Important

   

Starting from version 8.9.03, BMC Network Automation is renamed to TrueSight Network Automation. This space contains information about TrueSight Network Automation 8.9.03 and the later service packs for 8.9. For earlier releases, see BMC Network Automation 8.9.

8.9.03: Service Pack 3

TrueSight Network Automation 8.9.03 provides the following enhancements:

Tip

For information about issues corrected in this release, see Known and corrected issues.

Standalone TrueSight Network Automation updates

The following table describes the standalone TrueSight Network Automation system updates included in this release:

Update
Description
Device and device adapter enhancements
Renamed device adapter and vendor

In version 8.9.03, the Cyclade Terminal Server device adapter has been renamed to Cyclades Terminal Server and the Cyclade vendor has been renamed to Cyclades. As a result, before you upgrade, ensure that you do not have custom device adapter with the name, Cyclades Terminal Server and a custom vendor with the name, Cyclades. For more information, see Review general upgrade considerations.

New attribute, skipExceptionOnBadStatusCode

With the new attribute skipExceptionOnBadStatusCode, in the httpInteraction element, you can control whether the HttpInterpreter should skip throwing an HttpException if a bad status code is found in the response. Disabling this attribute can be helpful if you want to use an error tag (with a property setting) to perform more fine-grained error handling, instead of just having an exception thrown which aborts the entire HttpDeviceCommand that the httpInteraction is a part of. For more information, see Device type HTTP interaction XML element reference.

OS image deploy for Aruba Wireless ControllerThe Aruba Wireless Controller device type now supports the OS Image Deploy action.
Enhancements in the XML schema

XML schema includes the following enhancements:

  • The start and stop attributes in the loop tag support embedded string arithmetic expressions. For more information, see Common concepts and XML elements.
  • A new unassign tag removes the specified property from the current set of connection properties if the property exists.
    In addition, a
    new valueOf attribute has been added to the assign tag. This attribute represents the name of a property whose value is to be assigned to the property if it is not calculated by a Bean shell script or by the value attribute. For more information, see Device type CLI interaction XML element reference.
  • You can use the <loop> element to iterate over multiple arrays simultaneously. For more information, see Examples of CLI-based XML elements.
New fields while importing a device

When importing devices in CSV and XML formats using the Device Import Task, now you can define the following fields:

  • Security Context Name: Defines the name of the security context when security context type is user-defined.
  • Port (Primay and Auxillary): Defines the port number used for communication with the device
Network Security Operations (SecOps) enhancements 
Support for importing reports from NVD repository

Now, you can import vendor-supplied security vulnerability reports for Cisco and Juniper device types from the National Vulnerability Database (NVD) repository into the system, and use them to generate compliance rules that detect vulnerable device operating systems. A canned database of NVD-based Cisco and Juniper reports is shipped with TrueSight Network Automation. For more information, see About security vulnerability importers and Managing security vulnerabilities.

Support for Cisco CVRF XML files formatted per version 1.2

The canned importer named, Import Cisco Advisory From CVRF XML File, includes an updated stylesheet that now supports parsing of Cisco CVRF XML files in version 1.1 or 1.2 formats.

Note that the publicly available Cisco CVRF database is currently devoid of specific operating system version information and is not suitable for generating compliance rules. For that reason, the canned database of CVRF files is frozen as of August 16, 2017, where the operating system versions are still present. Reports made by Cisco dated after August 16, 2017, and contain the necessary operating system version data can be imported from NVD instead. A new canned importer named "Import Cisco Advisories From NVD XML File, Published After 08/15/17" is provided for this purpose.

If you import a CVRF file downloaded from Cisco, it is imported successfully and presents all the details Cisco provides. If you create a rule from the resulting security vulnerability, you must manually assign the applicable operating system versions.

Performance enhancements
Improved Telnet/SSH Session popup windowThe UI-based popup window that interacts with the device command line interface in a Telnet/SSH session has been replaced, resulting in improved performance and VT100 support. The replacement is seamless; the window looks the same as it did in previous releases and provides the same functionality.

Platform support

New database supportVersion 8.9.03 supports PostgreSQL version 10.2. For the complete database support information, see Database requirements.
Third-party software support

This version of TrueSight Network Automation is bundled with the following third-party software:

  • Oracle Java Runtime Environment (JRE) 1.8.0 update 162
  • Apache Tomcat web server version 8.5.31
Reporting enhancements
Background report generationAll reports requested by navigating through the Reports tab wizard pages are now generated in the background and are viewed using the new Report Activity page.
Miscellaneous enhancements
Managing multiple customer networks through a single Device Agent

With this release, you can use a single agent to manage multiple customer networks, where each network is reachable via a different network interface card (NIC) at the device agent. When the agent communicates with devices belonging to a given network, all traffic (both device action traffic and syslog traffic) pass through the NIC for that network. For more information, see Managing multiple customer networks through a single Device Agent.

You can define NICs for a device agent in the Device Facing NICs section while adding or editing the agent. For more information, see Adding or editing device agents.

Allowing host name resolution

With version 8.9.03, you can use a new option, Name Resolution Enabled, to control whether TrueSight Automation should attempt to perform host name resolution as needed at the agent. TrueSight Network Automation attempts to resolve the host name when connecting to devices the agent manages and when parsing syslog messages received from those devices. For more information, see Adding or editing device agents.

Support for additional versions of BMC Discovery

TrueSight Network Automation supports the following versions of BMC Discovery:

  • BMC Discovery version 11.0 and later
  • BMC Atrium Discovery and Dependency Mapping version 10.2

The support for the following versions of BMC Atrium Discovery and Dependency Mapping is deprecated in version 8.9.03 of TrueSight Network Automation:

  • BMC Foundation Discovery 1.5
  • BMC Atrium Discovery and Dependency Mapping 7.5
  • BMC Atrium Discovery and Dependency Mapping 8.2+

For complete information about supported versions, see Managing device import tasks.

TrueSight Network Automation web services updates

The following table describes the TrueSight Network Automation web services updates included in this release:

Update
Description
REST API version 2.1 introduced

As in the previous versions, version 2.1 supports create, retrieve, update, and delete operations on network spans, jobs, predefined jobs, rules, and rule sets.

Support is added for the following operations on various components:

  • Retrieve operations on roles, to facilitate create and update of users
  • Retrieve operations on security vulnerability importers, to facilitate import of security vulnerabilities
  • Import, delete, and additional retrieve operations on security vulnerabilities
  • Create, update, delete, and additional retrieve operations on device security profiles
  • Create, update, delete, and additional retrieve operations on users

See the complete API in Endpoints in the REST API v2.1 (deprecated).

DTO updates

A new DTO, SecurityVulnerabilityImporterDTO, includes parameters to perform various operations on security vulnerability importers.

The following DTOs have been updated:

  • SecurityVulnerabilityDTO: Additional fields provide information imported from NVD reports.
  • DeviceSecurityProfileDTO: Additional fields allow password values to be assigned.
  • UserDTO: Additional fields provide more complete information and allow passwords to be assigned.
  • The following DTOs have been updated to include support for device facing NICs, which enable you yo manage duplicate IP address ranges:
    • AbbreviatedDeviceDTO
    • AbbreviatedDeviceResultDTO
    • DeviceAgentDTO
    • DeviceFilterDTO
    • DeviceInterfaceDTO
    • DeviceResultDTO

See the complete API in Endpoints in the REST API v2.1 (deprecated).

Dynamic field updatesNow you can retrieve dynamic fields associated with a user along with other components (realm, group, combogroup, device, job, rule, or ruleset). For more details, see the API in Endpoints in the REST API v2.1 (deprecated).

Back to top

Changes to the supported products and solution versions

This section describes the versions of products and solutions supported by TrueSight Network Automation version 8.9.03.

BMC Threat Director and TrueSight Vulnerability Management

TrueSight Network Automation integrates with BMC Threat Director version 2.2.02 and TrueSight Vulnerability Management version 3.0. For more information, see the BMC BladeLogic Portal documentation and TrueSight Vulnerability Management documentation. 

BMC Continuous Compliance for Network Automation 

TrueSight Network Automation integrates with the following products to provide the BMC Continuous Compliance for Network Automation solution. For more information about this integration, see BMC Continuous Compliance for Network Automation solution.

Product

Version

BMC Remedy AR System Server
(Includes BMC Remedy Mid Tier)

9.1.03

BMC Remedy ITSM Suite
(Includes BMC Change Management and BMC Service Desk: Incident Management)

9.1.03

BMC Atrium CMDB Enterprise Manager
(Includes BMC Atrium CMDB Web Services)

9.1.03

TrueSight Orchestration Platform
(using BMC Atrium Single Sign-On 9.0.0)

8.1

TrueSight Orchestration Content

20.18.01

BMC Decision Support – Network Automation

8.9.02.002

BMC Cloud Lifecycle Management

TrueSight Network Automation integrates with the following BMC and non-BMC products to provide the BMC Cloud Lifecycle Management solution. For more information about this integration, see BMC Cloud Lifecycle Management

Product

Version

BMC Cloud Lifecycle Management4.6.06
Alcatel-Lucent VitalQIP8.1.2
Infoblox6.8.13

Downloading, installing, and upgrading to the service pack

For download instructions, see Downloading the installation files. For installation instructions, see Installing

If you are upgrading the application server, you must also upgrade all remote device agents to the same version as TrueSight Network Automation. For more information about upgrade, see Upgrading.

Back to top

Was this page helpful? Yes No Submitting... Thank you

Comments