Release notes - Guardium Insights Version 3.3.1
IBM Guardium Insights is a hybrid cloud data security hub that helps you improve visibility into user data activity and risk. Guardium Insights helps you protect data more efficiently, enhance information technology flexibility, and reduce operational costs as you embrace new business paradigms (such as moving data to the cloud). Guardium Insights helps reduce the cost and complexity related to collecting, managing, and retaining data security and compliance data. It provides new analytics to enhance threat investigations - and it provides quick reporting functionality (including prebuilt reports). Risk scoring and alerting in Guardium Insights help you prioritize your activities.
Version 3.3.x This content only applies to Guardium Insights Version 3.3.x.
Guardium Insights is a powerful tool that can help you secure your data. Simple to use, Guardium Insights allows you to set up connections to your data sources.
Guardium Insights provides tools to help you analyze data:
- Outlier mining: Detecting anomalies in activities and exceptions.
- Risk events: Identifying assets at risk using broad data points.
- Reports: Dive into the raw data for deep investigation.
Contents
Download Guardium Insights v3.3.1
Guardium Insights V3.3.1 can be downloaded as an archive file (2.3.1.tar.gz) from: https://github.com/IBM/cloud-pak/tree/master/repo/case/ibm-guardium-insights
You can install only the products for which your site is entitled.
For further instructions, read the README.md file located after unzipping the latest tar file.
The Quick Start Guide for this offering is available at Passport Advantage (https://www.ibm.com/software/passportadvantage) (search for Part Number “M0H7GML”).
Install Guardium Insights v3.3.1
Before installing Guardium Insights, review the system requirements: Guardium Insights v3.3.x system requirements and prerequisites
This offering is deployed as a new installation of Guardium Insights – or as an in-place upgrade. Please follow these instructions:
- Prepare for installing: Prepare for installing IBM Guardium Insights
- Install Guardium Insights: Installation scenarios
- Upgrade process: Upgrading to newer versions of Guardium Insights
Guardium Insights v3.3.x release notes
What's new in IBM Guardium Insights Version 3.3.1
- Data retention
- You can now specify Data retention settings in the Guardium Insights user interface. With this setting, you can specify how long data is retained before it is removed from the system.
- Reports enhancements
- You can now activate table join optimization and queries that use pipeline plans for individual reports.
- Technical debt
- MongoDB has been updated to v5.
Bug and security fixes in Guardium Insights v3.3.1
Issue key | Description |
---|---|
INS-38687 | After choosing to download all results in a report, a Report export to file failed to
generate file error was displayed and the report could not be downloaded. |
|
After creating an unhealthy universal connector connection, the Status information was empty. |
INS-37038 | Notifications for an SFTP/SMB integration with 1touch import wrongly indicated that
Run details - Data import and ingestion completed without errors. when no new files
were found for import. |
INS-35876 | There was a known issue for compliance reports when filtering with very large groups (performance is degraded when groups defined for compliance have greater than 2000 members). |
Security fixes
Issue key | Vulnerability ID |
---|---|
INS-35722 |
Known limitations and workarounds for Guardium Insights v3.3.1
Issue key | Description |
---|---|
INS-45231 | After upgrading from Guardium Insights version
3.2.x, risk events are not generated and the risk-analytics-classification log
includes this error:
Workaround: Connect to the MongoDB pod, select the relevant database, and run these commands:
After issuing these commands, restart all
|
INS-39477 | After upgrading from Guardium Insights version 3.2.1
and later, risk events are not generated and the risk-analytics-engine log includes
this
error:
Workaround: Connect to the MongoDB pod, select the relevant database, and run these commands:
|
INS-38008 | Upgrading Guardium Insights fails with
non-zero return code error when the length of the
spec.guardiumInsightsGlobal.ingress.hostname value in your custom resource (CR)
file is longer than 58 characters.Workaround: Before upgrading, ensure that the length of
the |
|
An additional cp-serviceability pod is in the
ContainerCreating state. This prevents the Guardium Insightsmustgather tool from working, as
documented.Workaround: Choose one of these options:
|
INS-37724 | When working with compliance milestones, you can Refine alerts with the
Configure alert recipients action. When you choose this action and refine
alerts, you can elect to send emails for actions. When you click the Send email
to action and then click Invite users, the resulting landing page
includes an Add users button that does not work. Workaround: Go to the user management screen and add the user. Then return to the Refine alerts page to add the user to the list. |
INS-37352 | When there are very large amounts of data, the Data mart ingestion page displays this
error:
Workaround: If the Data mart ingestion page displays this error, you can access the data mart ingestion information by opening the Data mart ingestion status report. This report includes data marts collected from both collectors and aggregators. To open the reports page, select Reports in the main menu. Open this menu by clicking the main menu icon ()) |
INS-37220 | After upgrading , the datamart-processor may not be able to write files to
storage. As a result, data ingestion no longer takes place (the files are not ingested, but they are
preserved).Workaround: To re-upload the files that have been preserved - and to resume
ingestion - restart |
INS-36860 | In Guardium Insights Version 3.3, support for the Universal Connector plugin for Amazon Neptune is temporarily paused. New versions of some of the dependencies required for this plugin could introduce security vulnerabilities and stability issues. Remediation of these dependencies is in progress and full support for Neptune will resume in the future. Customers who rely on the Universal Connector to monitor Amazon Neptune are advised to remain on Guardium Insights Version 3.2.x until Version 3.3.x support is fully available. |
INS-29331 | In rare cases, there are Db2® errors for services
such as the reports and risk services. These may prevent report execution or risk event generation.
When this occurs, these errors are seen in the logs for the related
service:
Workaround: See Db2 errors for reports and risk services. |
Resources
IBM Guardium Insights documentation: http://ibm.com/docs/SSWSZ5_3.3.x/
System requirements: Guardium Insights v3.3.x system requirements and prerequisites
IBM Security Learning Academy: https://www.securitylearningacademy.com