Changelog
April 29, 2020 Release
Enhancements:
- The AWS Connector API now returns more informative error messages.
- The API has been updated to return 403 instead of 405 responses when multi-tenancy is not enabled or a tenant attempts to use an endpoint for which they do not have access.
March 9, 2020 Release
New:
Use the API to add an Amazon Web Services (AWS) connector and synchronize EC2 Instances and WorkSpaces from AWS to Deep Security:
Calls to the legacy /rest/cloudaccounts/aws endpoint now include a Deprecated:true header. This does not immediately impact any functionality.vAs of June 1, 2020, calls to /rest/awsconnectors/aws that attempt to add an AWS cloud account using a cross account role with a customer-provided external ID will fail as an invalid request. To resolve this issue, update your automation scripts to use the new /api/awsconnectors endpoint. For more information, see https://success.trendmicro.com/solution/00024197.
January 27, 2020 Release
No API or Automation Center changes since last release.
January 16, 2020 Release
Enhancements:
- Enhanced GCP Connector API documentation for the request parameter and searchable fields
- In the
expandparameter of /api/computers, theallSecurityModulesoption now includes Application Control - Updated /api/sessions to improve error handling when the body of the request is empty
- Updated the Scheduled Tasks API so that if a task is disabled, the returned
nextRunTimevalue isnull.
December 19, 2019
Added a new recipe to the Cookbook: Assign a Policy to Many Computers.
December 12, 2019 Release
Enhancements:
- New /api/apikeys/current endpoint. POST to this endpoint to change the properties of the API key that is used to authenticate the request.
- New /api/apikeys/current/secretkey endpoint. POST to this endpoint to change the secret API key of the API key that is used to authenticate the request.
- The API now ensures that
recommendationModecan only be set toenabledorignored. - Updated /api calls to ensure system setting changes are tracked in system events
- Adjusted the error message for creating a registry scanner API when using an HTTP URL to specify whether the URL is invalid
- Improved API Reference documentation for computer objects.
- Updated error messages for duplicate names when creating an administrator or API key
Resolved Issues:
-
An error with
securityProfileRecommendationRuleIDsRetrieveoccurred when the SOAP API was used to override a recommended rule for a policy using the following steps:- Override the “Alert” option.
- Do not override “Events – Inherited”.
This issue is fixed in this release.
New in the Deep Security 12 Feature Release API
The following changes have been made since the release of the Deep Security 12.0 API. Also see What’s New in the Deep Security Help Center for information about general product changes.
New features
Google Cloud Platform integration
Google Cloud Platform (GCP) has been integrated with Deep Security. You can now view new GCP instances that come online or are removed, and which instances have protection. If you are using multiple clouds on-premise and in your data center, Deep Security can provide visibility for all of your environments.
Use the /api/gcpconnectors endpoint to automate your GCP-releated tasks. For more information, see the Google Cloud Platform (GCP) Connector guide.
Enhancements
- The response time has been greatly reduced when calling
/api/computers?expand=none - The response to /api/administrators operations now includes the
lastPasswordChangefield - You can now search on the
hostGUIDfield when searching computers - The
AzureVirtualMachineSummaryproperty of the Computers API now includes the Azure Subscription ID. See the sample for a 200 response for the Describe a Computer operation in the API Reference. - Improved the error message when locked-out API keys are used
- Added an error message to
/api/computersfor attempts to delete a cloud-connected computer - Improved the error message that is returned when you use an invalid computer group ID as an argument for the operations of
/api/computersand/api/computergroups
New and updated content
- In the API Reference, the descriptions for /api operations that are performed on single settings have been updated
- Added the Google Cloud Platform (GCP) Connector guide
- Added the API Cookbook to the Guides section. Cookbooks step you through a basic task using either Bash (cURL) or PowerShell.
- The Search for Resources guide provides a new example that searches for null values
- Added the SDK Version Compatibility guide that explains which versions of the SDK and Deep Security are compatible.
- Added information about how to determine when the last recommendation scan ran on a computer. See “Find when recommendation scans last ran” in the Assign Rules with Recommendation Scans guide
-
Added information to guides about how to easily set a single setting:
- “Retrieve the value of a policy setting or default policy setting” and “Configure a single policy or default policy setting” in the Create and Configure a Policy guide
- “Configure a single computer setting” in the Configure Computers to Override Policies guide
Resolved issues
- Fixed an issue where
/apiaccepted requests to enable SAP on computers that do not support SAP - Fixed an issue with the API key wizard where the wizard immediately saved the API key when the user specified the role ID
- Fixed an issue where
GET /api/tenants(i.e. list all tenants) would not return a response if a tenant was in a state of suspension due to a database lock - Fixed an issue with the
/api/systemsettings/endpoint that caused a 4xx error response - Fixed an issue with
/api/systemsettingsand theplatformSettingAgentInitiatedActivationEnabledsetting where setting values sometimes didn’t match the value that was displayed in the Deep Security Manager GUI - The SOAP API can no longer be used to delete Deep Security Rule Updates that are currently applied
- Fixed an issue in the
antiMalwareEventRetrieveendpoint of the legacy SOAP API