Resolved and Known Issues

This section lists the current resolved and known issues.

Table 1. Forcepoint ONE Data Security Resolved Issues
Key ID	Description
NEO-10461	Alerts table: Risk impact is no longer displayed in the Severity column.
NEO-14130	Local users that are automatically detected by the endpoint cannot be selected as source for policies (directly or as part of a BU).
NEO-14157	Endpoint Profile: Setting whether the endpoint is managed by OnPrem or Cloud was not supported on custom profiles. This issue is fixed now.
NEO-14403	Forcepoint Cloud Security Gateway Silent log in error message upon first log in.
NEO-14468	Investigation: Export users PDF was empty. This issue is fixed now.
NEO-14469	Dashboard: Clarify the number of alerts in the top matched rules table.
NEO-14482	Endpoint Profile: In the definition of which endpoint the profile will apply to, an empty list is considered as “All Selected” although the user interface displays as “None Selected”. This issue is fixed now.
NEO-14485	Log in for users with emails containing capital letters fail. This issue is fixed now.
NEO-14490	Classifier with same name can be configured.
NEO-14528	It is not possible to log into the portal in case there is a device with missing parameter.
NEO-14531	Agent updates following deletion of an endpoint profile.
NEO-14553	Policy \| Rule \| Condition Setting: Search specific fields requires a field to be selected. This issue is fixed now.
NEO-14567	Endpoint: Enabled downloading certification file to support Forcepoint agent on Mac OS Sequoia.
NEO-14588	Creating a profile with no resources, results in the profile applying to all endpoints instead of applying to none.
NEO-14599	Alerts table: Resolved an issue where when specific classifier settings were selected, the classifiers names was not displayed.
NEO-14602	CSG HelpDesk \| Profile \| Create/Update/Delete profile leads to unclear error: 401 UNAUTHORIZED. This issue is fixed now.
NEO-14603	Helpdesk role is now able to manage profiles (both default and custom).
NEO-14685	Endpoint Profile: In some cases, a wrong installer version was sent to EP when using multiple profiles.
NEO-14686	Endpoint Profile: Saving a default profile overrides the OTA settings of the other custom profiles.
NEO-14920	Policy not respecting threshold settings for Incident generation.
NEO-14922	Predefined classifiers - it is now possible to configure exclusion without creating a new classifier version.
NEO-14924	Rules not respecting analyzed fields settings.
NEO-14946	Compressed file whose file size is bigger than 20MB are blocked. The limit was increased to 100MB.
NEO-14998	Duplicate endpoint entries after agent uninstall and reinstall
NEO-15078	Alerts Details: Resolved and issue where some of the classifiers were displayed as "Default" instead of their full name.
NEO-15086	Policy \| Classifier Settings: Resolved and issue where for specific rules, the analyzed fields setting was disabled when threshold was defined.
NEO-15157	Classifier threshold and analyzed fields settings now work as expected.
NEO-15082	Violation triggers show '0' value before being unmasked.
NEO-15186	Policy \| Rule \| Source: Resolved and issue where blank users were displayed.
NEO-15255	Alert matched 3 rules but only one classifier was displayed.
NEO-15283	In some cases, alert was generated even though the number of matches was smaller than the classifier threshold.
NEO-15289	Alerts details: Fixed an issue where a wrong user name was displayed.
NEO-15290	Resolved an issue where the email user displayed in the alerts table was missing from the user resources list.
NEO-15371	In some cases, the endpoints were not updated to the latest policy. This issue is fixed now.

Table 2. Forcepoint ONE Data Security Known Issues
Key ID	Description
NEO-9836	Audit Log: When deleting multiple policies, only part of the required information about the changes is displayed in the audit log.
NEO-10589	Investigation - Alerts: In case more than one rule is matched, the more severe action plan is taken (as required), but the severity displayed in the alerts screen is the severity of the lower severity matched rule.
NEO-12931	Some actions available in the email channel are supported only with the Heritage Forcepoint Web Security solution. If you use the Forcepoint ONE Cloud Email, then only the "Permit" or "Quarantine" (block) actions are supported.
NEO-13158	It is currently not possible to use OUs or Computers from the Active Directory as resources since the there is no manual import option and the API with the Active Directory is not available yet.
NEO-14165	It is currently possible to download the evidence file. Downloading attachments separately is not supported yet.
DLP-23462	Agent Install: After first reboot, the DLP service takes 25% of the CPU usage. The problem is resolved after the second reboot.
DLP-24200	Classifier: When text that contains sensitive data is UTF encoded, the respective DLP Policy is not enforced.
DLP-25904	Classifier errors out when switching from SaaS to On-prem and On-prem to SaaS.
NEO-10643	Mapping violation triggers to classifiers is currently not supported. Violation triggers are currently mapped to files and rules.
NEO-14124	Microsoft MIP setting is disabled until it is properly supported by the agent.
NEO-14381	If you work with multiple tenants, sign out of one tenant before accessing another. Closing the browser without signing out may cause log in issues when trying to sign to other tenants.
NEO-14509	Profile Management change from Cloud to On-Premise requires endpoint restart to take effect.
NEO-14760	Profile \| General \| Endpoint Connectivity to Forcepoint ONE: Proxy settings changes affect all profiles, not just the current profile.
IP-611	Forensic data is currently supported for DPS channels (Cloud Email, Online WEB, CASB). Forensic data is not currently supported for endpoint channels.