CloudPassage Halo - 19 June 2012
The 19 June 2012 release of CloudPassage® Halo® includes modifications to its subscription plans, changes to the registration experience, additional firewall policy capabilities, and a number of bug fixes and feature enhancements.
Revamped Halo subscription plans
With this release, CloudPassage introduces significant improvements to its three subscription plans (Basic, NetSec, and Professional). These updates will help CloudPassage to better tailor our offerings to specific customers' needs:
- Basic: The Basic subscription level remains completely free of charge with no expiration. Meant for small businesses, a Basic subscription allows your organization to create and dynamically manage Windows and Linux server firewalls. You may protect up to 5 servers at this subscription level.
Basic subscribers also have use of the Halo Portal management console, access to the CloudPassage API, and the ability to create log entries and alerts triggered by security events.
- NetSec: The NetSec subscription level adds account management (server access scanning), GhostPorts multi-factor authentication, enhanced API access, longer data retention, professional-level technical support, and an unlimited number of protected servers.
- Professional: The Professional subscription level adds configuration security, software vulnerability monitoring, file integrity monitoring, full API access, and data retention of more types of data, as well as professional-level technical support, and an unlimited number of protected servers.
For more details on the features and pricing of these plans, go to www.cloudpassage.com/plans.
Cloning and deleting firewall policies
It is now possible to delete or clone a firewall policy. Those two actions have been added to the Actions drop-down list on the Firewall Policies page.
You may delete a firewall policy even if it is being used by a server group. In that case you are warned that the group will be left without a firewall policy , but you are not barred from deleting the policy. Also, each server in that group will retain its existing firewall until a new policy is assigned to the group or the server is moved to another group.
Disabling individual rule checks in a configuration policy
Previously, it was possible to disable individual rules of a configuration policy (on a server's configuration scan results page), but it was not possible to disable an individual check within a rule. With this release, you now can disable both individual checks and whole rules.
Email sent to GhostPorts user on change in authentication type
GhostPorts users whose authentication type has changed from YubiKey to SMS will now receive a notification email specific to the authentication change, rather than the standard invitation email sent to new GhostPorts users.