Announcing the GA of N-central 2024.1

Posted on February 22, 2024 by Matt Miller

N-central 2024.1.0.17

Detailed Release Notes

Download link (login required)

What’s New in N-central 2024.1 

The first release of N-central in 2024 is packed with a lot of goodies to help our partners stay secure as well as get the most out of N-central and their chosen tech stack.  From enhancements to our EDR integration ready for all, new CVSS scoring for Microsoft Patching, and continuing to expand our growing set of REST API’s.   

Enhancements to EDR integration for all partners!

The current EDR integration can now be upgraded to the new EDR integration! This new and improved EDR integration will give you full SentinelOne functionality while continuing to utilize N-central for bulk deployment (Windows and MacOS) and real-time monitoring of your devices. With full dashboard access to SentinelOne, including SSO access via Azure AD, you can now view detailed threat reports, configure granular notifications, and access the SentinelOne API. You can also try advanced security features like Complete, Threat Hunting, also known as “Deep Visibility”, and Ranger

How to upgrade?  To upgrade your EDR integration, navigate to the Integration Management screen within N-central and click the ‘Upgrade’ button. 

Watch the video on how to upgrade your EDR to the new integration!

New REST API Endpoints

There are several new REST API endpoints included in 2024.1! These updates include endpoints with GET methods for: 

  •  Retrieving Device Asset information for a device by the specified device ID 
  • Retrieving a list of all Organization Units, Service Organizations, Customers and Sites 

After upgrading to 2024.1, you can view the updated list of REST API endpoints by navigating to your Swagger documentation page located at https://Your_FQDN/api-explorer/. The new endpoints can be identified as any endpoint with ‘Preview’ label on the endpoint description. 

Patch Management CVSS Scoring

We are delighted to announce a significant enhancement to patch management which brings brand new security focused functionality with the Common Vulnerability Scoring System (CVSS) data being shown alongside patch information with the Patch Management workflows. CVSS provides a standardized and consistent way to assess and communicate the severity of vulnerabilities.  

By combining information including CVSS from Microsoft’s Security and Response Centre direct into Patch Management you can see which patches are solving vulnerabilities allowing you to focus efforts on those If and when needed. 

Please note, a Patch Management Engine (PME) release was launched prior to 2024.1 GA. PME has been able to gather CVSS information for some time pending the finish of the UI. For PME to re-submit older patches that have already been discovered, you will need to clear the cache located here: C:\ProgramData\MspPlatform\PME\data\Cve\CveHash.txt  or you can update PME to 2.10.4RC (which is planning to go live in a few days)

What is in this first release? 
 
The patch approval work flows now include a CVSS score column. For patches solving multiple vulnerabilities the highest score will show.  
 
A filtering option to focus on specific score ranges is available within the filter pop out window 

Clicking a CVSS score shows a pop up which includes all vulnerabilities being solved by the patch including the ID’s and scores. The pop up includes clickable links which direct you to the MSRC database 

What’s next for CVSS?  

The next stages are planning to add CVSS scoring into the auto approval rules. This would allow you to target patches of a certain score and above. One way you might want to use this would be to immediately approve and install anything that is a 10 on the CVSS scale due to the severity of it.   

Another quick add currently being planned will come in the form of highlighting colors dependent on the range so that it is easier to identify in the workflows.   

Device Management for Apple

N-central DMA functionality has been improved by adding an icon to the features column within the All-Devices view, providing a quick and easy way to see the enrollment status of a device. This new icon includes multiple states, such as DMA Enrolled, Waiting for User, DMA not Enabled, and more. 

New Patch Management Report (for mac)

A new ‘Managed Patch for mac’ report has been added to provide a much better experience when determining the patch install state over several devices. 

Apple devices have the possibility of updating over 200 3rd party applications using the Run Managed Patch script available within the N-central repository. This list of patches is maintained by N-able and all updates are tested before being pushed live to production. 

In addition:

In addition to all the feature enhancements, we have made over 40 updates to issues that have been reported by partners, all of which are outlined in the detailed release notes page

This entry was posted in N-central. Bookmark the permalink.