Documentation

 

 

The following lists hotfixes for the Identity Platform version 20.06. 

20.06 hotfixes

Release No.Release DateRef IDIssue / Description
20.06-307-Oct-2020EE-1890

This hotfix includes a file correction to a previous 20.06-2 hotfix addressing this issue:

Certificate Issue – For customers upgrading from Identity Platform version 19.07.01 to 20.06, the SHA-1 assertion now verifies correctly.

This hotfix is required for all 20.06 deployments.

20.06-202-Oct-2020EE-1778

OIDC / OAuth2 Workflow Session Cleanup  – OIDC queries in OAuth workflows now read correctly when a user has two browser tabs open when authenticating into a resource.

Install this fix if you have:

  • OIDC / OAuth2 integrations
EE-1890

Certificate Issue  – For customers upgrading from Identity Platform version 19.07.01 to 20.06, the SHA-1 assertion now verifies correctly.  

This hotfix is  required  for all 20.06 deployments. 

EE-1902

OIDC / OAuth 2 Issue – Fixes an issue with scope values not rendering correctly on the Post Auth tab for OpenID Connect/OAuth 2.0. 

Install this fix if you have: 

  • OIDC / OAuth2 integrations
EE-1928

Authentication API Improvement  – The Authentication API now supports Link-to-Accept via SMS and email as an available multi-factor method MFA option.

Install this hotfix if you have:

  • Authentication API enabled in the API tab
  • Link-to-Accept enabled in the Classic UI experience
20.06-1
















11-Sep-2020
















EE-1196Classic administration realm navigation bar repositions incorrectly after save.
EE-1524

Azure AD UPN Domain Check – Resolves issue with unnecessary uppercase and lowercase domain name check in username.

Install this hotfix if you have:

  • Azure AD integrated with the Identity Platform
EE-1552

Push Notification Company Name – In the SecureAuth Authenticate app login request UI, the configured company name was not accurately displaying.

Install this hotfix if you have:

  • Authentication Apps enabled in a Policy OR
  • Mobile Login Requests enabled in the Multi-Factor Methods tab
  • Users employing the SecureAuth Authenticate app for authentication
EE-1600

Redirect with Token Issue –  Redirect with token workflows were unsuccessful.

Install this hotfix if you have:

  • Redirect with Token configurations in the Workflow and / or Adaptive Authentication tab
EE-1607

International Phone Number Issue – Ten-digit International phone numbers were automatically being prepended with “1”, making those numbers unusable for MFA.

Install this hotfix if you have:

  • Phone MFA methods enabled in a Policy
  • Phone MFA methods enabled in the Registration Methods tab
EE-1660

Password Throttling Validation Issue – Users passwords not always validated when using Password Throttling feature.

Install this hotfix if you have:

  • Password Throttling enabled and configured in the Workflow tab
EE-1684

Database Logging Issue – Database logs experiencing a table lock stopped writing new log entries.

Install this hotfix if you have:

  • Database logging enabled in the Logs tab
EE-1692

Chrome 404 Error on Manage Accounts Page – Chrome browser would give a 404 error to users on the Manage Accounts (help desk) page if the page timed out and user logs back in, whereas other browsers would redirect them back to the page after authentication.

Install this hotfix if you have:

  • Manage Accounts page configured in the Post Authentication tab
  • Users employing Chrome browser
EE-1707

Corrupted CyberArk Username – When using CyberArk for the directory credentials, the username would become corrupted during simultaneous connections.

Install this hotfix if you have:

  • CyberArk integration for the directory integration credentials on the Data tab
EE-1739

Theme Issues for Realm Pages – Pages in the realm root were not rendering correctly when using the 2019 theme.

Install this hotfix if you have:

  • 2019 Theme selected in the Overview tab
  • Realm root pages configured in the Post Authentication tab
EE-1749

Admin Console Issue – Admin console may not load after reboot.

  • This hotfix is required for all 20.06 appliances.
EE-1772

Error Verbiage Improvements – In OAuth flow, if the authorization code ID and saved code ID do not match, it displayed the error message, "this code has already been used" which is misleading. Error message now reads as "Authorization Code does not match or has already been used".

Install this hotfix if you have:

  • OIDC / OAuth2 integrations
EE-1774

Biometric Method Issue – For a Mobile Login (Push Notification) method involving any biometric as the Request Type in the Classic IdP Experience, some configuration fields are greyed out.

Install this hotfix if you have:

  • Mobile Login (Push Notification) MFA method set up to use any Biometric as the Request Type in the Multi-Factor Methods tab
EE-1781

Transformation Engine Issue – Resolves issue in which the Transformation Engine did not work correctly when used with WS-Federation.

Install this hotfix if you have:

  • Transformation Engine enabled and configured
EE-1608

Resetting IIS Settings – After making changes to IIS and then changes to the SecureAuth Web Admin, the changes made in IIS were reverted to the previous configuration.

Install this hotfix if you have:

  • Windows Auth IIS settings changed from the SecureAuth default
EE-1619

Invalid SQL Password Issue – Password data was cut off in the database when using encrypted password format, resulting in an invalid user password at login.

Install this hotfix if you have:

  • SQL data store integration
  • Password format as encrypted
EE-1680

Debug Log Cleanup – Debug logs required changes.

This hotfix is required for all 20.06 appliances. 

EE-1683

SecureAuth Identity Platform was not able to effectively retrieve the email address from the Azure AD data store.

Install this hotfix if you have:

  • Azure AD integrated in the Data tab
  • Email 1 property mapped to an Azure AD attribute

  • No labels