Tenable Cloud Security 2.3.1 Release Notes (2022-02-22)

Important: Tenable has announced the End of Life for Legacy Tenable Cloud Security. You can continue to access the application and receive support through September 30, 2024. Tenable recommends that you move to the current version of Cloud Security immediately. For more details, see the End of Life bulletin.

Enhancements

  • Supports log monitoring for the following AWS resources:

    • AWS Lambda

    • Amazon Elastic Container Service (Amazon ECS)

    • Amazon DynamoDB

    • Amazon Elastic Kubernetes Service (Amazon EKS)

    • Amazon Managed Streaming for Apache Kafka (AmazonMSK)

    • AWS Systems Manager Parameter

  • Includes CloudFormation (CFT) scan support parity with Terraform (Phase 1):

    • aws_launch_configuration

    • aws_sqs_queue

    • aws_sns_topic

    • aws_instance

    • aws_cognito_user_pool

    • aws_lambda_function

    • aws_acm_certificate

    • aws_sagemaker_notebook_instance

    • aws_dms_replication_instance

    • aws_load_balancer_policy

    • aws_eks_cluster

    • aws_codebuild_project

    • aws_emr_cluster

    • aws_msk_cluster

    • aws_vpc

    • aws_redshift_parameter_group

    • aws_sagemaker_model

    • aws_backup_vault

    • aws_appmesh_mesh

    • aws_eks_node_group

    • aws_rds_cluster_instance

    • aws_sagemaker_notebook_instance

    • aws_dms_replication_instance

    • aws_load_balancer_policy

    • aws_glacier_vault

    • aws_eks_cluster

    • aws_codebuild_project

    • aws_vpc

    • aws_emr_cluster

    • aws_api_gateway_rest_api_polcy

    • aws_msk_cluster

    • aws_redshift_parameter_group

    • aws_sagemaker_model

    • aws_backup_vault

    • aws_appmesh_mesh

    • aws_eks_node_group

    • aws_ram_resource_share

    • aws_appautoscaling_policy

    • aws_secretsmanager_secret_rotation

    • aws_iam_group

    • aws_qldb_ledger

    • aws_ecs_cluster

    • aws_apigatewayv2_api

    • aws_db_event_subscription

    • aws_config

    • aws_neptune_cluster_instance

    • aws_globalaccelerator_accelerator

    • aws_waf_size_constraint_set

    • aws_athena_workgroup

  • Allows you to unsubscribe from daily Onboarding Status emails.

  • Allows you to configure cloud accounts in the On Premise Scanner Management Console page when you deploy the on-premise code scanner.

User Interface Improvements

The Reports page has the following enhancements:

  • Defaults to failed violations.

  • Includes a Show All checkbox to view all the rows on a page.

  • Includes a sorting option in the Coverage column.

Bug Fixes

Bug Fix Defect ID

Tenable Cloud Security now displays Kubernetes resources specific to an AWS account in scan results.

 N/A