Monthly Release Notes - September 2017
|Automate||Bytware||CCSS||Document Management (RJS)|
- The Universal Connector import file for Infor M3 has been updated to fix authentication issues.
- Fixed an issue with documents being completely reloaded too often within the in-browser viewer
- Fixed an issue with documents showing up multiple times in a user inbox
- Fixed an issue with the search index background process getting suspended when server connections were lost
- Fixed an issue with links to WebForms documents from the user inbox
GoDrive for macOS
- Added support for macOS 10.12 Sierra.
- Enhanced the Secure Folders data table to prevent a recent Chrome browser update from causing an unnecessary scrollbar from appearing in certain situations.
- Fixed an issue where it was possible to bypass authorization checks to certain pages when using Firefox and encoded URLs.
- Fixed an array index issue that would occur when using the Write Fixed Width task with the Data Options configured to pad on bytes, and no column sub-elements are configured.
- Fixed an issue with Secure Folders uploads where the upload progress monitor in the Web Client could become out of sync when uploading a large number of files. This issue was introduced as part of the session timeout fix in 5.5.8.
- Enhanced the ICAP Task to allow customization of the Content-Type header.
- Enhanced the FTP and FTPS Resource and Tasks to allow sending an Account value if required by the server.
- Enhanced the Write Fixed Width task to allow configuring whether padding is calculated on the number of characters written to a column, or the number of bytes written to a column.
- Updated the MVS list parser for FTP and FTPS resources to properly handle large files where the Used value of the raw listing would overflow into the space separating the Ext and Used fields.
- Updated the auto-rename process when handling incoming AS2 messages to safely handle concurrent uploads of the same file name.
- Fixed an issue that was introduced in 5.5.0 where the Tomcat Web Server was scrubbing 'weaker' ciphers by default. This fix forces use of the JVM enabled ciphers, unless explicitly overridden by an administrator in the configuration.
- Fixed an issue where viewing the Project Change History could fail if proper file system access is not available.
- Fixed the Twilio SMS implementation to use UTF-8 encoding for sending messages.
Level 1 - Message Management Suite
- Custom environment rule templates to monitor the Stand Guard Anti-Virus product have been made available.
- Device rules now permit the monitoring of devices with the status of *IMGCLG.
Performance improvements have been made to Job Log Monitor to aid it keep pace with a job that has a rapidly filling job log.
A fix has been applied so that Job Queue *FIRST Rules for "Time on queue" no longer raise Alerts with corrupted Alert text.
It is now possible to define Job Queue groups for Job Queues that do not exist on the local system.
The Halcyon commands to produce reports now include a parameter to allow the saving of the resulting spooled file.
Efficiency improvements have been made in regards to accessing System Defaults.
A fix has been applied so that an "Open alert action" of *CLOSE is no longer actioned when the alert triggering condition still exists.
Send Email Message (SNDEMLMSG) now supports the use of User Data to determine which spooled files should be attached to the email.
Halcyon shipped/supplied Message Communicator scripts now include a warning stating not to modify the script directly and that a copy should be taken with a new name and that version modified instead.
- Work with Email Addresses (WRKEMLADR), Work with Message Queue Recipients (WRKMSGQRCP), Work with Pagers (WRKPAGERS), and Work with Phones (WRKPHONE) now have the ability to send messages to the defined email address via new option "9=Send message".
A fix has been applied so that using the "Hold Rule" (HLDRULE) command for *ALL Message Queue Rules no longer only holds just the first rule.
It is now possible to define Output Queue groups for Output Queues that do not exist on the local system.
A fix has been applied to CPIP *CHANGE rules so that they no longer alert incorrectly.
Level 2 - Systems Operations Suite (includes all Level 1 updates, plus the following)
- Work with Rules (WRKRULES) no longer allows an invalid value for "Job name" on Inactivity Rules.
- Work with Rules (WRKRULES) for Object *RCDCNT Rules now allows the use of F4=Prompt within "SQL select clause".
- Work with Rules (WRKRULES) now allows the use of F16=Subs Vars in an *OBJECT *RCDCNT Rule in the SQL Statement as part of the criteria.
- Performance *SYSTEM Rules now have a new SPLFS Statistic available which checks the total number of spooled files in the specified ASP Group.
- Efficiency improvements have been made to the Performance Monitor in relation to "Open alert action" processing.
Level 3 - Advanced Automation Suite (includes all Level 1 and Level 2 updates, plus the following)
- Disk Space Manager previously supported a Path, such as within the IFS, of up to 256 characters in length. This has been increased to 1,024 characters. Warning! Due to this change it is no longer possible to import Halcyon Legacy Product Disk Space Manager Builds.
- Halcyon Log File Monitor v15.0 has been released.
Level 4 - Operations Center Suite (includes all Level 1, 2, and 3 updates, plus the following)
- A fix has been applied so that an Advanced Job Scheduler Job with "Omit before" or "Omit after" specified now works with all "Job select mode" settings.
- Access control for Sockets-related exit points has been added.
NOTE: Insite Users: If you intend to use the HelpSystems Insite Web UI along with Network Security, go to HelpSystems Insite Downloads and follow the accompanying Insite installation instructions. Insite version 1.15 is required in order to use Network Security 7.15's socket-related features.
- Socket Rules and Conditions can be configured to accept or reject socket transactions for the QSOLISTEN, QSOCONNECT, and QSOACCEPT servers.
- Multiple Socket Rule Conditions are evaluated according to a preferred sequence.
- Socket Rules can be tested to ensure correct behavior on the system before they are activated.
- Reports have been enhanced to support reporting of socket activity.
- For more information, see Socket Rules (green screen) and Socket Rules (Insite web UI).
Accompanying Central Administration Updates
- Auditing strategies have been added to support auditing of Socket Rules.
- Better handling of damaged objects. A change was made so objects that are known to occasionally become damaged (User Index; Data Queue) are better handled. Where possible the product has been changed so that it self corrects these situations.
- Error RNX0100 when running Event Reports has been resolved.
- Exit point programs no longer change the job’s library list to include the Central Administration and Network Security libraries without removing them. (This was particularly an issue with FTP, since FTP can be done in an interactive job leaving the library list changed until sign off.)
- Secure Screen:
- A problem causing Secure Screen Monitor to fail with MCH3401 has been resolved.
- Inability to Edit/Copy/Display in the Secure Screen Filter has been resolved. (Previously, a screen defect was causing options 2 (Edit), 3 (Copy), and 5 (Display) to always bring up the last item in the list instead of the selected one.)
- Error "Object (sbsd) in library *LIBL not found" has been resolved. (Previously, when adding a secure screen filter, if you prompted for an *SBSD entry and selected one not in your job’s library list (PTWRKMGT for example), the entry would not be added with the following error displayed: "Object PTWRKMGT in library *LIBL not found".)
Accompanying Central Administration Updates
- Better handling of damaged objects. Objects that are known to occasionally become damaged (User Index; Data Queue) are better-handled. Where possible, the product has been changed so that it self-corrects in these situations.
- The Central Administration product library (PTPLLIB) is permanently placed in a job’s library list when a profile is created, changed, or deleted. A job’s library list is now returned to its original state after Central Administration processes a user profile function that was processed by the product’s exit point programs.
- A problem causing inactivity of the monitor job (without visible errors) has been resolved. The PPLCMNSVR monitor job had a built-in feature that was acknowledging the QSTGLOWLMT system value. That feature was added to better handle an Operating System defect that existed in some base Operating System releases. The PTF that addresses this defect is now included in all base Operating System releases negating the need for this built-in feature, which has been removed.
- Event processing and integrity improvements.
- Entering the History Browser no longer results in Message ID CPF2419 and/or CTL0001 in the job log. The CPF2419 message typically appeared when an end point system running Network Security existed in a different library than that of the Management System (i.e. manager using PTNSLIB and end point using PTNSLIB07).
- A problem causing the PPLCMNMON monitor job to remain inactive (with log ID T410012) has been resolved. The PPLCMNMON monitor job was unable to start due to the /tmp directory being so large that the Unix stat function failed with error “Object is too large to process.” The stat function has been replaced with stat64, which is specifically designed to handle larger objects.
- Shared Policies. A group of servers can now be checked for compliance against a single shared policy.
- Applying FixIt after selecting all script policies no longer results in an error.
- Tooltip errors have been resolved.
- 'Greater than' and 'less than' characters (<>) in the policy's name/description no longer cause an incorrect title.
- Edit has been added on the maintenance panel to allow mixed case (true, false, yes, or no) for the Boolean data type.
- Headers for groups of attributes are now more apparent.
- Missing report names have been corrected.
- A CentOS user account policy error has been resolved.
- System requirement errors in the documentation have been fixed.
- The drop-down menu to select the date now defaults to the current month.
- On a server the field for "ssh Port" now allows a value in the range 1-56645 (not 1 - 9999).
- The server OS listing is now alphabetical.
- An import "File not found" error has been resolved.
- After installation, startup.pm no longer fails as it attempts to use path /bin/java.
- The "Compliant" status shown on the "Fixit" server selection tab is now correct.
- There is now help defined for the email server configuration tab.
- Deleting a Group with a name that includes a quote or apostrophe no longer errors with 'Name is null'.
- A login failure now returns a specific reason login failed.
- The install process now specifies the "auto" JVM option in order to use the default JVM from the server.
- Sudo info is no longer only written to /etc/sudoers file (even when an alternative sudoers file is given).
- The process of adding a server using the sudo method has been improved.
- Disabling CheckIt for Configuration policies no longer yields different results depending on how its initiated.
- In the Create Reports Options panel, changing the format from PDF to CSV now changes the file extension.
- The Owner, Group, Permissions, and Checksum attributes have been added to the Exported Directories Compliance report.
Long Script Descriptions no longer disrupt the page layout so that the text is difficult to read.
Introducing Security Scan for AIX
Security Scan is a complimentary tool now offered by HelpSystems to help raise awareness of the most common security exposures on AIX. It uses important CIS (Center for Internet Security) benchmarks to establish whether or not security guidelines are in place. The scan results provide a summary of potential security risks, along with detailed information about specific security requirements. Security Scan also provides helpful information about what is at risk, and how to improve overall system security.
Scan and report from the convenience of your windows desktop. Nothing is left behind on the server after scanning.
A system scan offers insight into specific areas of potential improvement, including:
- Password Policy - Guidance on the configuration of the password policy. This includes recommended length, complexity, reuse, and expiration.
- Login Policy - Guidance on the configuration of the system login policy including login timeouts, delays, and remote root access.
- System Services - Helps reduce the number of running services down to those which are core to the common functions of a UNIX server.
- Secure Remote Access - Aids with installation and configuration of SSH to ensure that the preferred security recommendations remain constant over time.
- Permissions and Ownership - Provides assistance locking down access to specific key configuration files, log files, and directories.
- Added new Alert Audit Category of *EKMGR to monitor for events related to External Key Managers.
- Added a new field Alternate Server Host(ALTSRVHST) in the ADDEKM, CHGEKM and DSPEKM commands. This new field will hold the alternate host to use when trying to connect to an external key manager to retrieve a key.
- Minor, cosmetic changes to the display of the product name on screen.
- The System Identity field has been added to the SNMP traps
- You can now pull up managers that were created with symbolic links using the MQSeries Manager Selector Prompt
- No updates for this release.
- After enabling the 'Daylight Saving Time automation' field in System Defaults, you will no longer be required to end/restart your Schedule jobs before Daylight Savings Time.
- A command has been added that allows you to copy dates from one calendar to another.
- The performance of user job tracking in the ROBOTSBMJ job has been improved.
- Jobs with a completion history with a different system name than the system name in product master can now be deleted.
- Group membership information in the Job Status report is now correct when there are two jobs with the same job number.
- A parameter called 'Prerequisite user jobs only' has been added to the RBTINSSBM command that allows you to track only user jobs that are defined as a prerequisite to a robot job.
Robot Schedule Enterprise
- Fixed an intermittent authentication issue on Linux.
- Minor, cosmetic changes to the display of the product name on screen.
Robot System Library
Version: 1.97 (170724)
A System Identifier field has been added to RSL900 (RSLDFT2).
Shift amount must be between 8K and maximum minus minimum.
- In event thresholds, the 'Size is over' field was changed to allow for the selection of a data size.
- A new event threshold was added to check for 'Records over'.