Resolved and Known Issues

This section lists the current resolved and known issues.

Table 1. Forcepoint ONE Data Security Resolved Issues
Key ID Description
NEO-10461 Alerts table: Risk impact is no longer displayed in the Severity column.
NEO-14130 Local users that are automatically detected by the endpoint cannot be selected as source for policies (directly or as part of a BU).
NEO-14157 Endpoint Profile: Setting whether the endpoint is managed by OnPrem or Cloud was not supported on custom profiles. This issue is fixed now.
NEO-14403 Forcepoint Cloud Security Gateway Silent log in error message upon first log in.
NEO-14468 Investigation: Export users PDF was empty. This issue is fixed now.
NEO-14469 Dashboard: Clarify the number of alerts in the top matched rules table.
NEO-14482 Endpoint Profile: In the definition of which endpoint the profile will apply to, an empty list is considered as “All Selected” although the user interface displays as “None Selected”. This issue is fixed now.
NEO-14485 Log in for users with emails containing capital letters fail. This issue is fixed now.
NEO-14490 Classifier with same name can be configured.
NEO-14528 It is not possible to log into the portal in case there is a device with missing parameter.
NEO-14531 Agent updates following deletion of an endpoint profile.
NEO-14553 Policy | Rule | Condition Setting: Search specific fields requires a field to be selected. This issue is fixed now.
NEO-14567 Endpoint: Enabled downloading certification file to support Forcepoint agent on Mac OS Sequoia.
NEO-14588 Creating a profile with no resources, results in the profile applying to all endpoints instead of applying to none.
NEO-14599 Alerts table: Resolved an issue where when specific classifier settings were selected, the classifiers names was not displayed.
NEO-14602 CSG HelpDesk | Profile | Create/Update/Delete profile leads to unclear error: 401 UNAUTHORIZED. This issue is fixed now.
NEO-14603 Helpdesk role is now able to manage profiles (both default and custom).
NEO-14685 Endpoint Profile: In some cases, a wrong installer version was sent to EP when using multiple profiles.
NEO-14686 Endpoint Profile: Saving a default profile overrides the OTA settings of the other custom profiles.
NEO-14920 Policy not respecting threshold settings for Incident generation.
NEO-14922 Predefined classifiers - it is now possible to configure exclusion without creating a new classifier version.
NEO-14924 Rules not respecting analyzed fields settings.
NEO-14946 Compressed file whose file size is bigger than 20MB are blocked. The limit was increased to 100MB.
NEO-14998 Duplicate endpoint entries after agent uninstall and reinstall
NEO-15078 Alerts Details: Resolved and issue where some of the classifiers were displayed as "Default" instead of their full name.
NEO-15086 Policy | Classifier Settings: Resolved and issue where for specific rules, the analyzed fields setting was disabled when threshold was defined.
NEO-15157 Classifier threshold and analyzed fields settings now work as expected.
NEO-15082 Violation triggers show '0' value before being unmasked.
NEO-15186 Policy | Rule | Source: Resolved and issue where blank users were displayed.
NEO-15255 Alert matched 3 rules but only one classifier was displayed.
NEO-15283 In some cases, alert was generated even though the number of matches was smaller than the classifier threshold.
NEO-15289 Alerts details: Fixed an issue where a wrong user name was displayed.
NEO-15290 Resolved an issue where the email user displayed in the alerts table was missing from the user resources list.
NEO-15371 In some cases, the endpoints were not updated to the latest policy. This issue is fixed now.
Table 2. Forcepoint ONE Data Security Known Issues
Key ID Description
NEO-9836 Audit Log: When deleting multiple policies, only part of the required information about the changes is displayed in the audit log.
NEO-10589 Investigation - Alerts: In case more than one rule is matched, the more severe action plan is taken (as required), but the severity displayed in the alerts screen is the severity of the lower severity matched rule.
NEO-12931 Some actions available in the email channel are supported only with the Heritage Forcepoint Web Security solution. If you use the Forcepoint ONE Cloud Email, then only the "Permit" or "Quarantine" (block) actions are supported.
NEO-13158 It is currently not possible to use OUs or Computers from the Active Directory as resources since the there is no manual import option and the API with the Active Directory is not available yet.
NEO-14165 It is currently possible to download the evidence file. Downloading attachments separately is not supported yet.
DLP-23462 Agent Install: After first reboot, the DLP service takes 25% of the CPU usage. The problem is resolved after the second reboot.
DLP-24200 Classifier: When text that contains sensitive data is UTF encoded, the respective DLP Policy is not enforced.
DLP-25904 Classifier errors out when switching from SaaS to On-prem and On-prem to SaaS.
NEO-10643 Mapping violation triggers to classifiers is currently not supported. Violation triggers are currently mapped to files and rules.
NEO-14124 Microsoft MIP setting is disabled until it is properly supported by the agent.
NEO-14381 If you work with multiple tenants, sign out of one tenant before accessing another. Closing the browser without signing out may cause log in issues when trying to sign to other tenants.
NEO-14509 Profile Management change from Cloud to On-Premise requires endpoint restart to take effect.
NEO-14760 Profile | General | Endpoint Connectivity to Forcepoint ONE: Proxy settings changes affect all profiles, not just the current profile.
IP-611 Forensic data is currently supported for DPS channels (Cloud Email, Online WEB, CASB). Forensic data is not currently supported for endpoint channels.