beyondinsight-ul-22-1

January 31, 2022

SIEM Integration: Elasticsearch
- Added SIEM configuration section to settings.
- Added SIEM management API.
- Updated host details for SIEM connection information.
- Updated profile binaries and scripts to collect SIEM information.
- Added Elasticsearch actions to inventory grid.
SIEM Integration: Logstash
- Added Logstash availability testing to configuration.
- Generated configuration samples .
- Added copy to clipboard option for configuration samples.
- Added Logstash actions to inventory grid.
SIEM Searching
- Added search parser API.
- Created client DateTime selector.
- Added DateTime filter integration with API.
Unified Search Client
- Added generic column selector component.
- Added unified search module.
- Added landing layer to audit section.
- Modified Session Replay and Event Log server selector UI flow.
- Added download results component.
- Added AD Bridge results grid.
- Added PMUL results grid.
- Integrated search API.
Search Term Highlighting
- Search terms are highlighted in search results.
- Added API to return highlight structure.
Miscellaneous
- Modified default generated ACA policy to allow commands.
- Added file name to session replay player.
- Removed quick menu from policy; contents distributed to appropriate policy types.
- Added support for memberUid in LDAP queries.
- Added logfile rotation for system logs.
- No longer label PMUL hosts without pblogd as Solr clients.
- Increased incremental backoff for database connections.

Resolved issue in which FIM policy names with non-alphabetic characters broke navigation.
Resolved issue in which client registration editor did not allow scrolling.
We now allow spaces for domain join arguments; re-ordered parameters.
Resolved issue in which profiles marked rest failures on PMUL clients as errors.
Resolved issue in which the ACA editor state did not clear after closing.