check-circle-line exclamation-circle-line close-line

Updated on: 19 August 2019

VMware AppDefense Plug-In 2.2.1 for Platinum Edition | Released 23 July 2019 | Build 14205182

Added details for support of additional Linux OS versions.

What's in the Release Notes

What's New

AppDefense Release Notes

What's New In AppDefense Plug-In 

2.2.1

With this release, newly installed or upgraded guest module components are now supported on virtual machines with Hardware version greater than 13.

This release improves Linux process identification for short-lived network connections.

This release provides important security fixes related to vulnerabilities in Linux Kernel identified by CVE-2019-11477 and CVE-2019-11478. For more information on these issues please see VMSA-2019-0010 (https://www.vmware.com/security/advisories/VMSA-2019-0010.html).

Guest module version 2.0.4.0 adds support for additional Linux OS versions as documented in the System Requirements for AppDefense.

The guest modules of relevant Linux OS's can be upgraded to this version by following these instructions.

2.2.0

This release provides additional visibility within the AppDefense Appliance and improves the process of setting connectivity status to the AppDefense Manager. 

Connectivity Status 

The Plug-In now supports only two connectivity modes: SaaS and non-SaaS. The workflow for selecting SaaS connectivity mode has been simplified to allow checkbox selection for enabled/disabled. There is also a text field to provide or alter the AppDefense Manager details from the default value. 

Additionally, the Appliance UI has been enhanced to show connectivity status between itself and the AppDefense Manager. This eliminates the need to navigate outside of the Appliance in order to view this information. 

Available Upgrades 

The Appliance UI now displays information about all available versions and components of AppDefense that can be upgraded to after an upgrade bundle has been uploaded. 

2.1.1.1

This release provides an improved error message on the UI when user incorrectly configures SSO from the AppDefense Appliance > Registration  tab.

2.1.1

The 2.1.1 is a bug-fix release addressing specific customer bugs related to upgrade. 

2.1.0

With the 2.1.0 release, AppDefense focuses on scale and performance improvements in the AppDefense Plug-in and does not include new feature updates for the Platinum Edition.

2.0.0

Release Overview

With this release, AppDefense announces General Availability of the AppDefense Plug-in for Platinum Edition. The AppDefense Plugin integrates application security capabilities directly in the vSphere Client. It provides high-level security metrics about your environment, deep visibility into the behavior of individual VMs, and end-to-end lifecycle management for AppDefense components. The AppDefense plug-in is supported only in the HTML5 version of the vSphere Client.

Plugin Dashboard

The Plugin Dashboard delivers aggregated security metrics, visibility, and health statistics for applications and workloads running on vSphere. Users can drill into individual behaviors and reputation scores, leading to deeper visibility in the VM Monitor page. This high-level summary provides focused, at-a-glance statistics and a starting place for additional discovery. 

Lifecycle Management

AppDefense announces one-click, integrated installation and upgrade workflows for AppDefense directly within vCenter. Users can now get a full report of their protection status, deploy AppDefense modules into entire clusters with a single click, and schedule regular upgrades, all while leveraging familiar workflows. Managing AppDefense components in this way greatly increases ease of operation for IT admins.  

VM Monitoring

This release delivers a new virtual machine monitor tab that provides VM-specific behavior monitoring for visibility, security assessment, and troubleshooting directly within vCenter. Integrating this capability in vCenter enables IT admins to play pivotal roles in the protection of their organizations’ apps and data.

Connectivity Modes

The AppDefense Plugin can operate in three different connectivity modes: Online, Offline, and SaaS. Offline mode requires no internet connectivity and provides a basic visibility-only view of your environment. Online mode adds security feeds from the AppDefense Service. SaaS mode (recommended) provides the full AppDefense feature set. Select the connectivity mode that meets your compliance requirements. For more information, go to AppDefense Appliance Connectivity Modes.

 

 

 

Resolved Issues

  • vCenter authentication failure

    vCenter authentication with the AppDefense Appliance was failing when a domain alias was used. This is fixed in the 2.2.1 release, as the Appliance now handles the domain name when a domain alias is used.

  • vMotion failure

     

    vMotion operations were failing due to a locked log file. When a VM migrates, it typically needs all the files in its directory to move. The AppDefense module was placing a lock on a VM log file, which was causing vMotion to fail. This is fixed in the 2.2.1 release. 

  • Appliance upgrade failure

    The Appliance upgrade was failing due to previous upgrade bundles not being cleaned up. This issue is resolved in the 2.2.1 release.