Documentation

On this page


SecureAuth release notes provide information on the features and improvements in each release. This page includes release notes for major releases and minor (bugfix) releases.

Release notes are maintained in the SecureAuth Latest space. All links below take you to the SecureAuth Latest where you can browse all release notes. 

 

Error rendering macro 'show-if'

Failed to render Visibility macro due to: Invalid space permission(s): space=sa internal knowledge base

8.0.3 Release Notes

Released on March 24, 2015

8.0.3 Google API Update

Feature

Description

Integration Guide

Google API Update

Google is deprecating APIs that affect the following:

  • Password Synchronization
  • Create user (user provisioning)
  • Google Datastore (directory) support: This feature was fully deprecated by Google and no longer supported in SecureAuth IdP.

Important

SSO SAML Federation with Google Apps is NOT affected.

This update provides support for the following:

  • Updated oAuth-based Google Integration API to support Password Sync and User Provisioning.  There are additional configuration parameters in the administrative interface.
  • Continued support for the deprecated "gdata" API
N/A

8.0.2 Release Notes

Released on February 4, 2015

8.0.2 Resolved Issues

IssueDescriptionRef ID
Web Service has an oversize dataIn IIS, the webservice provider is defaulted to 512k of data that is allowed to be passed to/from it. Admins are now able to set that value based on need.490
One-Time OATH mappingThe OATH OTP is a One-Time use code, the bug allowed the user to use that oath code multiple times.489
Certificate.wse3.cer download link is not workingAssertion Signing Certificate link on SAML Post Auth page does not work.485
Text Based OTP Email is missing a spaceWhen email settings is set to text, the OTP email is missing a space (i.e "is5947").486
Inline Init label position is offOn Registration Methods tab, "Inline Initialization" label position is off.487
Alignment on submit button on the PIN registration"Submit" on the PIN registration submit button is not centered.488
OAuth Client configuration is being duplicatedWhen saving, OAuth client configuration is being duplicated.509
OAuth user consent bugEvery login user is prompted to grant consent even if the consent was previously granted.511
Server error: 'ddlProfile'
If the realm has a web.config app setting value for the "ddlProfileSelectedIndex" key from 1 through 8 after the appliance has been upgraded to version 7.5 and above, this error will occur467
Failed to select and save Directory serverFailed to select and save Directory server on UI only ( saved in web.config) but did not persists if click away and click back to data tab it always show Directory server as sAMA398
Leading semi-colon in Multi-Datastore (aka multi-domain)This is just a cosmetic issue as the site works fine, but a leading semi-colon will cause the admin to think there is another server in the list462
Multi-Datastore user cache issueWhen setting up multi-datastore password reset if the user ID entered by the user does not match what's in the samaccount name causing the password reset functionality to fail
513
Failed to select Authenticated User Redirect from drop down selectionWhen selecting value from authenticated user redirect drop down ( i.e "self service account update") the value is being set to something else ( i.e "PIN OTP")512
Mobileauth.aspx parsing failsExtra comma in data string. The code attempts to parse the comma-separated list of attributes and fails514
Typo on "license expired" message
There's a typo on this message:
You license has expired. Please contact support "
516
Errors or page will not advance when User ID and Password are on the same page
In some configurations, if the User ID and Password were configured to be on the same page the user may receive an error, may loop or the page may not advance
474
 Access to pages not authorized to access 

In some configuration scenarios, an authenticated user could access pages that they were not explicitly authorized to access.

594

8.0.1 Release Notes

Released on October 20 2014

 

Version 8.0.1 New Features

Feature
Description
Ref ID
JRE 8 Certificate SupportSupports JRE 8 with new Java applet delivery for certificate delivery and validation456

 

8.0.1 Resolved Issues

IssueDescriptionRef ID
Web Admin Timeout IssueRandom timeout in Web Admin forcing admin to re-authenticate.150
Secure Portal was not respecting the Group settingApplications tied to specific groups did not display properly.379
Device Fingerprint does not display correctlyWhen using multi-datastore web service that contains pipe syntax, the device fingerprint does not display correctly in User Self-Service Update page.407
"AccessHistory" error upon logon

When credentials are entered incorrectly, the user sees an "AccessHistory" error message.

408
Web Service Multi-Domain delete issueThe admin was not able to delete a realm from the multi-domain setup.409
KBQ / KBA Setup IssueReg Method order option list always included KBQ / KBA item.413
Analyze engine failed when user name and password are on a same pageAnalyze engine failed on all but the following settings:  IP Restrition / IP RickFactor to HardStop / Redirect.414
FileSync would not sync folderWhen a new folder is created, filesync would not sync the folder.415
TransferSite issue for Certificate Enrollmentwhen using Certificate Enrollment, adding any value to TransferSite in the Workflow tab causes the realm to fail.446
Java certificate mode looping issueWhen using Java Certificate, credentials page loops back to itself or to a blank page when the user clicks Submit.449

 

8.0.1 Existing Issues

IssueDescriptionRef ID
Extension attributes are not saved properlyUnable to use the webadmin to add/update or read extension attributes.468
Verbiage editor is unable to compile DutchIntermittent issue where the verbiage editor is unable to compile Dutch language (nl) into the resource.dll450
Intermittently, the user may get stuck on the Timeout.aspx. pageThe user could only exit the Timeout.aspx by closing the browser.465
Text Based Email OTP formatting issueWhen setting up text-based email OTP as an reg method there is no spacing between the last word and the numeric OTP.486

8.0 Release Notes

Released on August 8, 2014

Version 8.0 New Features

Feature
Description
References
Web Admin UpdatesNumerous web admin changes. See What's Changed in SecureAuth IdP 8.0 Web Admin for details https://docs.secureauth.com/x/GwABAg
Analyze EngineIntegrate with risk assessment product Norse IPViking and IP address restrictions along with Geo-Velocity and to merge in group checking to form the Analyze Enginehttps://docs.secureauth.com/x/CoGnAQ
IdP ConfiguratorProvide new user interface for configuring SecureAuth IdPhttps://docs.secureauth.com/x/4gAkAQ
Two-Factor Windows LogonSupport OATH-based two-factor Windows desktop / server logon using Credential provider (64-bit only)https://docs.secureauth.com/x/gwVjAg
Transformation EngineAdd scripting capability to SecureAuth PostAuth moduleshttps://docs.secureauth.com/x/fYFDAg
User Provisioning EngineProvide user creation, update, and deletion support through the use of a bi-directional sync enginehttps://docs.secureauth.com/x/GwDy
OATH Lockout enhancementAdding a configurable number of attempts before locking a user account. Supports radius and LDAP.https://docs.secureauth.com/x/1hXy
OpenID Connect / OAuth supportAdd Post Auth module to allow SecureAuth to act as an OpenID Provider (OP), also to further expand SecureAuth OAuth support for other grant typeshttps://docs.secureauth.com/x/fYcZAQ 
One-Time Use Static PINAdd Post Auth page to support Derived Credential generation for One-Time use static PINhttps://docs.secureauth.com/x/KQEkAQ
OTP App Failed Wipe and Screen Lockout

The app automatically deletes any user-specific provisioned data if someone enters an invalid PIN X number of consecutive times.

Affects iOS, Android, BB7, and BB10.

https://docs.secureauth.com/x/GoMZAQ
OTP One-Time provisioning seedOTP seed logic enhanced to reuse same seed for all devices or to generate a new seed per devicehttps://docs.secureauth.com/x/1hXy
Additional Languages supportAdd language support for Czech, Hungarian, Polish, Romanian, and Slovakian.https://docs.secureauth.com/x/wgMPAQ
PEAP / EAP-GTCEnhance our RADIUS Server to support PEAP / EAP-GTC protocol

Enhancement for Hard Token IdM SupportEnable hardware token and soft token to share the same seedhttps://docs.secureauth.com/x/yBTy 
Java update SupportAdd new Java Applet to support Java's latest release (7u65)https://docs.secureauth.com/x/Dw7y

8.0 Resolved Issues

IssuesDescriptionRef ID
Inline Password Change IssueFails the first time in useridview; subsequent attempts lose the stored password 292
IP Blocking Failed in 7.5.1Timeout when pulling a long list of IP addresses395
OATH Provisioning fails with 404 errorOn mobile devices, a 404 error displays when using the app embedded browser to any URL / realm other than 998.396
HttpOnly and RequireSSL for cookiesHttpOnly = True is now shipped by default 397
Trx Log Service Test Result messageShows "Failed!" only even when it is able to successfully connect.399
Password Reset fails with WS with unlocked user accountWhen using multi-domain (Web Service) provider with the unlock user account field set to true, then the password reset fails. 400
ADFS Signing Check ________________________Removed SHA256 signature description to be compatible with ADFS SAML Assertion signing validation _________________8850
Tabs navigationFixes IE and Chrome browser rendering issue when it is less than about 750 pixels height8884

 

8.0 Existing Issues

IssueDescriptionRef ID
Inline Password Changing Issue on User name /Password on first pageWhen an incorrect password is entered on retry, the original password is lost.292
Web Admin Timeout IssueRandom timeout in Web Admin forcing admin to re-authenticate.150
Secure Portal was not respecting the Group settingApplications tied to specific groups did not display properly.379
Device Fingerprint does not display correctlyWhen using multi-datastore web service that contains pipe syntax, the device fingerprint does not display correctly in User Self-Service Update page.407
"AccessHistory" error upon logon

When credentials are entered incorrectly, the user sees an "AccessHistory" error message.

408
Web Service Multi-Domain delete issueThe admin was not able to delete a realm from the multi-domain setup.409
KBQ / KBA Setup IssueReg Method order option list always included KBQ / KBA item.413
Analyze Engine fails when the user name and password are on the same page

Analyze engine failed on all but the following settings:  IP Restrition / IP RickFactor to HardStop / Redirect.

414
FileSync would not sync folderWhen a new folder is created, filesync would not sync the folder.415
TransferSite issue for Certificate Enrollmentwhen using Certificate Enrollment, adding any value to TransferSite in the Workflow tab causes the realm to fail.446
Mobile Enrollment and Validation IssueThe page hangs after entering credentials (us; un+pw; us + 2fa+ pw..etc) with UBC or FP.447
Java certificate mode looping issueWhen using Java Certificate, credentials page loops back to itself or to a blank page when the user clicks Submit.449
Metadata File download issueUnable to download the metadata file from Web Admin when setting up SAML.454
WebService credential validation issueWS credential password validation461

  • No labels