Forescout Platform and Base Modules Release Notes v8.4.1 7-1-2024
advertisement
Forescout Forescout Platform and Base Modules Release Notes v8.4.1 Forescout Platform and Base Modules Release Notes v8.4.1 Contact Information Forescout Technologies, Inc. 2400 Dallas Pkwy, Suite 230, Plano, TX 75093 https://www.forescout.com/support-hub/ Toll-Free (US): 1-866-377-8773 Tel (Intl): 1-708-237-6591 About the Documentation • Refer to the Documentation Portal for additional technical documentation: https:// docs.forescout.com/ • Have feedback or questions? Write to us at documentation@forescout.com Legal Notice © 2024 Forescout Technologies, Inc. All rights reserved. Forescout Technologies, Inc. is a Delaware corporation. A list of our trademarks and patents can be found at https://www.forescout.com/ company/legal/intellectual-property-patents-trademarks. Other brands, products, or service names may be trademarks or service marks of their respective owners. PDF Created: July 1, 2024 2 Forescout Platform and Base Modules Release Notes v8.4.1 Table of About Version 8.4.1. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4 Forescout Platform 8.4.1 Features. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9 Authentication Module 1.4.1 Features. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12 Core Extensions Module 1.4.1 Features. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12 Endpoint Module 1.4.1 Features. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 14 Hybrid Cloud Module 2.3.1 Features. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15 Network Module 1.4.1 Features. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15 Security Enhancements. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 16 8.4.1 Fixed Issues. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17 8.4.1 Known Issues. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 20 8.4.1 Important Considerations. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26 Modules Packaged with Forescout Platform 8.4.1. . . . . . . . . . . . . . . . . . . . . . . . 28 Module and Component Rollback for 8.4.1. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29 Where to Go for More Information. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 30 Previous Releases. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 30 3 Forescout Platform and Base Modules Release Notes v8.4.1 About Version 8.4.1 Forescout Platform version 8.4.1 delivers new and enhanced features in the Forescout Platform and in the platform's Base Module components. The new and enhanced features that the Forescout Platform version 8.4.1 and its Base Module components deliver include: • Forescout Platform 8.4.1 Features ◦ Configure Audit Trail Logging ◦ CLI User Not Subject to Lockout ◦ Virtual Machine Resources Check ◦ Forescout Cloud Features • Authentication Module 1.4.1 Features ◦ RADIUS Plugin 4.7.2: New/Enhanced Features • Core Extensions Module 1.4.1 Features ◦ Active Probing 2.0: New/Enhanced Features ◦ Cloud Uploader 1.3.1: New/Enhanced Features • Endpoint Module 1.4.1 Features ◦ OS X Plugin 2.5.1: New/Enhanced Features • Network Module 1.4.1 Features ◦ Switch Plugin 8.16.3: New/Enhanced Features ◦ Network Controller Plugin 1.2.1: New/Enhanced Features Learn about the new and enhanced features in this release in What’s New in This Release. The Forescout Platform version 8.4.1 delivers fixes for defects found in the Forescout Platform or in its Base Module components. Read about these fixed issues in the topic 8.4.1 Fixed Issues. Review the 8.4.1 Known Issues, including any provided workarounds, and before installing/ upgrading to this version, review the 8.4.1 Important Considerations. Installing/upgrading the Forescout Platform version 8.4.1 also installs features/fixes provided in Previous Releases. For additional information related to this Forescout Platform version that is not provided in these release notes, see Where to Go for More Information. Review new and enhanced features and fixed issues that are provided in the Forescout Content Modules that are packaged with Forescout Platform version 8.4.1. Refer to their release notes that are available from Content Modules in the Forescout Documentation Portal. Forescout Platform Information Alerts This topic describes information alerts for the Forescout Platform. • Forescout Platform version 8.4.1 does not support version rollback. For details, see Module and Component Rollback for 8.4.1. • Forescout Platform 8.4.1 does not deliver any of the following Forescout components: ◦ ARF Reports ◦ Auto Config ◦ Cisco PIX/ASA Firewall Integration ◦ OTSM Plugin 4 Forescout Platform and Base Modules Release Notes v8.4.1 ◦ Passive Sensor ◦ Router Blocking For Forescout Platform deployments that currently have any of the above components installed, the upgrade to the Forescout Platform version 8.4.1 maintains these components. The components continue to run/operate on the Forescout Platform version 8.4.1 Also, with the exception of the Auto Config component, all the other components appearing in the preceding list remain available for download from the Forescout Customer Support Portal. To obtain Auto Config, contact https://www.forescout.com/ support-hub/customer-support/. • The Forescout Plugin SDK is deprecated as of Forescout platform version 8.3 and Forescout no longer supports its use. Future integrations should consider using the Connect app capabilities. This product status change affects the following Forescout Platform/CounterACT versions: ◦ Version 8.3 ◦ Versions 8.2.x ◦ Versions 8.1.x Supported Upgrade Paths This topic provides information about supported upgrade paths. For information about supported upgrade paths from earlier Forescout Platform versions and detailed upgrade instructions for this Forescout Platformversion, including system requirements, refer to the Forescout Platform Upgrade Guide. For the complete list of supported models of physical Forescout Appliances and their compatible Forescout Platform versions up to and including Forescout Platform version 8.4.1, refer to the Forescout Platform Hardware and Software Interoperability Matrix. What’s New in This Release The following table identifies components that are updated in this release. Module Component New and Enhanced Features Fixed Issues Known Issues Forescout Platform 8.4.1 Authentication 1.4.1 RADIUS Plugin 4.7.2 5 Forescout Platform and Base Modules Release Notes v8.4.1 Module Component Authentication 1.4.1 User Directory Plugin 6.7.1 Core Extensions 1.4.1 Active Probing Plugin 2.0 Core Extensions 1.4.1 Admin API 1.0 Core Extensions 1.4.1 Advanced Tools Plugin 2.6.1 Core Extensions 1.4.1 CEF Plugin 3.0 Core Extensions 1.4.1 Cloud Classification Gateway 1.0 Core Extensions 1.4.1 Cloud Uploader 1.3.1 Core Extensions 1.4.1 Dashboards Plugin 1.4.1 Core Extensions 1.4.1 Data Publisher 1.2.1 Core Extensions 1.4.1 Data Receiver 1.2.1 Core Extensions 1.4.1 Device Classification Engine 1.6.1 Core Extensions 1.4.1 Device Data Publisher 2.1 Core Extensions 1.4.1 DHCP Classifier Plugin 2.4.1 Core Extensions 1.4.1 DNS Client Plugin 3.3 New and Enhanced Features Fixed Issues Known Issues 6 Forescout Platform and Base Modules Release Notes v8.4.1 Module Core Extensions 1.4.1 Component New and Enhanced Features Fixed Issues Known Issues DNS Enforce Plugin 1.5 Core Extensions 1.4.1 DNS Query Extension Plugin 1.5.1 Core Extensions 1.4.1 External Classifier Plugin 2.4 Core Extensions 1.4.1 Flow Analyzer Plugin 1.5 Core Extensions 1.4.1 Flow Collector 1.2 Core Extensions 1.4.1 IOC Scanner Plugin 2.5.1 Core Extensions 1.4.1 IoT Posture Assessment Engine 1.2 Core Extensions 1.4.1 NBT Scanner Plugin 3.3 Core Extensions 1.4.1 Packet Engine 8.4.1 Core Extensions 1.4.1 Reports Plugin 5.4.1 Core Extensions 1.4.1 Syslog Plugin 3.8 Core Extensions 1.4.1 Technical Support Plugin 1.5.1 Core Extensions 1.4.1 Web Client Plugin 1.4 Endpoint 1.4.1 HPS Agent Manager 1.4.1 7 Forescout Platform and Base Modules Release Notes v8.4.1 Module Component Endpoint 1.4.1 HPS Inspection Engine 11.3.1 Endpoint 1.4.1 Hardware Inventory Plugin 1.3 Endpoint 1.4.1 Linux Plugin 1.7.1 Endpoint 1.4.1 Microsoft SMS/SCCM Plugin 2.6.1 Endpoint 1.4.1 OS X Plugin 2.5.1 Hybrid Cloud 2.3.1 Amazon Web Services Plugin 2.3 Hybrid Cloud 2.3.1 Azure Plugin 1.2 Hybrid Cloud 2.3.1 VMware NSX Plugin 1.4 Hybrid Cloud 2.3.1 VMware vSphere Plugin 2.7.1 Network 1.4.1 Centralized Network Controller Plugin 1.4 Network 1.4.1 Network Controller Plugin 1.2.1 Network 1.4.1 Rogue Device Plugin 1.3 Network 1.4.1 Switch Plugin 8.16.3 New and Enhanced Features Fixed Issues Known Issues 8 Forescout Platform and Base Modules Release Notes v8.4.1 Module Component Network 1.4.1 VPN Concentrator Plugin 4.5.1 Network 1.4.1 Wireless Plugin 2.2.2 New and Enhanced Features Fixed Issues Known Issues Forescout Platform 8.4.1 Features This topic describes new features and feature enhancements in the Forescout Platform. Configure Audit Trail Logging This Forescout Platform feature provides the ability to configure which events are audited and logged. This release adds the ability to configure which events are audited and logged by the Forescout Platform using two new properties fs.audit.trail.severity.start.level and fs.audit.trail.severity.end.level. Only events within the range specified by the new properties are logged. The default setting covers the entire range of severity levels. Levels can be changed via the fstool set_property command. For complete details, refer to Configure Audit Trail Logging in the Forescout Administration Guide. CLI User Not Subject to Lockout This Forescout Platform feature provides the new CLI user, cliadmin_console that cannot be subjected to authentication lockout. All local CLI users are subject to authentication lockout, which could lead to a situation where all users, including cliadmin, cannot access the system. This release introduces the cliadmin_console user, which is not subject to authentication lockout and can be used to recover other users and admins that are locked out. Refer to the Forescout Platform Administration Guide for details. Virtual Machine Resources Check This Forescout Platform feature provides the new Connection Status Indicator about VMware virtual machines. Forescout Platform detects and evaluates virtual machine (VM) resources at Console startup to display the size and shared vs. dedicated status of the virtual CPU (vCPU) and memory. The new Connection Status Indicator displays only when a VMware VM is shared. This new indicator is located in the Console under Options > CounterACT Devices. 9 Forescout Platform and Base Modules Release Notes v8.4.1 The following new entries display in the device's property list and alert customers of mismatched VM configurations and aid in troubleshooting performance-related problems: Size Model The vCPU and memory size that are identified as being either Extra Small, Small, Medium, Large, or Extra Large. Resource Type Identifies the shared status An audit/syslog entry records when a change is detected. VM Resource checking only occurs if a VM is detected, not for a physical appliance. Shared status only applies to VMware VMs, reporting other VMs as Unknown. Refer to the Forescout Platform Administration Guide for details. Forescout Cloud Features This topic describes the Forescout Cloud new features and feature enhancements that are provided in Forescout Platform 8.4.1. Onboarding This topic describes Forescout Cloud's new Onboarding capability that is provided in Forescout Platform 8.4.1. The Onboarding capability delivers the following feature functionality: Functionality Description Security Enhancement On-premise cloud onboarding-related processes run as a non-root user, enhancing overall security. Forescout Cloud Onboarding Enhancements The Cloud Software Manager Plugin version 1.0.2, which is delivered in the Cloud Tools Module version 1.0.2, is enhanced to perform the following Forescout Cloud onboarding tasks and display their results: • Runs the following Forescout-AWS connectivity tests: ◦ Verifies connectivity with the Onboarding Service (OBS) ◦ Verifies connectivity with Pulsar for exchanging messages with the Forescout Cloud • Runs the following onboarding status tests: ◦ Appliance registration with the Forescout Cloud ◦ Lambda download (Cloud software infrastructure) ◦ Free disk space ◦ Download of list of required dockers ◦ Log in to Elastic Container Registry (ECR) ◦ Download of docker images ◦ Starting dockers ◦ Cleaning of old docker images • Docker running status Note: The Cloud Tools Module is not packaged with Forescout Platform 8.4.1. It must be separately downloaded from the Forescout Customer Support portal. 10 Forescout Platform and Base Modules Release Notes v8.4.1 Multifactor Risk Scoring This topic describes the Forescout Cloud's new Multifactor Risk Scoring capability that is provided in Forescout Platform 8.4.1 The Forescout Multifactor Risk Scoring capability delivers the following feature functionality: Functionality Description Risk Compliance Policies Forescout Platform Compliance policies contain rules that are critical to the security of your organization. The Forescout Multifactor Risk Scoring service considers Compliance policy rules as a factor in its risk scoring calculation. For a user to access the new Risk Compliance view in the Forescout Cloud, they must be assigned the Device Risk Assessment Settings permission. Risk Compliance Property The new property Compliance Severity is available. The Forescout Platform populates this property with a rating value that identifies an evaluated device's severity, based on the non-compliant, policy sub-rules that the device matches. You can use this property in policies either with or without the Forescout Multifactor Risk Scoring service. CVE Matching for Linux Devices For managed Linux devices, CVE matching is based on the kernel version that is populated in the Linux Version property. New Vulnerability Properties New Vulnerability Assessment Integrations The following new vulnerability properties are available: • Last VA Scan: Identifies the last time that a Vulnerability Assessment scan was performed • Source: Identifies the source of a Vulnerability Assessment scan, for example, Forescout, or Rapid7 • CVE Matching: Identifies whether the device can be matched with a CVE (YES/NO). Forescout Multifactor Risk Scoring supports the following new Vulnerability Assessment integrations: • Qualys v2.0 • Rapid7 InsightVM (Nexpose) 2.0 eyeSegment This topic announces that Forescout eyeSegment is now available as a Forescout Cloud service. Beginning with Forescout Platform 8.4.1, Forescout eyeSegment runs in the Forescout Cloud, in addition to the existing, on-premise Forescout eyeSegment. For more information, refer to the Forescout eyeSegment 6.0 Release Notes. 11 Forescout Platform and Base Modules Release Notes v8.4.1 Classification Feedback Dialog This topic describes the Classification Feedback dialog that is newly available in the Forescout Cloud ASSETS view. The Forescout Cloud Assets view provides the user with the ability to provide feedback to the Forescout Platform about the classification information of any listed device. The value of this feature is that a user can provide Forescout with classification information that they find to be missing and/or incorrect for a device. Feedback can be provided for any of the following device classification fields: • Function • Vendor • Model • Operating System • Firmware The user provides feedback using the new Classification Feedback dialog. Open this dialog by first expanding any device listed in the ASSETS view to display its details and then clicking the edit icon that is located next to the Classification section heading. Forescout data analysts periodically review classification feedback submitted to Forescout for purposes of ongoing improvement of Continuum's device classification capability. Authentication Module 1.4.1 Features This topic describes new features and feature enhancements in the following components of the Authentication Module. RADIUS Plugin 4.7.2: New/Enhanced Features The RADIUS Plugin provides the following new and/or enhanced features: Addition of Endpoint Attribute for Pre-Admission Authorization Rules The plugin added the endpoint attribute NAS-ID (Network Access Server Identifier) to the attributes that are available for configuration (add/edit) in a pre-admission authorization rule condition. Refer to the topic Configure Pre-Admission Authorization in the RADIUS Plugin Configuration Guide. Core Extensions Module 1.4.1 Features This topic describes new features and feature enhancements in the following components of the Core Extensions Module. Active Probing Plugin 2.0: New/Enhanced Features 12 Forescout Platform and Base Modules Release Notes v8.4.1 New Host Properties Beginning with this version, the Active Probing Plugin resolves the following additional host properties: Active Probe Function Raw The functional type of the endpoint, as determined by the Active Probing Plugin. This raw value does not relate to the classification taxonomy defined in the . Active Probe Hardware Version Hardware release information for the endpoint, as determined by the Active Probing Plugin. Active Probe Host Name The hostname of the endpoint in the network, as determined by the Active Probing Plugin. Active Probe Module Information about modules or subsystems installed in the endpoint, as determined by the Active Probing Plugin. This property has the following fields: Module Slot ID The slot occupied by the module. Module Vendor The vendor of the module. Module Model The model of the module. Module Name The name of the module. Module Type The functional type of the module. Module Firmware Version The firmware version running on the module. Module Hardware Version The hardware version of the module. 13 Forescout Platform and Base Modules Release Notes v8.4.1 Module Serial Number The serial number of the module. Refer to the Active Probing Plugin Configuration Guide v2.0. Deprecated Host Properties The following host properties were available in release 1.0.x of the plugin, but are not supported in this release. Rewrite any policies you created that use these properties. Active Probe CPE Indicates the hardware of the endpoint, in Common Platform Enumeration format. Active Probe OS Build The build number of the operating system running on the endpoint, as determined by the Active Probing Plugin. Active Probe OS CPE Indicates the operating system running on the endpoint, in Common Platform Enumeration format, as determined by the Active Probing Plugin. Active Probe OS Version The release number of the operating system running on the endpoint, as determined by the Active Probing Plugin. Cloud Uploader 1.3.1: New/Enhanced Features Cloud Connectivity Test Results Provide Additional Information You can run a test to verify Cloud Uploader connectivity with the Forescout Cloud. The Cloud Uploader authenticates with the client as it did before (Attempting to authenticate Client ID <clientID>). However, the test results now provide the following, additional information: • Region: The region - US East (N. Virginia), Europe (Frankfurt), Europe (London) associated with the <clientID> being authenticated • Assigned services for ClientID <clientID>: The list of cloud services assigned to the <clientID> being authenticated Refer to the Cloud Uploader Configuration Guide. Endpoint Module 1.4.1 Features This topic describes new features and feature enhancements in the following components of the Endpoint Module. 14 Forescout Platform and Base Modules Release Notes v8.4.1 OS X Plugin 2.5.1: New/Enhanced Features The OS X Plugin provides the following new and/or enhanced features: New Endpoint Property: Operating System Build Version The OSX Plugin makes available the new property Macintosh Build Version for detected Macintosh OSX endpoints. When the plugin resolves this property, it contains the build version of the operating system that is running on the detected endpoint. The information that the new property Macintosh Build Version contains, together with the existing property Macintosh Version, which the plugin resolves to contain the endpoint's operating system product version, significantly enhances the accuracy of the Forescout Platform's classification and risk scoring of detected Macintosh OSX endpoints. Hybrid Cloud Module 2.3.1 Features In this version of the Hybrid Cloud Module, its components do not provide any new or any enhanced features. Network Module 1.4.1 Features This topic describes new features and feature enhancements in the following components of the Network Module. Switch Plugin 8.16.3: New/Enhanced Features The Switch Plugin provides the following new and/or enhanced features: Plugin Adds Management of Vendor Switches: DNI This version of the Switch Plugin adds eyeSight and eyeControl capabilities for DNI switches, including CLI and SNMP for device visibility and retrieval of switch/port details, autodiscovery via LLDP, along with ACL actions, the Switch Block action, and the Assign to VLAN action. Refer to the Switch Plugin Configuration Guide and the Forescout Compatibility Portal for more information. Note: You must install Switch Content Plugin 1.3.3 or above for the Switch Plugin to be able to work with switches of this vendor. Plugin Adds Management of Vendor Switches: Accton This version of the Switch Plugin adds eyeSight and eyeControl capabilities for Accton switches, including CLI and SNMP for device visibility and retrieval of switch/port details, auto-discovery via LLDP, along with ACL actions, the Switch Block action, and the Assign to VLAN action. Refer to the Switch Plugin Configuration Guide and the Forescout Compatibility Portal for more information.. Note: You must install Switch Content Plugin 1.3.3 or above for the Switch Plugin to be able to work with switches of this vendor. 15 Forescout Platform and Base Modules Release Notes v8.4.1 Plugin Adds Management of Vendor Switches: QuantaMesh This version of the Switch Plugin adds eyeSight and eyeControl capabilities for QuantaMesh switches, including CLI and SNMP for device visibility and retrieval of switch/ port details, auto-discovery via LLDP, along with ACL actions, the Switch Block action, and the Assign to VLAN action. Refer to the Switch Plugin Configuration Guide and the Forescout Compatibility Portal for more information. Note: You must install Switch Content Plugin 1.3.3 or above for the Switch Plugin to be able to work with switches of this vendor. Network Controller Plugin 1.2.1: New/Enhanced Features The Network Controller Plugin provides the following new and/or enhanced features: Support for Additional Vendors and Solutions With this release, the Network Controller Plugin now supports interaction with the following solutions: • Cisco ACI environments (previously supported by the Centralized Network Controller Plugin) • Juniper Mist Wired/SD-WAN environments • Juniper Mist Wireless environments (previously supported by the Centralized Network Controller Plugin) Note: You must install Network Controller Content Plugin 1.2.1 for the Network Controller Plugin to be able to work with these solutions Assign Cisco ACI Controllers to VLAN As the Network Controller Plugin now supports interaction with the Cisco ACI solution, you can use the plugin-provided action Assign to VLAN-Network Controller to manage Cisco ACI controllers. Security Enhancements This topic lists the security issues that are fixed in this release for either the Continuum Platform or for specific platform components. This release of the Continuum Platform and specific platform components include updates that address security issues that are identified in, but not limited to, the following Common Vulnerabilities and Exposures (CVE): CVE [Severity] Note CVE-2022-22720 [High] Upgraded the Forescout Platform's Apache HTTP server to version 2.4.53 16 Forescout Platform and Base Modules Release Notes v8.4.1 CVE [Severity] Note CVE-2022-25762 [High] Upgraded the Forescout Platform's Apache Tomcat to version 8.5.79 CVE-2022-1271 [High] Upgraded the Forescout Platform's Red Hat Enterprise Linux 7 gzip version to gzip-1.5-11 CVE-2018-25032 [High] Upgraded the Forescout Platform's Red Hat Enterprise Linux 7 zlib version to zlib-1.2.7-20 CVE-2020-25710 [Medium] • CVE-2019-14540 [Critical] • CVE-2019-12086 [High] • CVE-2019-12384 [Medium] • CVE-2019-12814 [Medium] • CVE-2019-14892 [Critical] • CVE-2019-14893 [Critical] • CVE-2020-8840 [Critical] • CVE-2020-9546 [Critical] • CVE-2020-9547 [Critical] • CVE-2020-9548 [Critical] • CVE-2020-10673 [High] • CVE-2020-11113 [High} • CVE-2020-24616 [High] • CVE-2020-35728 [High] • CVE-2020-36179 [High] • CVE-2020-36180 [High] • CVE-2020-36181 [High] • CVE-2020-36182 [High] • CVE-2020-36184 [High] • CVE-2020-36188 [High] Upgraded the pxGrid Plugin's jackson core and jackson databind to version 2.12.7. This upgrade resolves all the CVEs listed in this entry. 8.4.1 Fixed Issues This topic describes fixed issues in the Forescout Platform and in the components of its Base Modules. Forescout Platform 8.4.1 Fixed Issues This topic describes platform fixed issues addressed in this version of the Forescout Platform. Issue Description PM-14922 Updated Forescout Platform's CentOS 7 operating system kernel to allow for future hardware support. CA-29991 Whether logging in to the Forescout Platform's Console or logging in to the Command Line Interface (CLI) of a Forescout device (Enterprise Manager, Appliance), user log in failures were 17 Forescout Platform and Base Modules Release Notes v8.4.1 Issue Description recorded in the Console Audit Trail with the assigned severity of Notice. With this fix, user log in failures are assigned the severity of Warning. If the system administrator changed the permissions of a user while the user was logged in to CA-29965 the Forescout Console, the user's session was not terminated and reauthentication was not required. This fix provides for automatic termination of the user's Console session that is accompanied by the presentation of the following Console warning to the user: • Your session has been terminated. To continue working, please log in again. The Forescout Platform replaced perl-IO-Socket-SSL 2.025 with version 2.074. This upgrade CA-29746 allows the SSL to support new cipher suites. The Lock user account after setting, which is located in the Console's Options > CounterACT User CA-29900 Profiles > Password and Sessions > Password tab, also locked the Admin user after it had exceeded the defined threshold. CA-29749 There was no buffer to store Syslog messages until the shell was fully loaded and logging initiated. CA-29735 Changing a user's account permissions did not produce a notification at log in. CA-29747 The application server did not require a re-authentication when a user's permissions were updated using CLI. Authentication Module 1.4.1 Fixed Issues This topic describes the component fixed issues addressed in this version of the Authentication Module. Component Issue RADIUS Plugin DOT-4782 Description The Forescout RADIUS server changed the value of innerEAPType from EAPTLS to TLS. This change in value caused the following plugin processing issues to occur: • The pre-admission rule condition Tunneled-Method=EAP-TLS to fail • The plugin did not correctly resolve the 802.1X Authentication Type property for innerEAPType TLS Kerberos authentication failed during LDAP-Group lookup in Pre-Admission authorization rules. RADIUS Plugin DOT-4674, DOT-4675, DOT-4717 RADIUS Plugin DOT-4712/ DOT-4716 RADIUS with Password Authentication Protocol (PAP) authentication did not work on Forescout Platform version 8.4. PAP user authentication against the user directory failed. NTLM queries failed for the user. RADIUS Plugin DOT-4713/ DOT-4715 Setting an alternative value to "None" in the authentication method template caused domain queries to fail. User Directory Plugin UD-2166 When executing an LDAP search about a user and the User Directory Plugin received an LDAP error code 82, the plugin erroneously continued executing subsequent LDAP searches about that specific user, although it should not have 18 Forescout Platform and Base Modules Release Notes v8.4.1 Component Issue Description done so. The following, associated error was recorded in the log when debug was enabled to 1 or higher: • ad:146327:1647525240.909845:Thu Mar 17 09:54:00 2022: main::ldap_search_user:2730: returning umesg[Net::LDAP::Search=HASH(0xc5b3d18)] code [82] entries[] Core Extensions Module 1.4.1 Fixed Issues This topic describes the component fixed issues addressed in this version of the Core Extensions Module. Component Issue Description Dashboards Plugin DSH-632 Out-of-the-box dashboards that are hidden to a user, prior to their logging out, are once again displayed to that user after they log in again. DNS Query Extension Plugin DNQ-79 Technical Support Plugin TS-450 In the Console (Tools > Options > Modules > DNS Query Extension), the Rollback button was disabled for the DNS Query Extension Plugin. The Technical Support Plugin reported false-positive plugin crash notifications. Endpoint Module 1.4.1 Fixed Issues This topic describes the component fixed issues addressed in this version of the Endpoint Module. Component Issue Description HPS Agent Manager EPM-328 SecureConnector did not roam from the Enterprise Manager of cluster<a> to the Enterprise Manager of cluster<b>, even though the Enterprise Manager of cluster<b> was defined in the setting Additional Appliance Connections of the Enterprise Manager of cluster<a>. Note: The Additional Appliance Connections setting is found in the Console under Tools > Options > HPS Inspection Engine > SecureConnector. For SecureConnector to successfully roam between the Enterprise Managers of two different clusters, you must also run the following set of commands from the CLI of each cluster's Enterprise Manager: • fstool va set_property config.disconnect_unassigned_sc.value true • fstool epm set_property config.use_multiple_interfaces.value false • fstool va restart • fstool epm restart 19 Forescout Platform and Base Modules Release Notes v8.4.1 Hybrid Cloud Module 2.3.1 Fixed Issues This topic describes the component fixed issues addressed in this version of the Hybrid Cloud Module. Component Issue VMware vSphere Plugin Description When using the Virtual Machine Guest OS property in a policy, the VMware VMW-980 vSphere Plugin failed to match on any of the following operating systems: • Linux 4.x Kernel • Linux 4.x Kernel (64 bit) • Windows 2019 Server (64 bit) Network Module 1.4.1 Fixed Issues This topic describes the component fixed issues addressed in this version of the Network Module. Component Issue Switch Plugin Switch Plugin Switch Plugin Description SCC-689 The Enable privileged access configuration option was not available for HPE/ Aruba ProCurve switches. Without privileged access, ACL discovery options and management actions could not be used with these switches. SCC-691 The Access Port ACL action was not available for HPE/Aruba ProCurve switches. SW-6729 The Switch Plugin repeatedly restarted on Appliances after the plugin was upgraded to Hotfix 8.15.0.1433, Hotfix 8.15.0.1687, or related releases. SW-6761 8.4.1 Known Issues This topic describes known issues in the Forescout Platform and in the components of its Base Modules. Forescout Platform 8.4.1 Known Issues This topic describes known issues in this version of the Forescout Platform. Issue CA-30235 Description Enabling Federal Information Processing Standards (FIPS) causes a Boot Kernel Error. If your platform deployment uses FIPS, postpone upgrading to Forescout Platform version 8.4.1 until Forescout has a solution that remedies this error. 20 Forescout Platform and Base Modules Release Notes v8.4.1 Issue Description See KB 12384 for instructions on manually disabling the FIPS during system boot. CA-30228 Following the upgrade to 8.4.1, some customers' licenses may become invalid. See KB 000012382 for instructions on how to resolve this issue. CA-30103 CA-29691 The manually created user login cliadmin_console, which administrators use for logging in locally to the Console (vs. logging in remotely to the Console), does not work on Forescout devices (Enterprise Manager, Appliances) deployed in a Forescout High Availability (HA) configuration. Attempting to upgrade the OSX console from an earlier version results in the following error: Cannot run program "/Users/fsadmin/Applications/Forescout Console 8.4.0/Forescout Console.app/Contents/Resources/jre1.8.0_302-1/bin/java" (in directory "../ new_ver-6567919919904358827"): error=2, No such file or directory." Forescout will work to resolve this issue in a future release. CA-29674 There is no client-side validation of the country and city when defining a new location in Options > Map > Locations, resulting in incorrect map pin locations. The incorrect map pin may persist after correcting the location details. CA-29658 After an upgrade, the Recovery Manager's /var/forescout/lservrc file may be empty. Workaround : 1. Copy the /var/forescout/lservrc file from the Enterprise Manager to the Recovery Manager. 2. Reboot the Recovery Manager. Forescout will work to resolve this issue in a future release. CA-27341, The CounterACT User Profiles pane (Console > Options > CounterACT User Profiles) provides the following two functions for use on selected user profiles: CA-27342 • The Lock All button • The Terminate All button Both of these functions do not work on user profiles that are assigned any of the following user types: • Group - SSO with User Directory (Web Only) • Group - External User Directory CA-26296 A "Changes not applied" error appears after applying edits to some plugin’s configurations and attempting to leave the configuration page. 21 Forescout Platform and Base Modules Release Notes v8.4.1 Issue Description CA-22726 When you enable support for overlapping IP addresses, failover clusters may not work in branches of the Appliance tree that handle overlapping sites. In particular, failover does not work when you configure a failover cluster in a folder that includes both segments in the global/ default network and segments in an IP Reuse Domain. CA-23249 Navigating away from the Linux or Mac Options pages causes the "Changes not applied. Do you want to continue?" dialog to appear even though there were no changes. CA-24180 Java core dumps on Enterprise Manager while adding cloud RM/Appliance to on-premise setup. CA-24475 The number of managed hosts returned by the command fstool sysinfo does not match the number of managed hosts displayed in the Console. CA-24489 The number of hosts in a policy and the total number shown in the host view does not match. CA-24495 A host stays matched to a policy even if the host is down and remains matched after a manual recheck. CA-25285 When you enable support for overlapping IP addresses, the Log > Host Details option in the main console menu does not work for endpoints with overlapping IP addresses. To view overlapping endpoint details, right-click the endpoint and select Information > Details. CA-25334 When you enable support for overlapping IP addresses, the site map does not display endpoints in IP Reuse Domains. The map only displays areas of the Internal Network that are in the default/global network. CA-25438 When you enable support for overlapping IP addresses, endpoints in IP Reuse Domains are not automatically shared with Recovery Manager during continuous updates. After failover to Recovery Manager, these endpoints must be rediscovered. CA-26114 When support for overlapping IP addresses is enabled, the fstool devinfo command does not work for Appliances with IP Reuse Domains. EM2-3386 In the Assets view, HTTP User Agent details do not parse correctly. To access this property for a device in Assets view, click the > icon to the left of the row for a specific device. 22 Forescout Platform and Base Modules Release Notes v8.4.1 Issue Description Authentication Module 1.4.1 Known Issues This topic describes component known issues in this version of the Authentication Module. Component Issue Description RADIUS Plugin DOT-4801 When an endpoint's managing Appliance is not the same as the Appliance whose RADIUS Plugin is applying the RADIUS Authorize action with Change of Authorization (CoA) option on that endpoint, the action fails and reports the endpoint as being offline. Additionally, while attempting to authorize an offline endpoint, the RADIUS Plugin might receive a Negative Acknowledgement (NAK) from the Network Access Server (NAS) but still report the offline endpoint as being online. Note: Forescout released its fix for this issue in the RADIUS Plugin Hotfix 4.7.2.1008. For details, refer to article KB 12225, which is available from the Forescout Community Portal. In the article, see the reference Merge DOT-4823. RADIUS Plugin DOT-4176 There are no new admissions for devices that authenticate using dot.1x. This means that the rule for condition in a policy with 802.1x admission event (under Condition > Properties > Events > Admissions) cannot match for dot.1x-enabled devices. For example, if you have a clarification policy based on the 802.1x admission event as a main rule, devices cannot match the main rule. As a result, the system does not inspect advanced sub rules for these devices. RADIUS Plugin DOT-4009 RADIUS Plugin and User Directory Plugin users' Active Directory attributes must be fetched from Active Directory servers using inner identity usernames and not outer (anonymous) usernames. User Directory Plugin UD-1427 The User Directory Plugin does not support IPv6 TACACS authentication servers. Core Extensions Module 1.4.1 Known Issues This topic describes component known issues in this version of the Core Extension Module. 23 Forescout Platform and Base Modules Release Notes v8.4.1 Component Issue Description Advanced Tools Plugin ADT-219 When you enable support for overlapping IP addresses, the Segment Path property is not evaluated accurately for endpoints in IP Reuse Domains. IOC Scanner Plugin CA-22258 If the plugin is not running when you use Search in the IOC Repository tab, the search does not work properly due to the entries in the Reported by column. Workaround: Start the IOC Scanner Plugin on the Enterprise Manager. Packet Engine PE-521 When the Forescout Platform is deployed on KVM virtual systems, the maximum bandwidth of Packet Engine traffic monitoring is 500 Mb/s. If traffic exceeds this amount, virtual firewall functionality and device discovery may be affected. Endpoint Module 1.4.1 Known Issues This topic describes component known issues in this version of the Endpoint Module. Component Issue Description HPS Inspection Engine HPS-5634 When an endpoint running SecureConnector is reassigned to another Appliance, SecureConnector re-creates a secure connection with its new Appliance. However, when support for overlapping IP addresses is enabled, this behavior is not supported in overlapping areas of the network. In these areas: • SecureConnector does not reconnect when an endpoint moves to another Appliance. • When SecureConnector is installed on an endpoint in an overlapping site, it can only communicate with the Appliance that downloaded SecureConnector to the endpoint. For more information refer to the Working with Overlapping IP Addresses How-to Guide. HPS Inspection Engine HPS-5317 SecureConnector is not successfully installed on endpoints running Windows 7 or Windows 10 when the Endpoint Remote Inspection Method is set to Using MS-RRP and scripts are run using Windows Task Scheduler. Linux Plugin LNX-1050 Installing the OpenSSL-Devel package on an endpoint with FIPS (Federal Information Processing Standards) enabled and Linux SecureConnector installed prevents the SecureConnector from connecting to the Forescout Appliance or creating a socket. Linux Plugin LNX-517 The SecureConnector icon does not display in Ubuntu operating systems when Dissolvable or visible daemon deployment is selected. Upon reboot, the SecureConnector icon is visible with visible daemon deployments. 24 Forescout Platform and Base Modules Release Notes v8.4.1 Hybrid Cloud Module 2.3.1 Known Issues In this version of the Hybrid Cloud Module, there are no known issues in module components. Network Module 1.4.1 Known Issues This topic describes component known issues in this version of the Network Module. Component Issue Vendor Description Network Controller Plugin NC-461 Any plugin configuration change (select Apply) always results in a restart of the Network Controller Plugin, which, as a matter of processing, causes all currently plugin-applied actions to be canceled and then re-applied on targeted endpoints. Switch Plugin SW-5927 Endpoints appeared to be offline in the host-view regardless of their actual state. Switch Plugin SW-3010 When the plugin is configured with the fully qualified domain name (FQDN) of the managed switch, a switch IP address change might cause plugin management of the switch, using SNMP, to fail. Workaround: In the event that you experience this known issue, restart the Switch Plugin. Switch Plugin SW-1902 Cisco While the Switch Plugin is running, if the Forescout user disables the Enable ACL option (the option checkbox is cleared) and then saves the updated Switch Plugin configuration, the Switch Plugin does not cancel the ACL rules and port restrictions that it applied on the managed Cisco switch, as a result of ACL actions (Access Port ACL, Endpoint Address ACL). This issue has the following operational impact: Affected endpoints remain restricted, even when these endpoints no longer match policy conditions that resulted in the application of ACL actions. The plugin cannot cancel the ACL restrictions. It is recommended to first stop the Switch Plugin, prior to disabling the Enable ACL option (as part of stopping, the plugin removes ACL rules that it applied on managed switches). Workaround: In the event that you experience this known issue, use the Clear ACLs capability to manually clear ACLs from a managed switch. For the procedure to clear ACLs, refer to the topic Clear ACLs from All Switch Ports in the Switch Plugin Configuration Guide. Wireless Plugin 63473 Cisco Aironet When the plugin's configured Read method for a managed Cisco Aironet access point is CLI, the plugin does not resolve the properties WLAN AP Name and WLAN Authentication Method for detected endpoints connected to the access point. The Home tab's Detections pane lists these properties as Irresolvable. 25 Forescout Platform and Base Modules Release Notes v8.4.1 Component Issue Vendor Description 8.4.1 Important Considerations This topic describes important issues about the Forescout Platform and its Base Module components that you must review and consider before installation/upgrade of this platform version. Before either installing or upgrading to Forescout Platform 8.4.1, consider the following important issues presented in this topic. CT Appliance Series - Revision 30-32 This topic describes a CT Appliance Series, revision 30-32, issue. The CT Appliance series, revision 30-32, does not support running Forescout Platform version 8.4 or higher platform versions. Refer to the Forescout Continuum Platform Hardware and Software Interoperability Matrix. CT-100 and CT-1000 Appliances - Revision 40 This topic provides guidelines about the use of CT-100 and CT-1000 Appliances, revision 40. To run Forescout Platform version 8.4 or higher platform versions on CT-100 and CT-1000 Appliances, revision 40, you must observe the following Forescout guidelines to avoid processing overload from occurring on these Appliances: • Ensure that you monitor Appliance performance or run a health check on these Appliances before you attempt to upgrade them. If your CT‑100/CT-1000 Appliance is already in a state of high utilization, Forescout does not recommend upgrading that Appliance to version 8.4 or higher platform versions. • Limit the maximum traffic monitoring throughput of the Packet Engine Plugin, as follows: ◦ For a CT-100 Appliance, ensure that the maximum traffic monitoring throughput of the Packet Engine Plugin does not exceed 200 MB per second. ◦ For a CT-1000 Appliance, Forescout suggests reducing the traffic monitoring throughput to 500 MB per second. Keep track of Packet Engine traffic monitoring throughput by using both of the following Forescout Platform health monitoring policies: 26 Forescout Platform and Base Modules Release Notes v8.4.1 ◦ Appliance Load Compliance Analysis Policy that evaluates the Forescout Device Traffic Bandwidth (Mb) property. ◦ Appliance Load Compliance Policy • Do not run the Flow Collector Plugin on these CT-100 Appliances. Instead, have switch netflow logs sent to other Appliances in your Forescout Platform deployment. • Do not run the eyeSegment Module on CT-100 and CT-1000 Appliances. You can run the eyeSegment Module on other Appliances in your Forescout Platform deployment. • Proceed with caution when deciding to run any eyeExtend module or third-party integration that was not previously running on CT-100 or CT-1000 Appliances. Before adding eyeExtend modules or third-party integrations, you must first monitor CT-100/ CT-1000 Appliance performance to verify that these Appliances have not reached high resource utilization. Do so by using both of the following Forescout Platform health monitoring policies: ◦ Appliance Resource Utilization Analysis Policy ◦ Appliance Resource Utilization Policy If the results of running these policies identify that one or more of these CT-100/ CT-1000 Appliances are already in a state of high utilization, Forescout does not recommend adding eyeExtend modules or third-party integrations to run on the identified Appliances. For details about Appliance Load Compliance policies and Appliance Resource Utilization policies, refer to the topic Health Monitoring Templates in the Forescout Platform Administration Guide . Verify an Appliance's model and revision, by running the Forescout Platform CLI command fstool model.For details, refer to the Forescout CLI Commands Reference Guide. For CT-100 and CT-1000 performance specifications, refer to the Forescout Licensing and Sizing Guide. Forescout Platform 8.4.1 This topic describes important installation considerations and important upgrade issues having to do with the Forescout Platform itself. • If your existing deployment runs an OTSM Plugin version that is earlier than version 2.0, you cannot upgrade to Forescout Platform 8.4.1. The Pre-upgrade verifier informs you of this restriction. • If your existing deployment runs any of the following Passive Sensor versions, either 4.1.2, 4.2.0, 4.2.20, 4.3.21, or 5.0.0, Forescout recommends that you do not upgrade to Forescout Platform 8.4.1. The Pre-upgrade verifier informs you of this guidance. ◦ If you choose to proceed with the upgrade to Forescout Platform 8.4.1, then, after the upgrade, deployed Passive Sensors do not start, which results in lost visibility of the network traffic monitored by the Passive Sensors. ◦ As of this release, there is no available/scheduled version of the Passive Sensor that runs with the Forescout Platform 8.4.1 Note: This entry will be updated once Forescout releases a version of Passive Sensor that runs with Forescout Platform 8.4.1. • Upgrading the Forescout Platform using CLI fstool commands is not supported. Refer to the Forescout Continuum Platform Upgrade Guide. 27 Forescout Platform and Base Modules Release Notes v8.4.1 • After installing/upgrading to Forescout Platform 8.4.1 you cannot then install/upgrade to CounterACT Infrastructure Update Pack (CIUP) version 3.0.9 or below. Attempting to do so results in installation/upgrade failure and the display of the following error messages: ◦ CounterACT Infrastructure Update Pack cannot be installed because it does not support the current version. Contact Forescout in order to obtain a newer CounterACT Infrastructure Update Pack version. ◦ CounterACT Infrastructure Update Pack cannot be installed due to errors. If, however, CounterACT Infrastructure Update Pack version 3.0.9 or below is already installed on your Forescout platform BEFORE you upgrade to Forescout Platform version 8.4.1, the upgrade to version 8.4.1 does succeed. • In order for the third-party software Medigate Module to work with Forescout Platform version 8.4.1, the module must be running Medigate version 1.1.0 or higher. • Before upgrading your Forescout deployment to Forescout Platform version 8.4.1, if any of the following, third-party software components are installed on your Forescout devices: ◦ Attivo Networks ◦ Malwarebytes ◦ Network Perception (NP-Live) ◦ RedSeal ◦ Rheinmetall (RSHA) ◦ Saint ◦ Trapx ◦ Tripwire Then, before the upgrade, you must first contact the software vendor(s) and verify the compatibility of these components with Forescout Platform version 8.4.1. CEF Plugin 2.8.2 or Higher Version This topic describes an important upgrade issue having to do with the CEF Plugin, which is a component of the Core Extensions Module. If you have existing policies that were created before Forescout interim release 8.2.1/CEF Plugin 2.8.2 and these policies use any of the CEF Plugin Audit actions - Send Compliant CEF message, Send Customized CEF message or Send Not Compliant CEF message - then in order for the CEF Event Field ID ird (CounterACT property tag area_code) to appear in the actions’ resulting CEF message, you must edit the policies in which these actions are used; first remove the action and then add the action anew. Modules Packaged with Forescout Platform 8.4.1 When you install or upgrade to Forescout Platform version 8.4.1, the modules listed in this topic are automatically installed. New module releases may become available between Forescout Platform releases. Also, see Module and Component Rollback for rollback information. • Base Modules: ◦ Authentication Module 1.4.1 28 Forescout Platform and Base Modules Release Notes v8.4.1 ◦ Core Extensions Module 1.4.1 ◦ Endpoint Module 1.4.1 ◦ Hybrid Cloud Module 2.3.1 ◦ Network Module 1.4.1 For Base Module component Configuration Guides, refer to Base Modules in the Forescout Platform Administration Guide. • Content Modules: ◦ Device Profile Library 22.1.7 ◦ IoT Posture Assessment Library 19.0.12 ◦ Network Controller Content Plugin 1.2.1 ◦ NIC Vendor Database 22.0.6 ◦ Security Policy Templates 22.0.9 ◦ Switch Content Plugin 1.3.3 ◦ Windows Applications 22.0.2 ◦ Windows Vulnerability DB 22.0.6 Many content modules are updated monthly or at regular intervals. The releases listed here are the earliest releases that are compatible with the Forescout Platform version 8.4.1. For the most recent Content Module Release Notes and Configuration Guides, refer to Content Modules in the Forescout Documentation Portal. • Extended Modules: The eyeExtend Connect Module, version 2.0.10, is packaged with Forescout Platform 8.4.1 and is automatically installed when you install or upgrade to this version of Forescout Platform. eyeExtend Connect Module v2.0.10 delivers the following components: ◦ Connect Plugin, version 1.7.2 ◦ Data Exchange Plugin, version 3.9.13 ◦ Web API Plugin, version 1.5.10 For the most recent eyeExtend Connect Module Release Notes and Configuration Guides, refer to eyeExtend connect in the Forescout Documentation Portal. Module and Component Rollback for 8.4.1 This topic provides information about platform/module/component rollback. The Forescout Platform version 8.4.1 does not support rollback. This means that after the upgrade of your Forescout deployment to Forescout Platform 8.4.1, you cannot roll back to a previous platform version. Returning your Forescout deployment to a previous platform version will require performing a scratch (new) installation of that previous platform version. Therefore, before upgrading to Forescout Platform 8.4.1, Forescout recommends that you back up your currently deployed version of the platform, in the event that you need to revert 29 Forescout Platform and Base Modules Release Notes v8.4.1 to this currently deployed version following the upgrade to Forescout Platform 8.4.1. You can then use the Restore tool if you need to revert to your previous system settings. Where to Go for More Information This topic provides additional resources for Forescout Platform version 8.4.1. • For information about the vendor models (hardware/software) and versions (product/OS) that are validated for integration with a Forescout Platform component, refer to the Forescout Compatibility Matrix. • For requirements/specifications related to deployment sizing for physical and virtual Forescout devices (Enterprise Manager and Appliances), refer to the Forescout Licensing and Sizing Guide. • For component-specific requirements, refer to the relevant configuration guide. • For detailed installation/upgrade instructions for this version, including system requirements and a complete list of supported models for physical Forescout devices, refer to the Forescout Continuum Platform Installation Guide and the Forescout Continuum Platform Upgrade Guide. Previous Releases Installing this release also installs the features/enhancements and the fixed issues that were provided in the previous releases that are listed in this topic. Note: Prior to Forescout platform version 8.2, new Base Module version releases - new features/enhancements, fixed issues, known issues, and upgrade considerations - were documented in separate Release Notes. Previous Platform Releases - Forescout Platform, Forescout Platform, CounterACT https://docs.forescout.com/bundle/platform-base-rn-8-4 https://docs.forescout.com/bundle/platform-base-rn-8-3 https://docs.forescout.com/bundle/platform-base-rn-8-2-2 https://docs.forescout.com/bundle/platform-base-rn-8-2-1 https://docs.forescout.com/bundle/platform-base-rn-8-2 https://docs.forescout.com/bundle/platform-rn-8-1-4 https://docs.forescout.com/bundle/platform-rn-8-1-3 https://docs.forescout.com/bundle/platform-rn-8-1-2 https://docs.forescout.com/bundle/platform-rn-8-1-1 https://docs.forescout.com/bundle/platform-rn-8-1 Previous Authentication Module Releases 30 Forescout Platform and Base Modules Release Notes v8.4.1 https://docs.forescout.com/bundle/Auth_Module_1.1.3_RN https://docs.forescout.com/bundle/Auth_Module_1.1.2_RN https://docs.forescout.com/bundle/Auth_Module_1.1.1_RN https://docs.forescout.com/bundle/Auth_Module_1.1_RN Previous Core Extensions Module Releases https://docs.forescout.com/bundle/Core_Ext_Module_1.1.4_RN https://docs.forescout.com/bundle/Core_Ext_Module_1.1.3_RN https://docs.forescout.com/bundle/Core_Ext_Module_1.1.2_RN https://docs.foescout.com/bundle/Core_Ext_Module_1.1.1_RN https://docs.forescout.com/bundle/Core_Ext_Module_1.1_RN Previous Endpoint Module Releases https://docs.forescout.com/bundle/Endpoint_Module_1.1.4_RN https://docs.forescout.com/bundle/Endpoint_Module_1.1.3_RN https://docs.forescout.com/bundle/Endpoint_Module_1.1.2_RN https://docs.forescout.com/bundle/Endpoint_Module_1.1.1_RN https://docs.forescout.com/bundle/Endpoint_Module_1.1_RN Previous Hybrid Cloud Module Releases https://docs.forescout.com/bundle/Hybrid_Cloud_Module_2.0.3_RN https://docs.forescout.com/bundle/Hybrid_Cloud_Module_2.0.2_RN https://docs.forescout.com/bundle/Hybrid_Cloud_Module_2.0.1_RN https://docs.forescout.com/bundle/Hybrid_Cloud_Module_2.0_RN Previous Network Module Releases https://docs.forescout.com/bundle/Network_Module_1.1.4_RN https://docs.forescout.com/bundle/Network_Module_1.1.3_RN https://docs.forescout.com/bundle/Network_Module_1.1.2_RN https://docs.forescout.com/bundle/Network_Module_1.1.1_RN https://docs.forescout.com/bundle/Network_Module_1.1_RN 31
