Management console and platform services
This section contains information about updates to the management console and platform services that impact more than one
Cylance Endpoint Security
service or the general experience of the console. Console changes that impact specific Cylance Endpoint Security
services are described in the respective sections of this guide.What's new in the management console
Feature | Description | Date added |
|---|---|---|
New Devices grid view for managing devices | This is a preview of changes to come for the Devices grid that is fully functional and can be used as an alternate way to manage your devices. Enhancements will continue in the near future to add more filter criteria and new experiences. The following features can be used today:
For more information, see Manage CylancePROTECT Desktop and CylanceOPTICS devices. | July 2024 |
Automated zone management | Devices can now be automatically added to a zone when they match the zone rules criteria and also be automatically removed from a zone when they don't match the criteria. When you add a zone rule to a new zone, you need to specify a saved query (from the new Devices grid view) and whether you want devices to be automatically removed. The list of devices in the results of the saved query indicates the devices that will be automatically added to the zone. It is recommended to run a saved query and verify the list of devices in the results before using it for zone rules. By default, devices that are added automatically to the zone will follow the zone rules. If the automatic device removal option is selected in the zone rules, devices that follow the zone rules will be automatically removed from the zone when they don't meet the zone rules criteria. You can also manually add devices that ignore the zone rules so they aren't automatically removed from the zone. When managing a zone, you can change whether a device follows or ignores the zone rules. With the introduction of automated zones, you cannot modify the zone rules of legacy zones that were created prior to this update, but the legacy zones will continue to function as before. To take advantage of the automated zones, you can migrate devices from legacy zones by copying devices to a newly created zone or by creating a new saved query filter using the new device grid and using it for the zone rule. In the new zone, you can change the associated policy and ensure it works properly according to your needs before you remove the legacy zone. For more information, see Setting up zones to manage CylancePROTECT Desktop and CylanceOPTICS . | July 2024 |
Simplify the configuration of a new tenant | When you create a new Cylance Endpoint Security tenant, the tenant now includes preconfigured zones and preconfigured device policies that are designed to help you tune your environment to the desired security posture.You also have the option to export the configuration of an existing tenant and import it to a new tenant, or to reset a new tenant to use preconfigured zones and preconfigured device policies. For more information, see Configuring a new Cylance Endpoint Security tenant. | July 2024 |
Reset password enhancement | When users reset their password, a confirmation message that includes the email address that a reset password email is sent to will be displayed. | June 2024 |
CylanceMDR On-Demand | The CylanceMDR On-Demand subscription is a convenient and helpful option if your organization monitors the alerts that are reported to the CylanceMDR console. With this subscription, you can request CylanceMDR support on demand for any alerts that you think might be a threat but you need the time and expertise of a CylanceMDR analyst to help you resolve it. You can request support from an alert group in the Alerts view in the Cylance console. CylanceMDR analysts are immediately notified with the alert details and can start their investigation and assess the threat. To follow up on the investigation (for example, to share additional details), you can log in to the CylanceMDR (CylanceGUARD) portal and find the alert in the Escalations screen.For more information, see View and manage aggregated alerts. | May 2024 |
Alerts view enhancement: Cylance Assistant for CylanceOPTICS alert groups | In the Alerts view, you can use the AI-powered Cylance Assistant to provide a summary analysis of a CylanceOPTICS alert group, and detailed analysis for process artifacts within the group (for example, command line processes). The Cylance Assistant leverages rich cybersecurity knowledge sources to provide valuable information to aid you in your threat investigations.
For more information, see Use the AI-powered Cylance Assistant to investigate alerts. | May 2024 |
Alerts view enhancement: Support for script control alerts | The Alerts view now supports CylancePROTECT Desktop script control alerts, including the ability to add a file associated with a script control alert to the global safe list.For more information, see Managing alerts across Cylance Endpoint Security services. | April 2024 |
Alerts view enhancements |
For more information, see Managing alerts across Cylance Endpoint Security services. | March 2024 |
Console sign in enhancement | By default, new tenants now require administrators to enter a one-time password, in addition to the Cylance console password, each time that they try to access the console. Existing customers can update the authentication policy to add the One-Time Password requirement. New tenants can remove the One-Time Password requirement after an administrator sign-in to the console for the first time. For more information, see Enhanced authentication sign in. | March 2024 |
User Policy enhancements | The following enhancements have been made to the "Add User or Group" setting (Policies > User Policy) in the management console:
| February 2024 |
BlackBerry Connectivity Node version
BlackBerry Connectivity Node
versionBlackBerry Connectivity Node
version 2.14.0. To download the latest version of the BlackBerry Connectivity Node
, click here.