What's new in 2015 Release 4?

Documentation | Support

Go to the table of contents

Go to the previous page

Go to the next page

View or print as PDF

2015 Release 4 Notes for Websense Cloud Web Protection Solutions : What's new in 2015 Release 4?

What's new in 2015 Release 4?

Password policy for end users


	Note This is a limited-availability feature that may not be available in your account.

If available in your account, you can also use the password policy on the Account > Contacts > Edit page for your end users. Select Apply password policy to end users authenticating with the service to impose the same password requirements for any end users who are registered for the service and using manual authentication, including the minimum and maximum length and restrictions on using previous passwords. If you have also defined a password expiration limit, you can select Remind end users when passwords are about to expire to send an email reminder to end users when they need to change their passwords.

As part of this feature, you can now search for end users who are overdue to change their passwords on the Account > End Users page.

Microsoft AD FS supported for single sign-on

Microsoft Active Directory Federation Services (AD FS) is now a supported option on the Web > Single Sign On page.


	Note Single sign-on is a limited-availability feature that may not be available in your account.

Updates to Endpoint Auditing Report


	Note The Endpoint Auditing Report is a limited-availability feature, and may not be available in your account.

The following options are now available from the Endpoint status drop-down:

Enabled – all endpoints that are currently enabled

Enabled (manually) – endpoints that have been manually enabled by the end user

Enabled (auto-override) – enabled endpoints that have an automatic temporary override due to lack of connection with the cloud service

Enabled (system restart) – endpoints that have been automatically re-enabled on machine restart

Disabled (manually) – endpoints that have been manually disabled by the end user

Standby mode – disabled endpoints that have an automatic temporary override due to lack of connection with the cloud service

You can now see further details for a particular workstation by clicking the workstation name. The Workstation Details pages show the following additional information:

When the endpoint status was last updated

The endpoint version

The operating system on which the endpoint is installed

The endpoint status change history for that workstation

Note also the following:

The columns in the endpoint status table are now in the order Workstation, User Name, Endpoint Status.

In the Log activity table, Enabled (system restart) events show the User as "System". The "System" user is also displayed when there is no user associated with an event.

New block page for non-certificate errors

A new block page has been added for cases when the cloud service proxy cannot access a requested URL and the error is not related to certificate issues.

SSL decryption updates

The following updates have been made to SSL decryption in this release:

The RC4 cipher has been removed from the list of ciphers used in SSL decryption.

When an SSL tunnel is decrypted for authentication but not for analysis, a log record is created which is the same as the CONNECT transaction for non-decrypted tunnels.

i-Series appliance updates

The following updates have been made in the cloud service as part of the i-Series appliance v1.5 release. For more information, see the Release Notes for Websense i-Series Appliances.

Use of Active Directory for authentication

You can now connect an appliance to a local Active Directory server to enable transparent NTLM password authentication. This function offers enhanced authentication over the simple identification method available in previous versions.

If you are connecting your appliance to a local Active Directory for NTLM authentication, you do not need to enter the domain that forms part of your users' NTLM identity on the Authentication tab when configuring an appliance in the portal.

Endpoint interoperability

In previous versions, all traffic from TRITON AP-ENDPOINT Web was redirected immediately to the cloud service, bypassing appliance processing. In this version, if some of your end users have the endpoint installed, perhaps because they often work remotely, you can set up your appliance to handle endpoint traffic in one of the following ways when those end users are at a site served by an appliance:

Ignore all traffic generated by an endpoint client. This means that endpoint users are effectively treated as roaming users even when on-site.

Manipulate PAC file requests from endpoint clients and ensure that endpoint traffic goes direct through the appliance rather than via the cloud service proxy. This means that end users have less latency and get a better user experience.

Both of these configurations must be enabled by Websense Technical Support; please contact Support for further information.

Integration of Cyren antivirus engine

An updated version of the Cyren antivirus engine has been integrated into cloud service categorization and deployed as part of this release.

Stricter password checking

When creating or updating portal passwords, note that passwords can no longer contain common words or keyboard sequences.

Go to the table of contents

Go to the previous page

Go to the next page

View or print as PDF

2015 Release 4 Notes for Websense Cloud Web Protection Solutions : What's new in 2015 Release 4?

Copyright 2018 Forcepoint. All rights reserved.