Release 3.20.1
April 14, 2025
What's new?
 |
Cloud Agent |
Download Cloud Agent Installer from Docker Hub
With this release, we are providing the docker hub URL for the AWS Bottlerocket, GCP-COS, and Redhat CoreOS agent installer packages on the Install Agents page. This gives you earlier access to the docker images containing Cloud Agent installer for containerized OS platforms.
Activate TruRisk™ Isolate for Cloud Agent
With this release, we have added support for activating TruRisk™ Isolate for Cloud Agent. With TruRisk Isolate, you can quarantine vulnerable assets from your network and preventing them from communicating with other assets in the network and exploiting critical vulnerabilities. The TruRisk Isolate also allows deploying patch and mitigation jobs on isolated assets.
| Required application version | Patch Management 3.4.0.0 |
Role Based Access for View Asset Details Page
We have introduced the role based access for the View Asset Details page of Cloud Agent user interface. With this feature, only the users who have activated a Qualys application can view the data for that respective application on the View Asset Details page. This helps you control and limit the data access based on the roles and corresponding permissions. If you have not activated an application and want to see the data for it in the View Asset Details tab, no data is displayed due to insufficient privileges.
This feature is available only if the Role Based Access Control is enabled for your Qualys Account.
For example, if you have the permissions for Policy Compliance (PC) and not the other Qualys applications, then you can view the details only for Policy Compliance. When you try to access the details for other applications, no data is displayed due to insufficient privileges.
Support to Activate SwCA for OEL and Alma Linux Platforms
With this release, we have extended the operating system support to activate Software Composition Analysis (SwCA) application for the following platforms:
- Oracle Enterprise Linux (OEL) 6.x and later
- Alma Linux 8.x and later
You can now activate SwCA on the assets with these operating systems where Cloud Agent for Linux Intel 6.1 or later is installed.
Issues Addressed
| Category/Component | Application | Description |
|---|---|---|
| AssetView UI | AssetView | We fixed an issue where the incorrect notification was displayed on the AssetView user interface after purging an asset. Now we have modified the UI text to show the correct notification for asset purging. |
| CSAM UI | CSAM | We fixed an issue where users could not create the purge rule for AWS instances even though multiple account IDs were present in the subscription. |
| CAUI | Cloud Agent | We fixed an issue where Cloud Agent user interface displayed incorrect message after enforcing the PM license count. Now, we have made the suitable changes to Cloud Agent user interface to display correct message. |
| Portal API | Enterprise TruRisk™ Platform | We fixed an issue where users were unable to access the portal APIs because their password was getting expired as the Password Never Expires option was not enabled. Now, we have added support for the Password Never Expires option to the portal's APIs. The users with API permissions can now access the portal APIs even if their password is expired. |
| CSAM API | CSAM | We fixed an issue where the host asset API took more than the expected time to generate API response by optimizing the search queries used for fetching the asset ID. Impacted API: /qps/rest/2.0/search/am/hostasset |
| WAS API | WAS | We fixed an issue where the search findings API was taking more time to generate the API response, by introducing a parameter to limit the previous history of records related to a finding. Impacted API: /qps/rest/3.0/search/was/finding/ |