Cisco Cisco Web Security Appliance S170 사용자 가이드
1-4
AsyncOS 8.8 for Cisco Web Security Appliances User Guide
Chapter 1 Introduction to the Product and the Release
What’s New
Related Topics
•
Product release notes:
http://www.cisco.com/en/US/partner/products/ps10164/prod_release_notes_list.html
Advanced Malware
Protection enhancements
Protection enhancements
•
Advanced Malware Protection can now detect malware in archived or
compressed files.
compressed files.
•
You can now select the interface used to communicate with an AMP
server.
server.
•
File analysis now supports analysis of additional file types. Supported
file types are determined by the cloud service and can change at any
time.
file types are determined by the cloud service and can change at any
time.
When you configure the File Analysis feature, you can choose which
file types to send for analysis, and you can choose to receive alerts
when the options change.
file types to send for analysis, and you can choose to receive alerts
when the options change.
For more information, see “Which Files Can Have their Reputation
Evaluated and Be Sent for Analysis?” in the Release Notes, and the
chapter “File Reputation and File Analysis” in the on-line help or User
Guide for information about supported file types and alerts.
Evaluated and Be Sent for Analysis?” in the Release Notes, and the
chapter “File Reputation and File Analysis” in the on-line help or User
Guide for information about supported file types and alerts.
AAA Audit logging
AsyncOS is enhanced to standardize AAA-related logging across multiple
logs, and to centralize them into a central log subscription. This new log
subscription will be exportable via syslog.
logs, and to centralize them into a central log subscription. This new log
subscription will be exportable via syslog.
Password security
enhancements
enhancements
The following password enhancements have been introduced for
locally-defined administrative users:
locally-defined administrative users:
•
Show a password strength indicator to a user entering a new password.
Password strength is enforced by the password requirements that
you specify.
you specify.
•
Disallow certain words in passwords. (You upload a list of forbidden
words to the appliance.)
words to the appliance.)
•
The option to generate a password by clicking a button.
For more information, see the “Setting Password Requirements for
Administrative Users” and “Adding Local User Accounts” sections in
the User Guide.
Administrative Users” and “Adding Local User Accounts” sections in
the User Guide.
Web Tracking
enhancement
enhancement
There is a new “All Malware” option when you filter web tracking results
by Malware Threat.
by Malware Threat.
Cisco Content Security
Management Virtual
Appliance
Management Virtual
Appliance
You can now manage multiple Web Security appliances with a virtual
content security management appliance that has the same functionality as a
physical hardware appliance.
content security management appliance that has the same functionality as a
physical hardware appliance.
Trusted Root Certificate
management
management
Trusted Root Certificate management was moved from Security Services >
HTTPS Proxy to Network > Certificate Management.
HTTPS Proxy to Network > Certificate Management.
DNS server failover
If the primary DNS server is non-responsive for a user-specified number of
queries, it is considered to have failed and queries are automatically
directed to the secondary server.
queries, it is considered to have failed and queries are automatically
directed to the secondary server.
Feature
Description