Support of Safetica ONE features in the new Safetica

Learn what happens to Safetica ONE features in the new Safetica - which features will be sunset, which will be supported later, and which will need to be reconfigured after upgrade.

Article last updated: August 2024.

 

In this article, you will find:

 

Requirements for OS, SQL server, and Safetica Client

New Safetica requires

Details

Safetica Client: the minimum version installed on devices must be 10.5 or newer (10.4 can also be used but with limited support).

Older versions of Safetica Client will stop working after upgrading to the new Safetica, but you will be able to update them remotely later.


Safetica Client version 10.4 does not support new external device policies (new Device Control).

Microsoft SQL Server: the minimum supported version is Microsoft SQL Server 2016 or newer

 

Operating systems on devices:

  • Windows 10 (64-bit)
  • Windows 11 (64-bit)
  • macOS 10.15 and newer

Safetica Clients on older systems will continue working temporarily (they will remain as Safetica 10.4 or 10.5 Clients), but you won’t be able to update them, and they will lack support for new features added to the new Safetica in the future.

Microsoft does not support operating systems older than Windows 10, so they should not be used for security reasons.

 

Deprecated features not available in the new Safetica

The following features will no longer be available in the new Safetica:

Deprecated features

Details

WebSafetica

Replaced with our new web-based Safetica console.

Smart alerts that were part of WebSafetica will no longer be sent.

Safetica Mobile

The Safetica Mobile app is no longer available for mobile devices.

User-based data classification

Policies that contained this option will be “broken” after the upgrade to the new Safetica and will need to be reconfigured.

Learn how to fix broken policies and configure new policies in the new Safetica:

Disk Guard

This feature was not widely adopted and is not needed to protect sensitive company data.

You will no longer be able to set the rights of users and computers to access system and network paths or system drives via Safetica (e.g. choose drives/paths/folders that will be read-only for users).

Cloud sync client overview (i.e. setting up access to local folders that are used by certain cloud services) will be available in the new Safetica in the future.

Printing quota control

This feature was only available under a special license.

It enabled you to see the number of printed pages and types of print (color or black/white; simplex or duplex) and set up printing quotas for users.

In the new Safetica, print control is seamlessly integrated into DLP and controlled by policies and Data destinations. You will be able to control what files can be printed, by whom, and on which printers.

Network traffic audit

You will no longer see quantitative info about downloads and uploads on devices and statistics of network usage. Together with this, the Informative alerts about data dowloaded and data uploaded will no longer be available.

Detailed records on uploaded files are available in Safetica console in the Data section.

Application DLP policies

Application DLP policies were not as secure as data-related DLP policies, and in the new Safetica, we are shifting to a purely data-centric approach.

To control who can use what applications, please use the application policies in the new Safetica.

Depending on customer feedback and priority, a new alternative may come later.

Policy rules:

  • Other network connection
  • Local path
  • Exclusive access

 

Other network connection was an expert setting for all network traffic except for network file shares. It allowed you to cut off a device from the network.

Local paths was an expert setting for access to specified paths on local drives. It allowed you to completely cut off a destination from all access.

Exclusive access was an expert setting for whitelisting/blacklisting applications accessing sensitive data. It allowed you to completely cut off certain applications from certain data. Depending on customer feedback and priority, a new alternative in the form of business app control may come later.

NTFS tagging

Replaced by new technology. Old tagged files will remain protected. Sensitive files will be classified when users work with them or when a discovery task is run (replacement for on-demand tagging).

Integrations:

  • FortiGate integration
  • Netwrix data classifications - Safetica Compliance license

The integration of Netwrix data classifications (based on the Safetica Compliance license) has been deprecated, since the new Safetica offers stronger classification options and new classification templates.


The integration with FortiGate has been deprecated, because the new Safetica does not support persistent metadata tagging yet. FortiGate integration might be added later (after persistent metadata tagging) depending on customer feedback and priority.

 If you have concerns about the sunset features, please let us know at support@safetica.com.

 

Features that will be supported in the new Safetica in the future

The following features are not yet available in the new Safetica, but we will gradually add them in the future.

Not yet available in the new Safetica

Details

WebSafetica behavior classes and productivity charts

Data related to user activities will be available in the new Safetica immediately after upgrading.

However, visualizations and categorization of user activities as productive or unproductive will be added in the future.

Database tasks and archiving

Database management, including database tasks (e.g. creating and loading archives, automatic database maintenance) will not be available in the new Safetica for now, but they will be added in the future.


From Safetica 11.3.20, it is possible to attach and browse Safetica ONE archives in the new Safetica console. Learn more in this article

Use Active Directory security groups to import admin accounts

This feature will be added later.

Reports with custom layout

Currently, only predefined reports are available. This will change in the future.

Admin account audit trail

The feature will be added later.

Use of persistent metadata

The feature will be added later.

 

Features that are in the new Safetica, but will need to be newly configured

The following features will need to be reconfigured if you upgrade from Safetica ONE to the new Safetica:

Feature

Where to reconfigure it in the new Safetica

Reports

Safetica currently does not support custom report layouts and offers reports with expert-designed pre-defined layouts instead.

You can set up new reports in Safetica console > Scheduled reports.

Learn more about reports in the following articles:

Admin accounts and access management

Admin accounts will be disabled after the upgrade to the new Safetica. You will need to enable them and assign them correct access permissions. You can do that in Safetica console > Settings > Accounts and permissions.

Learn more about access permissions in the following articles:

Data discovery

If you are using Discovery tasks to protect your data at rest, you will be able to configure Data discovery based on these instructions. You can learn more about Data discovery in the new Safetica here.

Office 365 integration

If you are using Safetica CASB (the newer Microsoft 365 integration), your configuration will be migrated automatically.


If you are using the older Office 365 integration, you must disable it manually before upgrading to the new Safetica. Go to Safetica Maintenance Console > Maintenance > Integration settings > Office 365 Integration and disable all options.

Please note that the older Office 365 integration will no longer be supported by Microsoft after October 2023, so switching to either Safetica CASB or the new Safetica will be necessary.

Afterward, configure cloud protection in Safetica console:

Data analytics integration

If you have your Safetica database integrated with a data analytics tool, you must:

  1. perform the steps described here
  2. download the new report templates available here
  3. connect the new report templates as described here

If you have created your own visualizations based on Safetica records in Power BI or other data analysis tools, you will need to rename the views - see this article for details.

Please note that the Suspicious column was removed.

Policies that contained multiple data classifications

Policies that contained multiple data classifications will be “broken” after the upgrade to the new Safetica and will need to be reconfigured.

Learn how to fix broken policies and configure new policies in Safetica:

Upload to webmail / Upload to file share

Upload to webmail and Upload to file share were deprecated and replaced by Web upload. Depending on your current settings, you may need to slightly modify your policies. In such a case, you will see the policy as “broken” in the Safetica console.

Learn how to fix broken policies and configure new policies in Safetica:

Data classification: Dictionaries

You can copy and paste up to 10,000 keywords into one classification rule to serve as a custom dictionary. The keywords must be separated by line breaks. Learn more here:


Policies that contained dictionaries will be “broken” after the upgrade to the new Safetica and will need to be reconfigured.

Learn how to fix broken policies and configure new policies in the new Safetica: