Release Notes
Abstract
This technical note provides guidance for installing IBM Security Guardium Data Protection Windows Agents 11.4.0.447, including any new features or enhancements, resolved or known issues, or notices associated with the patch.
Content
Patch information
| Product: | IBM Security Guardium |
|---|---|
| Release version: | Guardium 11.4 Windows GIM |
| Completion date: | 30 July 2024 |
Fix IDs
| Guardium_11.4.0.447_GIM_Windows |
| Guardium_11.4.0.437_FAM_Crawler_Windows |
| Guardium_11.4.0.391_GUC_Windows |
Finding the patch
Make the following selections on Fix Central:
Product selector: IBM Security Guardium
Installed Version: 11.0
Platform: Windows
Click "Continue", then select "Browse for fixes" and click "Continue" again.
Attention
After applying patch 11.0p475 or newer, Guardium supports SHA256 GIM certificates. This has the following implications:
- If using default certificates, GIM connections are secured using SHA128. Custom certificates using SHA256 are more secure and are recommended for GIM connections.
Note that GIM connectivity is not interrupted after applying this patch. - GIM only verifies bundles signed with SHA256 and requires installing a transitional GIM bundle to support the change from SHA128 to SHA256.
For more information, see Updating Guardium Data Protection GIM clients with SHA256 certificates.
The Guardium GIM default self-sign certificates expired on May 2024. If the certificates were not renewed by the expiration date, the GIM client-server communication is affected. Please note that data monitoring activity through S-TAP is not disrupted.
- To renew the GIM server (appliance) certificate, install 11.0p1042.
- To renew the GIM clients (database server agent) certificate, upgrade to v11.4.0.413 or newer.
Deprecated support and functionality
Windows Server 2012 and 2012 R2 reached end of support by Microsoft on 10 October 2023 and no longer receive security updates. For this reason, as of 31 March 2024, Guardium can no longer maintain support for these operating systems. For more information, see: IBM Security Guardium support discontinuance notification for Microsoft Windows Server version 2012 and 2012 R2.
Microsoft SQL Server 2012
IBM Security Guardium no longer supports Microsoft SQL Server 2012 as of 12 July 2022. For more information, see: IBM Security Guardium support discontinuance notification for Microsoft SQL Server version 2008 and 2012.
Features and enhancements
As with previous versions, Must Gather continues to aid customers and support teams in troubleshooting issues by gathering and uploading debugging information. V3.1 adds a parsing option delivered by a new PowerShell script that aggregates important information from many files into a simple summary. For more information, see Must gather for Windows S-TAP and other Windows agents.
Configuration of installation log directory
The installation logs of Windows S-TAP, FAM Monitor, GIM, and CAS, can now be created in a custom folder/drive of your choice when installing using the parameter:
CLI install: INSTALLERLOGPATH
Additionally, when upgrading via GIM, the following parameter can be used:
GIM install: GIM_INSTALLER_LOG_DIR
Universal Connector
The Guardium universal connector provides robust and secured audit trail collection into Guardium for auditing, compliance and protecting. It is used for both on-premises and cloud platforms. It provides a utility for parsing and sends the outcome in a normalized format to the collector. The universal connector does not require an S-TAP. For more information, see the universal connector documentation.
Configuring Filebeat and syslog on MongoDB by using GIM
You can configure the Filebeat and Syslog native log audit on MongoDB data sources by installing the GIM client on the MongoDB and configuring the GIM parameters in the Setup by Client page. For more details, see Configuring Filebeat and syslog on MongoDB by using GIM.
Resolved issues
| Patch | Issue Key | Summary | APAR (Known Issue) |
|---|---|---|---|
| 11.4.0.391 | Link to 11.4.0.391 on Fix Central | -- | |
| 11.4.0.413 | Link to 11.4.0.413 on Fix Central | -- | |
| 11.4.0.447 | GRD-81054 | Updated Perl to 5.38.2 (64bit). | DT378448 |
| GRD-82220 | Fixed an issue where Windows GIM client sends unnecessary updates to the GIM server when WINSTAP_ADDITIONAL_SQLGUARD_IPS has multiple values. | -- |
| Patch | Issue Key | Summary | APAR (Known Issue) |
|---|---|---|---|
| 11.4.0.388 | Link to 11.4.0.391 on Fix Central containing FAM Crawler v11.4.0.388 | -- | |
| 11.4.0.437 | GRD-81046 | Added ICM services information to the FAM Crawler section of Must Gather |
| Patch | Issue Key | Summary | APAR (Known Issue) |
|---|---|---|---|
| 11.4.0.182 | Link to 11.4.0.316 on Fix Central containing GUC v11.4.0.182 | -- | |
| 11.4.0.391 | Link to 11.4.0.391 on Fix Central containing GUC 11.4.0.391 |
--
|
Installers with MD5Sums
| MD5Sum | File Name |
|---|---|
| 21407c553d8f350bb8f58adfb615b32d | GIM-Installer-11.4_r110400447_1.zip |
| fd8971701f0d71329795ba8cb44113a7 | guard-GIM-11.4_r110400447_1-x86_x64.gim |
| bb07c8ba9d1137c77f5e13c5f4d1915e | guard-GIM-guardium_11.4_r110400447_1-Windows-Server-Windows-x86_x64.exe.signed |
| c8ad618e3401d904e41361dae027431b | guard-GIM_transitional-11.4_r110400447_1-x86_x64.gim |
| 04b7e9b022877d2228424c25d5170d72 | guard-GUC-11.4_r110400391_1-x86_x64.gim |
| 4ec3ec9c2575813683e4eabb538236b3 | guard-GUC-guardium_11.4_r110400391_1-Windows-Server-Windows-x86_x64.exe.signed |
| 840cb414125394cdac17691ca781184e | conf.reload.FAM |
| fd4511a76d5d3b71674c5052c31d75aa | guard-FAM-11.4_r110400437_1-x86_x64.gim |
| 3dae10993f072f14aadeaa7bcac6daa1 | guard-FAM-guardium_11.4_r110400437_1-Windows-Server-Windows-x86_x64.exe.signed |
Was this topic helpful?
Document Information
Modified date:
30 July 2024
UID
ibm17161061