Monthly Release Notes - May 2020

Jump to:

Core Security


Core Impact

Version: 19.1.10

May 29, 2020

New Exploits
  • Windows Search Indexer get_RootURL Race Condition Privilege Escalation Exploit: A race condition exists in Windows Search Indexer, when the put_RootURL function wrote a user-controlled data in the memory of CSearchRoot+0x14.AT the same time, the get_RootURL function read the data located in the memory of CSearchRoot+0x14. The vulnerability was caused by the access to a shared variable between two different methods of the same instance. (CVE-2020-0735)

  • WECON LeviStudioU MulStatus szFilename Exploit: The specific flaw exists within the handling of XML files. When parsing the szFilename attribute of the MulStatus element. (CVE-2019-6537)

  • Oracle Coherence T3 ReflectionExtractor Deserialization Vulnerability Remote Code Execution: Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Caching,CacheStore,Invocation). Supported versions that are affected are 3.7.1.17, 12.1.3.0.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3 to compromise Oracle Coherence. Successful attacks of this vulnerability can result in takeover of Oracle Coherence. (CVE-2020-2555)

  • Liferay Portal JSONWS Java Deserialization Vulnerability Remote Code Execution Exploit: Deserialization of Untrusted Data in Liferay Portal prior to 7.2.1 CE GA2 allows remote attackers to execute arbitrary code via JSON web services (JSONWS). (CVE-2020-7961)

  • Advantech WebAccess SCADA DATACORE IOCTL 0x5227 Buffer Overflow Exploit: This vulnerability allows remote attackers to execute arbitrary code on affected installations of Advantech WebAccess/SCADA. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of IOCTL 0x00005227 in DATACORE.exe. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of Administrator. (CVE-2020-12002)

  • TeamViewer post-exploitation IG: This update adds a new post-exploitation module, Password Dump from TeamViewer, which leverages reverse-engineered encryption keys to decrypt TeamViewer password data from the registry on a compromised Windows host.

Enhancements
  • Microsoft Exchange Validation Key Remote OS Command Injection Exploit Update: .NET deserialization vulnerability in the Microsoft Exchange Control Panel web page allows authenticated attackers to execute OS commands with SYSTEM privileges. The lack of randomization in the validationKey and decryptionKey values at installation allows an attacker to create a crafted viewstate to execute OS commands via .NET deserialization. This update adds payload generation error detection and dependencies documentation. (CVE-2020-0688)

Other Updates
  • WebApps Web Proxy Certificate Update

Network Insight

Version: 7.0.2

May 27, 2020

Enhancements
  • Integrations Menu is now alphabetically ordered.

  • RADIUS authentication can now be validated.

  • Columns that should be displayed by default on the grid give more information on the specific asset status and threats.

Other Fixes
  • An issue with the LDAP validation configuration was causing a crash in the user interface that could cause problems accessing it for the next 30 min

  • Modifying whitelist enables threat categories. (CAS-0010158537)

  • An issue was causing a malfunction on the user session enrichment sessions feature through active directory. (CAS-0010189597)

  • An issue has been corrected when the retro database queue was full. (CAS-0010158089, CAS-0010194418)

  • Custom Threats page breaks when non-ASCII characters are used in threat names. (CAS-0010197912)

impact_19_1_10-202005

Event Manager

Version 6.4.0.30000

May 11, 2020

New Features
  • Event Manager now provides event notification on a wide range of popular business applications. You can now create a ticket in servicenow or JIRA, an alert on Opsgenie or send a message to Microsoft Teams, Slack, and Telegram.
  • Powertech Antivirus for IBM i events integration is now available using Powertech SIEM Agent for IBM i (only from version 4.0+).
  • This version of Event Manager allows the provision of your own names to the custom variables used in the product in order to map your real business concepts on the views and reports.
  • Event Manager now provides the ability to be notified that an event has occurred on which a user must act. Security Analysts are then able to react rapidly whenever a security alert is triggered, to remove the potential threat as soon as possible.
  • To comply with the California Consumer Privacy Act 2018, Event Manager provides 'out-of-the-box' views and reports to help you defend against data breaches, and ensure your customers' personal information remains secure.
Enhancements
  • If a link is configured on the control treatment instructions, it is also now available from the event details screen.
  • Assets with a delayed event collection issue are now detected from within Event Manager.
  • Changing a Security Control name in Event Manager that is not immediately applied, now generates a message which is sent to Events Control Services logs (typically in installation folder \Inspector\bin\logs) with the detailed error.
  • Event Manager notifications now includes Action, SubAction, Object and Application fields as variables.
  • Installation process improvements have been made to improve reliability and resilience.
  • New validation routines have been added during the upgrade process to ensure that the product security administrator is correctly configured.
  • The monitoring configuration database is now optimized, by rebuilding or reorganizing indexes and updating statistics, each day in a nightly batch process.
  • Performance has been improved when collecting "Powertech Database Monitor for IBM i" events as it is now possible to use numeric date and time table columns without special castings on the "Incremental field".
  • Calendars are no longer refreshed if no modifications have been made.
  • SPARE1 and SPARE2 are now retrieved on the Oracle Standard datasource and are mapped to Additional Info 1 and 2 fields.
  • New attributes of Environment, Customer, Facility Name and Facility Type have been added to assets to make categorization easier.
  • Email notifications now use HTML format to make them easier to understand on the initial reading.
Other Fixes
  • Self monitoring assets no longer have false critical errors if the "Select SmartConsole" option is chosen to monitor an 'Application or Connectivity Group' for a self monitoring application.
  • VMWare (vCenter) security events are now stored in local monitoring node time instead of UTC.
  • The timeout for Dynatrace API webservice checks has been modified to 30 seconds instead of 10 seconds.
  • Variables mapping in custom datasources no longer displays false positives in the validation.
  • Filters in Subactions using fields 'Operator Category', 'User Category' or 'Object Category' now work as expected.
  • Event Manager now stores security events created on February 29th with the correct date.
  • Event Manager now has the ability to retrieve Windows event log events from systems having EventRecordNumbers greater than 4,294,967,296.
  • Column values in Forensic Analysis and Event Manager are now displayed correctly when lots of different values exist.
  • Performance metrics database queries have been improved with the addition of a new index.
  • If SmartConsole stops due to an unexpected error, the recovery procedure is now a lot faster than previously, thus reducing the outage time.
  • A fix has been applied to prevent high memory usage on the Events Control Service when a lot of different values exist on the ColumnCacheCapacity.
  • The product can now recover when PMDB encounters "The transaction log for database ... is full due to" and "The server failed to resume the transaction" monitoring errors.
  • Using VAR01 to VAR99 in Security Control filters for Event Manager no longer causes the Events Control Service to crash.
  • The non-existing user in Active Directory error generated when creating a user has been fixed in this release.
  • The daily self-cleaning of metrics data now includes the "Shrinking Transaction Log" step for SQL server database.
  • The Memory usage of the Events Manager T4MonManagerService.exe process has been reduced in this release.
  • The PMDB service accessed from Event Manager and/or Vityl IT and Business Monitoring now recovers from a Microsoft ODBC Driver 13 for SQL Server restart error.
  • Event Manager syslog agent now discards messages if memory increases due to a bottleneck in syslog message handling.
  • The Performance bottleneck that arose when saving Event Manager events to DB has been corrected in this release.
  • T4MonManagerService.exe process memory was too high when viewing the list of assets in Event Manager. This has been fixed in this release.
  • Event Manager DataSources for Windows that do not have proper credentials now report a Monitoring error.
  • A fix has been applied so that Activity calendars are now discovered by ThinkServer following an update.
  • Event Repetition selection rules for Event Manager Security Controls now take into account variables "Variable 01" to "Variable 99" for the "Use a custom set of fields to find repetitions" parameter.
  • Data is now displayed as expected when selecting a Database that is different from ShortTerm in Event Manager Forensic Analysis.
  • When more than one monitor queries the same table, Database Reader Monitors no longer return an error when updating the database cache.
  • In order to reduce the maintenance process time for events data, improvements to queries have been made.
  • Asset credentials, or some of its datasources, can now be used when manually setting credentials at monitor level.
  • Although improved reports generation performance is included in this release, user notification has been added to inform users that the generation of reports that cover a long time range could cause a decrease in performance.
  • Scheduled reports could fail with error "Invalid AccessServer session". This has been fixed in this release.
  • The Chronological Data Changes report display no longer shows an error when no data is returned.
  • The default domain is now correctly saved and displayed on the login screen.
  • Monitors were not working if an invalid datetime format was configured in Database Datasources. This has been fixed in this release.
  • When some User Account Names contained non-English characters, some monitors were reporting encoding errors. This has been fixed in this release.
  • Event Manager now receives events from Cisco Router switches as expected.
  • The problem in DataSource configuration where some fields were not saved has been fixed in this release.
  • The IBM i - User Profiles report now returns the correct information for deleted users.
  • Collection errors on User/Computer account inactivity have been corrected in this release.
  • The Internal error "database disk image is malformed" that could occur in both "ThinkServer" and "Events Control Service" has been fixed in this release.
  • Previous Value and Current value columns on Forensic Analysis now correctly display all changes on audit policy modification for Event ID 4719.
  • If SmartConsole has connections to both an IBM i and PC systems, events from Agent Code AUD are now received once SmartConsole is restarted.
  • When creating a Tenant, the default configuration was not created until the next restart of the Orchestrator service. This has been fixed in this release.
  • Following installation, Security Control events of a particular tenant could be created with events that were actually from other tenants. This has been fixed in this release.
  • Autodiscovery was failing if it was unable to retrieve the model of a specific device. This has been fixed in this release.
  • Event Manager events which should be excluded by SubAction filters are no longer audited in error.
  • .NET connections are now being forced to TLS 1.2 in order to avoid security issues.
  • Processing a large number of events in Vityl IT and Business Monitoring is now run in the correct order within SmartConsole Business View so that the correct asset health status is displayed.
  • User Directory Service (also called YellowPages) had a deadlock, which produced a memory steady rise and eventually the process could crash. This has been fixed in this release.
  • The Complete Message for an Event Pattern Rule in a Security Control is now correct by replacing the variables in the message template as expected.
  • The "Out of Memory" error in Windows service "SmartConsole Publisher" has been fixed in this release.
  • Using characters ' or " within Name or Alias in Vityl Assets, is now allowed.

Back to Top

 

GoAnywhere


Version 6.5.0 - Beta
New Features
  • Added support for new PeSIT service.
  • Added support for CC and BCC recipients in Secure Mail.
  • Added the ability to use mapped values in expressions in all EDI tasks.
  • Added a new SMS Provider Add-on type to allow for the installing and/or connecting to custom SMS providers that can be configured in the Global Settings.
  • Added admin revision history and logging to Project Folders.
  • Added Query parameter properties to the Dropdown component in Secure Forms to allow for the use of SQL query parameters in database powered Secure Forms.
  • Added the ability to configure the public key signature algorithms allowed by the SFTP Server, which applies to the server's Host Key and when a Web User authenticates with a public key.
  • Added automated process to delete old, consumed AS4 Message Channel messages.
  • Added SAN/DN validation to PeSIT partners.
Enhancements
  • Added new Component Group Component type to Secure Forms.
  • Added support for Requester Password in the PeSIT Resource.
  • Added new Repeat Options to Secure Form Components.
  • Added Options to the Secure Form Response Task to allow for redirection to different Secure Forms or a URL upon successful form submission.
  • Increased the minimum width of the 'To', 'Subject', and 'Message' fields when composing a Secure Mail message. Also enabled resizing on the 'To' field.
  • Added support for the upcoming GoAnywhere Outlook Plugin release to be managed as a Web User Device.
  • Enhanced the server-side REST API endpoints for Secure Mail features in the Web Client.
  • Added support for diffie-hellman-group14-sha256 and diffie-hellman-group16-sha512 to the SSH resource.
  • Added support for rsa-sha2-256 and rsa-sha2-512 public key algorithms.
  • Enhanced password popup in View Package Details to be dynamically sized.
  • Enhanced the teaser text for the Limit Bandwidth text in Global Settings to better convey what this setting applies to.
  • Added functionality for event IDs to display in the same format in the syslog as in the log pages.
  • Added functionality for event IDs to display the same format in archived logs as in audit log pages.
  • Enhanced table formatting on the Secure Form Rest Dynamic Help page.
  • Added the ability to run a Docker container as a non-root user.
  • Improved the Read EDIFACT and Read EDI X12 tasks to loop over transaction sets and high-level loops without explicitly mapping them.
Updates
  • Updated the Log Level labels to be consistent between the values and the audit history.
  • Upgraded Apache Tomcat from version 7.0.99 to 7.0.100.
  • Updated Maverick Server to version 1.7.25.
  • Updated the JNQ Network Share API from version 1.0.2.br-1.1 to 1.2.3.SRC.
  • Updated DB2 JDBC driver to version 3.72.24.
  • Updated the text on the Global Settings HTTP Proxy tab.
Fixes
  • Fixed an issue with SFTP where failed authentication attempts did not cause blacklisting.
  • Fixed tooltips for Text Area inputs not being properly displayed on Secure Forms.
  • Fixed an issue where custom report date ranges were not being applied correctly.
  • Fixed an issue where SLA reports would not run when submitted to batch.
  • Fixed false detection of Log Tampering in the HTTPS Audit Log due to the Web Client session timing out using Oracle Database.
  • Fixed an issue when importing/promoting a Secure Form would not include the 'Optional Text' data.
  • Fixed an issue in the Modify Row Set task where the Include Current Row and Exclude Current Row components would not work properly.
  • Fixed an issue where calendar components would not translate properly.
  • Fixed an issue where active Monitor Service Level Agreement events were not updated when the Service Level Agreement was updated.
  • Fixed the error message for a duplicate fingerprint to allow for different languages based on locale.
  • Fixed an HTTP 500 error resulting from attempting to restore previous EDI add-on versions.
  • Fixed unauthorized message to display 'SLA Manager' instead of 'Product Administrator' when trying to run a Service Level Agreement Summary Report as an unauthorized role.
  • Fixed tracking of host and user name in Job File Audit Log for session persistent GoFast tasks.
  • Fixed an issue where a device could attempt registering to a deleted Web User.
  • Added missing tooltip label for JDBC URL Wizard button when switching databases.
  • Fixed 'created by' and 'modified by' values to use the appropriate user name where possible.
  • Fixed an issue where a Web User would not be navigated to a specific Secure Form when using a private URL and the Secure Form permission is only enabled on a group the Web User is a member of.
  • Fixed offset errors in Read EDI X12 and Read EDIFACT tasks caused by missing segments in multiple transaction sets.

Back to Top

 

Intermapper


Version: 6.5

May 28, 2020

Enhancements
  • Updated OUI information on MIC Manufacturers.

  • Added more detailed error reporting during layer 2 scan.

  • Updated server/client to show specific stages and statuses during Layer 2 scan.

  • Updated Layer 2 scan scheduling.

  • Updated Layer 2 panel layout in Server Settings for clarity.

  • Added the ability to export maps into .SVG format for all platforms.

  • Added the ability to to export Visio format on Microsoft Windows.

  • Added the ability to export multiple maps.

  • Converted built-in icons to SVG format.

  • Added the ability to save server badges/background images in SVG and Visio formats.

  • Added an option to calculate map status to not include link status.

  • Added the following probes for CISCO devices:
    • SNMP - Cisco Catalyst 3850

    • SNMP - Cisco Catalyst 4500-X

    • SNMP - Cisco Catalyst 6500

    • SNMP - Cisco Catalyst 6800

    • SNMP - Cisco Catalyst 9300

    • SNMP - Cisco Catalyst 9500 Non-StackWise

    • SNMP - Cisco Catalyst 9500 StackWise

    • SNMP - Cisco Catalyst Switch

    • SNMP - Cisco Catalyst 6500 6800 VSS

    • SNMP - Cisco ASR 1000

    • SNMP - Cisco Nexus

Other Fixes
  • Fixed: NIC Manufacturer column of the L2 Device List window omits the final "r" in any manufacturer name.

  • Fixed: Layer-2 vlan and port information is coming up as negative values.

  • Fixed: Layer-2 scan fails to complete.
  • Fixed: Assigned Table IDs are not always unique during a Layer 2 Scan.

  • Updated Export Data from single or multiple maps.

  • Flows does not start on Ubuntu 16.

  • Fixed file handle exhaustion that caused server crashes.

  • Separated device and link counts and statuses.

  • Fixed issues with device count and statuses on the map list not match.

  • Server crashes periodically when opening on-demand tables in version 6.4.3.

  •  

Back to Top

 

Powertech


BoKS Reporting Services

Version 7.2.0.2

May 28, 2020

  • This release includes a fix for a CSS vulnerability where an attacker in a man-in-the-middle attack could inject a malicious URL to then be able to retrieve information about a user session. See also Advisory Note AN-1015.

BoKS Web Services Interface

Version 8.0.0.1

May 6, 2020

  • Added enhanced error logging capabilities for failed requests.

  • Updates of third-party dependencies.

Version 7.2.0.2

May 6, 2020

  • Added the ability to set a configurable timeout for calls to the BoKS admin server, BCCAS. You can configure the time for the timeout. If the call fails, an error is logged. Request timeout is configured using the parameter requesttimeout in the config.yaml file and is specified in seconds. The default is 60 seconds.

  • Added enhanced error logging capabilities for failed requests.

  • Fixed an issue where an incorrect content length setting for UTF-8 characters in combination with the system locale not being set to UTF-8 could cause the WSI server to stop responding.

  • Added support for Java 11.

  • Updates of third-party dependencies.

RSA SecurID Agent for IBM i

Version 9.9

May 14, 2020

New Features
  • Agent for RSA SecurID can now be configured to trigger custom messages in response to configuration and authentication activity in order to provide observability into what is happening on the system. The following updates have been added to accommodate this feature:
    • The new option "Work with Message Action Item" has been added to the Audit Configuration and Reporting menu. This option allows the user to configure and/or review the Message Action Item configuration.
    • A collection of messages are now added during installation.
  • Service programs have been added into the @ACE library in order to accommodate job management and signal processing. All such objects have MSPT* as the object name prefix.

Enhancements
  • To help ensure all TCP/IP communications are carried out using secure methods, clear text capable servers are no longer registered automatically during installation or upgrade.
  • A new pre-start job ensures Agent for RSA SecurID's server jobs remain active while the associated subsystem is active (if, for example, the job is ended using endjob or option 4 via WRKACTJOB).
  • Configuration data stored within the following areas has been encrypted for enhanced integrity:
    • IP Address/Profile cross reference table that is used for Remote Authentication
    • Data areas that are used to provide processing
    • Default exit point details
    • Exit points that have been configured by the product administrator
    • TCP/IP port numbers that have been configured by the product administrator and/or required for successful use
    • User profile database
    • User profile template details (*SECURID)
  • When maintaining the TCP/IP port for RMTSDIAUT, a five digit port can now be entered for Remote Authentication processing.
  • A new server, GENSVR2 "General Server Enhanced" has been added to the list of products within option 8 "Work with TCP/IP port connections". This new server provides enhanced security for the TCP/IP requests in relation to IP Address updates and profile synchronization for SecurID Remote Authentication.
  • The public authority AUT parameter for the ACEDTI profile is now set to *EXCLUDE when created during installation.
Other Fixes
  • The correct data now always appears on activity reports (PRTSIDATV), even when rogue data exists within the journal receiver.
  • The ability to enter an unsupported port number in "Maintain TCP/IP connection details" (a value greater than 65535) has been removed.
  • An issue that previously caused Authentication Suppression to fail when the SignOn Exit Point was triggered several times within a second has been resolved.
  • SecurID Agent now prevents the Journal Receiver deletion job ACEDTIDJR1 to remain on MSGW status due to CPA7025. This would previously occur if a Journal Receiver had been saved while that receiver was still attached to the associated journal. Additional checking has been introduced to prevent the need for a specific System Reply List entry that is associated with CPA7025. This update also ensures the affected Journal Receivers can be fully saved before any attempt can be made to delete them based on the 'Number of Days to Keep' receivers.
  • Updates were made to prevent an array index error within program MSPT9400.
  • An issue causing incorrect cursor positioning after viewing the F1 help on the Master Menu has been resolved.

Back to Top

 

Robot


Performance Navigator

Version: 19.1 C

May 14, 2020

Enhancements
  • Updated Graphs and Reporting:

    • Created Reporting Framework in PerfNav client.

    • Create scripts/HTML to support Reporting Framework.

    • Other updated scripts/HTML.

    • Added “Total I/Os” to Before vs. After script.

    • Added more detail to some fields in our historical shift data.

    • Added graph for Current Day Temporary Storage by type.

    • Added graph for Current Day SQL CPU stats.

    • Added wait time buckets 17-32 to data for the graph Current Day > Specific Job > Wait vs CPU (Pie chart).

    • More series shown on Unix I/O adapter graphs.

    • Added fields to disk arm drill down report.

    • Added Current Day graph for Systemwide Job Wait Bucket Total MS.

    • Added new disk response time graph that splits out read response time and write response time

  • Improved support of SSL logins to the IBM i.

  • Default to proper Collection Services library if we’re not looking in the proper place.

  • Using HS logo/branding/copyright notice/contact info instead of MPG logo/branding/copyright notice/contact info.

  • Removed old/obsolete files from shipped product.

  • Added scripts for refreshing system information and clearing all stored passwords.

  • Client can now handle mis-named AIX/Linux current day data file.

Other Fixes
  • Report Sets over multiple systems now puts the proper system name in the output file path.
  • Improved “Paste from Clipboard” button for applying keys.
  • Clicking on “previous interval” or “next interval” in rapid succession in the report window no longer gives an Access Violation error.
  • Fixed SQL errors when running Dashboard.
  • Fixed reporting failure during AIX/Linux install.
  • Removed unnecessary copy of files when changing output directories.
  • Took out hard-coding of the year in the What-If script, it’s now dynamic and doesn’t have to be changed every year.
  • Fixed typo in What-If script.
  • Fixed typos in Memory analysis scripts.
  • Fixed typo in Solid State Drive Data Analysis Summary.
  • Fixed typo in Current Day Total Workload Wait Analysis graph.
  • Changed legend of Max cores graph to say “24 hr maximum”.

Robot Autotune

Version 8.26

May 13, 2020

  • Message ATD0224 now includes the environment name.
  • Enhanced ATDYNPMGR (Dynamic Pool Manager) job to log every request to the job log.
  • Program AT115S now monitors CPF1607 to prevent abnormal end of PFs entry panel.
  • Fixed issue with very large memory size resulting in MCH1210 in AT225S

  • The initial value for the Activity Level PF for *BASE is now 25 percent and Pool Size Minimum PF is now 20 percent of available storage.
  • When starting and ending AT jobs in ATMONITOR susbystem, there are now additional waits to prevent the jobs that execute STRAT and CNLAT commands from getting ahead of designed ending of the AT jobs.
  • Program AT622S added to provide alternate method of clearing orphan pools if the CLROP command is ineffective.

Robot Console

Version 7.05

May 6, 2020

  • Updated installer.
  • The minimum value for Resource Monitor Intervals is now 1 minute.
  • Fixed issue with opal compile error on conversion.

Robot Monitor

Version 14.2.1

May 7, 2020

New Features
  • Linux metrics can now be monitored
  • Dashboard Slideshows give the ability to cycle through configured dashboards until a configured severity is reached.
  • Inquiry messages can now be responded to from Work with Job screen.
  • Block device storage information is collected for Linux systems.
  • ASP statuses for user ASPS 1-32 can be monitored.
  • MPG's Performance Navigator is now installed as part of the first-time installation process. The product can then be activated when required.
Enhancements
  • New Assure MIMIX metrics have been added.
  • New metrics Disk Wait Time and Disk Service Time have been added.
  • Under ASP Information, the list within the Physical Disks section contains a new column Unit Type, the values in this column reflect the correct unit type (HDD or SSD).
  • System group view Short-Term History now handles time zones correctly.
  • Improved PTF export function to allow for Group PTF data to be exported.
  • On the Data Collection panel, the Filter Unix Processes now includes Subsystem Status (Process).
  • Column Header now correctly named I/O for Highest CPU Processes view for AIX/VIOS.
  • When viewing Key Statistics for multiple partitions for one element (i.e. CPU), drilling down into one system now correctly displays Short Term History for the selected partition.
  • System View panels now have auto-hide feature.
  • When adding a new element for AIX/Linux/VIOS, the default description now references the item being monitored.
  • On a Dashboard, when adding the High CPU Users item, the options for Report Type now include High CPU Jobs using SQL.
  • The MIB files have been renamed.
    • MI2 file "ccssreg" has been renamed "hsrmreg"
    • MI2 file "ccssmsm" has been renamed "hsrm"
  • RGZPFM command can now be configured ahead of submission.
  • The AIX, VIOS and Linux installed package version is now displayed on a partition's system record.
  • Users can now specify CPW Parameters.
  • Disk name completion for disk metrics now include descriptions of disk, partition, mpath, loop and lvm.
  • When listing logical volume names to monitor in the metric form, we now include VG name as a description.
  • Improved status reporting for systemd status.
  • "Metric Collection Time" has been added under the group "System Performance" to be available on all node types.
Other Fixes
  • Values for Processor and CPU based metrics now align with values returned by topas and prtconf.
  • The Short-Term History widgets now update correctly to match the collection interval.
  • Fixed issue with RNX0122 error on MON.SUMARY job.
  • Fixed inconsistent results when using authority lists.
  • Fixed issue with "Code 0xC0000005: Access violation" error.
  • Improved performance in High SQL Jobs CPU usage processing.
  • Fixed issue with File Record Count Data Definition failing on error MCH0601
  • A new collector is started when one or more new MIMIX elements have been defined.
  • Fixed issue with job disk.prl error MON0119 Heap space has reached it allowed maximum size.
  • Network Server Status under Communications Status has been disabled for Linux. Subsystem Status (Process) in Unix Processes should be used instead.

Robot Network

Version 12.05

May 13, 2020

  • Updated installer.
  • Fixed issue with failed GUI login after changing password on the IBM i.
  • In host properties, Enhanced Event Data now correctly stays selected after restarting host.
  • Fixed issue with node not showing connected to GUI after restart of Robot Network.
  • Fixed issue with executable not showing valid signed certificate.

Robot Save

Version 13.03

May 13, 2020

  • Integration with FlashCopy now available.

  • Fixed issue with RBS6321 getting R351105 error.

Robot Schedule

Version 13.05

May 19, 2020

  • Updated installer

  • Fixed issue with job status not changing from R to T when option E is taken on running job from Job Completion History panel.

  • Specified TIMEZONE value will now show on the Consolidated Good Morning Report.

  • Consolidated Good Morning Report now shows correctly when TIMEZONE(*NODE) is selected.

  • Fixed issue with Consolidated Good Morning Report showing all system data when single system was specified.

Back to Top

 

Tango/04


Vityl IT and Business Monitoring

Version 6.4.0.30000

May 11, 2020

New Features
  • A new RabbitMQ 'out-of-the-box' template has been made available.
  • New external links can now be added to any asset for easier access to the external tools related to it, such as Documentation, 3rd party monitoring, Support chat, and so on.
  • Planned downtime for maintenance can now be scheduled from the Vityl IT and Business Monitoring home page for a single or multiple assets. Alerts are not triggered when an asset is temporarily removed from the network.
Enhancements
  • Configuration of 'per event' alerts has been made easier to ensure that messages that are waiting for a reply are not missed.
  • A new Journal Receiver size control on IBM i has been made available.
  • A new Generic folder check to ensure that there are new Files in a folder has been added for all asset types.
  • Usability improvements have been made to the default alerts notification.
  • If SmartConsole goes down due to any unexpected error, Vityl IT and Business Monitoring continues working during the recovery process, although the following features will not be available until the recovery process is finished: Availability Manager, Reset issue, Reply message from issue, and edit notifications.
  • Changing a Security Control name in Event Manager that is not immediately applied, now generates a message which is sent to Events Control Services logs (typically in installation folder \Inspector\bin\logs) with the detailed error.
  • Proxy Support has been added to Dynatrace Integration.
  • A search facility has been added to make it easier to create a new, unique Business Instance.
  • Installation process improvements have been made to improve reliability and resilience.
  • New validation routines have been added during the upgrade process to ensure that the product security administrator is correctly configured.
  • The monitoring configuration database is now optimized, by rebuilding or reorganizing indexes and updating statistics, each day in a nightly batch process.
  • A new template has been made available to monitor the status of the Zatec application.
  • Performance has been improved when collecting "Powertech Database Monitor for IBM i" events as it is now possible to use numeric date and time table columns without special castings on the "Incremental field".
  • Calendars are no longer refreshed if no modifications have been made.
  • Availability Manager reports now have the database configured by default to ensure that they are working 'out-of-the-box'.
  • Email notifications now use HTML format to make them easier to understand on the initial reading.
Other Fixes
  • It was not possible to delete an asset element from Vityl IT and Business Monitoring, if there were elements with same type, in the same asset with identical end characters in their names, and a dependency existed. For example, you have ports 80, and 8480. If you tried to delete port 80 and port 8480 was in a dependency, the request failed. This issue has been fixed in this release.
  • The API requests poll interval has been increased (5 min for availability checks and 10 min for performance checks). A retry function has also been added to improve collection resilience.
  • A 'change in health' event no longer causes an invalid health status to be generated if the event is not properly processed in the SmartConsole module.
  • Self monitoring assets no longer have false critical errors if the "Select SmartConsole" option is chosen to monitor an 'Application or Connectivity Group' for a self monitoring application.
  • The automatic alias for the new discovery of filesystems of AIX, Solaris, HMC and Linux datasources has been changed.
  • The timeout for Dynatrace API webservice checks has been modified to 30 seconds instead of 10 seconds.
  • A fix has been applied so that internal synchronization errors of "Cannot create a link" are no longer generated.
  • Performance metrics database queries have been improved with the addition of a new index.
  • If SmartConsole stops due to an unexpected error, the recovery procedure is now a lot faster than previously, thus reducing the outage time.
  • Poor performance in Device elements of types: "Generic Website Adapter (Boolean check)" and "Generic SNMP (Boolean check)" has been corrected in this release.
  • A fix has been applied to prevent high memory usage on the Events Control Service when a lot of different values exist on the ColumnCacheCapacity.
  • Performance issues with 3rd party integration via database generating too many events has been resolved in this release.
  • The product can now recover when PMDB encounters "The transaction log for database ... is full due to" and "The server failed to resume the transaction" monitoring errors.
  • The daily self-cleaning of metrics data now includes the "Shrinking Transaction Log" step for SQL server database.
  • The Memory usage of the Events Manager T4MonManagerService.exe process has been reduced in this release.
  • The PMDB service accessed from Event Manager and/or Vityl IT and Business Monitoring now recovers from a Microsoft ODBC Driver 13 for SQL Server restart error.
  • SmartConsole Messenger service now recovers from a broken Microsoft ODBC Driver 13 for SQL Server restart error.
  • T4MonManagerService.exe process memory was too high when viewing the list of assets in Event Manager. This has been fixed in this release.
  • A fix has been applied so that Activity calendars are now discovered by ThinkServer following an update.
  • A fix has been applied so that the 'Vityl IT and Business Monitoring-License Days to expire' self-monitoring monitor gives the correct value.
  • An error that occurred when deleting Affectations while running SmartConsole maintenance has been fixed in this release.
  • Generic Website Check monitors now work as expected if the URL contains a hash "#" character.
  • When more than one monitor queries the same table, Database Reader Monitors no longer return an error when updating the database cache.
  • In order to reduce the maintenance process time for events data, improvements to queries have been made.
  • A memory leak in Universal Transaction Agent monitors has been fixed in this release.
  • Scheduled reports could fail with error "Invalid AccessServer session". This has been fixed in this release.
  • The correct message for Generic Database Query elements reporting a correctly executed query is now displayed.
  • The default domain is now correctly saved and displayed on the login screen.
  • Monitors can now be stopped as expected if they become stuck during a complex operation.
  • Any modification made to previously existing SmartConsole and IBM i maintenance is now saved as expected.
  • When viewing the Analysis tab for assets having lots of elements, the response time has been improved.
  • Editing attributes from elements in Vityl IT and Business Monitoring could result in a long waiting time for attribute "Role" and other attributes to display a fixed list of possible values. This has been fixed in this release.
  • Applying user configuration changes to a visualization of an Online Business Services is now completed in an acceptable time frame.
  • Creating elements using option "Apply to all assets" with several devices or applications selected now creates monitors as expected.
  • The Internal error "database disk image is malformed" that could occur in both "ThinkServer" and "Events Control Service" has been fixed in this release.
  • Windows Process monitor no longer displays an incorrect status when the process identifier is reused by another process. This can happen when the monitored Windows computer is restarted. Additionally, Network Ping monitors now change their status from Unknown, as expected, when the product starts.
  • If an auto-expansible tablespace of an Oracle database is bigger than the maximum space allowed, monitors no longer retrieve negative free space values.
  • If SmartConsole has connections to both an IBM i and PC systems, events from Agent Code AUD are now received once SmartConsole is restarted.
  • A fix has been applied so that the Vityl IT Infrastructure Devices grid no longer has a poor response time.
  • Integrated PRTG controls are now removed from Vityl IT and Business Monitoring if they are removed from PRTG.
  • It is no longer possible to delete a business instance of a Business Service that is a "service dependency" of another service business instance.
  • When creating a Tenant, the default configuration was not created until the next restart of the Orchestrator service. This has been fixed in this release.
  • A new setting in config file PMDBConfig,cfg has been made available so that performance issues when storing Vityl IT and Business Monitoring metrics in file T04MessageDatabase can be remedied.
  • Following installation, Security Control events of a particular tenant could be created with events that were actually from other tenants. This has been fixed in this release.
  • Autodiscovery was failing if it was unable to retrieve the model of a specific device. This has been fixed in this release.
  • Availability Manager now correctly displays the issues from the Last 60 minute period.
  • Software Errors and Execution result controls in Business Processes didn't work when there was no match for SoftwareErrorMessage or executionResultMessage. If these tags were not defined or were not matched then the control was not executed. This has been fixed in this release.
  • .NET connections are now being forced to TLS 1.2 in order to avoid security issues.
  • Processing a large number of events in Vityl IT and Business Monitoring is now run in the correct order within SmartConsole Business View so that the correct asset health status is displayed.
  • User Directory Service (also called YellowPages) had a deadlock, which produced a memory steady rise and eventually the process could crash. This has been fixed in this release.
  • The "Out of Memory" error in Windows service "SmartConsole Publisher" has been fixed in this release.
  • A fix has been applied so that File Reader monitors are now able to find the remote shell on specific hosts.
  • Vityl IT and Business Monitoring did not display Cluster assets with the correct icon when out of activity calendar time. This has been fixed in this release.
  • SmartConsole Publisher service resilience has been improved in this release.

Back to Top