April 2021
These release notes provide information about the One Identity Defender release.
Defender enhances security by using two-factor authentication to authenticate the users who request access to valuable resources within your organization. Defender uses your current identity store within Microsoft® Active Directory® to enable two-factor authentication, taking advantage of its inherent scalability and security, and eliminating the costs and time involved to set up and maintain proprietary databases. Defender’s Web-based administration and user self-service ease the implementation of two-factor authentication for both administrators and users.
Defender 6.1.0 is a minor release.
See New features.
New features in Defender 6.1.0
NOTE: Only the newly programmed iOS/Android tokens using Defender (v6.1.0 and above) support the push notifications.
The following is a list of issues addressed in 6.1.0 release.
|
Resolved Issue
|
Issue ID |
|---|---|
|
New Users are not able to login to Defender Desktop Login enabled |
216836 TFS776920 |
|
Unable to authenticate Defender Desktop Login due to recent Sophos updates. |
244610 |
|
Defender Desktop Login does not work only if Kerberos authentication is enabled. |
122492 |
|
Offline cache data is not updated after logging in to corporate VPN. |
142181 TFS799974 |
|
Delayed log on seen in Windows 10 machines while logging from outside of the network. |
124285 |
|
Defender Desktop Login does not try to search for the available DCs or GCs in the forest. |
TFS790429 |
|
User authentication to Defender Desktop Login using Google Authenticator tokens that are prefixed with PIN fails, when Defender Service is unavailable. |
TFS795260 |
|
When a user authenticates to a Windows 10 system via Defender Desktop Login, the logon process is delayed. |
TFS799227 |
| Resolved Issue | Issue ID |
|---|---|
|
Defender Management Portal performance issues while programming an iOS token |
247977 |
|
In the Self Service Portal, minimum and maximum length information of the PIN is missing while registering Hardware Tokens. |
234648 |
|
When a Defender Administrator searches for a user in the Management Portal, username does not appear in the header. |
219523 |
|
When User search is performed using Defender Management Portal, a delay is seen while retrieving User Properties. |
122497 |
|
Self-service User is unable to request for Software Tokens from the Defender Management Portal. |
140565 |
|
Unable to schedule the Defender reports. |
TFS791194 |
|
When Defender Management Portal is installed with a non-Domain Admin Group as the default administrator group of the Management Portal, and a user who is member of the non-Domain Admin Group logs in to the Management Portal, then the Administrator privileges are not provided to the user. |
TFS799703 |
| Resolved Issue | Issue ID |
|---|---|
|
Radius authentication fails with second factor when the multiple session requests hit the server concurrently |
254454 |
|
Defender Security Server is unable to switch to the next available GC in the AD forest. |
139493 |
| The DSS Service restarts when a username consists of special characters and exceeds the defined character limit. | TFS792148 |
| Authentication is abandoned when a user authenticates through VPN. |
TFS795681 TFS796768 |
| Defender Security Server service crashes if the SMTP server is not available. | TFS796950 |
| When Defender Security Server is configured to use SSL port 636 and server is rebooted, the DSS service fails to start. | TFS802183 |
| When a user is assigned an email or an SMS token along with an Authy token, the email or SMS is not sent to the User. | TFS800967 |
|
DSS Audit logs display incorrect Active Users count. |
TFS796783 |
|
DSS Audit logs capture GC connections repeatedly. |
TFS789612 |
|
YubiCloud tokens are not working with Defender. |
TFS794403 |
| Resolved Issue | Issue ID |
|---|---|
|
When you attempt to run the Soft Token for Java with Java 9 or later installed on the system, you encounter the following error: ClassCastException: class jdk.internal.loader.ClassLoaders$AppClassLoader cannot be cast to class java.net.URLClassLoader (jdk.internal.loader.ClassLoaders$AppClassLoader and java.net.URLClassLoader are in module java.base of loader 'bootstrap'). |
TFS798816 |
| Resolved Issue | Issue ID |
|---|---|
|
One Identity Defender Upgrade or Installation flows to 5.9.6 and above would throw the below error: "Service Defender Security Server (DSServADE) failed to start, Verify that you have sufficient privileges to start the system service." |
260000 |
|
Entropy used during token seed calculation can lead to a potential system vulnerability issue |
255241 |
|
Programmed soft token assigns an invalid token serial number to the user |
262833 |
|
In the parent child environment, discrepancies seen in the Defender License count. |
242105 |
|
When Allow expired Active Directory password to be changed option is enabled in Defender policy, user is not able to change the password. |
224706 |
|
Defender License fails to install when the Defender Organizational Unit is in the custom location. |
235292 |
|
When trying to access Management Portal site protected by the Defender ISAPI Agent, HTTP Internal Server error 500 is displayed. |
166936 |
|
Soft token license mismatch seen in Administration Console and Defender Management Reports. |
128649 |
|
Authentication using Temporary Tokens for Defender Soft Token for Android fails. |
142255 |
|
Authentication using Temporary Tokens for Defender Soft Token for iOS fails. |
142256 |
|
Authentication using Temporary Tokens for Defender Soft Token for Windows fails. |
142288 |
|
In the Defender Administration Console, Administrator is not able to set PIN for tokens. |
221449 |
|
After you install Microsoft July 2018 Security and Quality Rollup updates for .NET Framework updates, an error is displayed when you view Defender Properties in the Active Roles Web Interface. |
122503 |
|
The Done and Swipe buttons in Defender Soft Token for iOS have UI issues on the iPhone XS Max device. |
141465 |
|
Unable to delete GrIDsure Token/Defender Password from a User when the name contains forward slash. |
134405 |
|
User is able to login to the clients only with Active Directory password even after completing the token registration. |
126626 |
|
YubiCloud fails to validate the token response. |
216093 |
|
The Active Roles Web interface does not allow assigning Soft Tokens for iOS for users. |
TFS798859 |
|
Time-based non-OATH iOS tokens generate invalid responses when an expiry date is set for the token activation code. |
TFS799224 |
|
In Active Roles Web interface, when a user assigned with Defender-Administrator Access template tries to program Defender tokens, a permission related error message is displayed. |
TFS801613 |
|
Diagnostic logging for Integration Pack for Active Roles display token activation Code when programming token via Active Roles Console. |
TFS795246 |
|
When Defender Soft Token for iOS is programmed with an expiration date, Token Properties are not updated correctly in Administration Console. |
TFS629609 |
© 2024 One Identity LLC. ALL RIGHTS RESERVED. 使用条款 隐私 Cookie Preference Center
