Veritas Data Insight Release Notes
- Overview of this release
- Software limitations
- Known issues
- Inactive Data by Owner report
- Installcli
- SharePoint
- Documentum
- OneDrive, SPOnline and Azure devices
- Isilon
- User Impersonation
- Microsoft Purview Information Protection (MIP) Label
- Amazon S3
- Azure AD
- Keystore
- OneDrive
- Console display issues
- Domain List
- Action Status tab
- Permissions are not supported for certain data source
- Data Insight captures audit events only for document library and its child paths
- Some data sources do not honor the settings configured under Settings > Scanning and Event monitoring
- Security event not monitored for certain devices
- Certain paths cannot be uploaded using CSV file
- Audit events are not collected for site collections containing UTF-8 characters
- I18N characters in site collections are not supported
- The Scan History tab does not display throughput for certain data sources
- Audit events for OneDrive and SharePoint Online data sources take longer to get displayed on the Console
- Multi-byte characters not supported
- Toolbar error
- Incorrect status of folder displayed
- Incorrect information in Inactive Directories report
- Unwanted access events displayed
- Data Insight cannot capture the IP addresses for events on certain platforms
- Inconsistency between permissions view of Windows and Data Insight
- Error fetching data displayed
- Error in inactive users information
- SharePoint create event displayed incorrectly
- Custom attribute widget issue
- Incorrect disk space computation displayed on Workspace tab for NFS shares
- Share or site collections on disabled filers or Web applications are displayed in charts
- Error displayed while adding a VxFS filer
- Scan status incorrectly displayed on scanning dashboard
- Incorrect icon displayed in the reports wizard
- Newly added Enterprise Vault servers are not displayed in the Filer Mapping page
- Dashboard report fails, if filers and domains are not configured in Data Insight
- Social Network Map fails to render for the shares that have large number of active users
- Mismatch between permission entries displayed in Windows interface and Data Insight console
- Incorrect file size may be displayed for archived files in an EMC Celerra file server
- EVFolderPoint.xml file may be displayed in the Workspace
- Incorrect recommendation count displayed
- Permission recommendations for renamed folders may not be accurate
- Broken membership in case of local groups leads to misleading permissions
- Some filers are not auto-mapped for wrongly configured Enterprise Vault servers
- Exception is displayed while trying to archive a batch of files using the Enterprise Vault
- Domain filter does not work as expected in some cases
- DFS share mapping and its configuration is not removed when the corresponding physical share is deleted
- In Data Inventory reports, the DLP policy names are not displayed against the files
- Pipe character in share name not supported
- Display name for users appears blank
- Enabling or disabling of audits for site collections may take longer time
- Data Inventory Reports may produce incorrect output in certain cases
- Sorting by paths or custodians does not work in the Ownership Confirmation workflow creation wizard
- A workflow that is in submitted state cannot be canceled.
- The count of resources to which a custodian is assigned is displayed incorrectly.
- Custodian assignment may take a long time to complete.
- Permission remediation emails may display incorrect values for some variables
- The sort functionality does not work for NFS paths in the Self-Service portal.
- SID History displayed as parent group
- Ownership Confirmation workflow does not work for certain NFS paths
- Attempt to add/upgrade license results in showing success message regardless of validity of the license file
- Error message may appear while applying recommendations
- For Box type source, navigation back from a shared folder may fail
- Search for well-known SIDs may yield partial results
- DLP policy filter displays some obsolete policies
- Some user attributes may be unavailable as filters in User Risk dashboard
- Exact string may fail to display desired suggestion in go-to bar
- Low screen resolution clips Pagination bar, columns
- Exclusion rules for SharePoint paths are case-sensitive
- Default landing page for Storage Administrator role is incorrect
- Results of a filter remain persistent in Directory Services view
- Workspace may incorrectly indicate Box devices as inactive
- You may not be able to search for activity by users with I18N characters
- Permissions Search Report fails if attribute filters include I18N characters
- Navigating across tabs resets filters in Workspace
- Permission search report does not display nested DFS paths
- Forward slash appears in Access details paths report for Box devices
- Server notifications may reflect incorrect file count
- Remove Permissions panel in Permissions Search report may not display list of paths and trustees
- User Risk Dashboard does not display analytics attributes after upgrade
- Inclusion/Exclusion attribute queries do not work for Group custom attributes
- Unable to search for activity by users with Chinese characters
- When using a CSV file to upload paths to reports, a red cross appears for the paths
- Data Insight implicitly adds the groupType Active Directory attribute
- SharePoint paths filtered as a part of Scanner exclude rule are marked as deleted and not displayed on UI
- Active user count for Ownership Confirmation workflows not displayed on Portal UI
- Sometimes the sensitive file and other columns do not display the correct count
- Reports cannot be searched using comma separated labels
- The classification status of certain paths invariably appears to be in in-progress state
- Paths with special characters cannot be classified
- An error is reported during content scan of Box
- Files and folders do not inherit the Custodian assignment
- Discrepancy in the count of paths that failed classification
- Other Issues
- Classification
- Isilon NFS
- NFS Scan
- Netapp and Fpolicy
- Effective permission data
- OneDrive, SharePoint Online, and Box
- Veritas Information Classifier (VIC) tags
- Cloud storage license details
- Localization
- Scan History
- OneDrive proxy server settings
- SharePoint Online
- NFS user mapping
- Delete action
- Audit Logs
- Watchlist configuration
- Box and OneDrive
- winnas installation
- Group permission
- SharePoint
- SID not getting resolved for NetApp Cmode filer
- Entitlement Review reports for OneDrive devices
- Data Insight scans Shares using unexpected SmartConnect Zone
- [Box] Classification request remains in the 'in-progress' state if a file download fails
- Excel Services Viewers group is displayed as an account level group in Sharepoint Online
- License uploading results in an empty file named "upload"
- Tesseract needs to be uninstalled manually upon Data Insight uninstallation
- Inaccurate Entitlement Review report output for SharePoint Online and SharePoint On-prem devices
- Group Change Impact Analysis report does not work for SharePoint Online and SharePoint On-prem devices
- Collector process became unresponsive on rare instances
- HNAS Filer Audits
- Local users
- Scanner infinitely scans circular symlinks
- Capacity Reports are generated for all filers irrespective of RBAC configuration
- Error in displaying selected result entry
- Vfilers wrongly capture open events on folder paths as events on file paths
- Deletion of a Collector node fails even after disassociating all filers
- User with Product Administrator role unable to edit share
- Unable to restore tabs
- Scan resync does not work for certain scenarios
- Security event not monitored
- Create event not captured
- Container and directory service name limitation
- Special characters in NFS paths cause NFS scanner to fail
- Incorrect default schedule displayed
- Error in deleting report output
- Port number for LDAP directory server required
- Exclamation mark in user name not supported
- A security event does not change last modified by value for a destination folder
- The job scheduling settings require modification
- The scan history graph does not display the data as expected
- Limited support in the Entitlement Review report
- Issue with launching installer from mapped drive
- Issue with same NFS export and CIFS share name
- The scanned shares and the total scan count does not match
- Access Summary for Paths report displays all active users of a share
- Limited support for claims-based authenticated Web applications for SharePoint
- Inactive users view and report does not consider share-level permissions
- Attempt to archive a file using the Enterprise Vault fails
- Group Change Analysis report does not report loss of access if users part of built-in groups
- Filer Mapping page does not reflect the changes in the settings for the Enterprise Vault servers
- Generic device issue
- Connection to the Enterprise Vault server fails if host name is used
- Stop DataInsightFPolicy service before shutting down a Collector node
- Data Insight cannot retrieve retention categories with certain characters
- Issue with assigning NIS and LDAP users as custodians
- Disabled icon not displayed
- Issue with computing custodian for root site collection
- Size of parent folder is not updated
- Issue with pagination on Audit Logs view
- Issue with LHS filter
- mxcustodian.exe is slow in case of large number of paths
- Certain reports do not honor the global data owner policy
- Incorrect information displayed for migrated user
- Issue with workflow creation if services on Indexer are down
- Query with I18N characters may fail to generate Permissions Search Report
- Paths having double quotes are not added when using CSV method
- Issue with report output on file group selection when configuring reports
- Fixed issues
- Appendix A. Getting help
In 6.1
The following features and enhancements are available in Data Insight 6.1.
With the proliferation of Microsoft Office 365, Data Insight has now widened its support for the following new data sources:
SharePoint Online
Microsoft OneDrive cloud accounts
OpenText Documentum
Support for three new additional data sources provides visibility, forensics, and the ability to manage data on these new data sources. In Release 6.1, Data Insight supports the discovery, scan and audit of these data sources. However, Data Insight does not fetch permissions for these data sources, and audit information for Documentum data sources.
For information on configuring the monitoring of these data sources and for a detailed list of support limitations, see the Veritas Data Insight Administrator's Guide.
Data Insight now provides the ability to have a more granular role-based access control by allowing you to customize user roles to ensure separation of duties for more regulated workloads. The ability to customize roles also ensures that there is a clear separation between users who manage access to the Data Insight application and the users who consume the data.
Data Insight now lets you create the following new user roles to manage user access and do the basic administration tasks:
User Administrator - This role can add, delete, and modify the roles assigned to Data Insight users. The role has access only to > and not to any other tabs.
Workflow Administrator - This role has access to all sub-tabs under the tab, but does not have access to the other sections of the Data Insight Management Console.
For information on configuring the user roles, see the Veritas Data Insight Administrator's Guide.
Distribution of a trial cloud license is discontinued from Release 6.1 onwards. You must purchase a cloud license to continue using Data Insight functionality. Contact the Veritas Customer Care for purchase of a cloud license.
An add-on cloud license has been introduced to monitor the data that resides in your cloud environment such as Box, SharePoint Online, and Microsoft OneDrive. On applying a valid cloud license, you can add cloud sources for monitoring, discover and scan data, and view the metadata and audit information.
For more information about the Data Insight licenses, see the Veritas Data Insight Administrator's Guide.
Data Insight now supports the latest Windows Server 2016 operating system for all Data Insight server components and to install the Windows File Server agent.
Data Insight now supports raising of alerts for activities that are performed on all sensitive data, including the files classified by Veritas Information Classifier (VIC). The enhancement enables you to detect malicious activity and take remediation action to prevent data breaches, as appropriate.
Note that the Real-time Sensitive Data Activity policy does not raise alerts for files classified by VIC.
For more information about configuring real-time polices for raising alerts, see the Veritas Data Insight Administrator's Guide.
Data Insight now integrates with Enterprise Vault 12.2 to enable the archiving of old and inactive data on CIFS shares.
The newly introduced DQL templates to detect ransomware enable you to detect the files that are exploited by ransomware. In the event of an attack, ransomware uses a vulnerable user account to encrypt and rename files to which the user has access. With timely detection of the ransomware attack, you can take appropriate remediation action to minimize the risk, and respond to the encryptions that might be underway.
Using the ransomware DQL templates in conjunction with your inputs, you can fetch the following information of the files that exist on the monitored data source:
Collect the count of write and rename activities performed on files in a data source within 24 hours. If the count is higher than the configured threshold, the files are determined as infected and the users are notified. The threshold value is the number of write and rename activities that you permit on a data source within 24 hours.
Get the count of files that are renamed by per user, and have unique file extensions.
Fetch the top-level directories in the share or equivalent, and the number of write and rename activities performed in each of these directories by per user.
List all the files that are created in the last 24 hours by per user. Use this query to identify files created by a risky user.
List the files that contain a specific string in the file name. For example, when a ransomware appends a unique extension to the encrypted files.
Enumerate the duplicates of the potentially malicious executables residing on your system.
For more information about ransomware reports, see the Veritas Data Insight User's Guide.