CP-VA-140100-0004 Release Notes

This Release Notes contains the following sections:
cis141
This Release Notes contains the following sections:
Defects Fixed
The following defects have been fixed in this Cumulative Patch:
Support Ticket
Engineering Ticket
Problem Summary
Root Cause and Additional Deployment Instructions
Associated Risk
INTERNAL
INTERNAL
Cannot define the "
@
" and "
\
" characters in the SMTP username.
FIX
:Added the "
@
" and "\" characters to the white-list of allowed characters for
SMTP_USER
defined in
/opt/CA/VirtualAppliance/custom/IdentityManager/email.properties
Low
00858944
DE322156
Identity Governance Large Reports Crash
FIX
:
  1. Added a "
    allow-equals-in-cookie-value
    " directive to the https listener
  2. Increased the default value of the "
    max-post-size
    " on the http-listener and https-listener in IG standalone.xml to
    104857600
  3. Added support for changing the "
    max-post-size
    " on the http-listener and https-listener in IG standalone.xml based on the file
    /opt/CA/VirtualAppliance/custom/IdentityGovernance/max-post-size
 
Notes
:
  • In order to apply the changes, you must run the "
    repair_service
    " command and repair the Identity Governance service - this will cause the standalone.xml file (standalone-full-ha-ca-gm.xml) to be regenerated and contain the "
    max-post-size
    " and "
    allow-equals-in-cookie-value
    " parameters.
  • Then, in order to modify the "
    max-post-size
    " value, edit the file
    /opt/CA/VirtualAppliance/custom/IdentityGovernance/max-post-size
    , make the changes and restart IG.
Low
00875151
DE324201
Branding for Identity Manager 14.1
Cannot modify the
calogo.png
file.
FIX
: Added write permissions for
standalone/deployments/iam_im.ear/user_console.war/app/ui7/ca/images/calogo.png
Low
00880957
DE326115
Cannot add files to custom IdentityPortal resources directory any more
FIX
: Assigned write permissions to directories contained in the Identity Portal
/opt/CA/IdentityPortal/resources/
folder for the "config" user.
Low
00882366
DE326102
Configure the Dashboard to Point Application URLs not working
FIX
: Assigned write-permissions to the "config" user for the file 
/opt/CA/VirtualAppliance/conf/externalips
Low
INTERNAL
INTERNAL
A system with Identity Governance and Identity Portal does not deploy unless Identity Manager is deployed.
FIX
: Fixed an issue in the Identity Portal Connector startup phase during deployment, where it was not properly handling a situation where only IG is deployed (without IDM) which would have caused the deployment to fail.
Low
Product Enhancements
The following behaviors have been changed in this Cumulative Patch:
Support Ticket
Engineering Ticket
Enhancement description
Additional Deployment Instructions
INTERNAL
INTERNAL
Added support for running
ethtool
 
INTERNAL
INTERNAL
Defined a unique debug port for Identity Manager, Identity Portal and Identity Governance.
Identity Manager: 8787
Identity Portal: 8788
Identity Governance: 8789
INTERNAL
INTERNAL
F19973/US222186: Backup and restore of a Virtual Appliance
To backup the vApp configurations and data, run the following command:
backupVapp
To restore the vApp configurations and data to a replacement server, run the following command:
restoreVapp
00783835
DE305657
Update passwords and security-Domain for existing Datasource
Added support for encrypting custom data-sources for Identity Manager.
Every IDM custom data-sources that is added or modified, will have its password stored encrypted in the standalone xml configuration file (using a "security domain" implementation).
00864418
DE322518
Resize Disk Virtual Appliance
Added support for resizing the root ("/") volume on the vApp by adding an additional virtual disk.
Introduced a new alias:
addDisk
00875831
DE324446
vApp User context of PX prevents key-based SSH authentication to remote SSH
Introduced the
wildfly-ssh-keymgr
command to enable the following functions:
1. Generate an SSH keypair owned by wildfly
2. Remove an existing SSH keypair owned by wildfly
3. List all SSH keypairs owned by wildfly
4. Export an SSH keypair owned by wildfly
All generated keys are stored in the following directory (Accessible only by the "wildfly" user):
/opt/CA/VirtualAppliance/conf/wildfly-ssh-keys
In order to use a specific key, the ssh command should reference the exact key name in the directory using the following syntax:
ssh -o StrictHostKeyChecking=no -i /opt/CA/VirtualAppliance/conf/wildfly-ssh-keys/my_custom_key1 <username>@<remote host> "<remote command>"
INTERNAL
INTERNAL
Dialog boxes on the CLI may look distorted on some SSH clients
FIX
: Added a global variable definition of NCURSES_NO_UTF8_ACS=1 which aligns the CLI-based dialog behavior for SSH clients using UTF8 encoding.
INTERNAL
INTERNAL
Support for changing the keyboard layout
Added write permission to the file
/etc/sysconfig/keyboard
.
See https://www.centos.org/docs/5/html/5.1/Deployment_Guide/s2-sysconfig-kybd.html for more details
INTERNAL
INTERNAL
Allowing to manually create an Identity Manager Web-Services object for Identity Portal Connector.
Added the
createIDMTrustConfiguration
alias.
Running this command is only required in case it failed to run automatically during deployment.
INTERNAL
INTERNAL
Added Identity Portal's Admin UI status to the web UI dashboard