Cisco Cisco Web Security Appliance S680 Notas de publicación
12
Release Notes for AsyncOS 9.0.x for Cisco Web Security Appliances
Documentation Updates
File Analysis: Required Changes to View Analysis Result Details in the Cloud
The requirement in this section was introduced in AsyncOS 8.8.
If you have deployed multiple content security appliances (web, email, and/or management) and you
want to view detailed file analysis results in the cloud for all files uploaded from any appliance in your
organization, you must configure an appliance group on each appliance after upgrading. To configure
appliance groups, see the “File Reputation Filtering and File Analysis” chapter in the user guide PDF.
(This PDF is more current than the online help in AsyncOS 8.8.)
want to view detailed file analysis results in the cloud for all files uploaded from any appliance in your
organization, you must configure an appliance group on each appliance after upgrading. To configure
appliance groups, see the “File Reputation Filtering and File Analysis” chapter in the user guide PDF.
(This PDF is more current than the online help in AsyncOS 8.8.)
File Analysis: Verify File Types To Be Analyzed
The File Analysis cloud server URL changed in AsyncOS 8.8, and as a result, the file types that can be
analyzed may have changed after upgrade. You should receive an alert if there are changes. To verify the
file types selected for analysis, select Security Services > Anti-Malware and Reputation and look at
the Advanced Malware Protection settings.
analyzed may have changed after upgrade. You should receive an alert if there are changes. To verify the
file types selected for analysis, select Security Services > Anti-Malware and Reputation and look at
the Advanced Malware Protection settings.
Upgrading from non-ISE Releases and AsyncOS 8.5 with ISE Preview
All AsyncOS versions that did not include ISE support (that is, all versions prior to 8.5.0-497), and the
limited-availability AsyncOS 8.5 “ISE Preview” release, did not require the Admin and pxGrid
certificates, which are necessary in all subsequent Cisco AsyncOS releases in order to enable ISE
support. Therefore, when you upgrade from a non-ISE release, or from an ISE Preview installation with
ISE enabled, the ISE feature will not operate correctly until the two additional certificates are provided
(go to Network > Identity Services Engine).
limited-availability AsyncOS 8.5 “ISE Preview” release, did not require the Admin and pxGrid
certificates, which are necessary in all subsequent Cisco AsyncOS releases in order to enable ISE
support. Therefore, when you upgrade from a non-ISE release, or from an ISE Preview installation with
ISE enabled, the ISE feature will not operate correctly until the two additional certificates are provided
(go to Network > Identity Services Engine).
Unescaped Dots in Regular Expressions
Following upgrades to the regular-expression pattern-matching engine, you may receive an alert
regarding unescaped dots in existing pattern definitions after updating your system. Any unescaped dot
in a pattern that will return more than 63 characters after the dot will be disabled by the Velocity
pattern-matching engine, and an alert to that effect will be sent to you, and you continue to receive an
alert following each update until you correct or replace the pattern. Generally, unescaped dots in a larger
regular expression can be problematic and should be avoided.
regarding unescaped dots in existing pattern definitions after updating your system. Any unescaped dot
in a pattern that will return more than 63 characters after the dot will be disabled by the Velocity
pattern-matching engine, and an alert to that effect will be sent to you, and you continue to receive an
alert following each update until you correct or replace the pattern. Generally, unescaped dots in a larger
regular expression can be problematic and should be avoided.
Documentation Updates
The following information supplements information in the Online Help and/or User Guide for this release.
Adding JavaScript to End-user Notifications
If you need to add standard JavaScript to end-user notifications of any type, follow instructions in the
user guide or online help for editing notification page HTML files. (JavaScript entered into the Custom
Message box for notifications in the web user interface will be stripped out.) Be sure to test your script
first in supported client browsers to ensure that it works as expected.
user guide or online help for editing notification page HTML files. (JavaScript entered into the Custom
Message box for notifications in the web user interface will be stripped out.) Be sure to test your script
first in supported client browsers to ensure that it works as expected.