NetIQ Privileged Account Manager 3.2 Patch Update 4 Release Notes

Similar documents
NetIQ Privileged Account Manager 3.2 Patch Update 3 Release Notes

NetIQ Privileged Account Manager 3.2 Patch Update 2 Release Notes

NetIQ Privileged Account Manager 3.5 includes new features, improves usability and resolves several previous issues.

Self Service Password Reset 4.1 Patch Update 6 Release Notes

This patch update resolves specific previous issues. This document outlines why you should install this patch update.

NetIQ Identity Manager Analyzer 4.7 Release Notes

Access Manager 4.3 Service Pack 2 Release Notes

3 System Requirements for SecureLogin

3 System Requirements for SecureLogin

Access Manager 4.3 Service Pack 3 Release Notes

NetIQ Identity Governance includes new features, improves usability, and resolves several previous issues.

NetIQ SecureLogin 8.5 enhances the product capability and resolves several previous issues.

NetIQ SecureLogin 8.7 enhances the product capability and resolves several previous issues.

Access Manager Appliance 4.4 Service Pack 2 Release Notes

Access Manager 4.2 Service Pack 5 (4.2.5) supersedes Access Manager 4.2 Service Pack 4.

Access Manager 3.2 Service Pack 2 IR1 resolves several previous issues.

Access Manager 4.4 Service Pack 3 Release Notes

Access Manager 4.2 Service Pack 1 (4.2.1) supersedes Access Manager 4.2.

The following outline the key features and functions provided by this version, as well as issues resolved in this release:

Access Manager 4.2 Service Pack 2 (4.2.2) supersedes Access Manager 4.2 Service Pack1 (4.2.1).

NetIQ Privileged Account Manager 3.2 Installation Guide. December 2017

NetIQ Access Gateway for Cloud 1.0 Release Notes. 1 System Requirements. April 2012

The following sections outline the key features, functions, and resolved issues in this release:

Sentinel 8.0 includes new features, improves usability, and resolves several previous issues.

ZENworks 2017 Update 1 Quick Reference - Bundle Features and Options

2 What s New for Migrate Server in Azure Cloud

ZENworks 2017 Update 2 Endpoint Security Agent Reference. February 2018

Service Desk 7.2 Installation Guide. March 2016

Access Manager 4.0 includes new features, improves usability, and resolves several previous issues.

Access Manager 4.4 Service Pack 1 Release Notes

For information about how to purchase and download this product, see the PlateSpin Protect product website.

NetIQ Secure Configuration Manager Installation Guide. October 2016

ZENworks Application 2017 Update 2. 1 Documentation Updates. 2 Overview. 1.1 January 2018: Update to ZENworks 2017 Update 2.

Installation Guide Advanced Authentication - Logon Filter. Version 6.1

ZENworks 11 Support Pack 4 Endpoint Security Agent Reference. October 2016

NetIQ Secure Configuration Manager Dashboard User Guide. April 2016

Advanced Authentication 6.0 includes new features, improves usability, and resolves several previous issues.

ZENworks 2017 Update 1 Full Disk Encryption Pre-Boot Authentication Reference. July 2017

NetIQ imanager 3.0 Release Notes. 1 What s New. 1.1 New Features. January Bit Support

Plug-in Guide Advanced Authentication- ADFS Multi- Factor Authentication Plug-in. Version 6.1

Agent and Agent Browser. Updated Friday, January 26, Autotask Corporation

ZENworks 11 Support Pack 4 Management Zone Settings Reference. October 2016

NetIQ Cloud Manager Release Notes

Performing an ObserveIT Upgrade Using the Interactive Installer

Installation Guide Advanced Authentication - Windows Client. Version 5.4

NetIQ Identity Manager Designer 4.6 includes new features, improves usability, and resolves several previous issues.

ZENworks 2017 Audit Management Reference. December 2016

Operations Center Version Tracking Guide. September 2016

Access Manager 4.1 Service Pack 1 includes updates to dependent components and resolves several previous issues.

Upgrading an ObserveIT One-Click Installation

Centrify Infrastructure Services

ZENworks Mobile Workspace ios Installation. September 2017

Installation Guide Advanced Authentication- ADFS Multi- Factor Authentication Plug-in. Version 6.0

Installation Guide Advanced Authentication Server. Version 6.0

ZENworks 2017 Full Disk Encryption Pre-Boot Authentication Reference. December 2016

Installation Guide Advanced Authentication Windows Authentication Agent. Version 6.1

VMware AirWatch Content Gateway for Linux. VMware Workspace ONE UEM 1811 Unified Access Gateway

User Guide SecureLogin 8.1

Installation Guide Advanced Authentication - Windows Client. Version 5.3

This Readme describes the NetIQ Access Manager 3.1 SP5 release.

VMware Identity Manager Connector Installation and Configuration (Legacy Mode)

ZENworks 2017 Subscribe and Share Reference. December 2016

LiveNX Upgrade Guide from v5.2.0 to v5.2.1

Secret Server Demo Outline

Access Manager Appliance 4.3 Release Notes

LiveNX Upgrade Guide from v5.1.2 to v Windows

PlateSpin Transformation Manager Appliance Guide. June 2018

Installation Guide Advanced Authentication - Mac OS X Client. Version 6.1

Novell Data Synchronizer Mobility Pack Overview. Novell. Readme. January 28, 2013

1 Installing iprint Add-On on a Single Node. 2 Installing iprint Add-On in a Cluster Environment

Security Guide. Connection Broker. Advanced Connection and Capacity Management for Hybrid Clouds

BROWSER-BASED SUPPORT CONSOLE USER S GUIDE. 31 January 2017

ZENworks Reporting System Reference. January 2017

ZENworks Service Desk 8.0 Using ZENworks with ZENworks Service Desk. November 2018

Installing the Cisco Unified MeetingPlace Web Server Software

Installation Guide Advanced Authentication - Linux PAM Client. Version 5.5

Gateway Guide. Leostream Gateway. Advanced Capacity and Connection Management for Hybrid Clouds

NetIQ AppManager Upgrade and Migration Guide. September 2017

ZENworks 2017 Patch Management Airgap Solution. 1 About the Airgap Solution. 2 Prerequisites. December 2017

Connection Broker Advanced Connections Management for Multi-Cloud Environments. Security Review

ZENworks 2017 What s New Reference. December 2016

TECHNICAL WHITE PAPER AUGUST 2017 REVIEWER S GUIDE FOR VIEW IN VMWARE HORIZON 7: INSTALLATION AND CONFIGURATION. VMware Horizon 7 version 7.

ZENworks 2017 Out-of-Band Management Reference. December 2016

VMware AirWatch Content Gateway Guide for Linux For Linux

Novell Access Manager

ZENworks 11 Support Pack Product Licensing Reference. October 2016

HySecure Quick Start Guide. HySecure 5.0

GroupWise Messenger 18 Installation Guide. November 2017

Log & Event Manager UPGRADE GUIDE. Version Last Updated: Thursday, May 25, 2017

Overview Upgrading Unifier to Unifier

vcenter CapacityIQ Installation Guide

SuperLumin Nemesis. Getting Started Guide. February 2011

NetIQ Reporting Center Reporting Guide. February 2018

TIBCO Business Studio - Analyst Edition Installation

ZENworks 11 Support Pack 4 User Source and Authentication Reference. October 2016

Privileged Identity App Launcher and Session Recording

Access Manager 4.3 Release Notes

SecureLogin 8.7 User Guide. December, 2018

Dell Storage Compellent Integration Tools for VMware

ZENworks 2017 Update 2 ZENworks Agent Reference. February 2018

Transcription:

NetIQ Privileged Account Manager 3.2 Patch Update 4 Release Notes April 2018 NetIQ Privileged Account Manager 3.2 P4 resolves some of the previous issues. Many of these improvements were made in direct response to suggestions from our customers. We thank you for your time and valuable input. We hope you continue to help us ensure that our products meet all your needs. You can post feedback in the Privileged Account Manager Community Support Forum on NetIQ Communities, our online community that also includes product information, blogs, and links to helpful resources. The documentation for this product is available on the NetIQ website in HTML and PDF formats on a page that does not require you to log in. If you have suggestions for documentation improvements, click the comment icon on any page in the HTML version of the documentation posted at the Privileged Account Manager Documentation website. To download this product, see the NetIQ Downloads website. 1 What s New? The following sections outline the enhancement and also the issues resolved in this release: 1.1 Ability to Configure the Disk Space for Video Conversion When video conversion is in progress, agents store the screenshots of the session in a temporary folder. If Video fps is higher such as 10 or if the Video Conversion Priority is set to low, the disk fills up faster and may affect the server availability. To avoid this issue, you can now configure the minimum free disk space that should be available on the disk partition. The agent disconnects the session if the disk space is less than the configured value. You can restart the session once the disk is freed up after the video conversion is complete or when there is enough disk space. You can configure the disk space either as a global setting in Command Control so that it is applicable for all the agents or configure it for individual agents. To configure the free disk space: 1 (Conditional) To configure the free disk space for all the agents, click Command Control > Video Cache Settings under Command Control Options, and then specify the free disk space. 2 (Conditional) To configure the free disk space for individual agents: 2a Click Hosts and select the agent for which you need to configure the disk space. 2b Click Packages and select the Command Control Agent package (rexec). 2c Click Video Cache Settings and specify the free disk space Configuring the free disk space for individual agents overrides the value set in Command Control. The agent checks for any changes to this value once a day. NetIQ Privileged Account Manager 3.2 Patch Update 4 Release Notes 1

1.2 Software Fixes Section 1.2.1, root Users Cannot Use X11 Forwarding in the CPCKSH Login Shell, on page 2 Section 1.2.2, No Audits for Sessions in VM Console and Desktop if There is an Ongoing Direct RDP Session, on page 2 Section 1.2.3, Users Elevated as Administrator Can Kill the unifid.exe Process, on page 2 Section 1.2.4, Direct RDP Requires You to Add an Account Domain with Submit User as the Credential, on page 2 Section 1.2.5, Package Updates Fail When Updating from Novell Update Server, on page 2 Section 1.2.6, Privileged Account Manager Sends Events Only from the Primary Audit Manager, on page 3 Section 1.2.7, SQL Server Management Studio 2008 Does Not Connect to SQL Server 2008, on page 3 1.2.1 root Users Cannot Use X11 Forwarding in the CPCKSH Login Shell You can now use X11 Forwarding when elevated as the root user. (Bug 1069156) 1.2.2 No Audits for Sessions in VM Console and Desktop if There is an Ongoing Direct RDP Session Privileged Account Manager now audits sessions in VM console and desktop. (Bug 1076330) 1.2.3 Users Elevated as Administrator Can Kill the unifid.exe Process You can no longer kill the unifid.exe process since it is now a protected process. However, you must define group policies to ensure that the process cannot be stopped. (Bug 1072695) 1.2.4 Direct RDP Requires You to Add an Account Domain with Submit User as the Credential Issue: When you add an account domain, for Direct RDP, you must add a credential named Submit User. (Bug 1074511) Fix: To simplify the process of rule creation, creating an account domain and a credential named Submit User are now optional. Therefore, when you modify a rule: Video Capture options are now always displayed when Session Capture is On regardless of the Account Domain selection. Leave Account Domain and Credentials blank. Select Submit User for Run User and Submit Host for Run Host. 1.2.5 Package Updates Fail When Updating from Novell Update Server Issue: For package updates from Novell Update Server, when you click Update for Privileged Account Manager 3.1 or lower version packages, Package Manager does not update packages even though it indicates that the packages are added in the user interface. (Bug 1075827) Fix: Package Manager now updates packages successfully. 2 NetIQ Privileged Account Manager 3.2 Patch Update 4 Release Notes

1.2.6 Privileged Account Manager Sends Events Only from the Primary Audit Manager Issue: Privileged Account Manager does not send events from all audit zones to the Syslog server. It sends events only from the Audit Manager that has the primary Syslog Emitter. (Bug 1060383) Fix: To send events from all audit zones: 1 Install the local Audit Manager and the Syslog Emitter in the same Privileged Account Manager server. 2 Ensure that each audit zone has at least one Syslog Emitter but not more than one to avoid duplicate entries. 3 In Reporting Console > Syslog Settings, select Use Audit Zones. 1.2.7 SQL Server Management Studio 2008 Does Not Connect to SQL Server 2008 To fix this issue, upgrade Privileged Account Manager to version 3.2.0.2 or later. (Bug 1059043) 2 System Requirements For information about hardware requirements, supported operating systems and browsers, and software requirements, see Installation Requirements in the NetIQ Privileged Account Manager 3.2 Installation Guide. 3 Installing the Patch Update Before installing this patch update, ensure the following: Privileged Account Manager must be on version 3.2 or later. If you want to install this patch update on versions prior to 3.2, you must first upgrade to 3.2 and then install this patch update. For more information about upgrading to Privileged Account Manager 3.2, see Upgrading NetIQ Privileged Account Manager in the NetIQ Privileged Account Manager 3.2 Installation Guide. Windows Server 2008 R2 must contain the security update 3033929 or any update that supersedes it. This security update is required to support SHA-2 signing and verification. For more information about the security update, see Rexec package offline after updating to 3.2.0.1 on Windows 2008 R2. There are no active Windows sessions monitored by Privileged Account Manager since this patch update includes enhancements to video settings. The packages updated in this patch update are: Command Control Console Agent Console Reporting Console Package Management Console Command Control Manager Audit Manager Access Dashboard Console Framework Patch Command Control Agent Distribution Agent NetIQ Privileged Account Manager 3.2 Patch Update 4 Release Notes 3

SSH Relay Agent Syslog Emitter Installing the patch update includes publishing the packages on the Package Manager and installing the published packages. Section 3.1, Publishing the Packages on the Package Manager, on page 4 Section 3.2, Installing the Packages on Host Machines, on page 6 3.1 Publishing the Packages on the Package Manager You can publish the packages on the package manager in the following ways: By configuring your system to use the NetIQ Customer Center (NCC) and use the Package Manager to distribute the packages. See Section 3.1.1, Using Package Manager with NCC, on page 4. Download the patch update from the download site, install it on a local system, then use the Package Manager to distribute the packages. See Section 3.1.2, Using Package Manager with a Local Server, on page 5. 3.1.1 Using Package Manager with NCC 1 Configure the Package Manager by using the Novell Update Server: 1a Log in to the Administration console. 1b Click Package Manager > Settings. 1c From the drop-down, select Novell Update Server. 1d Configure the following fields: User name: Specify the user name that allows you to log in to the NetIQ Customer Center. Password: Specify the password that is associated with this account. 1e To view the update server information, select Advanced Settings. Select the Packages checkbox. Ensure that https is selected in the drop-down list. Specify the entire URL for download as follows: nu.novell.com/pum/packages Ensure that the port number is 443. Leave the last text field blank since /PUM/Packages is already added in the previous text field. 1f Click Finish. 2 (Conditional) Configure the Package Manager by using the Local Package Manager: 2a Log in to the Administration console. 2b Click Package Manager > Settings. 2c From the drop-down, select Local Package Manager. 2d Fill in the following fields: Host name: Specify the DNS name of the host. Port: Specify the communication port. The default port is 29120. The Local Package Manager is a Framework host configured to store the packages. 4 NetIQ Privileged Account Manager 3.2 Patch Update 4 Release Notes

3 (Conditional) If you do not have the Framework patch loaded in your Package Manager: 3a Click Package Manager on the home page of the console, then click Add Packages. 3b Configure the Package Filter to display the packages you need. Platform: Select required platforms. Make sure you select Cross Platform, which displays the console packages that run on all platforms. Types: Select at least Console, Module, and Patch. Components: Select all of them: Command Control, Framework, and Miscellaneous. 3c Select all the packages that are listed. Make sure you select the Framework Patch. 3d Click Next, then click Finish when the packages have been successfully downloaded. 3e To ensure that all packages are up-to-date, click Check for Updates. 3f Select any packages that are listed. 3g Click Next, then click Finish when the packages have been successfully downloaded. 4 Load the updates: 4a In the Package Manager page, click Check for Updates. 4b If updates are listed, select the packages, then click Next. 4c After the patch update is loaded, click Finish. 5 To push the packages to your host machines, continue with Section 3.2, Installing the Packages on Host Machines, on page 6. 3.1.2 Using Package Manager with a Local Server 1 Download the patch update manually: 1a On the NetIQ Downloads site, select the Basic Search tab. 1b On the right pane, select Search Patches. 1c On the Patch Finder page, select Privileged User Manager from the list of products. 1d Click Search, then click Privileged Account Manager 3.2. This displays the current patch update. 1e Download Privileged Account Manager 3.2 Patch Update 4. 2 Extract and publish packages into the Framework: 2a Copy the netiq-npam-packages-3.2.0.4.tar.gz file to any of the Privileged Account Manager machines. 2b Extract netiq-npam-packages-3.2.0.4.tar.gz into a temporary location, for example, / tmp/framework/ directory. tar -xvf netiq-npam-packages-3.2.0.4.tar.gz 2c Use the following command to publish the packages to the Package Manager: Replace <admin> with the name of your admin user. For Linux and UNIX platforms: /opt/netiq/npum/sbin/unifi -u <admin> distrib publish -d /tmp/framework For Windows platforms: NetIQ Privileged Account Manager 3.2 Patch Update 4 Release Notes 5

c:\program Files\netiq\npum\bin\unifi -u <admin> distrib publish -d c:\tmp\framework 2d When prompted, enter the name and password for the administrator. 3 To push the packages to your host machines, continue with Section 3.2, Installing the Packages on Host Machines, on page 6. 3.2 Installing the Packages on Host Machines Before installing the patch update, disconnect all the Privileged Account Manager sessions to the host on which you are installing this patch. You can install the updated packages on all the hosts or selected hosts in the following ways: Section 3.2.1, Installing the Packages Through Command Line, on page 6 Section 3.2.2, Installing the Packages Through Administration Console, on page 6 3.2.1 Installing the Packages Through Command Line You can install the packages on a Windows or LINUX/UNIX through command line. For more information about the commands for installing the updated packages, see Upgrade and Rollback Packages section in the NetIQ Privileged Account Manager 3.2 Administration Guide. 3.2.2 Installing the Packages Through Administration Console When you are installing the packages through the Administration Console, you can create a backup of the existing packages that you are replacing. To create the backup, you need to leave the Create backup option enabled when installing the patch update. Then, if you want to remove the update, you can use the Rollback Packages option. When you are installing the packages through the Administration Console, you must first install the Framework Patch (spf) and then install other updated packages. Thus, these updated packages are listed in the Host Console only after installing the Framework patch. To install the packages, perform the following: 1. Log in to the Framework Manager console. 2. (Conditional) If you want to install the patch update on all the hosts, perform the following: a. On the Home page of the console, click Hosts. b. Select the root domain. c. In the left pane, click Update Domain Packages. d. Select the latest Framework Patch (spf), then click Next. e. In the left pane, click Update Domain Packages. f. Select all the listed packages, then click Next. g. Click Finish. 3. (Conditional) If you want to install the patch update on selected hosts, perform the following: a. On the Home page of the console, click Hosts. b. Select the host on which you want to install this patch. c. In the left pane, click Update Packages. d. Select the latest Framework Patch (spf), then click Next. 6 NetIQ Privileged Account Manager 3.2 Patch Update 4 Release Notes

e. In the left pane, click Update Packages. f. Select all the listed packages, then click Next. g. Click Finish. 4 Known Issues NetIQ Corporation strives to ensure our products provide quality solutions for your enterprise software needs. The following issues are currently being researched. If you need further assistance with any issue, please contact Technical Support. Section 4.1, Moving Multiple Objects Does Not Work, on page 7 Section 4.2, The Run as privileged user Option Is Not Displayed on a Windows 2012 Server, on page 7 Section 4.3, The Command Control Objects Are Not Displayed When Large Number of Objects Are Added Simultaneously, on page 7 Section 4.4, The Unregistered Hosts List Is Not Displayed, on page 8 Section 4.5, The Changes to the Syslog Settings Do Not Get Applied, on page 8 Section 4.6, Cannot Uninstall Privileged Account Manager 3.2 through Windows Add/Remove Programs, on page 8 Section 4.7, NPAM Service Commands Do Not Work in SUSE Linux Enterprise Server 12 or Later, on page 8 Section 4.8, Package Update Fails with an Error in Windows Client Operating System, on page 9 Section 4.9, Performance Drop in Privileged Account Manager Monitored Windows System, on page 9 4.1 Moving Multiple Objects Does Not Work Issue: Selecting and moving multiple objects by using the Shift/ Ctrl key does not work. Workaround: To move multiple objects, you can use shift + select the required objects, or use Select All. (Bug 915307) 4.2 The Run as privileged user Option Is Not Displayed on a Windows 2012 Server Issue: When you right-click Start on a Windows 2012 server, the Run as privileged user option does not get displayed. (Bug 901032) Workaround: To workaround this issue, right-click an application in the folder where the application is installed to execute Run as privileged user. 4.3 The Command Control Objects Are Not Displayed When Large Number of Objects Are Added Simultaneously Issue: When Command Control Objects are added simultaneously in large numbers, the objects do not appear in the console. This is an intermittent behavior. (Bug 908307) Workaround: No Workaround. NetIQ Privileged Account Manager 3.2 Patch Update 4 Release Notes 7

4.4 The Unregistered Hosts List Is Not Displayed Issue: In the Administration console, when you search for unregistered hosts by clicking Hosts > List Unregistered Hosts > IP Range, the Failed to list unregistered agents error is displayed. (Bug 832747) Workaround: Ensure that when you install Agents, you register it with the Manager for Privileged Account Manager. 4.5 The Changes to the Syslog Settings Do Not Get Applied Issue: In the Reporting console, when you save the changes to Syslog settings, such as select SSL, or Allow Persistent Connections, the changes are not applied. (Bug 895993) Workaround: To workaround this issue, restart Privileged Account Manager. 4.6 Cannot Uninstall Privileged Account Manager 3.2 through Windows Add/Remove Programs Issue: Uninstalling Privileged Account Manager 3.2 through Windows Add/Remove Programs displays an error. This issue occurs only when the Privileged Account Manager is upgraded to 3.2 using Privileged Account Manager 3.2 installer. (Bug 1029461) Workaround: Uninstall Privileged Account Manager through command line or Privileged Account Manager 3.2 installer. 4.7 NPAM Service Commands Do Not Work in SUSE Linux Enterprise Server 12 or Later Issue: The NPAM service commands such as start, stop, restart and status does not work in SUSE Linux Enterprise Server 12 or later. (Bug 1041284) Workaround: To workaround this issue, perform one of the following: Reboot the system using the following command: reboot (or) shutdown -r now Kill and restart the NPAM process using the following command: pkill unifid /etc/init.d/npum start After performing one of the preceding steps, you can verify the NPAM process status by executing the following command: /etc/init.d/npum status 8 NetIQ Privileged Account Manager 3.2 Patch Update 4 Release Notes

4.8 Package Update Fails with an Error in Windows Client Operating System Issue: Package update in Windows 7, 8.1, or 10 fails with the message Failed to copy PUMCredProv.dll. Ensure LogonUI.exe process is not running on the target host and try again. (Bug 1072645) Workaround: Perform the following on all the hosts in which you are updating the packages: 1. Disconnect all the RDP sessions to the host. 2. Log in to the console of the host. 3. Continue with the steps in the Section 3.2, Installing the Packages on Host Machines, on page 6. 4.9 Performance Drop in Privileged Account Manager Monitored Windows System Issue: System performance of Privileged Account Manager monitored Windows machine is slow when the video fps value is set to 10. This is apparent on Windows machine having a single CPU. (Bug 1074472) Workaround: Click Command Control > Video Settings and set the value of Video fps to 5 or lower. 5 Contact Information Our goal is to provide documentation that meets your needs. If you have suggestions for improvements, please email Documentation-Feedback@netiq.com (mailto:documentation- Feedback@netiq.com). We value your input and look forward to hearing from you. For detailed contact information, see the Support Contact Information website (http://www.netiq.com/ support/process.asp#phone). For general corporate and product information, see the NetIQ Corporate website (http:// www.netiq.com/). For interactive conversations with your peers and NetIQ experts, become an active member of our community (https://www.netiq.com/communities/). The NetIQ online community provides product information, useful links to helpful resources, blogs, and social media channels. 6 Legal Notice For information about legal notices, trademarks, disclaimers, warranties, export and other use restrictions, U.S. Government rights, patent policy, and FIPS compliance, see https://www.netiq.com/ company/legal/. Copyright 2018 NetIQ Corporation. All Rights Reserved. NetIQ Privileged Account Manager 3.2 Patch Update 4 Release Notes 9

10 NetIQ Privileged Account Manager 3.2 Patch Update 4 Release Notes

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback