Veritas Data Insight Release Notes
- Overview of this release
- System requirements
- Software limitations
- Known issues
- Console display issues
- The Activity Pattern Map does not capture the activities performed on folders for cloud sources
- Data Insight does captures audit events only for document library and its child paths
- Incorrect scan status is displayed for Documentum paths
- Documentum paths with same names are not considered as different paths
- Permission inheritance not supported for certain data sources
- Permissions are not supported for certain data sources
- Some data sources do not honor the settings configured under Settings > Scanning and Event monitoring
- Security event not monitored for certain devices
- Certain paths cannot be uploaded using CSV file
- Audit events are not collected for site collections containing UTF-8 characters
- I18N characters in site collections are not supported
- Incorrect information in report outputs and Workspace tab about Documentum paths
- The Scan History tab does not display throughput for certain data sources
- Audit events for OneDrive and SharePoint Online data sources take longer to get displayed on the Console
- The Go-to bar does not return search results for Documentum paths
- Multi-byte characters not supported
- Toolbar error
- Incorrect status of folder displayed
- Incorrect information in Inactive Directories report
- Unwanted access events displayed
- Data Insight cannot capture the IP addresses for events on certain platforms
- Inconsistency between permissions view of Windows and Data Insight
- Error fetching data displayed
- Error in inactive users information
- SharePoint create event displayed incorrectly
- Custom attribute widget issue
- Incorrect disk space computation displayed on Workspace tab for NFS shares
- Share or site collections on disabled filers or Web applications are displayed in charts
- Disabled share or site collections are reported on scanning dashboard
- Error displayed while adding a VxFS filer
- Scan status incorrectly displayed on scanning dashboard
- Incorrect icon displayed in the reports wizard
- Audit Logs tab shows incorrect path for CREATE events on SharePoint 2007 server
- Newly added Enterprise Vault server are not displayed in the Filer Mapping page
- Duplicate entry for the Enterprise Vault server is allowed
- Dashboard report fails, if filers and domains are not configured in Data Insight
- Social Network Map fails to render for the shares that have large number of active users
- Mismatch between permission entries displayed in Windows interface and Data Insight console
- Incorrect file size may be displayed for archived files in an EMC Celerra file server
- EVFolderPoint.xml file may be displayed in the Workspace
- Incorrect recommendation count displayed
- Permission recommendations for renamed folders may not be accurate
- Broken membership in case of local groups leads to misleading permissions
- Some filers are not auto-mapped for wrongly configured Enterprise Vault servers
- Exception is displayed while trying to archive a batch of file using the Enterprise Vault
- Domain filter does not work as expected in some cases
- DFS share mapping and its configuration is not removed when the corresponding physical share is deleted
- In Data Inventory reports, the DLP policy names are not displayed against the files
- Pipe character in share name not supported
- Display name for users appears blank
- Enabling or disabling of audits for site collections may take longer time
- Data Inventory Reports may produce incorrect output in certain cases
- Report log displays warning message for step-progress
- Sorting by paths or custodians does not work in the Ownership Confirmation workflow creation wizard
- A workflow that is in submitted state cannot be canceled.
- The count of resources to which a custodian is assigned is displayed incorrectly.
- Custodian assignment may take a long time to complete.
- Permission remediation emails may display incorrect values for some variables
- The sort functionality does not work for NFS paths in the Self-Service portal.
- Custom actions displayed as disabled
- SID History displayed as parent group
- Ownership Confirmation workflow does not work for certain NFS paths
- Add/Upgrade license succeeds irrespective of the license file type
- Creating non-domain saved credentials
- Error message may appear while applying recommendations
- For Box type source, navigation back from a shared folder may fail
- Search for well-known SIDs may yield partial results
- DLP policy filter displays some obsolete policies
- Some user attributes may be unavailable as filters in User Risk dashboard
- Exact string may fail to display desired suggestion in go-to bar
- Low screen resolution clips Pagination bar, columns
- Exclusion rules for SharePoint paths are case-sensitive
- Default landing page for Storage Administrator role is incorrect
- Results of a filter remain persistent in Directory Services view
- Workspace may incorrectly indicate Box devices as inactive
- You may not be able to search for activity by users with I18N characters
- Permissions Search Report fails if attribute filters include I18N characters
- Navigating across tabs resets filters in Workspace
- Permission search report does not display nested DFS paths
- Forward slash appears in Access details paths report for Box devices
- Data Insight 4.0 customers may need to reconfigure analytics attribute for User's email address
- Server notifications may reflect incorrect file count
- Remove Permissions panel in Permissions Search report may not display list of paths and trustees
- User Risk Dashboard does not display analytics attributes after upgrade
- Inclusion/Exclusion attribute queries do not work for Group custom attributes
- In Chrome, dashboard may not highlight selected row
- Unable to search for activity by users with Chinese characters
- When using a CSV file to upload paths to reports, a red cross appears for the paths
- Data Insight implicitly adds the groupType Active Directory attribute
- SharePoint paths filtered as a part of Scanner exclude rule are marked as deleted and not displayed on UI
- Permission change event missing in Audit Logs after upgrade from 4.5.3
- Active user count for Ownership Confirmation workflows not displayed on Portal UI
- Re-insert variable name when configuring permission remediation after upgrading from version 4.5.x to 5.2
- Sometimes the sensitive file and other columns do not display the correct count
- Reports cannot be searched using comma separated labels
- The classification status of certain paths invariably appears to be in in-progress state
- Paths with special characters cannot be classified
- An error is reported during content scan of Box
- Files and folders do not inherit the Custodian assignment
- LIF associated with a share is not considered on upgrading Data Insight
- Discrepancy in the count of paths that failed classification
- Other Issues
- Scanner infinitely scans circular symlinks
- Capacity Reports are generated for all filers irrespective of RBAC configuration
- Error in displaying selected result entry
- Vfilers wrongly capture open events on folder paths as events on file paths
- Deletion of a Collector node fails even after disassociating all filers
- User with Product Administrator role unable to edit share
- Unable to restore tabs
- Scan resync does not work for certain scenarios
- Security event not monitored
- Create event not captured
- Container and directory service name limitation
- Incorrect default schedule displayed
- Special characters in NFS paths cause NFS scanner to fail
- Incorrect default schedule displayed
- Error in deleting report output
- Port number for LDAP directory server required
- Exclamation mark in user name not supported
- A security event does not change last modified by value for a destination folder
- The job scheduling settings require modification
- The scan history graph does not display the data as expected
- Limited support in the Entitlement Review report
- Issue with launching installer from mapped drive
- Issue with same NFS export and CIFS share name
- The scanned shares and the total scan count does not match
- Access Summary for Paths report displays all active users of a share
- Limited support for claims-based authenticated Web applications for SharePoint
- Inactive users view and report does not consider share-level permissions
- Attempt to archive a file using the Enterprise Vault fails
- Group Change Analysis report does not report loss of access if users part of built-in groups
- Filer Mapping page does not reflect the changes in the settings for the Enterprise Vault servers
- Generic device issue
- Connection to the Enterprise Vault server fails if host name is used
- Stop DataInsightFPolicy service before shutting down a Collector node
- Data Insight cannot retrieve retention categories with certain characters
- Issue with assigning NIS and LDAP users as custodians
- Disabled icon not displayed
- Issue with computing custodian for root site collection
- Size of parent folder is not updated
- Issue with pagination on Audit Logs view
- Issue with LHS filter
- mxcustodian.exe is slow in case of large number of paths
- Certain reports do not honor the global data owner policy
- Incorrect informaton displayed for migrated user
- Issue with workflow creation if services on Indexer are down
- Query with I18N characters may fail to generate Permissions Search Report
- Paths having double quotes are not added when using CSV method
- Issue with report output on file group selection when configuring reports
- Console display issues
- Fixed issues
- Appendix A. Getting help
Since 6.1
The following features and enhancements are available in Data Insight 6.1.1.
With the proliferation of Microsoft Office 365, Data Insight has now widened its support for the following new data sources:
SharePoint Online
Microsoft OneDrive cloud accounts
EMC Documentum
Support for three new additional data sources provides visibility, forensics, and the ability to manage data on these new data sources. In Release 6.1, Data Insight supports the discovery, scan and audit of these data sources. However, Data Insight does not fetch permissions for these data sources, and audit information for Documentum data sources.
For information on configuring the monitoring of these data sources and for a detailed list of support limitations, see the Veritas Data Insight Administrator's Guide.
Data Insight now provides the ability to have a more granular role-based access control by allowing you to customize user roles to ensure separation of duties for more regulated workloads. The ability to customize roles also ensures that there is a clear separation between users who manage access to the Data Insight application and the users who consume the data.
Data Insight now lets you create the following new user roles to manage user access and do the basic administration tasks:
User Administrator - This role can add, delete, and modify the roles assigned to Data Insight users. The role has access only to > and not to any other tabs.
Workflow Administrator - This role has access to all sub-tabs under the tab, but does not have access to the other sections of the Data Insight Management Console.
For information on configuring the user roles, see the Veritas Data Insight Administrator's Guide.
Distribution of a trial cloud license is discontinued from Release 6.1 onwards. You must purchase a cloud license to continue using Data Insight functionality. Contact the Veritas Customer Care for purchase of a cloud license.
An add-on cloud license has been introduced to monitor the data that resides in your cloud environment such as Box, SharePoint Online, and Microsoft OneDrive. On applying a valid cloud license, you can add cloud sources for monitoring, discover and scan data, and view the metadata and audit information.
For more information about the Data Insight licenses, see the Veritas Data Insight Administrator's Guide.
Data Insight now supports the latest Windows Server 2016 operating system for all Data Insight server components and to install the Windows File Server agent.
Data Insight now supports raising of alerts for activities that are performed on all sensitive data, including the files classified by Veritas Information Classifier (VIC). The enhancement enables you to detect malicious activity and take remediation action to prevent data breaches, as appropriate.
Note that the Real-time Sensitive Data Activity policy does not raise alerts for files classified by VIC.
For more information about configuring real-time polices for raising alerts, see the Veritas Data Insight Administrator's Guide.
Data Insight now integrates with Enterprise Vault 12.2 to enable the archiving of old and inactive data on CIFS shares.
The newly introduced DQL templates to detect ransomware enable you to detect the files that are exploited by ransomware. In the event of an attack, ransomware uses a vulnerable user account to encrypt and rename files to which the user has access. With timely detection of the ransomware attack, you can take appropriate remediation action to minimize the risk, and respond to the encryptions that might be underway.
Using the ransomware DQL templates in conjunction with your inputs, you can fetch the following information of the files that exist on the monitored data source:
Collect the count of write and rename activities performed on files in a data source within 24 hours. If the count is higher than the configured threshold, the files are determined as infected and the user are notified. The threshold value is the number of write and rename activities that you permit on a data source within 24 hours.
Get the count of files that are renamed by per user, and have unique file extensions.
Fetch the top-level directories in the share or equivalent, and the number of write and rename activities performed in each of these directories by per user.
List all the files that are created in the last 24 hours by per user. Use this query to identify files created by an infected or risky user.
List the files that contain a specific string in the file name. For example, when a ransomware appends a unique extension to the encrypted files.
Enumerate the duplicates of the potentially malicious executables residing on your system.
For more information about Ransomware reports, see the Veritas Data Insight User's Guide.