Release Notes
One Identity Management Console for Unix 2.5.1
Release Notes
October 2017
These release notes provide information about the One Identity Management Console for Unix release.
|
|
NOTE: This version of the One Identity Management Console for Unix release notes have been rebranded for One Identity. |
Topics:
About this release
One Identity Management Console for Unix is a web-based console that delivers a consolidated view and centralized point of management for local Unix users and groups, including:
- Local Unix user and group management
- Centralized reporting
- Pre-migration readiness assessment for integrating with Active Directory
- Remote client-agent deployment
- Secure local Unix accounts with Active Directory authentication
Key features and capabilities of the management console:
- Local Unix user and group management
- Active Directory integration
- Privilege Manager integration
- Remote agent deployment
- Role-Based Access Control
- Reporting
- Securing Local Unix accounts with Active Directory authentication
- Web services
New Features
The following is a list of the new feature introduced in One Identity Management Console for Unix.
Version 2.5.1 new features
There are no new features for the current release. See Resolved issues for the list of issues addressed and enhancements implemented in this release.
Version 2.5.0 new features
The following is a list of the new features in One Identity Management Console for Unix 2.5.0:
-
One Identity Privilege Manager for Unix Integration
Support for advanced, centralized Privilege Manager for Unix policy management, remote agent plugin installation and configuration, keystroke logging and replay, and reporting.
- New roles for managing Privilege Manager for Unix
- Remote installation of the Privilege Manager software
- Readiness checks for both server configuration and host joins to policy groups
- Ability to configure both primary and secondary policy servers
- Centralized pmpolicy profile management with reporting and auditing
- Support for the PMRUN elevation credential
- Support for Tectia SSH
-
New features for One Identity Privilege Manager for Sudo
- Support for Mac OS X
-
One Identity Authentication Services Access Control Management
Support for limiting Active Directory user access to host systems by managing which Active Directory users and groups can access the host systems.
- Manage access control on a single host system
- Add and remove Active Directory users or groups across multiple hosts
-
Other new Management Console features
- Reset or change passwords for multiple local accounts across multiple hosts
- Modify certain user properties across multiple hosts
- Context-sensitive help
- New control role for access to all reports
- Product License Usage report
Resolved Issues
The following is a list of issues addressed and enhancements implemented in One Identity Management Console for Unix 2.5.1.
| Resolved Issue | Issue ID |
|---|---|
|
When you install Authentication Services 4.0.3 on Solaris 10 (SPARC - 32/64 bit), the Solaris 10 SPARC packages are installed. |
28050 |
|
Orphaned_kerberos SRV record no longer causes AD auth to fail. |
28056 |
|
The Access and Privileges by User report now reports privileges for users who received privileges from Unix-enabled group. |
28088 |
|
You can now specify where you want to install the management console. |
28111 |
|
You can specify the database port during install; but you can not modify the database port on upgrade. |
28152 |
|
Auto-profile on AIX with existing cron.deny file correctly creates a cron.allow file. |
28168 |
| Can now upgrade Privilege Manager for Unix 5.6 to 6.0 via the management console. |
28203 28204 |
| Workstation-only licenses now register count in the management console. | 28384 |
| Access and Privilege reports display all users/hosts in the details list. | 28388 |
| Fixed issue when saving policy on Firefox. | 28389 |
The following is a list of issues addressed and enhancements implemented since the Management Console for Unix 2.5.0 release.
| Resolved Issue | Issue ID |
|---|---|
| Console now tracks report task ids and cancels any that have not finished when application closes or you navigate away. | 26374 |
| Enabling auto-profile on a box without a cron.allow no longer blocks all users from using cron. | 26455 |
| Console now properly displays names in group membership when QAS lowercase-names is set to true. | 26458 |
| Error message improved to indicate what the real failure was. | 26784 |
| Profile now works when /tmp directory is mounted with the noexec flag. | 26861 |
| Console now allows you to join to Active Directory using SU elevation. | 26964 |
| Local groups report no longer makes unnecessary queries to Active Directory. | 26986 |
| When reporting QAS Access Control rules, we now correctly handle OUs. | 27047 |
| Tasks requiring service accounts (such as auto-profile) create cron.allow if it does not exist. Now is created with root as the owner. | 27049 |
| Auto-profile now uses custom port specified. | 27267 |
| Console now displays VMware ESX #.# on Host list and Host properties. | 27377 |
| Console now allows quotes in the password. |
27418 |
| Console now installs software successfully with /bin/rpm permissions set to 700. | 27430 |
| Console now allows passwords with spaces. | 27494 |
Known Issues
The following is a list of issues known to exist at the time of release.
There are no issues known to exist at the time of the One Identity Management Console for Unix 2.5.1 release.
| Known Issue | Issue ID |
|---|---|
|
PowerShell Cmdlets != comparison operator is not working for "Find" filters. Workaround: Use PowerShell cmdlets to search for objects. |
27854 |
|
Policy Editor When multiple people are editing the same policy file, the last saved version of the policy overwrites the other's changes. |
27703 |
|
Java Plugin Compatibility Running Firefox with the JVM Plugin may produce security issues when loading applets. Because of the frequent updating of Firefox and Java Plugin, the editor applet and/or midterm SSH applet might not work. Make sure you are using the latest versions of both Firefox and Java Plugin on the client you use to access the console. |
27871 |
|
SSH Failure Management Console for Unix does not support Security-Enhanced Linux (SELinux). |
27455 |