We would like to inform you that we are going to have new releases over Comodo ONE Portal, IT and Security Manager and Comodo Client Security (for Windows and Mac) on Saturday (10/08/2016) morning. ITSM Portal will be on maintenance mode for 6 hours on early Saturday but we expect to have no service outage in general. If you observe any brief connectivity issues, please retry later in the day.
In addition to user interface and experience improvements, you can see the list of new features, improvements and bug fixes below.
Comodo One Portal
New Features
Quick Action widget is now added to the Comodo ONE dashboard so you can access main actions easily, starting from the first login!
Quick Start pop-up is added so that you can take guidance about main actions and schedule demos any time you want.
Auto Discovery and Deployment Tool saves time by enabling you to make bulk installations effortlessly
Drill Down Functionality has the following widgets added so that you can monitor details of related data
Security Status
Ticket Data
Endpoint Patch Status
Activity Status
Device Type
Operating Systems
Profile Status
Sales Funnel
Executive Valkyrie Report is added so you can get a brief result summary of file verdict and unparalleled protection to show your effort to your customer
Executive File Statistics Report is another brand new report. Now you can check all work done in terms of file statistic via file verdict, unparalleled protection and file statistic details to provide a better environment for your customer.
Ability to add company logo and support/contact information for report and email template is enabled so that you serve your customer more professionally with your own logo and contact information.
Ability of configuration current tab/new tab settings are enabled under licensed application launching option so that you can see your application based on your preferences.
Expand/Collapse ability of upper menu modes is added so you can manage the appearance of your menu
Sales Funnel widget was added to Comodo ONE dashboard to follow up status of quotes quickly.
Endpoint Patching Status widget was added to Comodo ONE dashboard. Now you can check patch details not only from IT and Security Manager, but also from Patch Manager.
Improvements:
Simplification of login wizard for business type and subdomain fields are enabled to make your processes easier and more understandable.
Number of disabled widgets are displayed on a customized button so that you can easily notice unseen widgets and add them to dashboard with one click
Order of widgets are changed based on their importance so that you don’t have to waste time searching for frequently used widgets
Improvements were made in the “Welcome Email” for MSP’s to help you get up and running
Option for daylight setting was added in the time zone settings to arrange your time properly
Pre-loader icon is added to all actions to show progress clearly
Table on the dashboard page showing company details has been transformed to a widget to make it more understandable and configurable
The ticket status widget is divided into two parts; Ticket Status and Ticket Data so that you can configure them and use them as you wish.
Logo and name of source modules are added to the widget header so that you can see and comprehend related source of widgets and where they come from.
Data Set information of the widgets is added to make clear aim of widgets and help you understand briefly what they show.
Enterprise Portal Specific
New Features
Integration with cDome Firewall which is an add-on module for Dome Standard and a Cloud Based Firewall for Enterprise, so that you can control all activity happening at the gateway of your network to ensure a more secure environment to your customer
Integration with cDome Data Protection which is an add-on module for Dome Standard and a cloud based Data Loss Prevention Module, so that you can block any data flow containing credit card numbers, social security numbers or any sensitive information on web or email traffic to protect your customers’ important data
Improvement
Comodo Quote Manager is enabled for enterprise users so that now you can create quotes by our easy to use quote manager
A new section called “External Devices Control” is added to profiles in order to manage external devices so that admins can control data transfer capabilities and protect valuable organization/customer data from loss or theft via removable devices. Admins can now open or block access to devices such as data storage media, including removable devices, CD/DVDs and other data transfer devices.
We worked on new screens to show the power of security management over ITSM and represented this security information under a centralized structure. Admins now can reach all this information under the new “Security Sub-Systems” menu. To see the enhancements and progress over this menu, please keep an eye on us!
The contents of “Protection à File List à Sandbox History” page have been moved to “Containment” management page.
The contents of "Protection à File List" page have been moved to “Application Control” management page. (All of the tabs except "Valkyrie Processed Files" and "Sandbox History")
The contents of "Protection àFile List àValkyrie Processed Files” page have been moved to “Next-Gen Sandbox” management page.
The contents of “Protection à Device List” page have been moved to “Anti-Virus” management page with all actions over devices. Current Malware list and Threat History appears as tabs on this menu as well.
As mentioned in the first part, new section called “External Devices Control” is added to profiles in order to manage external devices. “Device Control” management page will contain the list of detected blocked hardware and details.
Admins can now restrict access to CCS (Comodo Client-Security) interface with password protection, so that they can allow only those with an authorized password to gain access to CCS (Comodo Client-Security) interface.
Admins can now restrict access to CCC (Comodo Client-Communication) agent interface with password protection, so that they can allow only those with an authorized password to gain access to that interface. This, of course, will protect agents from uninstallation attempts of clients.
Admins now have an option on profiles that enables them to hide or show tray icons for Security and Communication client for Windows.
Admins can configure to show or hide File List on CCS (Comodo Client-Security) interface for endpoints.
Admins can configure to show or hide Trusted Vendors on CCS (Comodo Client-Security) interface for endpoints.
Admins can configure CCS (Comodo Client-Security) caching servers for downloading updates so that downloading process will be speeded up and demand on an enterprise's bandwidth will be reduced.
Admins can configure heuristic command line analysis for certain applications for predefined parsers or they can define custom parsers under HIPS section. They also have an option switching off certain parser that can cause files specified in process command line that should not to be reported to ITSM portal and should not appear in “File List” on CCS (Comodo Client- Security).
Admins can configure the detection of scripts embedded into command line in order to handle them according to security policy. Also, total size of saved scripts can be limited. When the limit is reached, the older records will be deleted to free up the space.
Admins now have an option for security client to write log events to HTTPS in JSON format in logging setting on profiles.
Admins can define custom FLS access ports under profile.
Here we are with a brand new page for bulk installation package! Admins now have ability to associate profile and other parameters with offline package so that even if the device doesn't have server access after package installation, product would be up and running with proper settings.
Admins can set their time zone on С1 portal so that they can see every log and info on their preferred time zone. For ITSM admins, if portal is opened not inside C1 portal, they now have their own time zone configuration page. Please note that, if portal is opened from C1, time zone section will be hided from ITSM settings.
Admins now have the possibility to take a remediation action in case of a failure in the monitoring phase which means that admins can run a procedure and take required corrective action in that case.
Admins now have an option to show the enrollment instructions directly on ITSM portal where they still have the possibility to send instructions from ITSM portal by email.
New Comodo Recommended Profiles are added:
Optimum Windows Profile for ITSM 5.4 (default profile)
Standard Windows Profile for ITSM 5.4
Hardened Windows Profile for ITSM 5.4
Optimum OSX Profile for ITSM 5.4 (ex Recommended OSX Profile for ITSM 5.4)
Optimum IOS Profile for ITSM 5.4 (ex Recommended IOS Profile for ITSM 5.4)
Optimum Android Profile for ITSM 5.4 (ex Recommended Android Profile for ITSM 5.4)
Windows profile settings in preconfigured profiles are given in the table below.
Section
Optimum
Standard
Hardened
Containment Rule
Rules from ex-Hardened Laptop Policy
Will contain all unknown executables
Internet born threats:
standard policy (Rules from Recommended Windows Profile for ITSM 5.4)
sandbox all unknowns with file age - less than 2 days
as a last rule of that policy ignore all unknowns with logging)
Device Information update period is changed. Here are the changes:
Change at Windows Agent Configuration page minimal value for full device information update to 15 minutes.
Change at Windows Agent Configuration page maximum value for full device information update to 24 hours.
Change at Android Client Configuration page minimal value for full device information update to 15 minutes.
Change at Android Client Configuration page maximum value for full device information update to 24 hours.
Change at Android Client Configuration page minimal value for basic device information update to 15 minutes.
Change at Android Client Configuration page maximum value for basic device information update to 24 hours.
Change at Android Client Configuration page minimal value for interval between antivirus database updates to 15 minutes.
Set for iOS and macOS devices minimal value for full (and basic if collected) device information update to 15 minutes.
Change on existing portal minimal and maximum values for update information according to description.
Improvements
Reboot option on Devices is enhanced so that users have the possibility to force the reboot for a given period of time and also letting users postpone the reboot and warning about it by sending custom reboot message.
Admins will be able to manage procedures with a tree view of procedures which enables them to view and interact with a hierarchically arranged collection of procedures, using either single selection or multiple selection.
Admins can now choose run procedure as a system user, logged in user(s) or selected logged in user(s). This impersonation allows admins to specify the account(s) under which the procedure needs to be executed.
An informative note is added to Schedule tab inside Procedures with info icon about how to create a schedule for procedures.
Admins can define the type of requested certificate which can be “S/MIME Certificate” or “Device certificate” under certificates section.
Admins now have the ability to configure additional options for endpoint reboot after package installations under device list so that users have the possibility to force the reboot for a given period of time, suppressing the reboot or letting users postpone the reboot and warning about it by sending custom reboot message.
Some customers were having a synchronization problem on custom Distinguished Names for Active Directory configuration. Problem is fixed. ITSM will automatically search and find the custom Distinguished Names.
Incorrect tool tip is fixed for 'Delete Profile' action.
CCS (Comodo Client Security for Windows) New Features
Added option to detect embedded codes (scripts) for “Fileless Malware” protection with patent pending method
Added granular parser options to define under heuristic command-line analysis. PDF readers will be excluded by default.
COCS (former CES) is renamed as CCS (Comodo Client – Security)
Auto-Sandbox, and Sandbox terms are changed to Auto Container or Containment
'Fully Virtualized' is changed simply to 'Contained'
Admin has the option to show Scan UI and Scan Result dialogs to user.
Added option to show local file list and trusted vendor list to user or not. Local user won’t be able to change the rating on their machine with this change even if the UI is not protected by password.
CCS logging subsystem is extended with possibility to roll over existing log files.
Once log file reaches specified limit then log files are not deleted but old record is overwritten.
Existing option "Delete it and create a new one" is removed.
During update scenario old option is replaced with new one.
CCS diagnostics is extended with network connections inside endpoint to check all connections requirements
These extended diagnostics will support
FLS
CAMAS
CAMAS satellites
Valkyrie
AV DB
CCS binary updates
Chrome signatures updates
The above services are checked using
CCS proxy connection if any
Direct connection
CCS local verdict DB information is accessible in About menu, Diagnostics report and logs.
Admin now have option to
Switch reporting non-PE files via ESM, ITSM and WMI interfaces ON and OFF.
Switch showing non-PE files in ASE File List ON and OFF.
Payload of syslog messages will be in CEF format, improvements made
Viruscope component is added to CAVS (CCS for Server)
Admin can configure Comodo processes running inside container to be not shown at CCS endpoint, not reported and not shown at ITSM console
Admin will have an option in CCS that allow to send logs events in JSON format over HTTP/HTTPS transport in order to integrate with Splunk log collecting service.
Improvement
Logging is improved to always keep the recent data (roll over logs)
When a class that can’t be disabled in Windows Device Manager is added to blocked devices, a notification explaining that “not all devices have been disabled by Device Control subsystem” will be shown because it was not obvious to the admin.
Bug Fixes
Some endpoints’ AV DB status was not being updated when AV DB is updated before the scan. Problem is fixed.
On some endpoints logs were not cleaned up after clicking "Cleanup log file" button on View Logs. Problem is fixed.
Sandbox notification messages were not appearing after launching installer for created Sandbox (Container) rule with 'Run Restricted' action. Problem is fixed.
CCS was crashing on some endpoints when user clicks on “About” dialogue after dragging an object to 'Sandbox Objects'. Problem is fixed.
Hidden file list could be displayed in some cases. Problem is fixed.
Show Scan results window checkbox was not clickable when “Automatically clean threats” option is enabled. Problem is fixed.
Some users observed some USB devices were unreachable after disabling/enabling in device control option. Problem is fixed.
CCS for Mac (Comodo Client Security for Mac) New Features
Branding is changed to “Comodo Client Security” to align with rest of Advanced Endpoint Security solution
Added ability to send logs to SIEM server
Added support for upcoming Mac OSX Sierra 10.12 version
Improvement
Logging is improved to always keep the recent data (roll over logs)
Great improvements. Where in Comodo One do I find the new password controls?
Admins can now restrict access to CCS (Comodo Client-Security) interface with password protection, so that they can allow only those with an authorized password to gain access to CCS (Comodo Client-Security) interface.
Admins can now restrict access to CCC (Comodo Client-Communication) agent interface with password protection, so that they can allow only those with an authorized password to gain access to that interface. This, of course, will protect agents from uninstallation attempts of clients.
You can configure the password protection from the Profiles that you use. This will show under a new section that you can add called “Client Access Control”.
You are missing the option to Add Profile Section or to Delete it which suggest that you are using the Original Profiles. Please select the cloned one and try again (it should have the adnotation [cloned]).
@Ethan , as you’ll see from the screen shot it is a 5.5 profile, but client access control is not there by default, only as a module to add. Is this correct?
That is correct the “Client Access Control” section is not present by default in the Optimum Windows Profile, but it can be added once the profile is editable.
The new procedures screen looks great but I think I am have found an issue. I have created some folders to organise my scripts and have made a folder (with a sub folder) but when I go to edit a procedure to move it to the folder the folder box is empty or was showing an old folder that I created when testing and have since removed