Release Notes
27 February 2024, 17:20
These release notes provide information about the Password Manager 5.13.2 release. For the most recent documents and product information, see Password Manager Technical Documents on the One Identity Support Portal.
Password Manager 5.13.2 is a patch release with resolved issues.
For the list of resolved issues, see Resolved issues.
For the list of known issues, see Known issues.
The following is a list of issues addressed in this release.
|
Resolved issue |
Issue ID |
|
Users can now register with the Personal Email method. |
432389 |
|
The Required unique characters rule now evaluates the password correctly. |
432728 |
|
The Chromium component of SPE has been updated to 117.2.4. |
434516 |
|
Fixed a potential security vulnerability in Secure Password Extension. |
438569 |
|
Resolved issue |
Issue ID |
|
The Password Manager Self-Service Site now uses the word server in the routes instead of api. |
427249 |
|
The Password Manager Self-Service Site now authenticates the user correctly in the Authentication with external provider when the Popup login style is in use. |
432719 |
|
The Password Manager Self-Service Site now presents HTML coded UI text labels in custom activities. The HTML code is sanitized by default, but this can be turned off in the config.json file at <Password Manger installation folder>/Password Manager/Web/SelfService/Scripts/libs/assets/config/config.json. |
417153 |
|
The Password Manager Self-Service Site can load activities of the same type after one another correctly. |
434544 |
|
Resolved issue |
Issue ID |
|
The Password Manager Administration Site now displays the Not configured state of the Authentication Methods activity based on its settings. |
426384 |
|
On the Password Manager Administration Site, the STS config page now sets the properties for External Federation providers correctly. Any previously configured but not working External Federation authentication provider must be saved again for it to work correctly. |
432659 |
|
The Password Manager Administration Site now navigates to the correct Secure Token Server configuration page when stating that there are some configuration issues with a link pointing to the configuration page. |
432924 |
|
Allow user search from external network now stores the state of Allow user search from external network option when Do not allow users to search for their accounts is selected. NOTE: You must reconfigure the Allow user search from external network option for the Administration Site to store the state of Allow user search from external network. |
395034 |
|
ECDSA certificates are now supported. |
404015 |
|
Resolved issue |
Issue ID |
|
The Password Manager Helpdesk Site now displays the User cannot change password information correctly. |
426861 |
|
Password Manager Helpdesk Site operators can now search for accounts across multiple domains based on the settings of the Helpdesk page even if domain selection is not available. |
433314 |
|
Error pages now reflect the previously configured Web Interface customizations. |
409587 |
The following is a list of issues, including those attributed to third-party products, known to exist at the time of release.
|
Known issue |
Issue ID |
|
When User Principal Name (UPN) is used as service account, installing a Password Manager hotfix can lock the service account. Workaround To solve the problem:
|
255614 |
|
Following a Password Manager upgrade, the General > Settings > Scheduled Tasks > Active Directory Sites task is disabled. Workaround After upgrading Password Manager to a newer version, enable the Active Directory Sites task manually. |
246147 |
|
When scheduled from the secondary instance of the Password Manager server, the General Settings > Unregister Users task does not run. Workaround Schedule the Unregister Users task on the primary instance of Password Manager. |
233679 |
|
If the application pool identity is a domain user with minimal permissions, then Web interface customization changes are not applied to the Self-Service and Helpdesk Sites. |
233658 |
|
In the General Settings > Instance Reinitalization page, the Corporate phone attribute is not imported from the primary instance to the secondary instance. Workaround Update the Corporate phone attribute manually on the secondary instance to have the same value as on the primary Password Manager instance. |
229200 |
|
If the Password Manager Self-Service Site contains an IPv6 address, the location-sensitive authentication (LSA) feature does not work. Workaround LSA currently supports IPv4 addresses only. Therefore, do not access the Password Manager Self-Service Site from an external network where the request contains an IPV6 address. |
221571 |
|
When configuring a dictionary rule in the Password Manager Administration Site, the Policy Rules > Dictionary Rule > Enable dictionary lookup to reject passwords that contain > Beginning characters of a dictionary word setting does not work correctly if you specify only 2 beginning characters. Workaround One Identity recommends using the A complete word from the dictionary (QPMDictionary.txt) setting when configuring a dictionary rule. |
221468 |
|
If no appropriate authentication methods are configured for it, the Forgot My Password screen may appear blank in the Password Manager Self-Service Site or Helpdesk Site. Workaround In the Password Manager Administration Site, One Identity recommends configuring the Register workflow with Security Questions as one of its registration modes. |
221389 |
|
When a symmetry rule is configured with the Policy Rules > Symmetry Rule setting of the Password Manager Administration Site, it may fail to validate passwords containing non-consecutive characters. Workaround Do not use the Policy Rules > Symmetry Rule > Maximum number of consecutive characters within a password, that read the same in both directions (pass4554word) setting. |
220177 |
|
In a Password Manager environment, if the User Scope is configured with an AD LDS account, the Forgot My Password and Manage My Passwords workflows will fail. Workaround When configuring a User Scope, do not use The following AD LDS account setting of the Access account > Edit AD LDS Instance Connection dialog. |
220171 |
|
When a Questions and Answers Policy is updated with any language other than English, users may receive both the default and the custom email notifications on the Password Manager Self-Service Site. Workaround For the Email user if workflow succeeds workflow, change the value of the Select email template to use setting to Customize. |
219401 |
|
Upgrading Password Manager from version 5.6.3 to 5.9.x keeps the previous My Questions and Answers profile workflow. Workaround To solve the problem:
|
215892 |
|
The User Status Statistics scheduled task may fail intermittently. |
171590 |
|
After upgrading to Password Manager 5.9.x, the My Notifications custom workflow cannot be edited in the Password Manager Self-Service Site. Workaround One Identity recommends to use the legacy Self-Service Site to edit the My Notifications workflow. |
171589 |
|
When using Password Manager , the Password Policies page of the Administration Site is not updated when a password policy is created. Workaround After a new Password Policy is created, click Save, and immediately cancel the Add New Policy wizard. The page will refresh and list the new policy. |
170587 |
|
After upgrading to Password Manager 5.9.x, the General Settings > Search and Logon Options menu may display an error when its settings are modified. Workaround To solve this problem:
|
170560 |
|
In Password Manager , certain column data required for custom activities are not available in generated reports. |
170355 |
|
After upgrading Password Manager from an earlier version to 5.9.x, the upgrade process may create duplicate URL references for the Password Manager User Site. Workaround Manually delete URL shortcuts that are not required. |
169921 |
|
When a Password Manager instance and the Password Manager server instance are not configured on the same machine, Password Policy Rules are not displayed in the new and legacy Password Manager Self-Service Sites. Workaround Configure the Password Manager instance and the Password Manager server instance on the same machine. |
169763 |
|
The user search settings of the Password Manager Helpdesk Site may work incorrectly. Workaround To solve the problem:
|
169384 |
|
The Password Manager Self-Service Site may not launch on Secure Password Extension (SPE) through a 32-bit operating system. Workaround If you have a 32-bit operating system, One Identity recommends to use the legacy Self-Service Site. |
167871 |
|
When a password is changed from the target Active Directory (AD) system to that of the source AD, One Identity Quick Connect may be unable to synchronize passwords. Workaround Restart the Quick Connect Capture Agent Service on all the source and target systems. |
167573 |
|
In Password Manager versions 5.8.2 and 5.9.x, you can only reconnect to a domain on the second attempt. Workaround To solve the problem:
|
166950 |
|
In email notifications, the #OPERATOR_ACCOUNT_NAME#, #OPERATOR_IP#, #WORKFLOW_RESULT#, and #WORKFLOW_SUMMARY# parameters are not populated. |
141728 |
|
On Windows Server 2019, the Password Manager Service and One Identity rSMS Service may stop. Workaround To solve the problem, make sure that the domain controller machine and the clients are at two separate entities. |
127587 |
|
When editing a dictionary file between the size of 10–20 MB from a Password Policy, the web browser session may crash, and an error may appear in the Windows Event Viewer. Workaround If you must modify a dictionary file larger than 10 MB, edit it from the domain machine where Password Policy Manager (PPM) is installed. |
115957 |
|
When performing a password reset with the Password Manager Helpdesk Site, the site also accepts the previous/old password. Workaround Manually enter a different password during the short duration of the password reset. |
114822 |
© ALL RIGHTS RESERVED. Feedback Nutzungsbedingungen Datenschutz Cookie Preference Center
