Chat now with support
Chat with Support

One Identity Safeguard for Privileged Passwords 7.0.1 LTS - Release Notes

Safeguard for Privileged Passwords Release Notes

Safeguard for Privileged Passwords 7.0.1 LTS

Release Notes

06 December 2022, 10:09

These release notes provide information about the Safeguard for Privileged Passwords release. For the most recent documents and product information, see Online product documentation.

If you are updating a Safeguard for Privileged Passwords version prior to this release, read the release notes for the version found at: One Identity Safeguard for Privileged Passwords Technical Documentation.

Release options

Safeguard for Privileged Passwords includes two release versions:

  • Long Term Support (LTS) maintenance release, version 7.0.1 LTS
  • Feature release, version 7.1

The versions align with Safeguard for Privileged Sessions. For more information, see Long Term Support (LTS) and Feature Releases.

About this release

Safeguard for Privileged Passwords Version 7.0.1 LTS is a Long Term Support (LTS) maintenance release with resolved issues.

About the Safeguard product line

The Safeguard for Privileged Passwords 3000 and 2000 Appliances are built specifically for use only with the Safeguard for Privileged Passwords privileged management software, which is pre-installed and ready for immediate use. The appliance is hardened to ensure the system is secured at the hardware, operating system, and software levels. The hardened appliance approach protects the privileged management software from attacks while simplifying deployment and ongoing management and shortening the time frame to value.

Safeguard for Privileged Passwords virtual appliances and cloud applications are also available. When setting up a virtual environment, carefully consider the configuration aspects such as CPU, memory availability, I/O subsystem, and network infrastructure to ensure the virtual layer has the necessary resources available. See One Identity's Product Support Policies for more information on environment virtualization.

Safeguard privileged management software suite

Safeguard privileged management software is used to control, monitor, and govern privileged user accounts and activities to identify possible malicious activities, detect entitlement risks, and provide tamper proof evidence. The Safeguard products also aid incident investigation, forensics work, and compliance efforts.

The Safeguard products' unique strengths are:

  • One-stop solution for all privileged access management needs
  • Easy to deploy and integrate
  • Unparalleled depth of recording
  • Comprehensive risk analysis of entitlements and activities
  • Thorough Governance for privileged account

The suite includes the following modules:

  • Safeguard for Privileged Passwords automates, controls, and secures the process of granting privileged credentials with role-based access management and automated workflows. Deployed on a hardened appliance, Safeguard for Privileged Passwords eliminates concerns about secured access to the solution itself, which helps to speed integration with your systems and IT strategies. Plus, its user-centered design means a small learning curve and the ability to manage passwords from anywhere and using nearly any device. The result is a solution that secures your enterprise and enables your privileged users with a new level of freedom and functionality.
  • One Identity for Privileged Sessions is part of One Identity's Privileged Access Management portfolio. Addressing large enterprise needs, Safeguard for Privileged Sessions is a privileged session management solution, which provides industry-leading access control, as well as session monitoring and recording to prevent privileged account misuse, facilitate compliance, and accelerate forensics investigations.

    Safeguard for Privileged Sessions is a quickly deployable enterprise appliance, completely independent from clients and servers to integrate seamlessly into existing networks. It captures the activity data necessary for user profiling and enables full user session drill-down for forensics investigations.

  • One Identity Safeguard for Privileged Analytics integrates data from Safeguard for Privileged Sessions to use as the basis of privileged user behavior analysis. Safeguard for Privileged Analytics uses machine learning algorithms to scrutinize behavioral characteristics, and generates user behavior profiles for each individual privileged user. Safeguard for Privileged Analytics compares actual user activity to user profiles in real time, and profiles are continually adjusted using machine learning. Safeguard for Privileged Analytics detects anomalies and ranks them based on risk so you can prioritize and take appropriate action and ultimately prevent data breaches.

    Figure 1: Privileged Sessions and Privileged Passwords

Enhancements

The following is a list of enhancements implemented in Safeguard for Privileged Passwords 7.0.1 LTS.

Table 1: General enhancements
Enhancement Issue ID

A few settings have been moved from the Local Login Control page to the Security Policy Management > Settings page and to the new Application Management > Settings page. In addition, a new Show Access Request Conflict User Name setting is now available on the Security Policy Management > Settings.

307281

Display which SPS node is being used in Access Request Activity.

320068

Increased Password Policy name to up to 255 characters.

386346

No longer limiting ports for SAP Systems.

386357

In Access Request Policy, when using the RDP Application session type the Application Display Name field is now limited to 255 characters.

386362

Resolved issues

Issues addressed by this release follow.

Table 2: General resolved issues
Resolved issue

Issue ID

Account names with trailing spaces no longer causing Check tasks on assets with local accounts to fail.

314899

Windows SSH platform no longer incorrectly reporting a windows service running as a local account as an AD account.

314942

Fixed an issue where selecting Available for use across all partitions (Global Access) was accidentally allowing the account to be visible to more users than intended.

314943

Asset platform display name now correctly updated when changing from Windows Desktop (WinRM) to Windows Server (WinRM).

314946

Web UI now allowing password management options on AssetAccount where platform is Other.

314947

LDAP Filter condition for asset discovery has been fixed.

314952

Improved the caching behavior when registering Safeguard against Starling Cloud Assistant.

314953

Successful dependent service restarts no longer being reported as Dependent Asset Update Failed in logs.

314954

Fixed an issue causing WinRM assets to show as Unix discovery jobs.

315832

For Cisco NX-OS platforms, an entered port number is no longer being overridden by the default port.

317048

Fixed an issue with backups becoming stuck during an upgrade.

317050

Fixed a quarantine issue.

317052

Fixed an issue where after patching a cluster an error occurred preventing tasks from running.

317079

Fixed an issue where UpdateDependentAsset was repeatedly attempting to restart Parent services.

317525

No longer continuing to send some email notifications after a user has opted out of those notifications.

320059

Updated directory sync to wait until a task expires before attempting to run directory sync again.

320071

Fixed an issue causing change password to fail for Sybase.

320076

Fixed an issue where an Activity Report with Domain Account filter only showed Object Change while local account filter showed Access Request Activity.

320077

Access Request Review screen in web client no longer missing option to play a session or view it in the SPS portal.

321699

Now support up to 64 characters in Active Directory group names.

322655

Fixed a quarantine issue.

322667

Check and change now working for SonicOS 7.

363831

Fixed a .log files cleanup issue.

363973

Fixed an issue causing local users to disappear from user groups when the directory provider domain was hidden.

364169

322652

Documentation has been corrected to show default password when deploying to AWS is now <instance id>.

366934

Fixed an issue causing Sybase dll sybdrvodb64.dll to not run.

367300

Fixed an issue where the search functionality was not working when selecting assets to add to a group.

367614

Fixed an issue where a port change for an asset would only apply after the window was closed.

318147

Real Time reports now responding when a replica is not available instead of continually loading.

386359

Fixed an issue where backups stopped being archived after upgrading from 6.10 to 6.13.1.

386375

Now displays an alert in SPP when trying to add a new registered connector without first configuring the connector in Starling.

386378

Fixed an OutOfMemory exception issue when performing some platform tasks.

386756

Fixed an issue with registering Cloud Assistance when joined to Starling EU.

386372

Now sending an alert when a replica disconnects from cluster.

386356

The managed network defined in the asset discovery rule now correctly being applied to the asset.

387589

Corrected the minimum upgrade version in the documentation.

392012

Self Service Tools
Knowledge Base
Notifications & Alerts
Product Support
Software Downloads
Technical Documentation
User Forums
Video Tutorials
RSS Feed
Contact Us
Licensing Assistance
Technical Support
View All
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating