What's New in this Release

This section describes the new features and enhancements in this release of AsyncOS for Secure Email and Web Manager.

What's New in AsyncOS 16.0

Feature

Description

Transitioning from SecureX to XDR

SecureX is transitioning to an enhanced and more robust platform, XDR (Extended Detection and Response). As part of this transition, it is essential to integrate your Secure Email and Web Manager with the new XDR platform.

For more information on how to integrate Secure Email and Web Manager with XDR, see Integrating with Cisco XDR.

Regenerating SSH Keys for SCP Push Log Retrieval

Your Secure Email and Web Manager maintains separate host keys for the SCP Push log retrieval. It also allows you to regenerate SSH keys for the SCP Push log retrieval.

You can regenerate SSH keys using the LOGCONFIG > HOSTKEYCONFIG > REGENERATESCPKEYS subcommand in the CLI.

You can regenerate these new keys only through the CLI and not via the web interface. You must have Administrator or Cloud Administrator privileges to regenerate these new keys.

Note

When you regenerate SSH keys, you need to update these new keys into the SCP log push server.

You can verify these new keys using the LOGCONFIG > HOSTKEYCONFIG > USER subcommand in the CLI.

The management of SSH keys varies depending on the scenarios:

New Install Scenario

When you net install the AsyncOS 16.0 version, a new SSH key is generated.

Upgrade Scenario

When you upgrade from AsyncOS 15.5.1 or earlier version to AsyncOS 16.0, you are prompted for consent to inquire if you want to regenerate SSH keys. If you choose to generate new keys, then a new key is generated, if not, the old key is retained.

When you upgrade from AsyncOS 16.0 earlier version to AsyncOS 16.0 later version, you are not prompted for consent to inquire if you want to generate SSH keys. The available SSH key is retained.

Revert Scenario

When you revert from AsyncOS 16.0 to an earlier version, you will receive a warning message indicating if you need to replace SSH keys on the SCP push log server. If you have not generated new SSH keys, the warning message is not displayed, and you need not replace SSH keys on the SCP push log server.

When you revert from the AsyncOS 16.0 later version to the AsyncOS 16.0 earlier version, the available SSH keys are retained.

For more information, see Configuring Host Keys.

Enhanced Alert Emails

The Alert emails that you receive from Secure Email and Web Manager when 75% of the disk quota for miscellaneous services is used are enhanced. These emails now include a direct link to a comprehensive Tech Zone article. This Tech Zone article provides detailed solutions to address your technical inquiries related to disk quota management.

Certificate Expiry Alert

Your Secure Email and Web Manager now provides you with timely alerts for the expiry of system certificates (Inbound, Outbound, HTTP, and LDAP) and custom Certificate Authority (CA) certificates.

For more information on certificate expiry alert, see Importing a Custom Certificate Authority List and Appliance Certificate Validation.

Email Threat Defense Remediation Report

A new report - Email Threat Defense Remediation has been added to the Remediation Reports page.

For more information on the Email Threat Defense Remediation report, see Remediation Reports Page

Restarting API Server through CLI

You can now restart the API server using a new CLI subcommand - API_SERVER. You can use the API_SERVER subcommand to restart and view the status of the API server. The API_SERVER subcommand is added under the diagnostic > SERVICES subcommand.

For more information, see Restarting and Viewing Status of Services Enabled on Appliance .