New Features and Enhancements

In this release, we have introduced a variety of new features and enhancements designed to maximize your efficiency and enhance your overall experience with FortiSOAR™ 7.6.0.

Licensing Updates

• Starter Edition: Ideal for small to medium-sized enterprises or teams within larger organizations, this affordable entry point offers advanced security orchestration capabilities with support for up to 10,000 actions per day. It is also suitable for developers or as a staging instance for FortiSOAR.
• Cost-Effective On-Premise HA Option: Deploy the new on-premise High Availability (HA) edition as a secondary node in a clustered setup for both 'Perpetua'l and 'Subscription' licenses. This ensures seamless failover and enhanced reliability without breaking the bank.
• Enhanced Trial License: Experience FortiSOAR to its fullest with increased action limits from 200 to 1000 actions per day. Select either the 'Enterprise' or 'Multi-Tenant' trial license based on your deployment requirements.
  For details, see the Licensing FortiSOAR chapter in the "Deployment Guide.

Upgrade Process Enhancements

• Streamlined Upgrade Process: The upgrade framework validates the feasibility of the upgrade before proceeding with the actual process. It also separates post-upgrade tasks, such as database migrations, to facilitate smoother upgrades and simplify failure handling. Furthermore, it enhances the upgrade experience by allowing users to customize the pre- or post-upgrade phases. Additionally, the ability to pre-download upgrade packages helps reduce application downtime and ensures a faster and more reliable upgrade experience.
  For details, see the "Upgrade Guide."

Code Editor Enhancements

• IntelliSense Integration: Boost your coding efficiency with IntelliSense in the code editing features of FortiSOAR. Benefit from intelligent code completion, syntax error highlighting, and a more intuitive and responsive interface.
  For details, see the Building your own connector chapter in the "Connectors Guide," and the Widgets Library chapter in the "User Guide."

FortiSOAR User Interface Enhancements

• Enhanced Jinja Editor: Improved editor UI with ability to view the test JSON data in a better way and including playbook step execution data for easier debugging. This makes Jinja editing and testing much easier and simpler.
  For details, see the Dynamic Values chapter in the "Playbooks Guide."
• Improved System Configuration: Easily locate settings with an organized layout on the "Application Configuration" tab and a new "General" tab for added convenience.
• Enhanced 'Choose Widget' Dialog: Experience a more organized layout with categorized widgets, icons, titles, descriptions, and a search box for easier widget selection.
• Grid Widget Light Mode: Enable the 'Light Mode' globally for better performance and usability.
• 'Executed Playbooks Log' filter enhancement: Included an option for filtering playbooks based on their execution mode, INFO, DEBUG, or, ANY.
• Improved Manual Trigger Step: The "Configure Visibility Condition" option in a manual trigger has been enhanced to enable the triggering of playbooks based on a record's UUID. Multiple UUIDs can be included in a list or CSV format.
• Improvements in the Connector UI: A new field called "Contributor" has been added to the connector's configuration page to show the names of contributors. This feature is particularly helpful for community contributions. Additionally, an option to display extra information about parameters as a subtitle has been included on the Fetch Data screen of the Data Ingestion Wizard.

• Other UI Enhancements: Improved user experience by alphabetically sorting event types in the Purge Audit Log dialog, making it easier for users to find a specific event type. Additionally, a 'Refresh' button has been added to the Shift Management tab on the Queue & Shift Management page.

Administrative Enhancements

• Record Ownership Customization: In multi-tenant environments, restrict record ownership to tenant teams for better control.
• Improved ROI Calculations & Analytical Widgets: Customize the ROI widget with your preferred currency and make the 'Time Range' and 'Percentage Change' fields optional in performance widgets.
• Disk Space Optimization: Reclaim unused disk space using advanced PostgreSQL utilities to address database bloat and improve performance.
  For details, see the Setting up auto-cleanup of workflow execution history topic in the Debugging and Optimizing Playbooks chapter of the "Playbooks Guide."

• Export and Import Wizards Enhancements: Directly export and import 'Export Templates' using these wizards. Additionally, the Export Wizard enables filtering records by their UUID, making it easier to export specific records.
  For details, see the Application Editor chapter in the "Administration Guide."

• Playbook Updates: Global variables will no longer be automatically replaced when importing a playbook collection.
• Segmented Network Support Improvements: A new option called 'Update Config' has been added to the 'Agent Actions' column in the FSR Agent grid. This option allows updating the configuration on the Agent machine with the latest settings.
  For details see the "Administration Guide."
  

Setup Guide Updates

• Setup Guide as a widget: From release 7.6.0 onwards, the Setup Guide has been transformed into a standalone widget. This change was made to allow for a more focused approach to the Setup Guide and the flexibility to release updates as needed. For details, see the Setup Guide Widget documentation.
• Improved Exclusion List Management: Easily exclude specific extracted indicators from enrichment by adding them to an exclusion list. For details, see the SOAR Framework Solution Pack documentation.

Solution Packs, Connectors, and Widget Enhancements

A wealth of new content and enhancements have been added. Here are some examples:

• Notable New and Updated Solution Packs:
  Added important Solution Packs such as Platform Utilities, which includes the Key Store module for improved data management across various solution packs, ensuring smooth integration and efficient storage of structured data, and the SLA Management Solution Pack offers precise SLA calculation and comprehensive automation for efficient management across industries. Multiple Outbreak Response solution packs have also been introduced to conduct hunts that identify and investigate potential Indicators of Compromise (IOCs) associated with vulnerabilities within operational environments of FortiSIEM, FortiAnalyzer, QRadar, and Splunk.
  Furthermore, several key solution packs are updated, including the SOAR Framework Solution Pack, which includes significant changes such as the migration of the Key Store module and playbook reorganization across solution packs, and the SOC Utilities Solution Pack has also been enhanced to optimize efficiency with streamlined utilities for seamless integration, improving security operations and workflow efficiency.
• New and Updated Connectors: Multiple integrations (Fortinet Fabric and third-party) have been released and updated – few notable ones being Fortinet FortiEDR, Fortinet FortiGate, Utilities, Database, Exchange, Slack, GitHub, IBM IAM, RSS Feed, Cisco Meraki MX L3 Firewall, SAP Enterprise Threat Detection Cloud, and NetScaler ADC.
• New and Updated Widgets: Added multiple widgets such as Submit Content Form, Playbook Buttons, and Playbook Execution Wizard. Updated multiple widgets such as Picklist as Phases, AI Assistant, and JSON to Grid.
  For details, see the FortiSOAR Content Hub.

• Updated FortiSOAR Rapid Development Kit: A new version of the Rapid Development Kit has been released, featuring debugging functionality and improved user experience. For details see the FortiSOAR Rapid Development Kit documentation.