Request Demo

5.5.0

  • June 28, 2018

Security

  • Added session timeout and keepalive settings to security tab in Admin > System Settings section [TPS#9938] -JO
  • Added insecure login security setting to allow old backend ticket-based auth on per-user basis -JO
  • Fixed minor XSS vulnerabilities [TPS#13211,13213] -JO

Updated

  • Updated backend for re-configure and apply configuration (reconfigure_nagios.sh) to no longer use wget [TPS#9908] -JO
  • Updated backend helper and deletion scripts (ccm_delete_objects.php) to no longer use wget [TPS#9908] -JO
  • Updated layout of profile.zip file and added timestamp to profile folder -JO
  • Updated Nagios Plugins to version 2.2.1 [TPS#11685] -JO
  • Updated NRPE to version 3.2.1 [TPS#11687] -JO
  • Updated NRDP to version 1.5.2 -JO
  • Updated NagVis version to 1.9.8 with auto-login Nagios modules -JO
  • Updated host and service detail menu links to say status instead, in line with the actual page titles [TPS#12059] -JO
  • Updated host and service SMS (text) message subject fields to be able to be blank [TPS#7099] -JO
  • Updated nagiosxi database username field to allow for 255 character long usernames [TPS#11608] -JO
  • Updated user passwords to a more secure algorithm/process [TPS#12158] -JO
  • Updated wording for display host/service aliases (to accurately reflect that they display the display name) [TPS#7112] -BH
  • Updated PDF and JPG report exports to use localhost/local url instead of internal url -JO
  • Updated permissions for sudo-ran scripts in fullinstall and reset_config_perms.sh [TPS#12730] -JO
  • Updated layout for Capacity Planning report to utilize the full screen size -JO
  • Updated API objects backend to use json_encode() instead of xml2json for PHP version consistency which also removed “list” from API output -JO

Added

  • Added mobile phone verification to be able to receive text message notifications (on upgrade, already entered numbers will be set to verified) [TPS#12042] -JO
  • Added the host and service notes_url and action_url icons/links to the host/service status pages in XI [TPS#7893] -JO
  • Added versions for Nagios Core, Nagios-Plugins, SSH Terminal, NRPE, NSCA, PNP, etc in profile [TPS#1456] -JO
  • Added installed components, wizards, and dashlets version numbers in profile [TPS#1456] -JO
  • Added ipcs command to profile [TPS#9108] -BH
  • Added audit logging for CCM -> Write Config Files [TPS#7954] -BH
  • Added ability to click username to edit user in Manage Users admin page [TPS#6186] -JO
  • Added state filtering into state history report [TPS#5970] -JO
  • Added removal of user’s scheduled reports from the apache cron tab when deleting a user [TPS#8239] -JO
  • Added SSH key authentication as a scheduled backup SSH authentication method [TPS#4689] -JO
  • Added encryption to the passwords that are stored from scheduled backups FTP and SSH auths [TPS#4689] -JO
  • Added number of checkpoints held as an option in performance settings under “Snapshots” [TPS#8345] -JO
  • Added new Manage Reports page to the Reports tab for admins to manage users scheduled reports [TPS#11609] -JO
  • Added checkbox in user’s Account settings section under Notification Methods to have emails send as plain text only [TPS#10895] -JO
  • Added two factor authentication for users by verifying the user received an email token [TPS#12189] -JO
  • Added setting for two factor authentication to remember a user and browser to skip two factor auth [TPS#12189] -JO
  • Added shellinabox as a replacement for Ajaxterm which has been removed for SSH Terminal enterprise feature [TPS#12202] -JO
  • Added setting in system settings > password & accounts to not allow old passwords to be used again when changing passwords [TPS#12132] -JO
  • Added allow SSL/HTTPS-only option on install [TPS#12073] -JO
  • Added table sorting to the downtime scheduling page [TPS#9194] -JO
  • Added auto configuration/import of unknown incoming passive checks if enabled in unconfigured objects page [TPS#2231] -JO
  • Added ability to select week format (week starts on Sunday or Monday) [TPS#8082] -JO
  • Added new datetimepicker to reports to easily be able to select times including hours, mins, and seconds [TPS#12048] -JO
  • Added commands (core), scheduleddowntime, auth servers into system API backend -JO
  • Added raw import, commands, into config API backend -JO
  • Added auth tokens for single-use login and ability to authenticate to an API endpoint -JO
  • Added automatic BPI sync (and remove missing hosts/service) on Apply Configuration in the CCM [TPS#6127] -JO
  • Added ability to activate product from inside the GUI without having to manually get activation code -JO
  • Added setting in system settings to disable renewal reminders for non-admin users -JO
  • Added a help document with instructions for updating and creating translations [TPS#12830] -JO
  • Added links to the host/service details pages for hostgroups and servicegroups [TPS#12055] -JO

Fixed

  • Fixed issue with host and service template filter search box in bulk modification tool [TPS#13163] -JO
  • Fixed links in notification report when host or service has an alias defined [TPS#13251] -JO

Component Updates

Core Config Manager (CCM) 2.7.0

  • Added CCM limited and full access via session for regular users (CCM ‘limited’ user) [TPS#13227] -JO
  • Added contact alias next to contact name in contact overlay when an alias exists [TPS#10049] -JO
  • Added services applied to hostgroups to the host services list on service groups [TPS#13158] -JO
  • Updated copying a service change the service name and not the config name [TPS#12270] -JO
  • Updated writing configs to no longer rely on pear library HTML_Template_IT [TPS#12386] -JO
  • Updated importing config search to be case-insensitive -JO
  • Fixed importing services with multiple objects finding the proper config name [TPS#13303] -JO