Defects Fixed in 12.52 SP1 CR05

The following defects are fixed in  12.52 SP1 CR05:
sm1252sp1
The following defects are fixed in 
CA Single Sign-On
 12.52 SP1 CR05:
 
 
Policy Server
The following issues were fixed in Policy Server:
Salesforce Case Number
Internal Defect ID
Issue Description
22000073-01
DE65940
The SAML 1.1 default target configuration is inconsistent in FSS UI and Administrative UI.
00200658
DE67510
The “ReEnableAfterIncorrectPwd” method of the Policy Management API returns incorrect value.
00203863
DE68350
Policy Server leaks memory while processing the list of server commands.
00215858
DE68366
The authentication fails if the username contains &.
00061182
DE82998
The TargetAsRelativeURI ACO parameter fails to evaluate response URIs.
00069814
DE91886
The CA RiskMinder service fails to start after the Policy Server reconfiguration because of the Inaccurate SmCommand status.
00219841
DE93650
URLENCODE fails to handle internationalization characters.
21566865-01
DE96366
User groups are not populated under roles for Applications for the AD user store.
00144339
DE96440
The Policy objects imported using XPSImport fail to reflect immediately in the Administrative UI for ADLDS as a Policy Store. 
21911402-01
DE99403
 
CA Single Sign-On
 sends the ObjErr_NotFound error as an access error to CA Wily.
00250192
DE101595
The Authreason codes from Policy Server are not same as the AD response irrespective of the status of isADEnhanced.
00262154
DE102899
Policy Server fails to parse the format correctly when username contains "%Z".
00228620
DE103707
The legacy federation objects are migrated every time when XPSSweeper is executed even if there is no modification to the objects.
21971630-01
DE107877
The transactions processing speed of Policy Server slows down when CA Directory is used as the session store. The session store size grows exponentially and session deletes are not in sync with the rate of new sessions added to the session store.
00230350
DE109200
Policy Server intermittently crashes due to buffer over run.
00216178
DE118731
The socket and connection timeout values cause exceptions in OAuth authentication scheme.
00128842
DE130935
Smconsole fails to reflect the correct status of Policy Server service for Windows.
00287102
DE131010
The Policy Server installer includes the database versions in the configuration wizard.
00277901
DE131284
During the processing of SQL statements containing a NULL, Policy Server results in transport error and hangs the connection.
00259449
DE133165
There is no option to diagnose performance issues without enabling tracing.
00083756
DE135369
Policy Server crashes with the loss of LDAP connectivity.
00226144
DE138326
XPSExplorer allows the addition of the same policy object in XCart twice causing XPSExport to fail.
00230716
DE142657
The Administrative Operations by Administrator report results in the updated unknown error.
00122286
DE155270
TrustedHostObject created or updated on the primary Policy Server is not reflected on the secondary Administrative UI.
21875003-01
DE75251
APS ignores the data specified in the curly braces {} for the Lockout Mail.
00297523
DE137668
Policy Server terminates abruptly while authenticating a legacy administrator when the Administrative UI is protected by a custom java
authentication scheme.
21900345-01
DE68861
Administrative UI displays FedXPSException for federation naming conflicts.
00202238
DE72174
The User ID Attribute Name and User Information Services fields are not marked mandatory in the OAuth Partnership page of Administrative UI.
0010847
DE74101
The Allow Nested Groups option fails to function for AD Namespace during a partnership federation creation.
00177393
DE95585
Administrative UI throws an exception when creating or modifying a new domain and adding a new user directory to it.
00032401
DE112053
Search for super user permission results in errors if the user is passed with AD context.
00301430
DE137749
Deletion of objects in the Web Services Authentication Scheme throws the following error: "AttributeNotPresentException".
00305791
DE139933
The Metadata export shows SHA1 though SHA256 is selected in Entity or Partnership.
00425273
00417153
00417389
DE175260
DE171830
Policy Server crashes while loading JVM for any custom java authentication scheme on non-Windows.
00581863
DE263109
Identity Mapping fails if AD is configured as the target directory.
Web Agent
The following issues were fixed in Web Agent:
Salesforce Case Number
Internal Defect ID
Issue Description
22000073-01
DE65940
The SAML 1.1 default target configuration is inconsistent in FSS UI and Administrative UI.
00146918
DE74047
The LLAWP Process shutdown delays if the  default value of RequestTimeout value is changed in HCO.
00176713
DE75598
Web Agent Option Pack fails to honor the SSOTrustedZone parameter.
00075954
DE78997
When LegacyCookieProvider is set to YES, the PUT and HEAD methods are converted to GET after redirection to cookie provider.
00061182
DE82998
The TargetAsRelativeURI ACO parameter fails to evaluate response URIs.
00061182
DE83176
The TargetAsRelativeURI ACO parameter evaluates the OnAuthAccept response URI.
00219262
DE92856
The Multivalued HTTP headers are not displayed for Apache webserver when PreserverHeaders is set to YES.
00186932
DE100675
Web Agent displays  the “Bad or missing context 'SESSION struct'” error for a valid condition.
00250498
DE103898
The Forward proxy fails to work with Web Agent deployed on Apache 2.4.x, resulting in the 500 server error.
00248797
DE130894
Web Agent throws the following error when the client makes a call with empty host header using the HTTP/1.1 protocol: “Unable to resolve server host name. Exiting with HTTP 500 server error '10-0004'.
00220954
DE137855
AuthnRequest sent by HTTP POST binding does not contain the the Destination attribute.
00220523
DE138229
The Web Agent configuration wizard fails to detect the Oracle HTTP Server instance when it is installed outside of ORACLE_HOME.
00226217
DE138412
SAML2.0 Response signing throws an exception if no assertion is found in the SAML Response.
21907654
DE138955
If a request includes an IP address that is unresolved, access to the application fails though the request through a proxy server to the same application is successful.
00118306
DE139891
The password change reason is not passed to Change Password form during POST.
00261138
DE144425
Federation web services fail to validate the URL passed in the wreply query parameter and may redirect the user to a phishing website. 
00037176
DE156074
The SAML 2.0 SLO with SOAP binding fails with the 500 server error if the SS_EXPIRYDATA5 file is changed.
00349861
DE158102
The ISAPI filter for 64-bit web agent is missing in IIS Manager after the agent upgrade.
00195376
DE66836
The functionality of Flush All overrides the rollover configuration defined in LoggerConfig.properties, and rolls the Web Agent Option Pack logs.
00173114
DE72556
The time unit in SmPortal.cfg is incorrectly represented in milliseconds.
00095363
DE99753
The Apache Web Agent causes high CPU usage.
00190162
DE100770
The web agent configuration wizard fails to update the opmn.xml with Oracle HTTP Server 11g.
00149984
DE109460
If CSSErrorFile is set to a local file path, Web Agent appends extra text strings to the error page.
0009305
DE109479
Apache webserver fails to start and determine the path to the .properties file when web agent is enabled.
SDK
The following issues were fixed in SDK:
Salesforce Case Number
Internal Defect ID
Issue Description
00201346
DE124584
The Response attribute value is incorrectly returned when Java SDK is used for user attribute.
21653325-02
DE78273
The SmLog_Obj event handler fails to record the DisabledUserState events.
21656933-01
DE90056
SDK fails to extract the content of a realm when an agent group is referenced within the realm.
Web Services Security
The following issues were fixed in Web Services Security:
Salesforce Case Number
Internal Defect ID
Issue Description
00178689
DE107313
The request header does not contain the Content-Length header when a SOAP request is sent in chunked format.
Federation
The following issues were fixed in Federation:
Salesforce Case Number
Internal Defect ID
Issue Description
00261239
DE78611
The maxHeaderCount connector directive fails to work with more than 100 headers.
00225666
DE94330
The http_socket_timeout parameter in the server.conf file causes the "java.net.SocketTimeoutException Read timed out" error.
00276409,
00304925,
00351649
DE129328, DE155232,
DE157364
OpenSSL and Apache have been upgraded to OpenSSL 1.0.2g and 2.4.18 respectively.
00318610
DE140500
The mod_status module is missing from the SPS installer.
 
CA Access Gateway
 
The following issues were fixed in 
CA Access Gateway
:
Salesforce Case Number
Internal Defect ID
Issue Description
21965925-01
DE66431
The console mode installation of 
CA Access Gateway
 hangs and never quits if the installer ID does not have write permission to the installation folder.
00085957
DE103303
During the initial startup, 
CA Access Gateway
 creates the ARCOT_HOME directory under the current working directory.
00085958
DE104268
 
CA Access Gateway
 configured with mutiple virtual hosts logs semaphore errors when single process mode is set to NO.
00179031
DE106804
ProxyValve fails to handle the port of a virtual host.
00271846
DE125010
The 
CA Access Gateway
 Administrative UI throws the following error when the user does have super user rights:
"Exception User might not have required permissions to get group information". 
00305334
DE138865
 
CA Access Gateway
 shutdown fails if localhost is mapped to IPv6 address.
00185865
DE101902
Federation Web Services crash when accessing secure authentication URL.
21648752-01
DE104673
 
CA Access Gateway
 fails to find a resource for bundle java.util.PropertyResourceBundle when an invalid virtual host is entered.
00261239
DE78611
The maxHeaderCount connector directive fails to work with more than 100 headers.
00225666
DE94330
The http_socket_timeout parameter in the server.conf file causes the "java.net.SocketTimeoutException Read timed out" error.
00276409,
00304925,
00351649
DE129328,
DE155232,
DE157364
OpenSSL and Apache have been upgraded to OpenSSL 1.0.2g and 2.4.18 respectively.
00318610
DE140500
The mod_status module is missing from the 
CA Access Gateway
 installer.