CP-IMV-140100-0005 Release Notes
The following defects have been fixed in this Cumulative Patch:
The following defects have been fixed in this Cumulative Patch:
Root Cause and Additional Deployment Instructions
DE351247 DE347670 DE354963
Improve product performance.
This is an enhancement to improve the performance of the product.
Disabled user is unable to log in to CA Identity Manager User Console after the configured time.
No checks were in place to verify if the disabled user was reenabled or not.
User search task fetches inappropriate results.
The AND and OR operators in the selection query are returning inappropriate results.
Linkage error faced with JSON API for SOAP calls in the Policy Xpress.
Linkage error is seen due to conflicting jars.
When Bulk Loader task runs, identity policies are retrieved from database in each synchronization event thus degrading system performance.
CA Identity Manager caches identity policy sets (IPS) and identity policies (IP) for each event. But the relationship between IPS and IP is not cached. When a user is synchronized, CA Identity Manager goes through all IPS and tries to evaluate their IPs. To evaluate an IP, CA Identity Manager has to access database. This happens in each SynchronizeUserEvent. For bulk loader task, this drags performance down dramatically.
CA Identity Manager gets disconnected from the database.
The selection query was locking the object12_5 table.
F62595 / Enhancement
Enhance Siebel Connector for CA Identity Manager and CA Identity Governance.
Enhancements to Siebel Connector:
* Added association between Position, Division, and Site
* Divisions can be created on the FLY
US474465 / F59539
Add the functionality to assign/revoke roles for Accounts
Added Oracle Apps Roles functionality to manage roles that are assigned to an account.
Unable to modify resubmit task submission.
The action type 'modify' in the resubmit task definition is not working as expected.
When using REST with HTTPS in Policy Xpress, an error is thrown.
HTTPS is not supported for REST Webservice calls in Policy Xpress.
CA Identity Governance performance degrades on importing data from the Active Directory Connector.
Performance is degrading because the CA Identity Manager libraries make recursive calls to the endpoint.
Forgot Password task fails to work for temporary passwords.
Forgot Password task fails to work for temporary passwords when Password Policy has regular expressions.
On issuing a SOAP call via Policy Xpress, the SOAP call request with the password in clear text format is logged into the server.
When using WSS security, CA Identity Manager supports plain text password only.
Error: No Auditing configuration was found for ime identityEnv
Audit datasource definition is not available while persisting task details in the Audit database.
On viewing archived submitted tasks in View Submitted Task (VST), in few cases, a Null Pointer Exception is thrown.
This error is seen only when CA Identity Manager uses multiple databases.
CA Identity Manager searches for "lock12_5" table in the Archive database instead of searching in the "Task Persistence" database.
Customer request to add the functionality to configure or remap IMRCM tasks to a custom task.
This is an enhancement to allow account suspend, resume, and delete events to be accessible from an Event Listener context thus allowing rapid resolution of specific accounts.
CA Identity Portal is unable to authenticate against the same Active Directory that CA Identity Manager is authenticating to.
CA Identity Manager uses imLoginID (%LOGIN_ID%) and uid (%USER_ID%) for authenticating against Active Directory; whereas CA Identity Portal uses uid (%USER_ID%) only.
When endpoints belonging to a different endpoint types have same names, and one of the endpoints goes offline, the remaining endpoints are also shown as offline in CA Identity Manager User Console.
The endpoints are marked offline based on the endpoint name and not the endpoint type.
Unable to import provisioning role from CA Identity Manager Management Console.
The "accountcontainer" property in the Account Template is missing.
Inbound notifications get stuck when CA Identity Manager Task Persistence is cleanup before processing the notifications.
The inbound event processing task fails to find the correct environment ID for the parent event that is deleted, resulting in a null pointer exception.
Bulk Loader file upload from CA Identity Manager User Console fails.
Isolation of Apache Commons file upload jar is not handled on CA Identity Manager WebLogic deployments.
In the Password Policy, the "Ignore sequence when checking for differences" functionality does not behave as expected.
This functionality was not implemented properly.
Multiple Tasks that have been marked "Failed" need to be resubmitted via TEWS API calls.
This is an enhancement to facilitate multiple resubmissions of failed tasks; currently the product only supports single submission.
In View Submitted Task (VST), the "Last Operation" column does not display the latest operation that is performed by a task.
The operation that is performed by a task is not selected based on the recent date and time.
CA Identity Manager is unable to submit live notifications of account updates and membership to CA Identity Governance.
Cross Site Request Forgery (CSRF) token is hindering live notifications of CA Identity Manager provisioning tasks to CA Identity Governance.
Few events do not include live notifications functionality.
Made enhancement to make it possible for certain events to include live notifications.
Date Comparison functionality in Policy Xpress does not return EQUALS; it compares system generated date and user configured date.
Policy Xpress system date format does not match with the configured date format.
Resubmit task in System tab does not search for in-progress tasks with current state as primary pending state (2048).
Resubmit task search filter does not include primary pending state.
In Policy Xpress, when an event is submitted with Policy Type as "UI", a null pointer exception is thrown.
Unable to cast UI type object.
CA Identity Manager User Console shows account status as active even though the account on endpoint is not reachable.
Account status was not evaluated properly.
When Bulk Loader task is configured with Custom Attribute Name for Object's Unique identifier, user modification and deletion tasks are failing.
The Custom Attribute (Unique Identifier) of the Bulkloader task does not work for the searchable attribute.
PolicyXpress is not functioning as expected when "set" method is used to set SAP Composite roles to an account.
Composite roles are not handled properly for SAP.
etautil on RHEL with -f input file parameter does not work properly.
Method that is used in etautil is unable to read the input file.
Connector does not return any error when it attempts to create a RACF account with an invalid owner.
When "set connect Group Ownership" option is selected on the managed endpoint, there is no check to confirm if an account is created successfully on RACF endpoint.
When a remote C++ Connector Server restarts, any future connections from Java Connector Server fail.
After C++ Connector Server restarts, Java Connector does not refresh the connection to the remote C++ Connector Server.
Unable to create, modify, or delete SQL accounts whose names contain \ followed by hexadecimal number.
\ followed by hexadecimal number is not handled properly.
Profile and Role attributes synchronization is not working for Salesforce connector.
Profile and Role attributes are not handled for synchronization.
"Owner (Group)" under "Account" tab for RACF v2 Account Template does not work as expected for non-english language.
The "Owner" in the "Owner (Group)" attribute is not considered for localization (hard-coded).
CA-Top Secret v2 connector does not display AccessVioSuspension attribute (Violation Suspend) for an account.
The AccessVioSuspension attribute was not available in the CA-Top Secret v2 connector.