Skip to main content
Sumo Logic

Service Release Notes

RSS Feed

Service Release Notes for the current year are listed here. If you need to see previous Service Release Notes, check the Archive.

June 23, 2021

Apps

New - We are excited to announce the release of Zscaler Internet Access (ZIA) app. The Sumo Logic App for ZIA collects logs via Cloud Nanolog Streaming Service (NSS) to populate pre-configured searches and Dashboards in order to visualize and provide insight into threats, DNS, web traffic behaviors, security, user browsing activities, and risk.

June 22, 2021

Collection

New - Our Cloud-to-Cloud Integration Framework has a new Source. The Akamai SIEM API Source provides a secure endpoint to ingest security events from the Akamai platform.

June 20, 2021

Apps

New - We are proud to release the Sumo Logic Nginx Plus Ingress app. The app is a unified logs and metrics app that helps you monitor the availability, performance, health and resource utilization of your Nginx Plus Ingress web servers. Preconfigured dashboards and searches provide insight into server status, location zones, server zones, upstreams, resolvers, visitor locations, visitor access types, traffic patterns, errors, web server operations and access from known malicious sources.

New -  We are also excited to announce the release of the Global Intelligence for Apache Tomcat App. The App is a companion to the Apache Tomcat application and helps DevOps and infrastructure engineers compare server and user activity patterns associated with their Apache Tomcat servers against other Sumo Logic customer’s servers. Such comparisons can help diagnose potential load, throughput or error issues in Apache Tomcat clusters and avoid operational incidents arising from sub-optimal configurations of Tomcat servers.

June 14, 2021

Apps

New - We are proud to release the Sumo Logic Cassandra app. The Apache Cassandra is an open source NoSQL distributed database with high scalability and availability without compromising performance.

June 11, 2021

Apps

New - We are excited to announce the launch of the Security Monitoring & Analytics Apps. These apps are a new way to get an understanding of your day to day security operations. For this release we are providing new dashboards for five data sources: Windows, Linux, AWS Cloud Trail, AWS VPC Flows, and Palo Alto Networks Firewalls. All dashboards are using our latest features to provide practical security insights for all security practitioners.

June 10, 2021

Collection

New - Our Cloud-to-Cloud Integration Framework has another new Source: that's two this week! The Symantec Web Security Service (WSS) source provides a secure endpoint to ingest Symantec Web Security Services Access Logs. Symantec Web Security Service delivers a broad set of advanced cloud-delivered network security capabilities. With this new integration, Security customers can take advantage of the rich set of security information available from the WSS Access Logs.

June 8, 2021

Collection

New - Our Cloud-to-Cloud Integration Framework has a new Source. The CSE AWS EC2 Inventory Source provides a secure endpoint to ingest AWS EC2 inventory. Cloud SIEM Enterprise (CSE) users can forward this data to Cloud SIEM Enterprise to provide more context to Entities.

June 7, 2021

Apps

New - We are excited to announce the launch of the Nginx Plus web server App. The app is an unified logs and metrics app that helps you monitor the availability, performance, health and resource utilization of your Nginx Plus web servers. Preconfigured dashboards and searches provide insight into server status, location zones, server zones, upstreams, resolvers, visitor locations, visitor access types, traffic patterns, errors, web server operations and access from known malicious sources.

Update - There is a new release for the Microsoft SQL Server app. The is an unified logs and metrics app that provides insight into your SQL server performance metrics and errors. The App consists of predefined Dashboards, providing visibility into your environment for real-time or historical analysis on backup, latency, performance counter, restore, mirroring, database monitoring, general health and operations of your system.

June 2, 2021

Collection

New - Our Cloud-to-Cloud Integration Framework has a new Source, the CrowdStrike Falcon Data Replicator (FDR) Source provides a secure endpoint to ingest Falcon Data Replicator events using the S3 ingestion capability by consumed SQS notifications of new S3 objects.

Update - You can use a Windows Event Source to collect forwarded events from a Windows Event Collector.

Apps

Update - There is a new release for the MongoDB app.The app now provides insight into your MongoDB environment, allowing you to track overall system health, queries, logins and connections, errors and warnings, replication, and sharding.

May 27, 2021

Apps

New - We are excited to announce the launch of the Zscaler Private Access App, which assists in collecting logs from Zscaler using the Log Streaming Service (LSS) to populate pre-configured searches and Dashboards. The dashboards also provide easy-to-access visual insights into user behaviors, security, connector status, and risk.

Update - There is a new release for the Apache app. The app now helps you monitor the availability, performance, health and resource utilization of Apache web server farms. The pre-configured dashboards and searches provide insight into visitor locations, visitor access types, traffic patterns, errors, web server operations, resource utilization and access from known malicious sources.

May 26, 2021

Metrics

New - What’s good for the logs is good for the metrics. That’s why we’re extending the processing rules feature to support metrics as well as logs. Now, you can configure include or exclude rules for your metric sources for increased control over the metrics you ingest to Sumo Logic. For more information, see Metrics Include and Exclude Rules.

metric-processing-rule-filled-in.png

May 24, 2021

Collection

New - The Microsoft Graph Security API Source provides a secure endpoint to receive alerts from the Microsoft Graph Security API endpoint.

May 20, 2021

Traces

New - We are proud to release the support of the Search Query Language for Traces. This allows you to not only find and diagnose transaction traces that match any custom criteria, but also make advanced analysis on the top of trace span data using the Search Query Language, the same way as for log data, in the same familiar interface.

This capability allows you to access raw tracing data on a span level, treat it as structured or unstructured data for analysis, and filter, transform, or aggregate any part of the tracing span message (a single atomic request/response representation) to deliver meaningful results to drive smarter decisions.

May 17, 2021

Apps

New - The Sumo Logic App for HAProxy is a unified logs and metrics app that helps you monitor the availability, performance, and health of your HAProxy cluster. Preconfigured dashboards provide insights into active servers, visitor locations, sessions, errors, response time, and throughput.

May 10, 2021

Apps

PCI Compliance for Windows Legacy App

Update - The Payment Card Industry (PCI) Compliance for Windows Legacy App is updated to offer dashboards to monitor system, account, and user activity to ensure that login activity and privileged users are within the expected ranges. The PCI Compliance for Windows Legacy App covers PCI requirements 2, 6, 8, and 10.

PCI Compliance for Windows JSON App

New - The Payment Card Industry (PCI) Compliance for Windows JSON App is released. This App offers dashboards to monitor system, account, and user activity to ensure that login activity and privileged users are within the expected ranges. The PCI Compliance for Windows JSON App covers PCI requirements 2, 6, 8, and 10.

CatchPoint

New - The CatchPoint App for Sumo Logic provides a central location for the Catchpoint tests in your account. View at-a-glance information surrounding your recent Errors. The Node Map provides a geographical overview of your test runs, while the Tests widget lets you search for and quickly access your synthetic data.

Cybereason

New -  The Cybereason App for Sumo Logic enables Security Operations teams to leverage the Cybereason Malop™ to detect and end attacks faster. 

Nucleon

New - Nucleon is a distributed, high-performance invisible, and non-invasive platform that is tailored to secure environments from different common threats such as professional hacking groups, APTs, and others. The Nucleon App for Sumo Logic helps in identifying the overall number of threats, their sources by country, and their targeted segments(critical_infrastructure, energy, fintech, governments, health_care, municipality, general, telecom).

Workday App and Workday C2C source

New - We are very excited to release a new app for Workday and C2C source. The Workday app is built for IT and security teams to get insights into Workday related authentication activity, user activity, and administrator activity. These dashboards are tailored to highlight critical events for general security monitoring and compliance reporting. Collection of data is done via a cloud-native-collector that provides a secure endpoint to receive user and sign-on data via the Workday APIs.

May 7, 2021

Apps

New - The Global Intelligence for Apache App is a companion to the Apache App and helps DevOps and infrastructure engineers compare server and user activity patterns associated with their Apache servers against other Sumo Logic customer’s servers. Such comparisons can help diagnose potential load, throughput, or error issues in Apache clusters and avoid operational incidents arising from sub-optimal configurations of Apache clusters.

May 4, 2021

Manage

New - We're making it easier to create and manage multiple Sumo Logic accounts. You can use the new Sumo Logic Organizations (Sumo Orgs) feature to create, provision, and manage multiple "child" orgs from a "parent" org. An authorized user can use the UI or API to estimate required credits for child orgs, based on expected log and metrics ingestion levels. It's easy to allocate credits, and to monitor child orgs' utilization. Sumo Orgs is great for Sumo Logic Service Providers as well as Enterprise users. In particular, Sumo Orgs eases the process of provisioning and managing POV Trial orgs in multiple Sumo Logic deployments.

Sumo Orgs GIF.gif

Sumo Orgs is available in Enterprise subscriptions on the Credits model. 

Apps

AWS Observability 

Update - We’re happy to announce the release of our AWS Observability Solution 2.2.0 which includes: 

  • New performance and cost-savings. We’ve added support for collecting AWS CloudWatch metrics and AWS CloudWatch logs through new Amazon Kinesis logs and metrics sources for Sumo Logic. These new sources enable you to collect logs and metrics data from AWS in the most performant and cost-effective manner. 
  • AWS benchmarks in-context with AWS Observability. Global Intelligence for AWS CloudTrail DevOps helps you accelerate root cause analysis for incidents by providing error rate and configuration insights benchmarked from Sumo Logic’s AWS customers for nine AWS services: EC2, Lambda, Auto Scaling, S3, ELB, RDS, DynamoDB, ElastiCache and Redshift. In this release, the benchmark dashboards are integrated with AWS Observability solution at the account-region level.

Update to the latest version to take advantage of these new features.  

May 3, 2021

Metrics

Deprecation - We have completed the deprecation of old-style Metric Monitors. Old Metric Monitors have been migrated to the new Monitors framework and removed. For information about the deprecation process, see Metrics Monitors Deprecation FAQs. 

April 30, 2021

Apps

Redis

Update - We’ve released a new version of the Redis app that includes pre-packaged alerts. New features include updated dashboards that allow you to visualize, search and alert by Redis clusters and hosts. Alerts are based on Sumo Logic monitors, leverage metrics and logs, and include preset thresholds for connections, replication, memory fragmentation, communication failures, resource utilization and other critical conditions. 

PostgreSQL

Update - We’ve released a new version of the PostgreSQL app that includes pre-packaged alerts. New features include support for collecting PostgreSQL metrics data using Telegraf, and for monitoring PostgreSQL in Kubernetes environments. Out-of-the-box dashboards provide insight into the health of your PostgreSQL clusters, deadlocks, replication status, query performance, slow queries, incoming connections, failed authentications and error logs. Alerts are based on Sumo Logic monitors, leverage metrics and logs, and include preset thresholds for connections, slow queries, commit rates, deadlocks, replication, locks, compression and other critical conditions.  

New Sumo Logic App for Kafka with Pre-packaged Alerts

New - The Sumo Logic App for Kafka is a unified logs and metrics app that helps you monitor the availability, performance and resource utilization of Kafka messaging/streaming clusters. Preconfigured dashboards provide insights into cluster status, throughput, broker operations, topics, replication, zookeepers, node resource utilization and error logs. We also have pre-packaged alerts to help you monitor your Kafka cluster. Alerts are based on Sumo Logic monitors, leverage metrics and logs, and include preset thresholds for high resource utilization, disk usage, errors, failed connections, under replicated and offline partitions, unavailable replicas, consumer replica lag and other critical conditions.

New Pre-Packaged Alerts for Nginx ULM and Nginx Ingress ULM

Update - We’ve released pre-packaged alerts to help you monitor your Nginx ULM and Nginx Ingress ULM clusters. These alerts are built based on Sumo Logic monitors, leverage metrics and logs and include preset thresholds for dropped connections, critical event log messages, access from known malicious sources and 4xx and 5xx errors.

April 21, 2021

Dashboard (New)

Update - We've made it easier to change what items are displayed in charts. You can now click on an item in the Legend to quickly only show it in your chart. If you want to toggle just one legend item, just hold the shift key and then click the item.

clicklegend.gif

April 16, 2021

Alerts

New - The Infrastructure tab now shows any triggered Monitors with a Critical, Warning, or Missing Data status for the given entity. You can click on them to view the Monitor on the Monitors page.

infrastructure tab april 2021.png

April 15, 2021

Alerts

New - Log Search and Metrics Explorer now provide an option to add a Monitor based on your existing query.

add monitor from log search.png

Add monitor from metrics explorer.png

Update - You now have the ability to specify a location when creating a new Monitor.

April 14, 2021

Metrics

Planned deprecation - The muted monitors that were automatically migrated during Round 2 have been deleted. Deprecation of old-style monitors will occur on May 3. Any of your monitors that were not automatically migrated should be manually migrated by that date. For more information, see Metrics Monitors Deprecation FAQs. 

April 8, 2021

Alerts

Update - The alert variable ResultsJson.fieldName now supports the ability to return a specific result by providing an array index value in bracket notation. For example, {{ResultsJson.fieldName}}[0] will only return the first result.

April 6, 2021

Dashboard (New)

Update - Dashboard (New) now supports Dynamic Parsing and Receipt Time. You can set the options under the general settings of a panel built to display log data.

April 1, 2021

Alerts

Update - The alert variable Results.fieldName is now supported in email notifications. This allows you to include the value of a specific field from your results.

March 31, 2021

Metrics

Update - We’ve implemented some limitations on the number of metrics metadata tags that Sumo Logic will accept, and the length of metadata keys and values. Limiting the volume and length of metrics metadata ensures that noisy sources of metrics don’t inundate your account with excessive metadata. For more information, see Metrics Metadata Limits

March 30, 2021

Metrics

Planned deprecation - Round 2 of automatic migration is complete. We’ll start deleting the old monitors on April 13. For information, see Metrics Monitors Deprecation FAQs. 

March 25, 2021

Explore

Update - Explore now offers the ability to filter your view so you can focus on specific entities and sections of your system.

March 24, 2021

Traces

New - We're excited to announce our Service Map and Dashboards. A Service Map is a high-level out-of-the-box overview of your environment created from distributed tracing data. Service Maps provide you a real-time view of:

  • Your microservices and connections between them, to give you insight into their dependencies and relations.
  • Health and load of each microservice reflected in size and color, so you can immediately ascertain potential problems and bottlenecks in your application infrastructure.

Read more about how our Service Map & Dashboards Provide Insight into Health and Dependencies of Microservice Architecture

Interested in training? Register for an Enhanced Tracing with Sumo Logic webinar on 3/25/21 from 9am-11am PST.

March 22, 2021

Metrics

Planned deprecation - Round 1 of automatic migration is complete and the old monitors have been deleted. Round 2 of automatic migration will start on March 29. For more information, see Metrics Monitors Deprecation FAQs.

March 16, 2021

Manage

Update - Scheduled View queries now provide syntax highlighting and support multiple lines and comments.

Create a Scheduled View improvements with syntax highlighting, multiline, and comment support.png

Alerts

Update - We have resolved a discrepancy in the notification payload of Real Time Scheduled Searches.

Previously, the payload for subsequent real time alerts in a given time range would incrementally report the results and omit the records that were already present in the previous alert.

For example, if the Scheduled Search initially returned 10 records, the first alert notification would contain 10 records in the payload. If the next run contained the same 10 records plus 1 additional, the notification payload would only contain the single new record.

Going forward, we will ensure that the records sent in the notification payload will always contain all the records returned in the Scheduled Search. Following the above example, the next run of the Real Time Scheduled Search would return 11 records. This change ensures that the payload will always match the results of the search in Sumo Logic.

March 12, 2021

March 11, 2021

Metrics

Planned deprecation - Round 1 of automatic migration is complete. Most monitors were successfully migrated and are now muted—we’ll start deleting them on March 18. If you have monitors that were not successfully migrated, we’ll let you know which monitors weren’t migrated and why. For information about how to manually migrate those monitors, see Metrics Monitors Deprecation FAQs. 

March 8, 2021

Apps 

Update - We have updated our Enterprise Audit - Security Management App to now support ServiceAllowlist audit events.

March 4, 2021

Observability 

Update - We’re delighted to announce several enhancements to Root Cause Explorer. Root Cause Explorer now supports two additional AWS namespaces, as well as Events of Interest detection on Kubernetes and Trace metrics. Cause-impact analysis is now informed by Sumo Logic Tracing’s Service Map, AWS X-ray, Kubernetes entities, and AWS inventory relationships. You’ll also notice new filters and search builders at the top of the page to correlate Events of Interests at the service, orchestrator, AWS infrastructure, and host levels to speed up the identification of  root causes. You can use the Infrastructure tab for an Event of Interest to pivot to dashboards, logs, metrics and, trace searches to take the next steps in root cause analysis. 

rel-note.png

March 1, 2021

Metrics

Planned deprecation - We're starting the next step in the process of Metrics Monitors today: we're beginnning the first of two rounds of migrating old-style monitors to new Monitors. The next milestone is March 15, when we'll remove the old monitors that were successfully migrated in the first round. For more information, see Metrics Monitors Deprecation FAQs. 

February 26, 2021

Dashboard (New)

Update - Dashboard (New) is all about visual control! We’re happy to announce that you can now add units to your charts to make them even easier to consume. With the updated chart units on dashboard panels, you can select a base unit and the chart will auto-adjust the unit as the numbers scale, making the data immediately understandable. See how to modify chart axes for details.

Dashboard New unit option.png

February 25, 2021

Apps

Update - We are excited to announce out-of-the-box alerts for Kubernetes. We have also updated the dashboards and views in the Kubernetes App to accelerate entity-based troubleshooting of Kubernetes environments.

New - We are excited to announce a new Microsoft Teams app that provides out-of-the-box dashboards to monitor users, teams, channels and permission changes.

February 23, 2021

Alerts

New - Microsoft Teams webhook connection is now available to send notifications from alerts to Microsoft Teams.

Sumo Logic Jenkins Plugin 

Update - We are happy to announce a new version v2.2.1 of the Sumo Logic Jenkins plugin. The plugin has been updated with a new Jenkins pipeline step SumoSDOEvent which can be used to send instrumented events to Sumo Logic.

February 22, 2021

Metrics

Planned deprecation - We've taken the next step in the process of Metrics Monitors today: the ability to create new Metrics Monitors from the UI and API is disabled. For more information, see Metrics Monitors Deprecation FAQs. 

February 15, 2021

Metrics

Planned deprecation - We’re planning to deprecate the Metrics Monitors feature in favor of the Monitors feature we released late last year, which unifies the alert experience across logs and metrics. Important to note: Sumo Logic will automatically migrate most of your existing metrics monitors. The deprecation process will occur in stages, starting next week and culminating in early May. Today, affected customers will receive an in-product communication describing the deprecation process and schedule and what to expect. For more information, see Metrics Monitors Deprecation FAQs. 

February 12, 2021

Security

Update - We’re releasing a change to audit logging for monitors on Monday, February 15. We’ve improved the audit logging we do when you import, copy, or delete a  monitor. We now log an audit event for every object created or deleted by an import, copy, or delete operation.

February 10, 2021

Manage

Update - We made the process of transferring a deleted user’s content to another user more comprehensive. Now, when you select a new owner for the deleted user’s Library content, scheduled views will be transferred to the new owner, as well as the user’s folders, searches, scheduled searches, and dashboards. For more information, see Delete a User.

February 5, 2021

AWS Observability

Update - We are excited to announce support for ECS, ElastiCache, and Network Load Balancers as well as out-of-the-box alerts for all supported services. As part of this release we have documented changes included in each version of our CloudFormation installation template, which will help you understand when to upgrade.

February 3, 2021

Manage

Update - There are two changes to the Partitions page in the Sumo Logic UI. What we previously called the General Index is now the Default Continuous Partition. This is where any data you ingest that isn’t assigned to a partition goes. You’ll also notice that the Partitions page now lists Sumo Logic internal indexes, like the Audit Event Index and the Data Volume Index. This gives you the flexibility to manage the retention period for each index independently. By default, each internal index has the same retention period as the Default Continuous Partition.

default-index.png

January 22, 2021

Metrics

Update - We’ve made a small change to the Metrics Explorer that makes a big difference:  Advanced Mode now supports auto-complete. Now, just as in Basic Mode, you can construct metric queries in Advanced Mode by selecting metadata fields, dimensions, metrics, and operators from pull-down lists.

advanced-mode-autocomplete.png

Infrastructure

Update - We've updated the troubleshooting links in the Infrastructure tab to be easier to understand. The original buttons have been replaced with a dropdown menu with labels next to the buttons.

Troubleshooting links v2.png

Update - The Infrastructure tab now provides a time option to select if the displayed Entities and Environments are related to the current time or the moment of time around the data point you clicked on.

time selector entity infrastructure.png

January 20, 2021

Alerts

Update - When we released Monitors (our new alerting framework), we introduced new template variables to be used within Notifications for full customizability of what information is provided in the notification. We are pleased to announce that we are extending support of these variables to Scheduled Searches and Metrics Monitors pages.

January 15, 2021

Dashboard (New)

Update - Dashboard (New) now offers a dark theme. Dark Theme makes dashboards pop by putting light colored visualizations and text on top of a darker background. This enables you to build gorgeous dashboards with eye-catching contrast.
Dashboard New dark theme.png

Update - Categorical column and bar charts from metrics queries now have a Group By setting that lets you group data by other dimensions.

January 11, 2021

Alerts

Update - The payload editor for webhook connections provides syntax highlighting, indentation, and validation.

Jan 2021 webhook payload editor.png