13/07/2026 - Version 6.4.113 Release Notes

New Features

  • Added a raw log capture tool that simplifies collecting sample logs for troubleshooting.
  • Cisco ISE integration now supports ANC-based endpoint quarantine as an automated response action.
  • Alarm whitelists now support IP subnets (CIDR notation) and IP ranges.
  • Added an "Action Rule Failed" notification — users can opt in to be alerted, including through the MSS hub, when an automated action-rule action fails.

Plugin & Integration Updates

  • Kandji (Iru API) integration has been added.
  • Cisco ISE plugin has been updated (session reporting, API authentication, and request headers).

Other Improvements

  • Improved cluster stability: internal coordination now survives node identity changes (re-licensing, migration, or re-enrollment), preventing cluster coordination failures.
  • Cluster upgrades now automatically recover from stale internal coordination state that could otherwise stall the upgrade.
  • Leaf mode now forwards data at higher throughput over a dedicated, TLS-capable connection.
  • External Threat Intelligence feed entries now honor their expiration time for automatic cleanup.
  • Improved session worker responsiveness under heavy load.
  • The co-managed (MSS) worker now idles gracefully when the MSS license is disabled.

Bug Fixes

  • Fixed rogue Redis instances that could start on cluster nodes without the Redis role and skew statistics.
  • Improved alarm state-tracking accuracy for bucket transitions and event ordering.
  • Hardened the "Action Rule Failed" notification against incomplete data.
Was this article helpful?
0 out of 0 found this helpful

Articles in this section

See more
Become a Certified Logsign User/Administrator
Sign-up for Logsign Academy and take the courses to learn about Logsign USO Platform in detail. Enjoy the courses, and get your badges and certificates. In these courses, you'll learn how to use Logsign in your work and add value to your career.
Visit Our Blog
Our Logsign USO Platform illustrate our expertise. So do the blog. Through our blog posts, deepen your knowledge on various SecOps topics or get updated about important news & modern approaches for cybersecurity. Get into the habit of reading valuable information provided by Logsign. Be a step ahead.