What's New in AsyncOS 13.0
Feature |
Description |
||
---|---|---|---|
Mailbox Auto Remediation on Microsoft Exchange online, Microsoft Exchange on-premise, hybrid, and multi-tenant deployments |
A file can turn malicious anytime, even after it has reached user’s mailbox. AMP can identify this as new information emerges and push retrospective alerts to your appliance. You can configure your appliance to perform auto-remedial actions on the messages in user mailbox when the threat verdict changes. The appliance can perform auto-remedial actions on the messages in the following mailbox deployments:
|
||
FIPS Certification |
Cisco Email Security Appliance will be FIPS certified and has integrated the following FIPS 140-2 approved cryptographic module: Cisco Common Crypto Module (FIPS 140-2 Cert. #2984). For more information, see FIPS Management. |
||
Single Sign-On (SSO) using SAML 2.0 |
The Cisco Email Security appliance now supports SAML 2.0 SSO to allow users can log in to the web interface (both legacy and the new web interface) of the appliance using the same credentials that are used to access other SAML 2.0 SSO enabled services within their organization. For more information, see System Administration. |
||
Support for Unified Common Event Format (CEF)-based Logging |
The Cisco Email Security appliance now supports a new type of log subscription – ‘Consolidated Event Logs’ that summarizes each message event in a single log line. This reduces the number of bytes of data (log information) sent to a Security Information and Event Management (SIEM) vendor for analysis. The Consolidated Event Logs are in the Common Event Format (CEF) log message format supported by all SIEM vendors. For more information, see Logging. |
||
Ability to safe print message attachments. |
You can configure your email gateway to provide a safe view (safe-printed PDF version) of a message attachment detected as malicious or suspicious. The safe view of the message attachment is delivered to the end user and the original attachment is stripped from the message. You can use the 'Safe Print' content filter action to safe print all message attachments that match a configured content filter condition. The ability to safe print message attachments in the email gateway, helps an organization to:
For more information, see Configuring Email Gateway to Safe Print Message Attachments. |
||
Integrating the Appliance with Cisco Threat Response |
You can integrate your appliance with Cisco Threat Response, and perform the following actions in Cisco Threat Response:
For more information, seeIntegrating with Cisco Threat Response. |
||
Performing Threat Analysis using Casebooks |
The Cisco Email Security appliance now includes the casebook and pivot menu widgets.
You can perform the following actions in your appliance using the casebook and pivot menu widgets:
For more information, see Integrating with Cisco Threat Response. |
||
Improving User Experience by Collecting Feature Usage Statistics |
The Cisco Email Security appliance now collects feature/interface usage statistics on the new web interface of the appliance that helps cisco improve overall user experience. All data collected is anonymized. If you want to opt-out of this feature, navigate to System Administration > General Settings > Usage Analytics page of the web interface to disable it. For more information, see Collecting Usage Statistics of the Appliance on the New Web Interface. |
||
Anti-Spam Scanning Configuration Enhancement |
A new 'Aggressive' scanning profile is added to the Anti-Spam global settings. You can use this profile to assign a higher priority on incoming or outgoing messages detected as spam, and to accept a higher chance of false positives. You can enable this option in any one of the following ways:
|
||
New Web Interface for Reporting, Quarantine, and Tracking |
The appliance now has a new web interface to search and view:
|
||
The |
You can use the
For more information, see Cisco Email Security Command Reference Guide. |
||
Message Tracking Enhancement |
You can now search for messages based on the “ For more information, see Tracking Messages. |
||
Advanced Malware Protection Report Enhancements |
The Advanced Malware Protection report page has the following enhancements:
|
||
Metrics Bar Widget |
The Metrics Bar widget enables you to view the real time data of the file analysis done by the Cisco Threat Grid appliance on the Advanced Malware Protection report page. For more information, see Advanced Malware Protection Page. |
||
Ability to categorize IP addresses as persistent whitelist or blacklist |
You can categorize the IP address that you use to access the appliance using SSH as a persistent whitelist or blacklist. If
the appliance or the You can use the For more information, see the |
||
Forged Email Detection Enhancement |
You can now create an exception list consisting of only full email addresses to bypass the Forged Email Detection content filter in Mail Policies > Address Lists. You can use this exception list in the Forged Email Detection rule if you want the appliance to skip email addresses from the configured content filter. |
||
New Walkthroughs available on the How-Tos Widget |
The How-Tos is a contextual widget that provides in-app assistance to users in the form of walkthroughs to accomplish complex tasks on your appliance. The following are the walkthroughs that are added in this release:
The list of walkthroughs is cloud updateable. Make sure that you clear your browser cache to view an updated version of the How-Tos widget and pop-up window. For more information, see the “Accessing the Appliance” chapter in the user guide or online help and the CLI Reference Guide for AsyncOS for Cisco Email Security Appliances. To view the list of How-Tos supported in each release, see Walkthroughs Supported in AysncOS for Cisco Email Security Appliances. |