BMC Discovery 11.2
Tip
To stay informed of changes to this list, click the this page.
icon on the top ofNode changes in Technology Knowledge Update TKU 2019-Dec-1
TKU December 2019 enhances the model for Cloud Regions and Cloud Services to be segregated by account. If you discover more than one AWS Account, more than one Azure Subscription or more than one GCP Project, all the data from Cloud Region through to individual nodes within services will be clearly separated, where before it was intermingled.
As a result, the keys of all CloudRegion and CloudService nodes, and many contained nodes will change, even if you only discover a single account. If you synchronize to a CMDB, the identities of the corresponding CIs will also change.
The existing nodes are not deleted automatically with the application of the TKU. To remove the old nodes from the BMC Discovery model, you can delete the patterns that were deactivated by the new patterns in the TKU. However, the old CIs in the CMDB will not be deleted automatically. The simplest way to remove them is to perform a resynchronization.
Enhanced support for AWS role-switching in Technology Knowledge Update TKU 2019-Dec-1
In the December TKU we have enhanced the support of AWS role-switching in discovery. Previously, it was only possible to specify a single role for an AWS credential. Now, you can specify a list of roles. This allows you to reduce the number of AWS credentials and associated Scheduled Scans that need to be maintained.
However, the new configuration to support role-switching cannot be added automatically to existing AWS credentials, and consequently, any existing scheduled AWS scans using those will fail. The workaround is straightforward. Simply click Edit on the scheduled scan, and then click Apply. In all likelihood you will edit all of your scheduled AWS scans to take advantage of the role-switching functionality. Using the Edit/Apply workaround enables you to continue scanning AWS without interruption.
Version history
The following table displays the version history of BMC Discovery 11.2:
Date | Title | Summary |
---|---|---|
May 03, 2019 | 11.2 patch 6 | This release resolves important defects and security vulnerabilities. It also introduces a feature for restricting the paths on which you can run commands. |
July 11, 2018 | 11.2 patch 5 | This release resolves important defects. |
June 22, 2018 | 11.2 patch 4 | This release resolves important defects and security vulnerabilities. |
11.2 patch 3 | This patch was not made generally available. | |
December 15, 2017 | 11.2 patch 2 | This release resolves important defects. |
September 25, 2017 | 11.2 patch 1 | This release resolves important defects. |
September 15, 2017 | 11.2 | For complete information about this release, see the features listed in the following section of this page. |
You can only upgrade to version 11.2 from version 10.1 and later.
Model changes
BMC Discovery 11.2 changes the way that virtual machines are modeled. In previous releases VMs were modeled using a SoftwareInstance (SI) node with a vm_type
attribute. They are now modeled using a Virtual Machine node which makes it easier to find and relate VMs to their containers and Hosts.
Logical databases are now stored in dedicated Database nodes rather than the DatabaseDetail nodes previously used. Dedicated Database nodes simplify the separation of databases from other database details. DatabaseDetail nodes are still used for other information about databases, for example schemas and tablespaces.
For more information, see 11.2 Enhancements and for full details of the changes, see Model changes.
CentOS 6 replaces Red Hat Enterprise Linux 6 in BMC Discovery 11.2
The upgrade to BMC Discovery 11.2 replaces Red Hat Enterprise Linux 6 with
CentOS 6
. CentOS is an enterprise-class Linux platform which is derived from, and aims to be functionally compatible with its upstream source,
Red Hat Enterprise Linux
(RHEL).
As CentOS is derived from, and aims to be functionally compatible with its upstream source, Red Hat Enterprise Linux, BMC performs the same testing against the Red Hat 6 STIGs.
When applying OS upgrades to BMC Discovery 11.2, ensure that you download and apply the Latest CentOS 6 operating system upgrade.
Release Notes
These Release Notes detail the following information:
- 11.2 Enhancements
- Known and corrected issues
- Important information for users of BMC Atrium CMDB
- Technical bulletins
- Supported versions of BMC Discovery
- Product announcements
- Limitations and restrictions of this version
Additional permissions required on XML and CSV APIs
The permission required to access the CSV and XML API has changed since BMC Discovery 11.0. If upgrading from BMC Discovery 11.0, you must grant the new API access permission (api-access group), or updating group permissions to include the api/access permission for users who require access to the CSV and XML web APIs. Existing integrations will fail if you do not add the permission.
Updated SSH server
The SSH server installed on BMC Discovery appliances 10.2 and later has been modified. This modification removes some weak ciphers and HMAC algorithms (and non-FIPS approved) from the list of allowed connections. Therefore, some older versions of ssh clients might be unable to connect. The following client versions (or later) have been tested and are known to work:
- PuTTY (0.64)
- WinSCP (5.7.2)
- mRemoteNG (1.72 using ssh2)
- MobaXterm (6.5)
- KiTTY (0.63.2.2)
- Bitvise SSH Client (6.22)
BMC Atrium Discovery OS and application software have been tested and found to be free from susceptibility to date/time issues which may occur as the result of the additional day in a leap year.
Information for anyone who is starting to use BMC Discovery to discover their cloud services.
| Provides information for security teams with the information required to verify the security of BMC Discovery and enable network administrators to run BMC Discovery in their environment. [Configipedia] Provides information on the products that BMC Discovery can discover and the level of information it can obtain. Configipedia also contains information on monthly TKU updates. | ||
Videos
The following table lists topics that contain videos that supplement the text-based documentation.
Topic | Duration | Description |
---|---|---|
Version 11.2 videos | ||
Launch presentation for BMC Discovery 11.2 | 12:15 | This video gives an overview of discovering cloud services through BMC Discovery 11.2. |
Discovering cloud services in BMC Discovery 11.2 | 05:07 | This video explains how to discover cloud services and perform cloud discovery in BMC Discovery 11.2. |
Query generation in BMC Discovery | 05:25 | This video helps you to understand how query generation in BMC Discovery takes place. This feature of query generation is applicable to both versions of 11.1 and 11.0 of BMC Discovery. |
This section provide answers to frequently asked questions about BMC Discovery.
If you have any other questions about BMC Discovery, contact Customer Support.
BMC Atrium CMDB
BMC Discovery can synchronize discovered data to BMC Atrium CMDB using CMDB synchronization.
BMC PATROL
BMC PATROL is a systems, applications, and event management tool. It provides an environment to modify the BMC Discovery firewall.
BMC Atrium Orchestrator
BMC Atrium Orchestrator integrates, automates, and orchestrates processes across multiple applications and tools. When integrated with BMC Discovery, BMC Atrium Orchestrator triggers a rescan of the virtual machine that was moved, and the source and destination hosts.
BMC Remedy Single Sign-On
BMC Remedy Single Sign-On (BMC Remedy SSO) is an authentication system that supports various authentication protocols such as LDAP and provides single sign-on for users of BMC products. BMC Discovery provides an integration with BMC Remedy Single Sign-On makes use of same LDAP server as BMC Remedy Single Sing-On.
REST API
The REST API is intended to be used by a script or program that wants to interact with and control a BMC Discovery appliance from a remote machine.
CyberArk Enterprise Password Vault
CyberArk Enterprise Password Vault (CyberArk Vault) is a third-party application, which enables you to centrally manage credentials for the various systems that are installed in your environment. BMC Discovery provides an integration with CyberArk Vault to obtain credentials that are required to perform scans.
Comments
Log in or register to comment.