New Features & Enhancements
-
Client Connectivity Policy Logic Change: We improved the logic for the Client Connectivity Policyso that it follows logic as the Internet and WAN firewall (read more):
-
Ordered rulebase, and rules are sequentially applied to a connection
-
Supports the Block action in addition to Allow, for better granularity of rules
-
-
SDP Client Pre Login for Windows Devices: Cato’s SDP Pre Login allows devices to establish a secure connection to the Cato Cloud before Windows login. For example, a new remote user receives a new Windows device, and can’t connect to the corporate AD to authenticate. Read more.
-
Requires that Windows Client v5.4 is installed on the device
-
See the Knowledge Base article above for a complete list of prerequisites
-
-
-
Identity Agent Based User Awareness: Cato’s User Awareness now supports using the Cato Client as an identity agent to identify Azure AD users, in addition to on-prem AD users. Read more.
-
No SDP licenses are required for the users and the identity is reported without any action by the user
-
Supported from Windows Client v5.4 and higher
-
-
Updates to the Cato Management Application:
-
IP Range in Security Rules: We enhanced the rules for the following Security policies and you can configure the IP Range entity for:
-
TLS Inspection (source)
-
Application Control (source)
-
IPS Allowlist (source)
-
-
Easily Show Relevant Events for a Firewall Rule: The Internet and WAN firewall screens let you drill-down and show the recent events related to a specific firewall rule.
-
Improvements to the Cloud Apps Dashboard: The Top Apps widget in the Cloud Apps Dashboard includes these new actions:
-
Add the app to the Sanction Apps Category with one click
-
Drill-down and show the data for the app in the Application Analytics screen
-
Show the information for the app in the Cloud Apps Catalog
-
-
Cato SDP Client Updates and Releases
-
Cato Client Automatically Directs to IdP Portal for SSO Authentication: Over the next few weeks, for accounts that have SDP users which authenticate with Single Sign On (SSO), the Client will automatically direct the user to the IdP login page.
-
Android Client v5.0: Android Client version 5.0 includes the newest infrastructure for Cato’s SDP Client solution and will soon be available to download from the Google Play Store. This version includes:
-
Support for Always On and SSO (read more)
-
Improved look and feel
-
Support for Device Authentication with certificates (read more)
-
Support for the following Client Access features:
-
Split Tunnel (for include mode)
-
External browser
-
-
Install the Client with an MDM
-
Improved tunnel resiliency
-
Bug fixes and enhancements
-
-
Windows Client v5.4: Windows Client version 5.4 will soon be available in the User Portal. This version includes:
-
Improved error messages with better explanations for connectivity issues in the Client for SDP users
-
Performance enhancements
-
Bug fixes:
-
When the Client is in Office Mode, it now uses the PAC file of the local system instead of the PAC file defined in the Cato Management Application
-
-
PoP Announcements
-
Monterrey, Mexico: A new Cato PoP will shortly become available in Monterrey
-
Montreal, Canada: A new Cato PoP will shortly become available in Montreal
Security Updates
-
Application Database:
-
Added more than 70 new SaaS Applications (you can view the SaaS apps in Monitoring > Cloud Apps Catalog)
-
Enhanced 17 SaaS applications
-
-
Updates to Application Control Policy: New granular actions for these apps:
-
Google Data Studio: Create Report, Authorize App, Invite People, Download Report (Export)
-
WhatsApp: Voice Message, Download, Upload
-
-
TLS Inspection:
-
Webex: inspected over browsers
-
Bitbucket: inspected over browsers
-
0 comments
Please sign in to leave a comment.