14.4.2 Cumulative Hotfix 1

View information about Virtual Appliance 14.4.2 Cumulative Hotfix 1.
This topic covers the following sections:

Deployment Instructions

Follow these instructions to deploy a cumulative hotfix:
  1. Download the cumulative hotfix from the support link. Support download links are provided in the succeeding sections on this page.
  2. Extract the downloaded cumulative hotfix. Each cumulative hotfix is provided in a compressed tarball format (tar.gz).
    • On Linux, use "tar -zxvf <filename>" to extract the compressed tarballs.
    • On Windows, extract the compressed tarballs.
  3. Copy the extracted files to the Virtual Appliance using SCP software. SCP is available by default on most Mac/Linux systems. You can download WinSCP for the Windows platform.
    The command to copy the hotfix from a Mac/Linux system to the Virtual Appliance is:
    scp CHF_<Component_Name>-14.4.2-<Date>-VA001.tgz.gpg [email protected]:
    For example:
    scp CHF_VA-14.4.2-20231019120955-VA001.tgz.gpg [email protected]:
  4. SSH into the Virtual Appliance.
    For example:
  5. Generate the MD5 checksum for the hotfix and compare with the checksum that is documented in the succeeding sections on this page.
    md5sum <Cumulative Patch>
    For example:
    md5sum CHF_VA-14.4.2-20231019120955-VA001.tgz.gpg
  6. Apply the cumulative hotfix.
    patch_vapp <Cumulative Hotfix>
    For example:
    patch_vapp CHF_VA-14.4.2-20231019120955-VA001.tgz.gpg
  7. (Optional - Rollback): If there is a need to roll back a cumulative hotfix after it has been applied, log in via SSH/CLI into the Virtual Appliance as shown in Step 4 and run "
    rollback_vapp
    ".
  • The patch and rollback commands should be executed within a "tmux" session (that is, run "tmux" and then run the required patch/rollback command).
  • Hotfixes must be applied only after deploying services on a cluster node.

Virtual Appliance

Hotfix Number
Published On
25 October 2023
Applies To
14.4.2
MD5 Checksum
ce601f047f398d7ad3d48751bbb9f2ed
Deployment Instructions
Follow the deployment instructions that are mentioned in Applying a Cumulative Patch.
Fixed Defects

Virtual Appliance - Identity Manager

Hotfix Number
Published On
25 October 2023
Applies To
14.4.2
Files Bundled with the Hotfix
  • Identity Manager
    Server
    • CHF_IMS-14.4.2-20231020153418-CHF001.tgz.gpg
  • Provisioning Server
    • CHF_PS-14.4.2-20231020102512-CHF001.tgz.gpg
  • Connector Server (JCS)
    • CHF_CS-14.4.2-20231020113230-CHF001.tgz.gpg
MD5 Checksum
  • Identity Manager
    Server
    • 5a8f3dfa63fa5fb8272d9c67f4be8791
  • Provisioning Server
    • 7dd408b7495fc241d6628722d5468a58
  • Connector Server (JCS)
    • c3eea62b0688289a293641205af030ef
Deployment Instructions
Follow the deployment instructions that are mentioned in Applying a Cumulative Patch.
Fixed Defects

Virtual Appliance - Identity Governance

Hotfix Number
Published On
25 Oct 2023
Applies To
14.4.2
Files Bundled with the Hotfix
CHF_IG-14.4.2-20231018142636-CHF001.tgz.gpg
MD5 Checksum
d73e97f32fa76f9fa69a98181a4b9c9b
Deployment Instructions
Follow the deployment instructions that are mentioned in Applying a Cumulative Patch.
Fixed Defects

Virtual Appliance - Identity Portal

Hotfix Number
Published On
25 October 2023
Applies To
14.4.2
Files Bundled with the Hotfix
CHF_IP-14.4.2-20231020102328-CHF001.tgz.gpg
MD5 Checksum
25c2940b2e6816af9ebc4b0ed45d2931
Deployment Instructions
Follow the deployment instructions that are mentioned in Applying a Cumulative Patch.
Fixed Defects

Virtual Appliance - Fixed Defects

The following defects are fixed in Virtual Appliance 14.4.2 Cumulative Hotfix 1:
Support Ticket
Engineering Ticket
Problem Summary
Root Cause
Behavioral Change
33309993
DE553292
Security Issue - Enumeration of a protected resource via URL in Virtual Appliance remote tools (Bulk Loader client).
-
-
33220050 33161609
DE547824 DE542263
The following issues are reported in the Identity Manager Log Rotation functionality: * Name mismatch in the rotated log files. * Logs are overwritten to the archived files.
The Log Rotation configuration file used different naming conventions for the log files.
-
33493989
DE572781
Unable to delete a Virtual Appliance node that is not reachable.
Virtual Appliance applies an Operating System validation check that prevents CentOS 6 nodes and allows only the addition of CentOS Stream 8 nodes to the cluster. The same validation check prevents the removal of a node that is not reachable.
Disabled the Operating System validation check for nodes that are being removed, thereby allowing removal of nodes that are not reachable.
33301128
DE552525
Cannot upgrade Virtual Appliance [14.4.1+CHF] to [14.4.2].
Strict version validation resulted in the patch application failure.
Enhanced the release version validation algorithm.
33475442 33501083
DE571385 DE573084
Enhancement request for the Virtual Appliance to support custom favicon for Identity Manager, Identity Governance, and Identity Portal.
-
Virtual Appliance now allows you to change the favicon for Identity Manager, Identity Governance, and Identity Portal. For more information, see Custom Favicon.
33486983
DE571519
The vAppUserPortalShowAllServices alias is not working as expected.
The Virtual Appliance operating system upgrade impacted the service identification.
-
33429975
DE565378
Changes made to /etc/resolv.conf are lost after the Virtual Appliance reboot.
Changes do not persist due to a change in the NetworkManager service in CentOS 8. The NetworkManager service validates each entry in the resolv.conf file that is configured with DHCP, thereby rewriting the file every time the NetworkManager service restarts.
Virtual Appliance supports a new alias "nmctl-rcmgr" which enables the Resolve Config Manager (rc-manager) to persist changes that are made to /etc/resolv.conf even after rebooting the Virtual Appliance.
33526405
DE577685
The NFS share that the MountNetworkShares alias creates is owned by the root user. Users other than root cannot write to the mounted directory.
The alias mounts the file system as root.
The alias now mounts a file system as a virtual appliance user.