Resolved and Known Issues

This section lists the current resolved and known issues.

Endpoint Resolved Issues

Table 1. F1A 24.10
   
SEP-36535 Compatibility: Resolved a compatibility issue with newer proxy gateways such as Skyhigh Gateway v12 and newer.
SEP-36482 Stability Improvement: Updated the agent registration process to avoid potential registration errors that could occur between the agent and the cloud.
SEP-36282 If a end user disables the network adapter, the endpoint crashes and does not recover.
SEP-36271 Endpoint UI: On the About window, the incorrect values for "Version" and "DLP classifier version" appear under the Data Protection section in Active Products. This is now resolved.
SEP-36265 Functionality: Apps added to the proxy bypass list in the web security portal are now not analyzed by the local agent proxy either.
SEP-36234 Endpoint uninstallation fails post install or restart.
SEP-36067 Endpoint: When switching between on-premise and cloud data protection the correct policy is now loaded without needing to make and deploy a policy change.
SEP-36027 Upgrade Stability: With this version and newer versions of the agent, the initial agent version will be left running on the device if an upgrade fails.
SEP-36535 Compatibility: Resolved a compatibility issue with newer proxy gateways such as Skyhigh Gateway v12 and newer.
SEP-35897 Endpoint: When switching between on-premise and cloud data protection the correct policy is now loaded without needing to make and deploy a policy change.
SEP-35854 On systems that had the agent running in on-prem mode and that also had the password protection enabled on the Forcepoint Security Manager, disabling F1A on-prem anti-tampering used to fail as password was not supplied. This is fixed now.
NEO-14160 Endpoint Management - Profiles: when including specific OUs or endpoints, other OUs and endpoints are not included. This is fixed now.
NEO-14283 Endpoint Management - Profiles: Application channel is not blocking as expected when custom profiles are defined. This is fixed now.
Table 2. F1A 24.06
   
SEP-30732 Usability: Fixed an issue where the pop-up notifications sometimes appeared cut off on screen.
Table 3. F1A 24.05
Key ID Description
SEP-28745 Improved deployment: Due to enhancements in Anti-tampering functionality, the Endpoint Classifier could not be added to the FDA list. This issue only occurred when installed without using JAMF profile. User guidance to the manual installer to guide the user to add Endpoint Classifier in Full Disk Access list has been added.
SEP-31241 Fixed an issue where the Data Protection status was not appearing in the About page.
SEP-31497 Endpoint Confirm Action: When a user printed a file in certain circumstances the default action of block was not applied upon the dialog reaching the timeout limit. This issue is resolved now.
SEP-31605 Install: Fixed an issue on Windows 11 where it was not possible to re-install the agent. Once installed, the agent could only be upgraded to the next version.
SEP-31642 Endpoint Email: Fixed an issue where emails sent through Outlook on macOS Sonoma had content that were not blocked based on the DLP policy.
SEP-31689 Agent Install: Fixed an issue where in some cases, a second reboot was required to ensure that all components were started and available after an install. Full protection was not enabled until the second reboot was completed.
SEP-31955 Install: Fixed an issue where the F1A was unable to install on macOS.
SEP-32100 Improved deployment: Improved uninstall by removing the thing_id as part of the uninstall.
SEP-32602 Fixed an issue that causing WPP log rotation to fail.
SEP-32460 Improved deployment: the Endpoint Classifier is now properly removed during uninstall / upgrade.
SEP-32639 Fixed an issue where the local user information was sent to Forcepoint Content Security Gateway instead of the domain user information.
SEP-32750 Fixed an issue with alerts from the Forcepoint ONE Data Security portal getting missed.
SEP-34498 Endpoint: For both Windows and macOS agents, the disable web control feature, which allows users to turn off the web control feature depending on a configuration in the portal was not working. This means that users were not allowed to disable the web control feature regardless of the settings in the portal. This issue is fixed now.
SEP-35632 Unnecessary default "IOB" events were reported for new incidents. This is fixed now.
SEP-35643 F1A on macOS Sonoma does not download Web Profile from cloud.
SEP-35799 OTA in on-prem mode fails for macOS.
SEP-36183 When multiple requests are sent in a second by one endpoint, it can be throttled by AWS. This causes AWS IoT to become disconnected and the Endpoint running with errors.
Table 4. Endpoint Known Issues
Key ID Description
SEP-28665 Endpoint Email: Using Outlook on Windows files larger than 5 MB do not trigger DLP policy.
SEP-30329 Policy - Policy details - Rule - Condition - Email Destinations: Selecting a limitation for a rule based on the number of email destinations in excess of 3, does not work.
SEP-30383 Data Protection - Removable Media Channel: When the destination is removable media, rules are applied to all devices. Excluding or including specific devices is not supported.
SEP-30421 Policy - Policy Elements - Endpoint application groups: On macOS only .txt files are supported for file access monitoring in the endpoint application group.
SEP-31288 Endpoint: Blocking of screen captures is currently not supported.
SEP-31653 User Activity Monitoring: Anomaly detection and extensibility script policy violations are not reported to the cloud.
SEP-31602 Endpoint Email: Emails sent through Outlook on Windows that include a recipient that is defined as internal do not have DLP policy applied to them.
SEP-31372 Device Control: With some docking stations it is observed that if a laptop is removed from the docking station and re-docked while having a USB plugged into the docking station, the device control enforcement is not happening.
SEP-31602 Endpoint Email: Emails sent through Outlook on Windows that include a recipient that is defined as internal do not have DLP policy applied to them.
SEP-31653 User Activity Monitoring: Anomaly detection and extensibility script policy violations are not reported to the cloud.
SEP-31791 Unable to open Outlook when Fail Close is selected under Data Protection Policy.
SEP-31876 Endpoint: On Windows 11 the clipboard channel does not work. This leads to clipboard policy not getting applied for Windows 11.
SEP-31888 IoB alerts show unnecessary destination port and IP.
SEP-31899 On systems that have both SmartEdge Agent and F1A installed, F1A agent does not block the Web channel.
SEP-32063 Multiple allow incidents are reported on Forcepoint Security Manager and Forcepoint ONE Data Security portal for sites like Dropbox, WeTransfer, Box, etc.
SEP-32272 User is able to copy and paste the block, warn pattern from endpoint to the host machine.
SEP-32491 F1A endpoint shows the: "Configured connection as "?""
SEP-32563 Admin not able to analyze confirm events due to data errors.
SEP-35401 Files containing sensitive information are inaccessible until the endpoint is restarted. If the file is renamed, the sensitive content is still present in the file until restart.
SEP-35782 Incident Reporting: Incidents reported for file upload events will only show a maximum of 32mb as the file size in the incident forensic information.
SEP-35964 Alerting: After few weeks without a reboot, the Windows Endpoint can stop reporting Dynamic User Protection alerts.
SEP-36059 Endpoint usability: Some sites intermittently presented SSL certificate errors when loaded.
SEP-36519 Reported incident forensics missing information which is used to analyze exfiltration event(s).
SEP-36739 Endpoint Web: If you have configured it so that your users can use the "Disable Web Control" for PC and the agent is unable to retrieve the PAC file, the "Disabled Web Control" option does not appear in the system tray menu.
NEO-14160 Endpoint Management -> Custom Profile - when selecting to include organizational units (OUs) or specific endpoints, other OUs and specific endpoints are not excluded by default.
NEO-14157 Custom settings of whether the endpoint is managed by on premise or cloud DLP solution is not supported. Use the default profile to set the endpoint management to on premise.