The Exabeam Security Management Platform (SMP) has enabled security features by default that provide stricter controls and data protection. Two examples of what Exabeam has built protection against include Cross-Site Request Forgery (CSRF) and Cross-Origin Resource Sharing (CORS). A default set of filters are defined and enabled in Exabeam configurations. This improves the default security of the environment for all Exabeam services.
For Exabeam SaaS deployments that use Exabeam Advanced Analytics as your Exabeam Cloud Connector identity provider (IdP), Exabeam will update Cloud Connector to v.2.5.86 or later.
No manual configuration is needed for deployments with the following versions or later, as these protections are enabled by default:
Exabeam Advanced Analytics i53.6
Exabeam Data Lake i34.6
This security enhancement has been enabled by default:
Data Lake i34.6 and i35
Advanced Analytics i53.6 and i54.5
It is not enabled by default in:
Data Lake i33 or earlier
Advanced Analytics i52 or earlier
Please follow the hardening guidelines. At the earliest opportunity, please upgrade to a currently supported version of Advanced Analytics and Data Lake .