Tenable Identity Exposure 3.14 (2022-01-26)
New Features
Tenable Identity Exposure version 3.14 contains the following features:
-
New ability to adjust the workload quota which limits the number of Indicators of Attack running simultaneously.
-
New Indicators of Attack:
-
Massive Computers Reconnaissance: Detects reconnaissance attacks that generate a massive number of authentication requests to Active Directory targets.
For more information, see Massive Computers Reconnaissance in the Indicator of Attacks Reference Guide.
-
Enumeration of Local Administrators: Detects Active Directory data enumeration attacks.
For more information, see Enumeration of Local Administrators in the Indicator of Attacks Reference Guide.
-
Bug Fixes
Tenable Identity Exposure version 3.14 contains the following bug fixes:
| Bug Fix | Defect ID |
|---|---|
| The Dangerous Delegation RBCD Backdoor now resolves the account SID. | N/A |
| Tenable Identity Exposure does not keep attempting to process large messages. | N/A |
| Native administrative group members IoE (C-NATIVE-ADM-GROUP-MEMBERS): Placing built-in administrative groups in the custom group option no longer creates inconsistent behaviors. | N/A |
| The Logon restrictions for privileged users IoE (C-ADMIN-RESTRICT-AUTH) now resolves when you remove a computer from a sub-organizational unit. | N/A |
| The Sleeping Accounts IoE no longer counts deleted users. | |
| The Tenable Identity Exposure API now sends a 400 error when there is no active provided at user creation. |