August 2020 Update for Netsparker Enterprise On-Premises
This blog post announces the August 2020 update for Netsparker Enterprise On-Premises. The new features of this release are SAML auto-provisioning, Pivotal Tracker integration, SAML assertion encryption, scanning agent improvements, and new security checks.
We’re delighted to announce the latest release of Netsparker Enterprise On-Premises. The highlights of this release are: SAML auto-provisioning, Pivotal Tracker integration, SAML assertion encryption, scanning agent improvements, and new security checks.
This announcement showcases what is new in this latest Netsparker Enterprise update. Many of these new features have originated from customer requests, while others provide further support and options for existing features.
SAML Auto-Provisioning (IdP Initiated SAML)
SAML Auto-Provisioning is a new feature that enables the automatic creation of Netsparker team members when they first login to Netsparker using SSO. This means you don't have to manually invite users to Netsparker. This change also introduced the IdP Initiated SAML support for our SSO integrations. Previously, Netsparker had the support for only SP Initiated SAML.
For further information, see Single Sign-On Settings.
Pivotal Tracker Integration
Netsparker Enterprise already has many out-of-the-box integrations. With this latest update, we had added out-of-the-box issue tracking integration for Pivotal Tracker. This new integration enables you to send detected vulnerabilities to Pivotal Tracker.
For further information, see Integrating Netsparker Enterprise with Pivotal Tracker.
SAML Assertion Encryption
Encrypting SAML assertions prevents third parties from reading private data from assertions. If you require SAML assertions to be encrypted when configuring SAML-based single sign-on (SSO) integration, Netsparker requires you to provide a certificate.
For further information, see Configuring SAML-Based Single Sign-On Integration.
Scanning Agent Improvements
Scanning agents enable you to scan websites located on your internal network that are not accessible from the internet. We have added the ability to reset the agent token. You can also download Windows and Linux (using a Docker image) agents.
For further information, see Installing a Scan Agent via Dockerization.
New Security Checks
Netsparker uses built-in security checks during scans. You can configure or disable them according to your needs. We are continually adding to our list of checks. In this update, we have added several more, including out-of-date checks, version disclosure checks, and detection for specific servers and software.
For further information, see Security Checks.
For a complete list of what is new, improved and fixed in this update, refer to the Netsparker Enterprise Changelog.