SSL Visibility 184.108.40.206 is now available on Symantec Product Downloads for Symantec SSL Visibility customers. Once logged in with their MySymantec credentials, entitled SSL Visibility customers can download the corresponding image and Release Notes from the SSL Visibility Downloads page.
Starting with v220.127.116.11, the unsupported-sites list included in the release will contain the Symantec-based sites only. Domain names that do not reference the Symantec family of domains have been removed from the unsupported-sites list. For more information about this change in behavior, see KB ALERT2614. It's important to follow the instructions outlined in this KB article before you upgrade to v18.104.22.168.
This release extends TLS 1.3 capabilities to include the latest drafts 18-28, and introduces Enhanced Reporting, Destination Certificate Caching, Increased Security, and Remote Authentication.
Enhanced Reporting – Organizational awareness and demonstrating ROI are key objectives for customers investing in security solutions. New SSL Visibility value reporting provides dashboard visibility for the percentage of SSL traffic in the network, the percentage of SSL traffic that is being inspected, and details on the different versions of TLS being used. The Dashboard helps users to communicate SSL Visibility value to leadership and other internal stakeholders.
Destination Certificate Caching – A challenge in providing Encrypted Traffic Management for TLS 1.3 traffic is that SSL server certificate information is encrypted and cannot be used in making policy decisions. By maintaining a cache of the unencrypted SSL server certificate for destinations we continue to be able to use this information when making policy decisions even when the flow is a TLS 1.3 flow. Solving this complex problem allows customers to have the same level of confidence in policy decisions relating to TLS 1.3 flows as for other flows and shows SSL Visibility leadership in understanding TLS 1.3 and providing visibility.
Increased Security - Customers can now use encrypted connections to feed log messages from SSL Visibility to remote syslog servers so that they can be processed by their SIEM. Encrypted connections can also be used when email alerts are being sent by SSL Visibility.
Remote Authentication – Customers can now use either TACACS+ or LDAP remote authentication mechanisms to control access to the SSL Visbility management interface. This enables the customer to use their existing enterprise account management system to control access to SSL Visibility.
See Release Notes for a complete list of new features added in v22.214.171.124.
All customers running versions of v4.2.x, v4.1.x or v4.0.x are advised to upgrade their SSL Visibility systems to v126.96.36.199 at their earliest convenience by applying the sslv_188.8.131.52-219692 bcsi file. Please refer to the SSL Visibility 184.108.40.206 Release Notes for specific details and the upgrade procedure.
In addition to the Release Notes which are available on Symantec Product Downloads, the 4.3.x version of the SSL Visibility Appliance Administration & Deployment Guide is available on Symantec Product Documentation.
Please refer to the SSL Visibility 220.127.116.11 Release Notes for detailed information on Known Issues and Fixed Issues in this release.
Subscribing will provide email updates when this Article is updated. Login is required.
Thanks for your feedback. Let us know if you have additional comments below. (requires login)
Subscribed to the Article.
Unable to subscribe
Thanks for your additional feedback !!!
Enterprise Support Virtual Agent
Rate Me :
Tell us more:
Welcome! My name is Sami, the Enterprise Support Virtual Agent answering technical support questions.