Skip to content

New Main Updates and Enhancements

Checkmk monitoring support

Checkmk is a versatile, scalable and powerful monitoring solution. The SES Appliance now includes a built‑in Checkmk SSH agent, enabling seamless integration with Checkmk monitoring environments. Configuring the SES appliance to make it available for Checkmk is as simple as setting an SSH public key for the Checkmk agent user. The new functionality is available under “System / Monitoring”.

OWASP CRS Update

The OWASP CRS ruleset has been upgraded to 3.3.8 to address recent issues and vulnerabilities.

New Features

SES Appliance Base Checkmk Support

Support for monitoring with Checkmk agents has been added. (5.18.0.0)

SES GUI

SES GUI Checkmk Config Support

The CheckMK agent SSH public key can now be configured in the monitoring section. (5.18.0.0)

Changes

SES Appliance Base Factory reset removed

The “factory reset” and “restore last version” options were removed from the GRUB menu. (5.18.0.1)

SES Appliance Base Updated Tomcat

Updated Tomcat to 9.0.116 for SES GUI, SLS and IDM to address various vulnerabilities. (5.18.0.1)

SES Appliance Base Removed free MaxMind GeoIP update license

Removed free MaxMind GeoIP database updates due to licensing change. (5.18.0.1)

SES Appliance Base Column separator in CheckMK config fixes

CheckMK: Fix column separator in plugin http_monitor.py and update agent to 2.4.0p22+ (CVE–2025–6499) (5.18.0.1)

SES GUI User Management LDAP AD sync failed fixed

SES User Management LDAP AD sync failed if sAMAccountName started with a number. (5.18.0.1)

SES ACCESS CSP upgrade issues.

When updating from 5.16 to 5.18, a partially incorrect CSP would be configured by default for SLS. (5.18.0.1)

SES WAF Updates

Updated openssl to v3.0.20. (5.18.0.1)

SES GUI OWASP CRS 3.3.8

Support for OWASP CRS 3.3.8 has been added. (5.18.0.0)

SES GUI SLS CSP Validation

The GUI now performs some basic validation of the SLS content security policy. (5.18.0.0)

SES GUI ACME screen improvement

The drop-down list of private keys in the ACME screen is now sorted alphabetically. (5.18.0.0)

SES WAF Updates

Updated httpd to v2.4.66, openssl to v3.0.19 and 3rd party libraries. (5.18.0.0)

Fixes

SES Appliance Based

Fixed permission problem with CheckMK agent script after an appliance reboot. (5.18.0.2)

SES ACCESS documentation fixes

A build issue with the SLS scripting guide documentation has been fixed which resulted in some scripting prefixes like “oidc_rp” not having been included previously. (5.18.0.0)

SES ACCESS Session-Clean up issue

Fixed minor issue with exception being logged during session clean-up under certain circumstances involving the hard final timeout and concurrent request processing. (5.18.0.0)

SES ACCESS CSP QR Code issue fixed

Fixed issue with Google Authenticator QR code not being rendered due to default Content Security Policy. (5.18.0.0)