Ermes Browser Security Connector — Enhanced Data Fidelity and Multi-Tenant Support

What Changed

Ermes Browser Security CCF connector enhanced with improved data fidelity, multi-tenant support, and expanded log collection capabilities.

Security Impact (Visibility & Fidelity)

Data Fidelity Improvements:

• Timestamp accuracy restored: Previously used server ingestion timestamp (_created), now extracts real event timestamp when available - this fixes temporal correlation issues for security investigations
• Extended log data: Added log_data field for specific event categories (general, dashboard_auth, dashboard_audit, device_status) - queries referencing detailed event context previously returned null
• Time range precision: Fixed API query boundaries from gte/lt to gt/lte, ensuring no event gaps or duplicates in collection

Multi-Tenant Support:

• Added configurable API URL parameter supporting multiple Ermes tenant deployments
• Deployments can now connect to different Ermes instances beyond the default api.shield.ermessecurity.com

Affected Files

Solutions/Ermes Browser Security/Data Connectors/ErmesBrowserSecurityEvents_CCF/ErmesBrowserSecurityEvents_ConnectorDefinition.json
Solutions/Ermes Browser Security/Data Connectors/ErmesBrowserSecurityEvents_CCF/ErmesBrowserSecurityEvents_DCR.json
Solutions/Ermes Browser Security/Data Connectors/ErmesBrowserSecurityEvents_CCF/ErmesBrowserSecurityEvents_PollerConfig.json
Solutions/Ermes Browser Security/Data Connectors/ErmesBrowserSecurityEvents_CCF/ErmesBrowserSecurityEvents_Table.json
(packaging artefacts: 3.1.0.zip, createUiDefinition.json, mainTemplate.json, etc.)