Discover the Summer 2023 release notes for Cloudi-Fi! New features include DHCP IOT, automated IoT identification, and zero-touch Zscaler integration, with enhancements for SAML configurations and bug fixes.
Release Date: Friday, July 7th morning (No service interruption expected)
Important: To receive notifications for our future release notes, please ensure you follow the Release Note Section in our Knowledge Base.
New features
DHCP IoT
DHCP unified configuration: Cloudi-Fi extends the DHCP cloud service to IoT and all managed/unmanaged devices on the network. Configure DHCP parameters with inheritance at different network hierarchy levels (global, location, subnets, and security profile pools). This release supports multiple IPv4 subnets per location in DHCP cloud services.
Automate IoT identification and profiling: create rule sets for device identification based on DHCP/MAC data set. Choose the desired level of detail and flexibility for the identification policy. Methods include static DHCP profiling, automated DHCP filtering utilizing crowd and AI-based techniques, vendor OUI, and static MAC addresses.
Security profiles: Define the security policy for each device set connected to your network. Examples include:
-
- Quarantine: For unknown devices that require categorization
- Blacklist: For identified devices that are not allowed network access, resulting in no IP delivery
- Authorized - Profile #1: identified device that gets security policy set #1
- Authorized - Profile #2: identified device that gets security policy set #2
Groups: Categorize devices based on functionality, such as Fire detection, Surveillance Cameras, and Meeting room management.
Rules: Within each group, rules provide methods for filtering and interpreting the DHCP/MAC data set. The available rule types include:
-
- Static MAC (ranges)
- Static MAC (regexp)
- Vendor MAC (OUI)
- Automated (based on device Model and Brand)
- DHCP Fingerprint (Option55 and Option60)
Zero-touch Zscaler integration: In Zscaler-based deployments, bindings between DHCP server pools (IoT Security profiles) and sub-locations/sub-location groups are automatically provisioned.
Zscaler sub-locations are created, updated (resized), and removed based on the configured security profiles in Cloudi-Fi and the number of IoTs onboarding in each profile. This integration allows Cloudi-Fi's IoT/DHCP service to act as a unified platform for comprehensive IoT identification and policy enforcement.
Enhancements
Support for additional SAML configuration: Guest portals can now be configured with up to 3 SAML configurations, allowing customers to accommodate different Guest/Employee populations registered in separate Identity Providers (IdP).
Unique Cloudi-Fi Service Provider per Tenant: In this release, we introduce the capability to assign a unique Service Provider identifier (SP EntityID) to each Cloudi-Fi tenant. This allows customers with autonomous entities to have multiple separate tenants while utilizing the same IDP service for employee authentication.
Bug fixes
Fixed administrator email verification for manually created administrators. Administrators' accounts remain inactive until their email addresses are verified. To change the email, a new administrator account must be created.
What's next?
We value your feedback and suggestions, so please don't hesitate to contact our support team. Additionally, we are actively working on improving our Knowledge Base content to provide better product support documentation.
Thank you for your support and feedback!
Team Cloudi-Fi