Chat now with support
Chat with Support

Safeguard Authentication Services 4.1.5 - Management Console for Unix 2.5.1 Release Notes

Release Notes

One Identity Management Console for Unix 2.5.1

Release Notes

October 2017

These release notes provide information about the One Identity Management Console for Unix release.

NOTE: This version of the One Identity Management Console for Unix release notes have been rebranded for One Identity.
Topics:

About this release

One Identity Management Console for Unix is a web-based console that delivers a consolidated view and centralized point of management for local Unix users and groups, including:

  • Local Unix user and group management
  • Centralized reporting
  • Pre-migration readiness assessment for integrating with Active Directory
  • Remote client-agent deployment
  • Secure local Unix accounts with Active Directory authentication

Key features and capabilities of the management console:

  • Local Unix user and group management
  • Active Directory integration
  • Privilege Manager integration
  • Remote agent deployment
  • Role-Based Access Control
  • Reporting
  • Securing Local Unix accounts with Active Directory authentication
  • Web services

New Features

The following is a list of the new feature introduced in One Identity Management Console for Unix.

Version 2.5.1 new features

There are no new features for the current release. See Resolved issues for the list of issues addressed and enhancements implemented in this release.

Version 2.5.0 new features

The following is a list of the new features in One Identity Management Console for Unix 2.5.0:

  • One Identity Privilege Manager for Unix Integration

    Support for advanced, centralized Privilege Manager for Unix policy management, remote agent plugin installation and configuration, keystroke logging and replay, and reporting.

    • New roles for managing Privilege Manager for Unix
    • Remote installation of the Privilege Manager software
    • Readiness checks for both server configuration and host joins to policy groups
    • Ability to configure both primary and secondary policy servers
    • Centralized pmpolicy profile management with reporting and auditing
    • Support for the PMRUN elevation credential
    • Support for Tectia SSH
  • New features for One Identity Privilege Manager for Sudo

    • Support for Mac OS X
  • One Identity Authentication Services Access Control Management

    Support for limiting Active Directory user access to host systems by managing which Active Directory users and groups can access the host systems.

    • Manage access control on a single host system
    • Add and remove Active Directory users or groups across multiple hosts
  • Other new Management Console features

    • Reset or change passwords for multiple local accounts across multiple hosts
    • Modify certain user properties across multiple hosts
    • Context-sensitive help
    • New control role for access to all reports
    • Product License Usage report

Resolved Issues

The following is a list of issues addressed and enhancements implemented in One Identity Management Console for Unix 2.5.1.

Table 1: 2.5.1 resolved issues and enhancements
Resolved Issue Issue ID

When you install Authentication Services 4.0.3 on Solaris 10 (SPARC - 32/64 bit), the Solaris 10 SPARC packages are installed.

28050

Orphaned_kerberos SRV record no longer causes AD auth to fail.

28056

The Access and Privileges by User report now reports privileges for users who received privileges from Unix-enabled group.

28088

You can now specify where you want to install the management console.

28111

You can specify the database port during install; but you can not modify the database port on upgrade.

28152

Auto-profile on AIX with existing cron.deny file correctly creates a cron.allow file.

28168

Can now upgrade Privilege Manager for Unix 5.6 to 6.0 via the management console.

28203

28204

Workstation-only licenses now register count in the management console. 28384
Access and Privilege reports display all users/hosts in the details list. 28388
Fixed issue when saving policy on Firefox. 28389

The following is a list of issues addressed and enhancements implemented since the Management Console for Unix 2.5.0 release.

Table 2: 2.5.0 resolved issues and enhancements
Resolved Issue Issue ID
Console now tracks report task ids and cancels any that have not finished when application closes or you navigate away. 26374
Enabling auto-profile on a box without a cron.allow no longer blocks all users from using cron. 26455
Console now properly displays names in group membership when QAS lowercase-names is set to true. 26458
Error message improved to indicate what the real failure was. 26784
Profile now works when /tmp directory is mounted with the noexec flag. 26861
Console now allows you to join to Active Directory using SU elevation. 26964
Local groups report no longer makes unnecessary queries to Active Directory. 26986
When reporting QAS Access Control rules, we now correctly handle OUs. 27047
Tasks requiring service accounts (such as auto-profile) create cron.allow if it does not exist. Now is created with root as the owner. 27049
Auto-profile now uses custom port specified. 27267
Console now displays VMware ESX #.# on Host list and Host properties. 27377
Console now allows quotes in the password.

27418

Console now installs software successfully with /bin/rpm permissions set to 700. 27430
Console now allows passwords with spaces. 27494

Known Issues

The following is a list of issues known to exist at the time of release.

There are no issues known to exist at the time of the One Identity Management Console for Unix 2.5.1 release.

Table 3: Version 2.5.0 known issues
Known Issue Issue ID

PowerShell Cmdlets

!= comparison operator is not working for "Find" filters.

Workaround: Use PowerShell cmdlets to search for objects.

27854

Policy Editor

When multiple people are editing the same policy file, the last saved version of the policy overwrites the other's changes.

27703

Java Plugin Compatibility

Running Firefox with the JVM Plugin may produce security issues when loading applets. Because of the frequent updating of Firefox and Java Plugin, the editor applet and/or midterm SSH applet might not work.

Make sure you are using the latest versions of both Firefox and Java Plugin on the client you use to access the console.

27871

SSH Failure

Management Console for Unix does not support Security-Enhanced Linux (SELinux).

27455
Self Service Tools
Knowledge Base
Notifications & Alerts
Product Support
Software Downloads
Technical Documentation
User Forums
Video Tutorials
RSS Feed
Contact Us
Licensing Assistance
Technical Support
View All
Related Documents