About Symantec Encryption Management Server

Similar documents
PGP(TM) Universal Server Version 3.2 Maintenance Pack Release Notes

Symantec Encryption Desktop Version 10.2 for Mac OS X Release Notes. About Symantec Encryption Desktop

PGP(TM) Universal Server Version 3.2 Maintenance Pack Release Notes

PGP Desktop Version 10.2 for Windows Maintenance Pack Release Notes

Symantec Encryption Desktop Version 10.3 for Windows Maintenance Pack Release Notes

Symantec Endpoint Encryption Full Disk Maintenance Pack Release Notes

Symantec Encryption Management Server and Symantec Data Loss Prevention. Integration Guide

Symantec Enterprise Security Manager Baseline Policy Manual for CIS Benchmark. For Red Hat Enterprise Linux 5

PGP NetShare Quick Start Guide Version 10.2

PGP Portable Quick Start Guide Version 10.3

Symantec Endpoint Encryption Full Disk Maintenance Pack Release Notes

PGP Viewer for ios. Administrator s Guide 1.0

PGP Viewer for ios. User s Guide 1.0

Symantec Enterprise Security Manager Baseline Policy Manual for CIS Benchmark. AIX 5.3 and 6.1

Symantec Endpoint Encryption Full Disk Maintenance Pack Release Notes

Symantec PGP Viewer for ios

Symantec Enterprise Security Manager Baseline Policy Manual for Security Essentials. Solaris 10

Symantec Workflow Solution 7.1 MP1 Installation and Configuration Guide

IM: Symantec Security Information Manager Patch 4 Resolved Issues

Altiris Client Management Suite 7.1 from Symantec User Guide

Symantec NetBackup Vault Operator's Guide

Symantec Enterprise Security Manager Modules for Oracle Release Notes

Altiris Software Management Solution 7.1 from Symantec User Guide

Security Content Update Release Notes. Versions: CCS 11.1 and CCS 11.5

Veritas CommandCentral Enterprise Reporter Release Notes

Configuring Symantec Protection Engine for Network Attached Storage for Hitachi Unified and NAS Platforms

Configuring Symantec. device

Symantec Enterprise Security Manager IBM DB2 Modules User Guide for Windows and UNIX. Version 4.2

Symantec Enterprise Security Manager IBM DB2 Modules User Guide for Windows and UNIX. Version 4.6

Altiris IT Analytics Solution 7.1 from Symantec User Guide

Veritas Storage Foundation and High Availability Solutions Getting Started Guide

Symantec Enterprise Vault

Symantec ServiceDesk 7.1 SP1 Implementation Guide

Symantec ApplicationHA Release Notes

Security Content Update Release Notes for CCS 12.x

Symantec Backup Exec System Recovery Granular Restore Option User's Guide

Symantec Endpoint Protection Integration Component User's Guide. Version 7.0

Veritas Cluster Server Library Management Pack Guide for Microsoft System Center Operations Manager 2007

Symantec Enterprise Security Manager Modules for Microsoft SQL Server Databases Release Notes. Release 2.1 for Symantec ESM 6.0, 6.1, and 6.5.

Veritas Storage Foundation and High Availability Solutions Getting Started Guide

Symantec Security Information Manager FIPS Operational Mode Guide

Symantec Enterprise Vault Technical Note

Veritas Cluster Server Application Note: High Availability for BlackBerry Enterprise Server

Symantec NetBackup for Lotus Notes Administrator's Guide. Release 7.6

Symantec System Recovery 2013 R2 Management Solution Administrator's Guide

Symantec Enterprise Vault Technical Note

Veritas Dynamic Multi-Pathing readme

Symantec Drive Encryption for Mac OS X Quick Start Guide Version 10.3

Symantec NetBackup Appliance Fibre Channel Guide

Veritas Storage Foundation and High Availability Solutions HA and Disaster Recovery Solutions Guide for Microsoft SharePoint Server

Building on Symantec Corporation s proven technology, PGP Desktop 10.2 for Mac OS X includes numerous improvements and the following new features.

Configuring Symantec AntiVirus for BlueArc Storage System

Symantec NetBackup OpsCenter Reporting Guide. Release 7.7

Veritas System Recovery 18 Management Solution Administrator's Guide

Symantec Encryption Management Server

Symantec Enterprise Security Manager JRE Vulnerability Fix Update Guide

Symantec Enterprise Vault

Veritas SaaS Backup for Office 365

Symantec Encryption Management Server

Symantec ServiceDesk 7.1 SP2 Portal User Guide

Veritas Storage Foundation and High Availability Solutions Application Note: Support for HP-UX Integrity Virtual Machines

Veritas SaaS Backup for Salesforce

Veritas System Recovery 16 Management Solution Administrator's Guide

Altiris PC Transplant 6.8 SP4 from Symantec User Guide

Symantec Data Loss Prevention System Maintenance Guide. Version 14.0

Veritas Operations Manager Storage Insight Add-on for Deep Array Discovery and Mapping 4.0 User's Guide

PGP Universal Server. Upgrade Guide 3.2

Symantec NetBackup for Enterprise Vault Agent Administrator's Guide

Symantec ApplicationHA Agent for Microsoft SQL Server 2008 and 2008 R2 Configuration Guide

Symantec Mobile Management 7.1 Implementation Guide

Symantec Network Access Control Linux Agent User Guide

Symantec ApplicationHA Agent for Microsoft Internet Information Services (IIS) Configuration Guide

Symantec NetBackup for Enterprise Vault Agent Administrator's Guide

Symantec Enterprise Security Manager Modules for IBM DB2 Databases (Windows) User s Guide 3.0. Release for Symantec ESM 6.5.x and 9.

Veritas Storage Foundation and High Availability Solutions Getting Started Guide - Linux

Security Content Update Release Notes. Versions: CCS 11.1.x and CCS 11.5.x

Veritas System Recovery 18 Linux Edition: Quick Installation Guide

Veritas Cluster Server Database Agent for Microsoft SQL Configuration Guide

Veritas Desktop and Laptop Option 9.2. Disaster Recovery Scenarios

Veritas Backup Exec Migration Assistant

Veritas Disaster Recovery Advisor Release Notes

Veritas Desktop and Laptop Option 9.2. High Availability (HA) with DLO

Symantec Enterprise Vault Technical Note

Symantec pcanywhere 12.5 SP4 User Guide

Symantec NetBackup for Microsoft Exchange Server Administrator s Guide

Symantec NetBackup Plug-in for VMware vsphere Web Client Guide. Release 7.6.1

Symantec Encryption Management Server

Wise Mobile Device Package Editor Reference

Symantec LiveUpdate Administrator 2.3 User's Guide

Symantec Corporation NetBackup for Microsoft Exchange Server Administrator s Guide

Veritas Storage Foundation and High Availability Solutions Application Note: Support for HP-UX Integrity Virtual Machines

Symantec pcanywhere 12.5 SP3 Administrator Guide

Veritas Storage Foundation and High Availability Solutions Microsoft Clustering Solutions Guide for Microsoft Exchange 2007

Symantec Disaster Recovery Advisor Release Notes

Symantec NetBackup PureDisk Storage Pool Installation Guide

Symantec Enterprise Security Manager Agent, Manager, Console Update for Windows Server 2008

NetBackup Copilot for Oracle Configuration Guide. Release 2.7.1

Configuring Symantec Protection Engine for Network Attached Storage 7.9 for NetApp Data ONTAP

Veritas Storage Foundation Add-on for Storage Provisioning User's Guide. 4.0 Release Update 1

Symantec Drive Encryption Evaluation Guide

Transcription:

Symantec Encryption Management Server Version 3.3.0 Maintenance Pack Release Notes Thank you for using this Symantec Corporation product. These Release Notes contain important information regarding this release of Symantec Encryption Management Server. Symantec Corporation strongly recommends you read this entire document. Symantec Corporation welcomes your comments and suggestions. You can use the information in Getting Assistance to contact us. Product: Symantec Encryption Management Server Version: 3.3.0 MP3 Warning: Export of this software may be restricted by the U.S. government. Note: To view the most recent version of this document, go to the Products section on the Symantec Corporation website. What's Included in This File About Symantec Encryption Management Server Changes in this release Additional Information Changed Functionality Technical Support Copyright and Trademarks About Symantec Encryption Management Server Symantec Encryption Management Server provides your enterprise with secure messaging by transparently protecting your messages without user interaction. It automatically creates and maintains a Self-Managing Security Architecture (SMSA) by monitoring authenticated users and their email traffic. You can also send protected messages to addresses that are not part of the SMSA. The Symantec Encryption Management Server encrypts, decrypts, signs, verifies messages, and provides strong security through policies you control. Symantec Encryption Satellite provides security for email messages up to the email user's computer, allows external users to become part of the SMSA, and provides end users the option to create and manage their keys on their computers. Symantec Encryption Management Server is a security tool that uses cryptography to protect your data against unauthorized access.

Changes in This Release This section lists the changes in this release of Symantec Encryption Management Server. What's Changed in This Maintenance Pack What's Changed in Symantec Encryption Management Server 3.3.0 MP3 Security Resolved the CVE vulnerability (CVE-2003-1418) with the Apache Web server. [3113829] Resolved the CVE vulnerability (CVE-2012-3499) with Symantec Encryption Management Server by no longer loading the mod_status module. [3142514] Administrative Interface Resolved an issue with Symantec Encryption Management Server for System>General Settings, under Server Information, so that the Set System Time dialog now initializes the Time Zone to null and no longer provides a default value for Use NTP Server. [3111318] Resolved an issue with Symantec Encryption Management Server so that daily emails are now sent when the administrator selects the Send Daily Status Email option. [3133221] Resolved an issue with Symantec Encryption Management Server so that following a PUP update, the Log drop-down list on the Reporting>Logs page includes the entry Clustering SSL. [3212955] Symantec Encryption Web Email Protection Resolved an issue with Symantec Encryption Web Email Protection so that an email reply now correctly handles whitespace between the name and email address or special characters in the email address. [2727421, 3156508] Fixed an issue with Symantec Encryption Web Email Protection so that custom templates work consistently. [3113087] Symantec Encryption Desktop Resolved an issue so that a corrupt-data message is no longer written to the Symantec Encryption Desktop log file. This message was triggered when drive encryption was paused and the user restarted the computer. Then the user authenticated at the PGP BootGuard login screen using a WDRT, created a new password in Windows, and updated the policy from the PGP Tray icon. [2732874] Resolved an issue with Symantec Encryption Desktop so that when PGP Zip is disabled by policy, it is not listed in the Windows New Document context menu. [3063580] Resolved an issue with Symantec Drive Encryption for Mac OS X where client computer identification information (for example, hostname) was not being sent consistently to the Symantec Encryption Management Server. [3083851] Resolved an issue with Symantec Encryption Desktop where a missing UUID registry entry on a client computer is now properly handled: for computers already encrypted with Symantec Drive Encryption, persistent entries are written to the client and server logs; for unencrypted computers, encryption is prevented. [3084742]

Resolved an issue with Symantec Encryption Management Server so that the licensee count increases each time a Symantec Encryption Desktop client enrolls. [3118293] Resolved an issue with Symantec Encryption Management Server so that when you click Refresh Groups from Symantec File Share Encryption on a managed client, for a protected folder, the client checks with the server and notifies you if a group has changed and instructs you to re-encrypt the folder. [3149727] Resolved an issue with Symantec Encryption Desktop so that super silent enrollment with cached credentials now works. [3195159] Keys and Certificates Resolved an issue with Symantec Encryption Management Server when performing certificate path validation in the case where multiple X.509 CA certificates with identical names are present. [2476060] You can now successfully change the user key mode for an existing key from SKM to GKM for Windows clients. [3207580] Resolved an issue with the Symantec Encryption Management Server so that when an additional decryption key (ADK) is used, client enrollment is successful and the ADK is added to the keyring on the clients. [3177851] Resolved an issue with Symantec Encryption Management Server where adding an ADK to a Consumer Policy now saves the ADK on the server and downloads it to the user s keyring when a Symantec Encryption Desktop client enrolls. [3179440] What's Changed in Symantec Encryption Management Server 3.3.0 MP2 Compatibility with Mac OS X 10.8.4 This release supports the installation of Symantec Desktop Encryption on systems running Mac OS X 10.8.4. Compatibility with Microsoft Outlook 2013 Symantec Encryption Desktop 10.3 MP2 for Windows supports the use of the Symantec Desktop Email Encryption, Powered by PGP Technology component for Microsoft Outlook 2013 (32-bit) with Windows 8 and Exchange 2010. Compatibility with New Linux Packages This release supports the installation of Symantec Drive Encryption for Linux on Ubuntu 12.04 LTS (32-bit and 64-bit versions) and Red Hat Enterprise Linux/CentOS 5.9, 6.3, and 6.4 (32-bit and 64-bit versions). Security Resolved the CVE vulnerabilities (CVE-2008-2937, CVE-2011-0411) with Postfix. [3179859] Resolved the CVE vulnerability (CVE-2012-4929). [3179869] Resolved a possible cross-site scripting vulnerability due to a misflagged cookie. [3179875] Removed a possible cross-site scripting vulnerability in Symantec Web Email Protection. [3183716]

Resolved a potential cross-site scripting (XSS) vulnerability with Symantec Encryption Management Server. [3183721, 3185990] Administrative Interface Information about what version of Windows a client is installed on now appears on the Devices page. [3106363] The Web Messenger log has been renamed to the Web Email Protection log to reflect product rebranding. [3178670] Resolved the issue with Symantec Encryption Management Server management console so that when the Delete All Matching option is selected, only machines that qualify are deleted, not all of the machines. [3178815] Resolved an issue that prevented successful keyserver searches. [3179523] The Symantec Drive Encryption Activity report now shows the correct number of entries for users with more than one device, with no missing or duplicated entries. [3179889] Resolved an issue with Symantec Encryption Management Server so that the nightly SCAN operation no longer generates exception stack traces when updating or inserting due to a database foreign key constraint violation. All user data are now replicated to the other cluster members. [3198384] Messaging Resolved an issue so that when the Mail Policy is set to bounce an email when suitable key is not found, the Notifier displays the "Email blocked to all recipients" message and the Non Delivery Report (NDR) contains the "Your message did not reach any of the intended recipients" message. [3178978] Resolved an issue with Symantec Encryption Management Server where inbound TLS sessions would occasionally fail with a protocol error. This caused incoming mail to be queued on the sending mail server, resulting in a delivery delay. [3179437] Upgrade and Migration Resolved an issue that caused errors to appear when upgrading from Symantec Encryption Management Server 3.2.1 MP3. [3178746] Migration errors no longer occur when upgrading from PGP Universal Server 3.2 MP5. [3178951] Duplicate preferences settings are now removed at upgrade. [3179069] Migration no longer causes missing preferences. [3179086] Symantec Encryption Web Email Protection Resolved an issue where case sensitivity with respect to the recipient s email address caused the recipient to be unable to access Symantec Web Email Protection messages. [3178717] The First, Previous, Next, and Last buttons now work as expected in the Symantec Web Email Protector mailbox interface. [3178724] Symantec Web Email Protection now correctly requires both the user's email address and passphrase to log in. [3178778] Resolved an issue with Symantec Encryption Management Server so that complete customization of Symantec Web Email Protection now allows a customer to change all references to the product name. [3178797]

Symantec Encryption Desktop You can now use the pgpusermanager.py script to exclude from deletion users who have not checked in to the Symantec Encryption Management Server. [3118320] Resolved an issue with Symantec Drive Encryption where user re-enrollment was incorrectly generating a -12000 error under some conditions. [3136792] Resolved an issue where key searches through USP did not return user keys if the user's group is associated with the Excluded consumer policy, even if the Excluded policy is not the effective policy. Now user keys are only not returned if the consumer policy in effect is the Excluded policy. [3178779] Resolved the issue with Symantec Encryption Desktop so that disabling the Microsoft Outlook 2010 Skip Signature Check button no longer produces an error. [3178987] Resolved the issue so that 9.x and 10.0.x clients no longer display an error about a missing license when Symantec Encryption Management Server has been updated to version 3.3 MP2. If, after updating, the error is still there, navigate to the license and click the Use Default button. Then stop and restart services. [3179491] Keys and Certificates Resolved an issue so that the X.509 certificates generated by Symantec Encryption Managements Server include the Key Agreement value in the Key Usage properties. [3179063] Resolved an issue so that VeriSign Root Certificates imported to PGP Universal Server 3.2 can be used to establish TLS negotiations after upgrading. [3179077] You can now successfully change user keys from SKM to GKM for Mac OS X clients. [3207575] What's Changed in Symantec Encryption Management Server 3.3.0 MP1 Messaging Resolved the issue where the Symantec Encryption Management Server used inconsistent domain names in messages to external users. For more information, contact Support and request assistance with the Symantec Knowledgebase article TECH201490 (http://www.symantec.com/docs/tech201490). [2837777] Clustering Resolved an issue where an unreachable DNS caused clusters to fail and be unable to recover. [2887115] Resolved an issue where changing a user's primary email address caused the user to disappear from the cluster. [3017067] Administrative Interface Resolved an issue where Symantec Encryption Management Server used an incorrect domain name for user names with colons. [2851687] Symantec Encryption Management Server now correctly reports client IP addresses when using X-Forwarded-For headers with a Cisco ACE appliance. [2885549]

You can now sort users on the Groups page by Name, Username, User Type and Email Address. [2858703] On the Clustering page, mousing over the icon that shows Web Email Protection enabled now displays correct text. [3012260] PGP Keys Resolved an issue where Symantec Encryption Management Server did not provide a useful error message in the logs when user keys cannot imported because there is no email address specified. [2780110] X.509 key lookups now function successfully for email addresses with fewer than 25 characters. [2986307] When Symantec Encryption Management Server cannot find a key on an X.509 keyserver, the failure no longer causes that keyserver to be marked as down. [2986357] Symantec Encryption Web Email Protection Resolved an issue so that the Symantec Web Email Protection accounts are deleted based on the Inactivity Expiration value specified in Symantec Encryption Management Server. [2837496] Resolved an issue so that users can log in to Symantec Web Email Protection after the Symantec Encryption Management Server is upgraded. [2860242] Messages sent via Certified Delivery now contain the Message ID and Date Header. [2886746] Manually sent Daily Status Emails display correctly in Web Email Protection. [2963029] Upgrading Upgrading no longer causes the creation of duplicate Consumer Policy values. [2623554] Automatic backups no longer occur while software updates are in progress. [2811479] Symantec Drive Encryption Resolved an issue where viewing WDRTs caused crashing due to migration errors. If WDRTs are not viewable after migration, examine the log files for error messages, and contact Symantec Support to resolve the migration errors. [2866688] Symantec Encryption Desktop Resolved an issue that caused searches for external users' keys to fail within Symantec Encryption Desktop. [2745817] Symantec Encryption Desktop can now be configured to automatically abort the connection instead of alerting the end user when there is a problem with the Symantec Encryption Management Server certificate. To enable this new behavior, contact Symantec Support. [2971509] Installing this Maintenance Pack Following are instructions for installing this maintenance pack release.

Installing the Symantec Encryption Management Server Maintenance Pack PUP Update To install the Symantec Encryption Management Server 3.3.1 maintenance pack update: 1. Log in to your Symantec Encryption Management Server administrative interface. 2. Select System > Updates. 3. Click Upload Update Package. 4. Select the PUP file and click Upload. 5. Click Install. Technical Support Symantec Technical Support maintains support centers globally. Technical Support s primary role is to respond to specific queries about product features and functionality. The Technical Support group also creates content for our online Knowledge Base. The Technical Support group works collaboratively with the other functional areas within Symantec to answer your questions in a timely fashion. For example, the Technical Support group works with Product Engineering and Symantec Security Response to provide alerting services and virus definition updates. Symantec s support offerings include the following: A range of support options that give you the flexibility to select the right amount of service for any size organization Telephone and/or Web-based support that provides rapid response and up-to-the-minute information Upgrade assurance that delivers software upgrades Global support purchased on a regional business hours or 24 hours a day, 7 days a week basis Premium service offerings that include Account Management Services For information about Symantec s support offerings, you can visit our website at the following URL: www.symantec.com/business/support/ All support services will be delivered in accordance with your support agreement and the thencurrent enterprise technical support policy. Contacting Technical Support Customers with a current support agreement may access Technical Support information at the following URL: www.symantec.com/business/support/ Before contacting Technical Support, make sure you have satisfied the system requirements that are listed in your product documentation. Also, you should be at the computer on which the problem occurred, in case it is necessary to replicate the problem. When you contact Technical Support, please have the following information available: Product release level Hardware information

Available memory, disk space, and NIC information Operating system Version and patch level Network topology Router, gateway, and IP address information Problem description: Error messages and log files Troubleshooting that was performed before contacting Symantec Recent software configuration changes and network changes Licensing and registration If your Symantec product requires registration or a license key, access our technical support Web page at the following URL: www.symantec.com/business/support/ Customer service Customer service information is available at the following URL: www.symantec.com/business/support/ Customer Service is available to assist with non-technical questions, such as the following types of issues: Questions regarding product licensing or serialization Product registration updates, such as address or name changes General product information (features, language availability, local dealers) Latest information about product updates and upgrades Information about upgrade assurance and support contracts Information about the Symantec Buying Programs Advice about Symantec's technical support options Nontechnical presales questions Issues that are related to CD-ROMs or manuals Support agreement resources If you want to contact Symantec regarding an existing support agreement, please contact the support agreement administration team for your region as follows: Asia-Pacific and Japan customercare_apac@symantec.com Europe, Middle-East, Africa North America, Latin America semea@symantec.com supportsolutions@symantec.com

Copyright and Trademarks Copyright (c) 2013 Symantec Corporation. All rights reserved. Symantec, the Symantec Logo, the Checkmark Logo, PGP, Pretty Good Privacy, and the PGP logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners.

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback