Monthly Release Notes - December 2020

Jump to:

Core Security


Core Impact

Version: 20.3

Dec 15, 2020

Enhancements
  • Loading workspaces, hosts and identities is now 5x faster.

  • Impoved performance in the hostname resolution process while running Information Gathering over a network.

New Features
  • Added database maintenance tasks scheduled to run every day to maintain its performance.

  • Deploy to drives other than C:\

    • Use the custom path installation option to select another drive or directory where to install the product.

  • Added module "Run Shellcode in Temporary Process" to allow users to deploy Cobalt Strike beacons or their own custom code from an Impact agent.

  • The "Package and Register Agent" module can be used to deploy Impact agents through the Cobalt Strike attack chain.

Other Fixes
  • WebApplications Attack & Penetration was not comitting vulnerabilities in "A6-Detect Known Security Misconfiguration Issues".

  • The Module Output of ClientSide Phishing didn't load all rows in the events table.

  • Network Information Gathering was misidentifying services behind RDP port and rollbacking OS fingerprinting.

  • SMB credentials were not commited when running ClientSide Phishing attacks.

Core Network Insight

Version: 7.1.2

Dec 16, 2020

Enhancements
  • The asset details page has been improved with the addition of a summary of the detections found in the asset, threat remediation steps, and, extended threat information ensuring the correct analysis and remediation of it.

  • The threat details page has been improved to ensure that the threat information is helpful and helps with the correct analysis and remediation of it.

New Features
  • The home dashboard has been rebuilt to better display the current status of the threat landscape in the environment and to ensure that the security analysts can prioritize their work in order to reduce the threats dwell time and the impact in the business.

Other Fixes
  • Solved an issue with network cards not fully compatible with the new XDP Linux kernel feature triggering a failure in the packet sniffer. [CAS-0010230162]

  • Long latency on login process when at least a sensor was down. [CAS-0010230036]

  • Solved an issue with network cards not fully compatible with the new XDP Linux kernel feature causing a problem in the packet loss diagnostic charts that were showing 100% packet loss. [CAS-0010230268]

  • config_backup output too large issue was corrected. [CAS-0010213295]

  • The infections chart in Executive Report page had a wrong scale definition and it seemed that the data was always 0. The issue has been corrected in this version.

  • An email on user creation, when a password is set, is not sent anymore avoiding unnecessary password resets.

Access Assurance Suite (AAS)

Version: 9.3.1

Dec 18 2020

Access Assurance Suite Enhancements
  • The Access Assurance Suite includes support for Microsoft Edge browser.
  • The Initial Configuration Manager performs a valid access key check for each workflow.

  • The Initial Configuration Manager handles the Equal To (=) character in the SQL Password.

  • Initial Configuration Manager sets the Access Assurance Portal AD login user value in the database schema corectly.
Access Assurance Portal Enhancements
  • Access Assurance Portal service account specified in the Connection Client Configuration Wizard does not need to belong to the local administrator group. The service account does require Full Control permissions on the WebSocket folder.
  • In the Access Assurance Portal, the menu bar is updated to show a default icon (if not specified) for the new parent menu added.
  • In the Access Assurance Portal, the Parent Menu items in the menu bar can be rearranged as needed by assigning appropriate weights in the menu.xml file.
  • The Admin Manager menu item now opens Administration Manager with the Copy and Paste feature enabled.
  • The Password menu on the menu bar now includes a Profile Management menu item
  • The %Get LoggedInTargetName% and %Get LoggedInUniqueIDMacro% macros are updated to get the TargetID using the %Custom Macro.SQL.GlobalConfigValues.ActiveDirectoryTargetID% macro.
  • The menu bar in the Access Assurance Portal is updated to show the large logo correctly.
  • The menu bar in the Access Assurance Portal correctly shows long menu names.
The Data Management Feature Enhancements
  • Data Management improved the performance of collection rule execution when more than 100k records are collected.

  • The Identity Mapping process is updated to not execute disabled rules.

Enhancements to the Provisioning Platform
  • Custom Macro.JS.DerivedUsername macro in follwoing workflow are updated to get the TargetID using the %Custom Macro.SQL.GlobalConfigValues.ActiveDirectoryTargetID% macro

    • Automate_Add

    • Automate_Change

    • Automate_Conversion

    • Automate_Delete

    • Automate_Rehire

    • Automate_Terminate

    • XMLAOProvisioning

  • Upgraded jQuery Version to 3.5.1 to enhance the security.

  • Identity Map screen in workflow is updated to show Select All/Deselect All buttons, which will allow users to select/deselect all the identities on the visible page.

  • Updated Profile Management workflow summary page to show a correct message when the profile registration fails.

Core Compliance Enhancements
  • Manage Certification review cycle page user interface was updated to be more intuitive perform better.

  • My Certifications list page:
    • Summary bar is improved to present overall certification review cycle information.

    • “% Complete” column is renamed to “Progress” and includes a progress bar as well as the percent complete.

    • More flexible column sorting and filtering.
  • Review Cycle page:
    • A back button added to return to the list of certifications.
    • A new Progress bar is introduced for the end-user to view the status of the review cycle and to filter the current decision status with a single click.
    • More flexible column sorting and filtering.
    • Bulk comment functionality is introduced for any decisions that require a comment.
    • Actions column is replaced with the menu-based selection for per row decision selection.
    • New approach for detail view:
      • Detail view is displayed in a popup window with decision buttons available.
      • Detail view is configurable in the ‘CustomUserControlConfiguration’ column in the CertificationTypeDetailView table.
    • A Preferences button is added to select the columns to hide in the review cycle display.
    • A new macro “Restrictions.Access Certification Reassignee Profile Search” is added to restrict the profile search the reassignee.
    • The functionality supplied by the previous Expand All\Collapse All buttons is now available in a single button that toggles between Expand All and Collapse All.
  • The old interface is accessible if needed, change the global config value for “ShowOldMyCertificationPage” to true in Global Options.
Core Access Enhancements
  • Manage Access improvements include:
    • Available and Current access panels display long entitlement descriptions better.
    • Current Access panel modified to stop showing unnecessary paging.
  • Approve and View Requests improvements include:
    • Search Filters are updated to perform a search as search parameters are entered. There is no need to click on the Search icon..
    • Global Config value "AllowAttributeValueEditingOnApproval" is now being honored. An approver can modify the entitlement's attribute value depends on the setting.

  • Some stored procedures are updated to align consistent data sizes with the database schema.

Other Fixes
  • AAS resolved potential vulnerability associated with responses exposing software version numbers.

Event Manager

Version 6.5.0.30000

Dec 21, 2020

New Features
  • All possible values for columns Action, SubAction, Operator Category, User Category and Object Category are now displayed for column filters in the Event Manager and Forensic Analysis grids. Previously you would see only values from existing security events.

  • An 'out-of-the-box' template for Azure Active Directory has been made available.

  • An 'out-of-the-box' template for Azure Exchange Online has been made available.

  • An 'out-of-the-box' template for Microsoft Teams has been made available.

  • Event Manager now provides security and compliance monitoring for data hosted in the Microsoft 365 environment.

  • This release adds the ability to monitor file integrity for Windows, adding this capability to those already available for Unix, Linux, AIX and IBM i.

Enhancements
  • An 'out-of-the-box' template to audit SAP Adaptive Server Enterprise (formerly Sybase) has been made available.

  • Backup and Restore databases actions have been added to the SQL Server 'out-of-the-box' template.

  • Trace improvements have been made to detect necessary attributes not found when triggering application errors.

  • Fixed a bug that did not allow the pasting of contact mail in notifications configuration.

  • Windows User inactivity detection has been improved with 'Expired account' information.

  • It is now possible to use long passwords in credentials.

  • The Axis2 library versions 1.5 and 1.6.1 have been upgraded to version 1.7.9. This library is used in HelpSystems - Orchestrator Idx and HelpSystems - ThinkServer Java System i Server modules.

  • The full Job Name is now displayed in Additional Info 2 on IBM i Audit events coming from VMC.

  • Event Manager now provides the ability to group events using multiple variables and add summary charts to make it easier to detect anomalies or threats.

  • It is no longer possible to delete an asset with non-templatized monitors (manually created from ThinkServer configurator).

  • It is no longer required to input the user password while scheduling reports.

  • It is now possible to assign an event to "Me" without the need of having this user explicitly created in the product.

  • It is now possible to choose whether to use an encrypted connection to the product databases during the installation process.

  • JSON events are now formatted when displayed in the Event Details- Event Manager page.

  • Outbound alert integrations with Solarwinds Web Help Desk and Dynatrace have been made available.

  • Reorganizing of indexes, included in the maintenance process, will only be executed at weekends to avoid affecting production hours.

  • The Events Maintenance process is now five times faster.

  • The product now uses an OpenJDK JRE version.

  • This release provides the ability to manually add values to the grids (Event Manager and Forensic Analysis) columns possible values list on the column headers.

Other Fixes
  • Some configuration changes in Vityl It and Business Monitoring took too much time to apply because there were an internal #RECOVERY_OPERATIONS_FULL_SYNCHRO# request in process. This has been fixed.

  • Syslog messages without priority were not being correctly parsed. This has been fixed.

  • An error where some syslog messages from CEF monitors that had non-English characters couldn't be correctly parsed has been fixed.

  • After upgrading to v6.4, there were some cases where the Scheduler Service couldn't start. This has been fixed.

  • After upgrading to version 6.4 from previous versions some old files could remain forever in ThinkServer\transient folder and errors "invalid vector<T> subscript" could appear in ThinkServer\logs\T4BDSR.log. This has been fixed in this release.

  • ThinkServer module monitors remained in Unknown status instead of returning proper health status if there were multiple "MaxThreads" DataSources of the same Type. This has been fixed.

  • Multiple scroll bars were shown when switching rapidly between monitors. This has been fixed.

  • The installation process has been improved to force a restart if it is pending after an automatic Windows Update.

  • Fixed a memory leak in the SmartConsole Module.

  • Fixed access to category rules in environment with custom types.

  • The number of events was not properly displayed in the 'By control' summary in Event Manager. This has been fixed.

  • Custom DataSource Subaction Regular Expression Filters were case sensitive. This has been fixed.

  • Event Manager Inspector module crashed (and generated a dump) when connection with DB was lost. This has been fixed.

  • Incorrect active users were appearing when there were multiple domain controllers in the same domain and last logon date was not synchronized. This has been fixed.

  • SQL Server Datasource Configuration now allows an empty path for traces directory.

  • It is now possible to create new calendar range sets with the required name.

  • AccessServer maintenance could report an error when trying to resolve extremes. This has been fixed.

  • Windows "Logon failed" events due to an account lockout were not correctly reported: the reason (account lockout) was missing. This has been fixed.

  • Charts could have missing data for current intervals if lots of errors "Query timeout expired" were returned to HelpSystems - PMB service from SQL Server. These errors were located in PMDB log files. This has been fixed.

  • There was a problem when trying to change AccessServer service port number. This has been fixed.

  • If you changed your tenant name monitors from Event Manager, audited assets still saved events with old tenant name. This has been fixed.

  • The ability to exclude groups from requests when creating file ServiceExcluded.ndx in folder \YellowPages\bin\cache with the same format as Service.ndx file has been added to prevent the User Directory Service from crashing.

  • Event Manager User Account Inactivity events sometimes did not retrieve the user domain. This has been fixed.

  • SelfMonitoring monitor for "SmartConsole Outdated" Assets control could fail with monitoring error "...Parsing regular expression ...". This has been fixed in this release but if upgrading from v6.4 to this release, a manual fix is required.

  • The C++ vulnerability has been fixed in this release (CVE-2-12-6151).

  • The 'Improper Restriction of Rendered UI Layers or Frames' vulnerability has been corrected. Clickjacking attacks are now prevented (CWE-1021).

  • Exposure of Sensitive Information to an Unauthorized Actor vulnerability has been fixed. The detailed version information exposure has been turned off (CWE-200).

  • The 'Generation of Error Message Containing Sensitive Information' vulnerability has been fixed. The stack trace has been removed from all the product error messages (CWE-209).

  • The 'URL Redirection to Untrusted Site' ('Open Redirect') vulnerability has been fixed (CWE-601).

  • Sensitive Cookie in HTTPS Session Without 'Secure' Attribute vulnerability has been fixed. Secure flag has been set with all sensitive cookies (CWE-614).

  • Improper neutralization of HTTP Headers for Scripting Syntax vulnerability has been fixed. Secure Headers have been added to all the http responses following the OWASP directives (CWE-644).

  • The 'Improper Neutralization of Input During Web Page Generation' ('Cross-site Scripting') vulnerability has been fixed (CWE-79).

  • Every character from user input is now validated to avoid potential problems.

  • HelpSystems SmartConsole Messenger module had a handles leak. This has been fixed.

  • Insite Event Manager - Events Analysis could show inconsistent data across different charts. This issue has been fixed.

  • Maintenance for Historical or Archive Events Database could fail if database tables were deleted manually without restarting "HelpSystems - Database Maintenance" windows service. Tables are now recreated before the Maintenance for Events Database is run.

  • Maintenance performance has been improved when you have many annotations and other considerations.

  • Multiple OpenSSL vulnerabilities have been fixed in this release.

  • Renaming a Tenant to a previously existing name generates an error: "Tenant name already exists". This has been fixed.

  • ThinkServer module could have a large consumption of memory if the monitors generated messages of large size which would eventually lead to a ThinkServer module crash. This has been fixed.

  • Users or Groups with blank spaces in their name were not supported. Some features, for example, Security User Permissions, did not work properly. This has been fixed.

Back to Top

 

IBM Partnership


Backup, Recovery, and Media Services (BRMS)

Version: PTF 7.4 SI74479, 7.3 SI74478, 7.2 SI74477

Dec 11, 2020

Enhancements

In version 7.2 and later:

  • BRMS SQL Services now give users the option to view, order, and subset the BRMS log information.
  • BRMS network sync job has been enhanced to improve performance by reducing the number journal entries processed.

Other Fixes

In version 7.2 and later:

  • In 7.2 and later, the BRMS network sync job QBRMSYNC in subsystem Q1ABRMNET is running slow with messages MSGCPF5009 and MSGCPF5026.

  • In 7.2 and later, WRKSPLFBRM with SLTDATE(*BEGIN) does not show all the spooled files.

  • In 7.2 and later, DSPLOGBRM command using fewer MSGID parameters than the previous DSPLOGBRM command in the same job incorrectly displays the same output.

  • In 7.2 and later, STRRCYBRM with parameters ACTION(*RESTORE) OMITLIB(*DELETE) may incorrectly list deleted libraries on the recovery report.

  • In 7.2 and later, *ALLPROD *CUM backup using MONSWABRM may fail with MSGMCH3402.

  • In 7.2 and later, INZBRM OPTION(*FLASHCOPY) STATE(*ENDPRC) incorrectly starts the BRMS enterprise subsystem Q1ABRMENT and logs MSGBRM1917 when the BRMS Advanced and Network features are not installed.

  • In 7.2 and later, CHKPRDOPT PRDID(5770BR1) incorrectly changes the authorities on the BRMS SQL service objects.

  • In 7.2 and later, backup of BRMS object list with library Q* fails with MSGCPF387 and MSGBRM1820.

PowerHA SystemMirror for IBM i

Version 7.4 HA 4.2.2, PTF SI74865 (plus Language PTFs)

Dec 17, 2020

New Features
  • Simplified deployment of PowerHA:

    • The Create Cluster CRTCLU command now honors the start indicator (START) parameter even when more than one node is specified and now adds all nodes to a device domain by default.

    • The Create Cluster Administrative Domain (CRTCAD) command has been improved to accept *ALL for node name, will configure recommended policies, and automatically start the newly created administrative domain.

    • Automatic creation of an ASP device description on required nodes when using the CRTCRG, ADDCRGDEVE and ADDCRGNODE commands.

    • Simplified configuration of geographic mirroring combining transmission delivery and mirroring mode into a single, tunable parameter.

  • PowerHA Health Monitoring Dashboards.

  • PowerHA SQL services for session information provide the ability to explore PowerHA objects and data in new ways. The following new services are available:

    • QHASM.Session_List View

    • QHASM.Session_Info Table Function

  • Visibility of real-time Recovery Point Objective (RPO) information for geographic mirroring with the new round-trip time field on the Display ASP Session (DSPASPSSN) displays.

  • Configure firewall security and Quality of Service (QoS) in a Geographic Mirroring environment easily with the ability to specify a port number used by Geographic Mirroring.

  • New *ALL option on the STRCLUNOD command offers the ability to attempt to start all inactive cluster nodes.

Enhancements
  • For ease of use, the cluster parameter is no longer a required parameter on many cluster, device domain, administrative domain, and CRG commands.

  • Improved F4 prompting with choices that are customized to the environment and status available on many cluster, device domain, administrative domain and CRG commands.

  • Work with Cluster (WRKCLU) menu simplification combines options 1 and 2 and options 6 and 7.

  • Display HyperSwap Status (DSPHYSSTS) now supports 132 column display eliminating the need for F11.

  • Simplified ability to update SVC copy description LUN ranges by allowing CHGSVCCPYD when an active Metro Mirror or Global Mirror session exists, along with improved error messages when a FlashCopy session exists.

  • When user profiles and authorization lists are added to the admin domain via *ALL or generic wildcards on the ADDCADMRE command, PowerHA attempts an automatic re-synchronization of inconsistent monitored resources.

  • Improved support for DS8000 FlashCopy in combination with DS8000 Global Mirror enabling multiple target side FlashCopy, Persistent source side FlashCopy, and switchovers and failovers when DS8000 FlashCopy sessions are active.

  • Several enhancements to IBM Spectrum Virtualize (SVC) based FlashCopy including:

    • Improved SVC Consistency group names when *GEN is used on STRSVCSSN which names the consistency group using environment information.

    • The cleaning rate for SVC based FlashCopy now is set always to be a value greater than zero to prevent a hang with an ENDSVCSSN due to multiple dependent FlashCopies.

    • An error message is returned for SVC incremental FlashCopy with a copy rate of 0. Using a copy rate of 0 is not supported for incremental FlashCopy sessions preventing a FlashCopy session that can never be incremented

    • PowerHA now gives a more descriptive error message if the FlashCopy source and target node are the same.

    • When disk units do not enlist properly in an SVC FlashCopy environment, the STRSVCSSN command now completes with errors rather than indicating it completed successfully.

  • PowerHA logging improvements including reducing the maximum log file size.

  • The PowerHA health check frequency has been increased to now run at 15 minute intervals.

  • Documented configuration for shadowing the system distribution directory in a PowerHA environment.

Other Fixes
  • Eliminated the requirement to press Enter twice when prompting on the Change CSM Session (CHGCSMSSN) command.
  • Removed duplicate target vary state column from DSPCSMSSN OUTPUT(*PRINT).
  • Added missing CRG Exit Point Operation Pending status to PowerHA help text.
  • Improved the order of internet address and key file parameters to be consistent between the ADDSVCCPYD command and DSPSVCCPYD command.
  • The URL for the PowerHA wiki has been updated in the PowerHA help text to point to the new wiki location.
  • In certain unplanned failover operations after a cluster partition could result in message CPFBB17 preventing the failover. This has been improved to no longer encounter this error with failover after a cluster partition.
  • During CRG operations the QHASVR job could end due to a lock conflict with the CRG. PowerHA has been improved to retry the operation once the lock is released.
  • In certain instances if an SVC FlashCopy session is started using *GEN for either the consistency group or reverse consistency group parameters and a subsequent ENDSVCSSN uses the option to not delete the consistency group, PowerHA was leaving orphaned consistency groups on the storage. PowerHA now always cleans up generated consistency groups.
  • ENDSVCSSN now properly cleans up FlashCopy mappings even if the consistency group is already stopped.
  • A timing issue in STRSVCSSN for FlashCopy has been resolved where PowerHA did not wait for the consistency group to enter the copying state before continuing on.
  • STRSVCSSN for FlashCopy has been improved to clean up incomplete FlashCopy mappings when startfcconsistgrp fails reducing the need for manual cleanup on the storage controller.
  • Previously if a user attempted to work with configuration objects on a non-device CRG, locks were left on panel group QGHAWRKPNL, these locks are now properly released.
  • Several messages have been translated.
  • Eliminated the need to grant *CHANGE authority to the QUSRHASM library for users of PowerHA commands. Previously this resulted in HAE00A - All cluster command user spaces busy or Not authorized to use library QUSRHASM.
  • Resolved an MCH3601 that could occur on DSPASPSSN for geographic mirroring if the disk units for an ASP device were missing.
  • The unused ASPCPY parameter has been removed from the CHGASPSSN command. Any existing CL programs that specified the ASPCPY parameter on the CHGASPSSN command may require modification.
  • FLVRVSREPL, the failover reverse replication parameter has been deprecated, affecting the following commands:
    • Start ASP Session (STRASPSSN)
    • Change ASP Session (CHGASPSSN)
    • Start SVC Session (STRSVCSSN)
    • Change SVC Session (CHGSCVSSN)
    Existing CL programs that use the failover reverse replication parameter may require modification.
  • Because the mirroring mode parameter (MODE) was removed, the following commands are affected:
    • Configure Geographic Mirroring (CFGGEOMIR)
    • Start ASP Session (STRASPSSN)
    • Change ASP Session (CHGASPSSN)
    Any existing CL programs that use the MODE parameter may require modification.
  • The source site (SRCSITE), and target site (TGTSITE) parameters were removed from the Configure Geographic Mirroring (CFGGEOMIR) command. Any existing CL programs that use the removed parameters may require modification.

NOTE: PTF update SI74865 requires one or more associated language PTFs. To determine if additional languages you have installed in your environment require a requisite MRI PTF, consult the table of language PTFs in the release cover letter at IBM Support.
Version 7.2/7.3 HA 3.5.0, PTF SI74921 (plus Language PTFs)

Dec 17, 2020

New Features
  • Simplified deployment of PowerHA:

    • The Create Cluster CRTCLU command now honors the start indicator (START) parameter even when more than one node is specified and now adds all nodes to a device domain by default.

    • The Create Cluster Administrative Domain (CRTCAD) command has been improved to accept *ALL for node name and automatically start the newly created administrative domain.

    • Automatic creation of an ASP device description on required nodes when using the CRTCRG, ADDCRGDEVE and ADDCRGNODE commands.

    • Simplified configuration of geographic mirroring combining transmission delivery and mirroring mode into a single, tunable parameter.

  • PowerHA Health Monitoring Dashboards.

  • PowerHA SQL services for session information provide the ability to explore PowerHA objects and data in new ways. The following new services are available:

    • QHASM.Session_List View

    • QHASM.Session_Info Table Function

  • Visibility of real-time Recovery Point Objective (RPO) information for geographic mirroring with the new round-trip time field on the Display ASP Session (DSPASPSSN) displays.

  • Configure firewall security and Quality of Service (QoS) in a Geographic Mirroring environment easily with the ability to specify a port number used by Geographic Mirroring.

  • New *ALL option on the STRCLUNOD command offers the ability to attempt to start all inactive cluster nodes.

Enhancements
  • For ease of use, the cluster parameter is no longer a required parameter on many cluster, device domain, administrative domain, and CRG commands.

  • Improved F4 prompting with choices that are customized to the environment and status available on many cluster, device domain, administrative domain and CRG commands.

  • Work with Cluster (WRKCLU) menu simplification combines options 1 and 2 and options 6 and 7.

  • Display HyperSwap Status (DSPHYSSTS) now supports 132 column display eliminating the need for F11.

  • Simplified ability to update SVC copy description LUN ranges by allowing CHGSVCCPYD when an active Metro Mirror or Global Mirror session exists, along with improved error messages when a FlashCopy session exists.

  • Improved support for DS8000 FlashCopy in combination with DS8000 Global Mirror enabling multiple target side FlashCopy, Persistent source side FlashCopy, and switchovers and failovers when DS8000 FlashCopy sessions are active.

  • Several enhancements to IBM Spectrum Virtualize (SVC) based FlashCopy including:

    • Improved SVC Consistency group names when *GEN is used on STRSVCSSN which names the consistency group using environment information.

    • The cleaning rate for SVC based FlashCopy now is set always to be a value greater than zero to prevent a hang with an ENDSVCSSN due to multiple dependent FlashCopies.

    • An error message is returned for SVC incremental FlashCopy with a copy rate of 0. Using a copy rate of 0 is not supported for incremental FlashCopy sessions preventing a FlashCopy session that can never be incremented

    • PowerHA now gives a more descriptive error message if the FlashCopy source and target node are the same.

    • When disk units do not enlist properly in an SVC FlashCopy environment, the STRSVCSSN command now completes with errors rather than indicating it completed successfully.

  • PowerHA logging improvements including reducing the maximum log file size.

  • The PowerHA health check frequency has been increased to now run at 15 minute intervals.

  • Documented configuration for shadowing the system distribution directory in a PowerHA environment.

Other Fixes
  • Eliminated the requirement to press Enter twice when prompting on the Change CSM Session (CHGCSMSSN) command.
  • Removed duplicate target vary state column from DSPCSMSSN OUTPUT(*PRINT).
  • Added missing CRG Exit Point Operation Pending status to PowerHA help text.
  • Improved the order of internet address and key file parameters to be consistent between the ADDSVCCPYD command and DSPSVCCPYD command.
  • The URL for the PowerHA wiki has been updated in the PowerHA help text to point to the new wiki location.
  • In certain unplanned failover operations after a cluster partition could result in message CPFBB17 preventing the failover. This has been improved to no longer encounter this error with failover after a cluster partition.
  • During CRG operations the QHASVR job could end due to a lock conflict with the CRG. PowerHA has been improved to retry the operation once the lock is released.
  • In certain instances if an SVC FlashCopy session is started using *GEN for either the consistency group or reverse consistency group parameters and a subsequent ENDSVCSSN uses the option to not delete the consistency group, PowerHA was leaving orphaned consistency groups on the storage. PowerHA now always cleans up generated consistency groups.
  • ENDSVCSSN now properly cleans up FlashCopy mappings even if the consistency group is already stopped.
  • A timing issue in STRSVCSSN for FlashCopy has been resolved where PowerHA did not wait for the consistency group to enter the copying state before continuing on.
  • STRSVCSSN for FlashCopy has been improved to clean up incomplete FlashCopy mappings when startfcconsistgrp fails reducing the need for manual cleanup on the storage controller.
  • Previously if a user attempted to work with configuration objects on a non-device CRG, locks were left on panel group QGHAWRKPNL, these locks are now properly released.
  • Several messages have been translated.
  • Eliminated the need to grant *CHANGE authority to the QUSRHASM library for users of PowerHA commands. Previously this resulted in HAE00A - All cluster command user spaces busy or Not authorized to use library QUSRHASM.
  • Resolved an MCH3601 that could occur on DSPASPSSN for geographic mirroring if the disk units for an ASP device were missing.
  • The unused ASPCPY parameter has been removed from the CHGASPSSN command. Any existing CL programs that specified the ASPCPY parameter on the CHGASPSSN command may require modification.
  • FLVRVSREPL, the failover reverse replication parameter has been deprecated, affecting the following commands:
    • Start ASP Session (STRASPSSN)
    • Change ASP Session (CHGASPSSN)
    • Start SVC Session (STRSVCSSN)
    • Change SVC Session (CHGSCVSSN)
    Existing CL programs that use the failover reverse replication parameter may require modification.
  • Because the mirroring mode parameter (MODE) was removed, the following commands are affected:
    • Configure Geographic Mirroring (CFGGEOMIR)
    • Start ASP Session (STRASPSSN)
    • Change ASP Session (CHGASPSSN)
    Any existing CL programs that use the MODE parameter may require modification.
  • The source site (SRCSITE), and target site (TGTSITE) parameters were removed from the Configure Geographic Mirroring (CFGGEOMIR) command. Any existing CL programs that use the removed parameters may require modification.

NOTE: PTF update SI74921 requires one or more associated language PTFs. To determine if additional languages you have installed in your environment require a requisite MRI PTF, consult the table of language PTFs in the release cover letter at IBM Support.

Back to Top

 

Insite


Version 3.05.01

Dec 17, 2020

  • Fixed issue with "Widget height too small. Please Adjust." error on dashboards.

  • Fixed issue with links in title widgets not opening when clicked.

  • Fixed issue with creation of new title widget that links to another dashboard.

Back to Top

 

Powertech


BoKS Web Services Interface

Version 8.0.0.2

December 21, 2020

  • CAS-0010225587: Cannot clear access rule modifiers

  • Fix for problem where certain list attributes could not be cleared.

    The following functions/attributes have been fixed:

    • modifyUserAccessRule: programArgs, modifiers

    • modifyUserClassAccessRule: programArgs, modifiers

    • modifyAccessPolicy: programArgs

    • modifyDomainParameters: pswHashFuncAcc, pswHashUserAcc

  • Update of dependencies.

Version 7.2.0.3

December 21, 2020

  • CAS-0010225587: Cannot clear access rule modifiers

  • Fix for problem where certain list attributes could not be cleared.

    The following functions/attributes have been fixed:

    • modifyUserAccessRule: programArgs, modifiers

    • modifyUserClassAccessRule: programArgs, modifiers

    • modifyAccessPolicy: programArgs

    • modifyDomainParameters: pswHashFuncAcc, pswHashUserAcc

  • Update of dependencies.

Back to Top

 

Robot


Robot Network

Version 13.00

Dec 7, 2020

  • Robot Network can now be installed in an IASP.

  • RBTUSER no longer requires *IOSYSCFG special authority.

  • Fixed issue with conversion failing with CPF4AA7 – Password Value not valid.

  • Installer updated to include iasp

Robot Replay

Version 3.31

Dec 14, 2020

  • Updated license agreement.

Version 3.30

Dec 7, 2020

  • Fixed issue with Replay job failing on CPF5192 - Data sent to device not valid.

Robot Schedule

Version 13.08

Dec 7, 2020

  • Updated license agreement.

Back to Top

 

Tango/04


Vityl IT & Business Management

Version 6.5.0.30000

Dec 21, 2020

New Features
  • This release provides the ability to generate reports from data to keep track of past situations or present them to other stakeholders.

  • Vityl IT & Business Monitoring now provides 'out-of-the-box' pre-built views to manage and filter your IT Infrastructure. These views make it fast and simple to navigate through the assets. User views are also available to provide the vision each user needs for the assets.

  • With this release it is possible to integrate the alerts from your cloud applications and systems into Vityl IT and Business Monitoring and control all your IT assets in cloud, on premise or on hybrid environments.

Enhancements
  • Vityl IT & Business Monitoring assets in Event Manager, which are used to integrate "Vityl" issues into Event Manager, have a new attribute "Exclude Issues not affecting the asset core" made available.

  • A new physical memory control has been made available on AIX servers.

  • Trace improvements have been made to detect necessary attributes not found when triggering application errors.

  • After deleting an asset in Orchestrator web, the grid page was still maintained. This has been fixed.

  • Performance of VMWare vCenter Server application monitorization has been improved so that CPU usage has been reduced by about 50-70%.

  • Changed the "Send summary status notification when the activity resumed" attribute default from false to true for Vityl IT Assets in notification settings. With this attribute enabled a summary notification is sent when an asset exits from an maintenance period.

  • A free space check has been added to the Oracle Tablespaces availability control.

  • It is now possible to use long passwords in credentials.

  • Criticalness configuration can now be customized for the Windows Event Log generic control.

  • The Axis2 library versions 1.5 and 1.6.1 have been upgraded to version 1.7.9. This library is used in HelpSystems - Orchestrator Idx and HelpSystems - ThinkServer Java System i Server modules.

  • The API version has been updated on the requests from Azure metrics.

  • Criticalness configuration can now be customized for Integrated Controls.

  • IBM i system connections can now be configured outside the Windows Interactive session from the HelpSystems settings configurator.

  • It is no longer possible to delete an asset with non-templatized monitors (manually created from ThinkServer configurator).

  • It is no longer required to input the user password while scheduling reports.

  • It is now possible to choose whether to use an encrypted connection to the product databases during the installation process.

  • Reorganizing of indexes, included in the maintenance process, will only be executed at weekends to avoid affecting production hours.

  • The Events Maintenance process is now five times faster.

  • The product now uses an OpenJDK JRE version.

  • Virtual Memory, Handles and Threads metrics have been added to Windows Processes.

  • Vityl IT & Business Monitoring for Linux and Unix systems can use a user, private key file and a passphrase for authentication.

Other Fixes
  • Some configuration changes in Vityl It & Business Monitoring took too much time to apply because there were an internal #RECOVERY_OPERATIONS_FULL_SYNCHRO# request in process. This has been fixed.

  • New attribute MinutesIncorrectActivity for IBMi Job elements allows you to defer a critical or warning condition. The attribute waits until the condition is reached after the amount of minutes in this field.

  • Closed issues outside of calendar were not showing in the issues list. This has been fixed.

  • If you use option "Edit Attributes" immediately after creating a device without a specific model you could receive an error : "Getting attribute type list for entity with name: ****_undefined_undefined". This has been fixed.

  • Generic Website monitors timeout has been changed to 30 seconds.

  • After upgrading to v6.4, there were some cases where the Scheduler Service couldn't start. This has been fixed.

  • After upgrading to version 6.4 from previous versions some old files could remain forever in ThinkServer\transient folder and errors "invalid vector<T> subscript" could appear in ThinkServer\logs\T4BDSR.log. This has been fixed in this release.

  • Fixed the view of 'not integer' numeric metrics on Business Processes module.

  • If Batch Process received a delayed end date (from previous days with a date in current day) for some of their stages or tasks, the analysis tab showed an error. This has been fixed.

  • ThinkServer module monitors remained in Unknown status instead of returning proper health status if there were multiple "MaxThreads" DataSources of the same Type. This has been fixed.

  • The Generic Folder Check (New Files in Folder) now works as expected.

  • Multiple scroll bars were shown when switching rapidly between monitors. This has been fixed.

  • When showing the attributes of a set of elements that is bigger than a page, the scroller did not move. This has been fixed.

  • The installation process has been improved to force a restart if it is pending after an automatic Windows Update.

  • Fixed a memory leak in the SmartConsole Module.

  • License credits for Dashboards were exhausted because sessions were not freed. This has been fixed.

  • Event Manager Inspector module crashed (and generated a dump) when connection with DB was lost. This has been fixed.

  • It is now possible to create new calendar range sets with the required name.

  • AccessServer maintenance could report an error when trying to resolve extremes. This has been fixed.

  • AIX collectors are not parsing the data correctly because they are case-sensitive. This has been fixed.

  • Charts could have missing data for current intervals if lots of errors "Query timeout expired" were returned to HelpSystems - PMB service from SQL Server. These errors were located in PMDB log files. This has been fixed.

  • There was a problem when trying to change AccessServer service port number. This has been fixed.

  • MTBF & MTTR on the Worst Components Table on some reports were not calculated correctly. This has been fixed.

  • Some reports weren't showing the top 'N' worst elements ranking. This has been fixed.

  • The ability to exclude groups from requests when creating file ServiceExcluded.ndx in folder \YellowPages\bin\cache with the same format as Service.ndx file has been added to prevent the User Directory Service from crashing.

  • Monitors manually created from HelpSystems ThinkServer configurator with a specific configuration just retrieved events until they reached "Max process lines". This has been fixed.

  • IBM i Temporary storage check was reporting a script error while trying to report a warning or critical status. This has been fixed.

  • Missleading description in generic website boolean check. The message has been improved.

  • Vityl IT and Business Monitoring analysis tab of an Online Service with a Period of type "Last..." selected, asked for data twice in each refresh thus increasing DB CPU usage. This has been fixed.

  • SNMP monitors were crashing on some occasions when monitoring MIBs. A fix has been applied to resolve this issue.

  • A new translation table "International EBCDIC500.tdf" has been made available in the IBMi/iSeries connection defined for SmartConsole, to allow all events from IBM i to be displayed in the SmartConsole Web Client.

  • Monitors for Linux assets failed with errors "Couldn't agree a key exchange algorithm...". This occurred in newer Linux versions (such as Ubuntu 20) or if configuration of ssh service had been modified from the default values. This has been fixed.

  • Monitors created manually from ThinkServer Configurator module of Vityl IT & Business Monitoring for Advance Database Reader type of DataSource had various problems which have been fixed in this release.

  • SelfMonitoring monitor for "SmartConsole Outdated" Assets control could fail with monitoring error "...Parsing regular expression ...". This has been fixed in this release but if upgrading from v6.4 to this release, a manual fix is required.

  • The C++ vulnerability has been fixed in this release (CVE-2012-6151).

  • The 'Improper Restriction of Rendered UI Layers or Frames' vulnerability has been corrected. Clickjacking attacks are now prevented (CWE-1021).

  • Exposure of Sensitive Information to an Unauthorized Actor vulnerability has been fixed. The detailed version information exposure has been turned off (CWE-200).

  • The 'Generation of Error Message Containing Sensitive Information' vulnerability has been fixed. The stack trace has been removed from all the product error messages (CWE-209).

  • The 'URL Redirection to Untrusted Site' ('Open Redirect') vulnerability has been fixed (CWE-601).

  • Sensitive Cookie in HTTPS Session Without 'Secure' Attribute vulnerability has been fixed. Secure flag has been set with all sensitive cookies (CWE-614).

  • Improper neutralization of HTTP Headers for Scripting Syntax vulnerability has been fixed. Secure Headers have been added to all the http responses following the OWASP directives (CWE-644).

  • The 'Improper Neutralization of Input During Web Page Generation' ('Cross-site Scripting') vulnerability has been fixed (CWE-79).

  • Every character from user input is now validated to avoid potential problems.

  • HelpSystems SmartConsole Messenger module had a handles leak. This has been fixed.

  • Maintenance for Historical or Archive Events Database could fail if database tables were deleted manually without restarting "HelpSystems - Database Maintenance" windows service. Tables are now recreated before the Maintenance for Events Database is run.

  • Multiple OpenSSL vulnerabilities have been fixed in this release.

  • Renaming a Tenant to a previously existing name generates an error: "Tenant name already exists". This has been fixed.

  • The poor performance in Device elements of types: "Generic Website Adapter (Boolean check)" and "Generic SNMP (Boolean check)" if "String to Find in result" attribute was set to something between double quotes has been fixed.

  • ThinkServer module could have a large consumption of memory if the monitors generated messages of large size which would eventually lead to a ThinkServer module crash. This has been fixed.

  • Users or Groups with blank spaces in their name were not supported. Some features, for example, Security User Permissions, did not work properly. This has been fixed.

Back to Top

 

Titus


Titus Console

Version 2020.12

Dec 12, 2020

New Features
  • Role Based Access Control feature allows organizations to 'Manage users' and define access control to Titus Classification products by assigning roles and permissions. This is an 'Administration' feature and only accessible by Super Admin users of the organization.

  • 'Audit' feature allows assigned organizational users to view an audit log of the actions performed in Policy Manager. This is an 'Administration' feature and audit logs can be viewed only by users who are assigned with Audit permissions.

Policy Manager

Version 2020.12

Dec 12, 2020

New Features
  • Policy Manager supports role based access control for Schema, Policies and Configuration. User's actions on Policy Manager are granted or restricted according to the assigned user role and permissions.

  • Policy Manager generates an audit log for administrator actions including create, update, delete and publish actions on objects.

Other Fixes
  • Policy Manager does not support concurrent update on Policy Manager objects from multiple users logged in to the same account. If multiple users are using the same account, they must not update Policy Manager objects at the same time since this can cause data corruption.

Titus Office Add-in for Outlook Online

Version 2020.12

Dec 12, 2020

  • With Titus Office Add-in for Outlook Online 2020.x installed, users will experience that the message compose window automatically pops out as they click the Send button. Any Actions that are triggered with On send Event will appear when the pop out window is opened. All other functionality works fine. This is due to the recent change made in Outlook Online by Microsoft. The current workaround is sending the email on the pop-out message window. Titus is currently looking for a solution and has requested Microsoft technical support.

Titus Office Add-in for Word/ Excel Online

Version 2020.12

Dec 12, 2020

New Features
  • Titus Office Add-in is extended to support Office 365 Word and Excel. You can classify documents in Word and Excel Online with Titus Office Add-in registration, and this does not require any additional client side service installations.

  • Titus Office Add-in for Word and Excel Online supports,

    • Manually selecting classification.

    • Applying header/footer in a document on classification change.

    • Persistent classification when a document is downloaded.

NOTE: If a document that is created in Word desktop application contains content control objects such as page numbers in the document header/footer, Titus Office Add-in will suspend with no response when you try to apply classification for this document in Word Online. With this current limitation of Office Add-in, the header/footer will not be applied if the document contains content control objects from Word desktop application. However, the classification will be applied to the document.

Titus Classification for G Suite

Version 2020.12

Dec 12, 2020

Other Fixes
  • The issue, where saving a Calendar event is blocked when existing policies have rules for external invitees, is fixed.

  • Email body was duplicated in the Reply email body. This issue is fixed now.

  • When 204 error is returned for on Save of a Google Calendar event, fail open occurs and the Titus server connection error message appears. This issue is fixed now.

Titus Data Detection Engine

Version 2020.12

Dec 12, 2020

Enhancements
  • Smart Regex query enhancements for improved scan of proximity and context.

Back to Top