Retour
-
Titre
Active Roles 7.4.1 public hotfix for Critical Notification KB 334940 -
Description
This hotfix resolves the issue as outlined in KB 334940:
Product Component Resolved Issue Hotfix ID Defect ID Active Roles Web Interface Previously, attempting to consent Active Roles as an Azure application in an Azure tenant could result in the following error message:
Could not create Application in Azure. Bad Request: Values of identifierUris property must use a verified domain of the organization or its subdomain: 'http://ActiveRoles
This issue was introduced because of a change in the Azure Active Directory (AAD) application creation system, introducing stricter requirements for identifierUris.
This issue is now fixed, and Azure tenants can now be consented again.SOL334961 291638 In addition, this hotfix also includes cumulatively the following fixes:
Product Component Resolved Issue Hotfix ID Defect ID Active Roles Web Interface Previously, when creating a new group in the Active Roles Web Interface, the value for creating an Exchange email address unchecked by default did not gray out the mailNickname and edsaAdminGroup attributes, so they were still included in the request, which caused the groups to be created with a broken Exchange state.
This issue has been fixed and the policy now disables both attributes in the form by default.SOL331503 257514 Active Roles Web Interface When configuring Federated Authentication for the Web Interface, the following error message displayed after a timeout delay (5 minutes by default):
Unable to uniquely identify the user using provided claims. Please contact your Active Roles Administrator.
This issue has been resolved and Federated Authentication now revalidates without error.SOL331503 268186 Active Roles MMC Console Due to a memory leak in O365 Script Execution caused by a Microsoft PostScript call that does not deallocate memory despite a call to release all PSSessions, the Active Roles console (MMC Interface) closed after a few hours with an out-of-memory exception when an Automation Workflow was running a script every 5 minutes. The following line of code caused the issue:
$context.O365ImportModules("MsOnline")
This issue has been resolved and the memory utilization of the Active Roles server is now stable. However, the preferred solution to this issue is to update to Active Roles version 7.4.3 so that the MsOnline module is imported using Modern Authentication.SOL331503 267715 Active Roles Service SignalR is unable to establish a connection with the server using FQDN and the notifications are not working as expected. SOL318018 218229 Active Roles Service In Active Roles service ds.log, errors are logged for Starling Connect policy. SOL318018 218749 Active Roles Service In Active Roles, when PC-to-PC only or Enterprise Voice Telephony option is selected, for the Line URI attribute, a blank value should be allowed during enabling or modifying an account for Skype for Business. SOL318018 233275 Active Roles MMC Console An error You entered an invalid e-mail address is displayed when adding an additional SMTP email address with special characters. SOL318018 235386 In Active Roles Management Shell Change history (Get-QARSOperation -OperationID ) displays type as Unknown for Self Service group change operation. SOL318018 235763 Active Roles Management Shell Improved the time of completing the Get-QADGroupMember command-let operation. SOL318018 237296 Active Roles Web Interface Fixed an issue where modifying or updating Exchange Online Properties, such as the Delegate Send As Rights and Full Access permissions removed the Trustees and then added them back. SOL321019 239177 Active Roles Web Interface Previously, when having a New User form with customization and extended controls set, the control value of OnGetEffectivePolicy in the script was not populated. This has been fixed.
NOTE: You must clear the Schema cache of the Active Roles service for this fix to take effect. To clear the cache, follow Solution 3 in the Resolution section of the following Knowledge Base article:
https://support.oneidentity.com/active-roles/kb/100421SOL321019 241716 Active Roles Service Fixed some discrepanies observed during Tenant information updates. SOL321019 242908 -
Cause
Defect ID 291638 -
Résolution
Please download the hotfix here.
Installing this hotfixTo install this hotfix
- Extract the contents of the .zip archive into a temporary folder on the local drive where Active Roles is installed.
- Rename the extracted Active_Roles-7.4.1-334961.exe.rename file to remove the .rename file name extension.
- Run the file Active_Roles-7.4.1-334961.exe and follow the on-screen instructions to complete the hotfix installation.
-
Demande de changement
291638