • Upgraded AWS SDK for JavaScript to v3.

Resolved Issues

  • Fixed an issue where the Computer ID column was omitted from Client Status sources when they were configured to use an ElasticSearch destination.
  • Fixed an issue where a connection using a Tanium Reputation source could be created with a Timeout set to 0, resulting in a connection that could never complete.
  • Fixed an issue where a connection could be created for a Tanium Reputation destination without entering a value in the Hash Field, resulting in a failed connection.
  • Fixed an issue where exported connection configurations with Tanium Reporting sources could not be imported into the same environment.
  • Fixed an issue where importing an exported connection configuration would occasionally fail.
  • Fixed an issue where a failed attempt to import a connection configuration would appear successful in the Connect workbench.
  • Miscellaneous bug fixes and supportability improvements.


Cloud Release Starting on: February 14, 2024

Resolved Issues

  • Miscellaneous bug fixes and performance improvements.

Cloud Release Starting on: January 3, 2024

Resolved Issues

  • Fixed an issue where Audit Source export may include additional historical information.

Cloud Release Starting on: December 13, 2023

Improvements

Cloud Release Starting on: November 30, 2023

Updated:December 12,2023

New Features

Cloud Egress Allow List Awareness

  • All configured Egress Allow List entries are available in Connect settings for easy access.
  • Connection destinations are checked against the Egress Allow List for external access.
  • Destinations with missing entries in the Egress Allow List are flagged in the workbench for review.
  • Added logging in connection run logs where egress entries do not exist to allow external system access.
  • For more information on Egress Allow List Management, see

New Gateway Functionality

  • The following new fields add new Gateway request functionality for Connect, and are added at stability index 1.2 - Experimental (Release Candidate):
    • Connect requests
      • mutation.connectConnectionStart - start a Connect connection run
      • mutation.connectConnectionStop - stop an in-progress Connect connection run
      • query.connectConnection - retrieve a Connect connection by ID
      • query.connectConnections - retrieve Connect connections
      • query.connectRun - retrieve a Connect connection run by ID
      • query.connectRuns - retrieve Connect connection runs
  • For more information, see

Improvements

  • Connections will operate in multiple process mode only for efficient resource usage on Tanium infrastructure.
  • Session management improved for large payloads.
  • Connections with an invalid configuration are marked as failed on their next scheduled run.
  • Miscellaneous improvements in the AWS S3 destination.
  • Miscellaneous improvements to Connection Schedule view in the workbench.
  • Miscellaneous improvements to service reliability, performance, logging and stability.

Resolved Issues

  • Fixed an issue where Connection run logs would not expire based on user-defined settings on Windows Tanium infrastructure.
  • Fixed an issue where View Certificate and Delete Certificate buttons may not be available on Socket Destinations.
  • Fixed an issue where Platform Audit exports may not contain audit_type information in the export.
  • Fixed an issue where New Items Filter would update on failed runs.
  • Miscellaneous bug fixes and supportability improvements.

SQL Server Destination

  • Fixed an issue with customizing exports for SQL Server destinations.
  • Fixed an issue in SQL Server destination where session would timeout for pre-run stored procedure with long runtimes.
  • Fixed an issue with SQL Server destination where Retrieve Properties and Retrieve Columns with an Azure SQL instance might not function as expected.

Cloud Release Starting on: October 19, 2023

Resolved Issues

  • Miscellaneous bug fixes.

Cloud Release Starting on: October 2, 2023

Improvements

  • Miscellaneous supportability improvements for AWS S3 destination.

Cloud Release Starting on: September 13, 2023

Improvements

  • Miscellaneous supportability improvements.

Cloud Release Starting on: September 5, 2023

Improvements

  • Miscellaneous AWS S3 error log improvements in connection run logs.

Cloud Release Starting on: August 8, 2023

Improvements

  • Improved Connect homepage charts for clearer connection status.
  • Improved Microsoft Log Analytics destination to allow alternate Azure domains.
  • Miscellaneous error log improvements in connection run logs.

Resolved Issues

  • Miscellaneous bug fixes and support improvements.

Security Update

  • This release includes security updates. Details of the issue, including affected versions, and mitigation information, can be obtained within Tanium's Community site, or by contacting support.

Cloud Release Starting on: July 26, 2023

Resolved Issues

  • Miscellaneous bug fixes.

Cloud Release Starting on: June 26, 2023

Improvements

  • Improved error messages for missing permissions.
  • Miscellaneous support and logging improvements.

Cloud Release Starting on: June 22, 2023

Improvements

  • An install dependency was updated to Reporting version 1.8.
  • Improved error messages for incompatible module dependencies.
  • Improved options for sending emails if no results were available for export.
  • Tanium Threat Response Audit Source has an updated name to distinguish from Alerts source.
  • Miscellaneous performance and support improvements.

Resolved Issues

  • Fixed an issue with the SQL Server destination where the ID column was not incremented.
  • Fixed an issue where parameterized sensors might have exported incomplete results.
  • Miscellaneous bug fixes

Cloud Release Starting on: May 11, 2023

Resolved Issues

  • Fixed an issue where Emails might be set to send if no results returned from a Tanium Connect source.

Cloud Release Starting on: May 3, 2023

Resolved Issues

  • Miscellaneous bug fixes, performance and supportability improvements.

Security Update

  • This release includes security updates. Details of the issue, including affected versions, and mitigation information, can be obtained within Tanium's Community site, or by contacting support.

Cloud Release Starting on: May 1, 2023

Improvements

  • Added new Audit types in Tanium Audit Source.
  • Added “audit_name” column to identify login and logout type of activity
  • New "Send Email" feature when the result set is empty.
  • Enhanced help text in the SQL server destination.
  • Improved user experience in the connection update form.
  • Added a new page in Connect for Connection Schedule views.

Resolved Issues

  • Fixed an issue where column customization might be missing for Elasticsearch destinations.
  • Fixed an issue where UDP connection options were available on Cloud environments that were not usable.
  • Fixed an issue where column customization behavior was unclear when updating Source or Destination in the Connect edit form. These options have been disabled; a new connection can be created if you want to change the Source or Destination.
  • Fixed an issue where intermittent failures might occur when using the Microsoft Log Analytics destination.
  • Fixed an issue where logs older than 30 days were not deleted.
  • Fixed an issue where renaming a column name did not persist.
  • Fixed an issue where regular expression filter might not filter the Threat Response Event Alert Match Details column.
  • Miscellaneous performance and support improvements.
  • Removal of deprecated Audit Log Source.

Cloud Release Starting on: April 20, 2023

Resolved Issues

  • Miscellaneous bug fixes.

Cloud Release Starting on: March 20, 2023

Resolved Issues

  • Fixed an issue where Column customization may not be available for Elasticsearch destination

Cloud Release Starting: March 7, 2023

Notable Changes

  • Support for Microsoft 365 Outlook Email with Modern Authentication was added in Tanium Connect. Now you can send email exports using Microsoft Office 365.
- Microsoft Graph Application configuration instructions can be found on Tanium's Community site.
  • A new Email configuration settings page for O365 Account profiles was added in the Connect workbench, as seen in the following image:

Email Settings configuration instructions are available at Tanium Connect User Guide.
  • Configure a CMP network egress allow list rule for the following Microsoft 365 URLs to enable access for Microsoft 365 mail resources:
  1. graph.microsoft.com:443
  2. login.microsoftonline.com:443
  3. outlook.office.com:443 if you assign the Mail.ReadWrite permission to the Azure AD application
  • A new destination for Email (O365) was added to the Connection form.
  • A new field to customize the Email body:

A walkthrough of the new O365 destination is available at Tanium Connect User Guide.

Resolved Issues

  • Fixed an issue where Connections using CEF format were not available in the workbench.
  • Fixed an issue where Asset source columns may appear with duplicate headers, preventing updates to a connection configuration.
  • Miscellaneous performance and support improvements.

Cloud Release Date: February 28, 2023

Security Update

  • This release includes security updates. Details of the issue, including affected versions, and mitigation information, can be obtained within Tanium's Community site, or by contacting support.

Cloud Release Date: February 22, 2023

Fixes

  • Fixed migration failures when the Reputation was chosen as a destination for a connection.

Security Update

  • This release includes security updates. Details of the issue, including affected versions, and mitigation information, can be obtained within Tanium's Community site, or by contacting support.

Cloud Release Date: February 15, 2023

Fixes

  • Fixed an error that prevented new connections from being created/edited when Tanium Reputation was chosen as the destination

Cloud Release Date: February 2, 2023

Fixes

  • Fixed an error that occurs when attempting to authenticate with the IBM Cloud IAM

Cloud Release Date: January 25, 2023

Improvements

  • Improved user experience when creating a user’s first connection
  • SQL destinations now allow an advanced option for Multi-Subnet Failover
  • Improved error logging to include protocol and port information where it is available
  • Added TLS 1.3 support for socket based destinations
  • Miscellaneous performance and support improvements

Fixes

  • Fixed an issue where connections using the same port with multiple destinations could fail
  • Fixed an issue where some Sources were not available in the Connection form after a service restart

Security Update

  • This release includes security updates. Details of the issue, including affected versions, and mitigation information, can be obtained within Tanium's Community site, or by contacting support.

Cloud Release Date: December 13, 2022

Improvements

  • Trends Sources can be sent to SMB File Share Destination
  • New SMTP connections use attachments by default
  • Improved updates to connection status
  • Improved session handling with Tanium Audit Source
  • Older Support Bundles on disk removed post migration
  • Improved bulk action User Interface
  • Miscellaneous performance and support improvements
  • Deprecated features labeled in the workbench:
  1. Syslog format (Alternate formats are available in the Connection form)
  2. Palo Alto Wildfire (Deprecation announced in October 2022)
  3. Detect Intel Provider (Deprecation announced in October 2022)
  4. Legacy Audit Log source (Deprecation announced in November 2020)

Fixes

  • Fixed an issue where the Connect workbench fails to load if connection timezone was set to "US/Pacific-New". Existing Connection timezones migrated to "America/Los_Angeles"
  • Fixed an issue where Asset exports in large environments may fail
  • User prompt added when using Connect with CAC/Smart Card Authentication
  • Added a specific error message when Saved Questions used in a connection cannot be referenced by name
  • Fixed an issue where updating Event - Threat Response Audit Report results in a 404 error

Security Update

  • This release includes security updates. Details of the issue, including affected versions, and mitigation information, can be obtained within Tanium's Community site, or by contacting support.

Cloud Release Date: December 6, 2022

Important

  • Connect now identifies migration blocking database issues and displays an upgrade readiness banner if it detects a problem. Navigate to the Connect workbench as a Platform Administrator to verify readiness for future upgrades.

Improvements

  • Added additional checks for workbench notifications of database migration readiness.

Cloud Release Date: November 21, 2022

Important

  • Connect now identifies migration blocking database issues and displays an upgrade readiness banner if it detects a problem. Navigate to the Connect workbench as a Platform Administrator to verify readiness for future upgrades.

Fixes

  • Fixed an issue where connections that use New Item Filters could fail

Cloud Release Date: November 7, 2022

Important

  • Connect now identifies migration blocking database issues and displays an upgrade readiness banner if it detects a problem. Navigate to the Connect workbench as a Platform Administrator to verify readiness for future upgrades.

Fixes

  • Resolved “too many open files” issues

Cloud Release Date: October 28, 2022

Fixes

  • Added test and warning banner for migration related corner case to prevent unexpected issues
  • Increased number of file descriptors available to Connect for improved migration and scalability characteristics
  • Improved migration support for large field values (such as addresses or regular expressions)
  • Removed a misleading error that could occur after a connections stalls for 60 minutes

Cloud Release Date: October 12, 2022

Fixes

  • Corrected an issue with the Reporting Source's dropdown report selector

Cloud Release Date: October 3, 2022

Important

  • Palo Alto Networks Wildfire IOC Connection is deprecated and will be removed from a future release. The Reputation Service should be used for Palo Alto Networks Wildfire review of hashes discovered in Tanium
  • Changes to Tanium Cloud egress behavior with S3 destinations. In some cases, customers may need to review connection history and adjust their egress rules

Improvements

  • Connections are now Persona-aware
  • The Connect Write (All) permission is removed from the default Connect user roles, and the Connect Owner (Write) permission is added

Fixes

  • Corrected overzealous Hide No Results setting in which any [No Results] would block results
  • Corrected error with multi-line column results and SQL Server destinations
  • Corrected issues with registration of module plugins during upgrades
  • Corrected an issue in which disabling and re-enabling a connection with an advanced schedule could clear that schedule.

Security Update

  • This release includes security updates. Details of the issue, including affected versions, and mitigation information, can be obtained within Tanium's Community site, or by contacting your TAM.

Cloud Release Date: August 9, 2022

Improvements

  • Upgraded various third-party libraries to most recent versions

Cloud Release Date: July 19, 2022

Improvements

  • The Tanium Audit Source now has a default lookback of one day on new connections to ensure that the first run exports useful data for verifying the connection.
  • Tanium Cloud customers may now modify the per connection memory limit for connections.
  • Improved the performance and stability of the AWS S3 destination. For some Tanium Cloud customers, this might mean that additional S3 bucket URLs must be added to the proxy exception list in the Cloud Management Portal depending on what region their buckets are located in.
  • The Elasticsearch destination no longer replaces dots with underscores. This is no longer necessary in modern versions of Elasticsearch.

Notable Changes

  • This release adds a new connection destination: Microsoft Log Analytics. You can send data from Connect to Microsoft Azure Monitor and query the data using Azure Log Analytics.

Known Issue

  • For connections that output data in CSV file format, if you select Include Headers but do not customize the output columns, the output file might not include column headers. As a workaround, when creating or editing your connection, if you select Include Headers, select Columns to expand the column customization section, then save the connection.

Resolved Issues

  • Fixed an issue where Connect global memory limits were not enforced in some installations.
  • Fixed an issue in downloading connection run logs.
  • Fixed issues with the Elasticsearch destination not properly generating document IDs.
  • Fixed an issue where the Elasticsearch destination did not properly report connections as failed.
  • Fixed an issue where changing the data format on a connection would remove column customizations.
  • Tabs can now be used as a delimiter in CSV files.
  • Fixed an issue where the Content-Type could not be changed from application/json on HTTP headers.

Cloud Release Date: June 23, 2022

Security Updates

  • This release includes security updates. Details of the issues, including affected versions and mitigation information, can be obtained within Tanium's Support Portal or by contacting your TAM.

Cloud Release Date: June 15, 2022

Security Updates

  • This release includes security updates. Details of the issues, including affected versions and mitigation information, can be obtained within Tanium's Support Portal or by contacting your TAM.

Cloud Release Date: May 2, 2022

Improvements

  • Improved the Connect service CPU and memory utilization.
  • Improved the Connect service startup time.
  • Improved log messages for connections with Elasticsearch destinations configured.
  • Improved connection artifact cleanup.
  • Improved log statements when generating an empty report file.
  • Improved connections with a saved question connection source that returned Results Currently Unavailable to more reliably return data.
  • Improved AWS S3 destination stability.
  • Improved SMB destination stability.

Notable Changes

  • Enabled temporary verbose logging per connection.

  • Added a new ISO 8601 UTC (Zulu) column customization date/time format, which outputs timestamps with the format YYYY-MM-DDhh:mm:ssZ and set to UTC. Renamed the RFC-3339 Timestamp column customization date/time format to ISO 8601 with time zone. After you upgrade, connections with the RFC-3339 Timestamp column customization date/time format are updated to display ISO 8601 with time zone, but the output for column customization remains the same.
  • Fixed an issue where the Elasticsearch destination _id column options were improperly defined. The Elasticsearch destination _id value is now generated as a hash value of the combination of selected column values, or a unique _id value if you do not select any columns.

Known Issue

  • If you define an Elasticsearch destination _id column for a connection, you cannot rename or remove the source columns used to generate it in column customizations for this connection.

Resolved Issues

  • Fixed issues where editing an existing connection resulted in UI errors.
  • Fixed an issue where a connection stalled and failed to complete if the source configuration was not valid.
  • Fixed an issue with the Connection Read role permission.
  • Fixed an issue where a connection displayed its owner as the currently logged in user, instead of the proper owner.
  • Fixed an issue where connections with the Tanium Reputation destination allowed invalid batch sizes.
  • Fixed an issue where a connection Last Modified date updated shortly after each run. Connections now update the Last Modified date only if you update the connection configuration.
  • Added miscellaneous fixes and improvements for the Connect service, the Create Connection page, and connection logging.

Cloud Release Date: March 30, 2022

Resolved Issues

  • Fixed an issue where connections using the Tanium Data Service source without a Computer Group did not complete.
  • Fixed an issue where a connection’s logs displayed Invalid Date Invalid Date in the Started field on some web browsers.
  • Fixed an incorrect link to the Connect Release Notes.

Cloud Release Date: March 11, 2022

Enhancements

  • Added Quick Access link support for Connect.
  • Updated the Tanium Reputation source to use a default timeout and batch size.

Known Issues

  • The HTTP destination default header cannot be updated. If you want to include a different header, delete the default header, then click Add Header and update the new header.
  • If you use a web browser other than Google Chrome to view a connection’s logs, the Started column may display Invalid Date Invalid Date.

Resolved Issues

  • Added a default "No Filter" Computer Group option to the Saved Question source. This returns the default functionality to match the behavior of Tanium Interact and fixes an issue where customers were seeing different data between results when using the recent results cache.
  • Resolved an issue with the Palo Alto WildFire source.
  • Fixed an issue where connections to a Detect Intel Provider destination would not run.
  • Fixed an issue where the UI prompted the user to enter passwords before saving a connection, even if no destination details changed.
  • Fixed an issue where email connections would fail if you selected a Compression Method from the drop-down, and cleared Attachment.

TaaS Release Date: September 9, 2021

Enhancements

  • When creating or modifying a connection, the destination configuration enables cloning or reuse of existing destinations.
  • The HTTP destination now supports IBM Cloud IAM API keys, enabling customers to send data to IBM Security and Compliance Cloud.

Notable Changes

  • The Connect API is updated to support IBM Cloud IAM - API Key authentication. If you make a POST request to the /v1/destinations/https route, the useAuthentication optional parameter is now a string data type instead of a boolean data type. The default value is none. Allowed values are none (no authentication used), basic (Basic authentication) and oauth2ibm (IBM Cloud IAM - API Key authentication).
    • If you previously made a POST request to this route with "useAuthentication" : "false" in the request body, or did not define useAuthentication, update the name-value pair to "useAuthentication" : "none" to continue using no authentication.
    • If you previously made a POST request to this route with "useAuthentication" : "true" in the request body, update the name-value pair to "useAuthentication" : "basic" to continue using basic authentication. 
    • If you want to make a POST request to this route using IBM Cloud IAM - API Key authentication, include the "useAuthentication" : "oauth2ibm" name-value pair in your request body to use IBM Cloud IAM - API Key authentication. 

Resolved Issues

  • Fixed an issue where selecting a parameterized sensor with the Tanium Data Service source caused connections to not resolve.
  • Fixed out-of-memory errors for certain email connections.
  • Increased the stall detection for connections from 20 minutes to 60 minutes.

TaaS Release Date: September 8, 2021

Resolved Issues

  • Fixed a bug where uninstalling a module caused the Connect UI to not load properly.

TaaS Release Date: July 19, 2021

Resolved Issues

  • Fixed bug to improve module stability.

TaaS Release Date: Jun 23, 2021

Resolved Issues

  • Minor bug fixes.

TaaS Release Date: May 17, 2021

Resolved Issues

  • Increased connection timeout to 60 minutes. If a connection fails to send any data in a 60 minute period, Connect automatically terminates the connection.

TaaS Release Date: Apr 29, 2021

Enhancements

  • Includes updates to the latest core user interface components for minor UI fixes for accessibility, charting, and theme capabilities.

Resolved Issues

  • Improved error handling for S3 destinations when a proxy server is in use.
  • Fixed issue where some Connect jobs using saved questions failed with a 500 error.
  • Fixed issue that caused the logs page to crash when scrolling.
  • Fixed formatting issue that caused an error in AWS S3 connections.
  • Minor bug fixes.

TaaS Release Date: Mar 25, 2021

Resolved Issues

  • Performance Improvements
  • Improved reliability for Saved Question and TDS Sourced Connections

TaaS Release Date: Mar 4, 2021

Resolved Issues

  • Fixed an issue where using a filter in a connection could cause the connection to silently fail.

TaaS Release Date: Feb 16, 2021

Resolved Issues

  • Fixes connections failing with SQL server when using stored procedures with parameters.

TaaS Release Date: Feb 10, 2021

Resolved Issues

  • Enhancements for new module import behavior.

TaaS Release Date: Feb 5, 2021

Resolved Issues

  • Fixed issue where connections that use a Saved Question source might complete before retrieving all results.

TaaS Release Date: Jan 27, 2021

Notable Changes

  • The connect-crypto-schedule plugin schedule is now used for the Connect service account, in addition to the crypto-store keys. The legacy connect-service-account plugin schedule will automatically be removed.

Enhancements

  • Significant updates to the Tanium Audit Source to improve reliability and scale.
    • Now the default for use on Tanium Core Platform 7.4.4.1147 and later.
    • Audit Source is unavailable on older platforms for API compatibility.
    • Users of previous versions of the Tanium Core Platform can continue to use the Tanium Audit Log source.
  • Connect now automatically aborts connection runs that have stalled and block other connections from running. Connections abort if they do not send any rows to the destination in a 20 minute window.
  • Tanium Detect Event Source has been renamed to Tanium Threat Response.
  • SMB destinations now support format variables for file names.
  • Multiple improvements to the stability of the crypto store in Connect.
  • Connect waits for full service startup before enabling editing in the UI.
  • Service performance improvements resulting in significantly improved connection run times, particularly in connections that use the TDS source to a socket destination.
  • Multiple UI improvements throughout the Connect workbench.

Resolved Issues

  • Corrected PostgreSQL statement to remove user plugin schedules for deleted Tanium users which deleted more plugin schedule records than expected.
  • Fixed issues connecting to SQL Server browser service.
  • Fixed issue where the Connect User role could not manually run connections.
  • Fixed issue where simultaneously running multiple Comply connections produced incorrect results.
  • Improved logging to reduce log size.
  • Fixed issue where AWS S3 run logs incorrectly indicated object write prior to a successful write.
  • Fixed issue where Authentication Audit data was collapsed based on the object_id and not showing additional entries for the same object_id.
  • Fixed issue where the Flatten Results default settings for the TDS source was different than for the Saved Question source.
  • Fixed issue where Connect failed to write to SQL Database in Azure.
  • Fixed issue where SQL connections lost credentials after restarting the Connect service.
  • Fixed issue where connection runs failed on "Cannot read property 'cs' of undefined".
  • The Connect User role can no longer change destinations for connections that belong to the Connect Administrator role.
  • Fixed issue where the New Items Filter stopped working unexpectedly.
  • Clarified the timestamp format in column customization; options now include RFC-9333 rather than RFC-8601 to provide more clarity. Consult the RFC for several different acceptable treatments of time zone designators depending on location and settings used.
  • Fixed issue where users could not customize columns with Asset views if there was more than one saved view.
  • Fixed errors in Asset report column customizations.
  • Fixed issue where users were unable to import connections from JSON files.
  • Fixed issue where connections could freeze in running or starting states.

TaaS Release Date: Dec 22, 2020

Resolved Issues

  • Automatically terminate connections that have stalled for 20 minutes.

TaaS Release Date: Dec 8, 2020

Security Update

  • This release includes security updates. Details of the issue, including affected versions, and mitigation information, can be obtained within Tanium's Community site, or by contacting your TAM.

TaaS Release Date: October 13, 2020

Enhancements

  • This release includes a refreshed user experience, bringing more reporting, consistency, and configurability to the forefront.
  • The ServiceNow destination is deprecated. Customers who need to create cases should use the Email destination instead. This is not related to the recent announcement of the Service Graph Connector, which is for populating a CMDB rather than creating cases.
  • The Audit Log source is deprecated in favor of the new API-based Tanium Audit source. Existing Audit Log connections will continue to operate, but new connections must be made with the Tanium Audit source.

Resolved Issues

  • Renamed the Tanium Detect event source to Tanium Threat Response.
  • Fixed an issue where a 400 error occurred after clicking Create Connection from the Connect Home page.
  • Fixed an issue where the Include headers check box was not displayed for all relevant formats.
  • Fixed link from Connect Help page to the API documentation.
  • Fixed an issue where Connect failed to load in Internet Explorer 11.

Known Issues

  • While destination settings can be changed for all connections that use the destination, destination names are immutable.
  • Connect now includes embedded Trends charts. These charts are updated when you update Connect. To see the latest Connect boards through Trends, make sure to re-import the initial gallery.

TaaS Release Date: August 28, 2020

Security Update

  • This release includes security updates. Details of the issue, including affected versions, and mitigation information, can be obtained within Tanium's Community site, or by contacting your TAM.

Product Documentation and Resources