The Splunk forwarder is deprecated
The Splunk forwarder is deprecated as of Safeguard for Privileged Sessions(SPS) 6.7 and will be removed in an upcoming release. One Identity recommends using the universal SIEM forwarder instead.
Content policy biometrics are deprecated
Pointing device biometrics - DEPRECATED: This feature is deprecated. Use the same option in Indexer Policies instead.
Typing biometrics - DEPRECATED: This feature is deprecated. Use the same option in Indexer Policies instead.
Arguments of Authentication and Authorization and Credential Store plugins that begin with target_ have been deprecated
These arguments were deprecated because the target_host or target_server arguments either contained a hostname or an IP address.
Now, new arguments have been added to the Authentication and Authorization and Credential Store plugins to replace deprecated arguments. The new argument names explicitely define the values they contain. That is, a server_ip argument will always contain an IP address, and a server_hostname argument will always contain a hostname.
The deprecated arguments are the following:
Authentication and Authorization plugin: get_password_list and get_private_key_list input arguments:
Credential Store plugin: authorize method:
The following is a list of issues, including those attributed to third-party products, known to exist at the time of release.
Table 1: Safeguard Desktop Player known issues
The Safeguard Desktop Player has rendering issues with bad opengl drivers on Windows, for example, when running a Windows 10 guest on a Linux host (VirtualBox).
This only affects the Windows version and mostly the virtual environments, however, the root cause is the bad opengl driver.
A quick workaround is to set a QT_OPENGL=angle system wide environment variable.
Related to Safeguard for Privileged Passwords (SPP): You cannot use the Safeguard Desktop Player version 1.10.11 to replay audit trails initiated from SPP. Alternatively, use the Safeguard Desktop Player 1.9.27.
Before installing SPS 6.9.4 , ensure that your system meets the following minimum hardware and software requirements.
The One Identity Safeguard for Privileged Sessions Appliance is built specifically for use only with the One Identity Safeguard for Privileged Sessions software that is already installed and ready for immediate use. It comes hardened to ensure the system is secure at the hardware, operating system, and software levels.
For the requirements about installing One Identity Safeguard for Privileged Sessions as a virtual appliance, see one of the following documents:
NOTE: When setting up a virtual environment, carefully consider the configuration aspects such as CPU, memory availability, I/O subsystem, and network infrastructure to ensure the virtual layer has the necessary resources available. Please consult One Identity's Product Support Policies for more information on environment virtualization.
NOTE: The minimum recommended screen resolution for viewing One Identity Safeguard for Privileged Sessions's (SPS's) web interface is 1366 x 768 pixels on a 14-inch widescreen (standard 16:9 ratio) laptop screen. Screen sizes and screen resolutions that are equal to or are above these values will guarantee an optimal display of the web interface.
Supported operating systems
Windows 2008 Server, Windows 7, Windows 2012 Server, Windows 2012 R2 Server, Windows 8, Windows 8.1, Windows 10, Windows 2016, and Linux.
The SPS web interface can be accessed only using TLS-encryption and strong cipher algorithms.
Opening the web interface in multiple browser windows or tabs is not supported.