R12.7 SP01
==============
Salesforce Case Number | Internal Defect ID | Issue Description |
---|
00498623 | DE273154 | OneView Monitor throws the 404 error when it is configured in silent mode. |
00619199 | DE275849 | The Policy Server installer always tries to install OneView Monitor without honoring the value of DEFAULT_OVMGUI_CHOICE in the ca-ps-installer.properties file. |
00607752 | DE283213 | Policy Server fails to delete policy objects from cache if they are added or deleted using SDK. |
00703448 | DE290373 | The pure Java DMS API getAttributes method fails to return user attributes. |
00733959 | DE290975 | User authentications fails after upgrade if client certification authentication and CRL are configured.
|
00717678 | DE291074 | XPSImport fails if cache updates are disabled in Policy Server. |
00593328 | DE295222 | Translation fails with the APSXLateTest utility. |
00753695 | DE298363 | The single sign-on fails due to null Agent Keys in AgentCommand. |
00770808 | DE300558 | Administrative UI fails to register with Policy Server if the default bootstrap timeout expires. |
00241489 | DE300887 | Authentication fails if there is a mismatch in the user certificate name and its name in the user store. |
00767401 | DE301991 | OneView Monitor on Tomcat fills the standard output log file frequently. |
00651747 | DE306481 | Administrative UI fails to reflect the correct agent group membership information if agent or agent group is created using SDK and mapped to an existing agent group. |
00754192 | DE306598 | The audit logs written in syslog truncates at 1024 characters when the Enhanced Tracing registry key is enabled. |
00809861 | DE309353 | Encrypting the assertion throws an error on the IdP side when the certificate contains non-ASCII characters in IssuerDN. |
R12.6 SP02
==============
Policy Server
Salesforce Case Number | Internal Defect ID | Issue Description |
---|
00296881 | DE192239 DE198724 | Policy Server leaks memory while processing LDAP referrals. |
00648650 | DE269849 | Policy Server fails to recognize the Enable CustomExprOnly registry key, the registry key is no longer supported. |
00531325 | DE250435 | XPSSweeper throws the "CA.SM::SAMLv2IdP.Name is not set" error when upgrading from Release 12.0 SP3 to Release 12.6. |
00531325 | DE246886 | XPSSweeper throws the "CA.SM::SAMLv2IdP.Name is not set" error when upgrading from Release 12.0 SP3 to Release 12.6: :"ERROR MESSAGE: SmApiWrappedException:CA.SM::UserDirectory@0e-000ed1bc-28a6-181b-8cc9-01017f001d7f". |
n/a | DE254448 | Policy Server crashes during the shutdown when X509 authentication scheme is configured. |
00474687 | DE250284 | COMPONENT fails to prompt user to change the password though it expired, and accepts the expired login credentials. |
00636971 | DE268856 | During the Policy Server installation in the console mode, the Policy Server configuration wizard fails to point to the default value in the Choose Features menu and it prompts for Super User account password in default installation setup. |
Administrative UI
Salesforce Case Number | Internal Defect ID | Issue Description |
---|
00516766 | DE242603 | Domain policy fails to work when the Search filter contains "not" for searching users. |
00494403 | DE244464 | The Member Group and Organization selection fails to persist across multiple pages under creation of roles for applications. |
CA Access Gateway
Salesforce Case Number | Internal Defect ID | Issue Description |
---|
00335041 | DE242989 | CA Access Gateway fails to return the domain cookie header to clients if the cookie request that is sent from the host-only backend server does not contain the domain. |
R12.6 SP01
==============
Salesforce Case Number | Internal Defect ID | Issue Description |
---|
593340 | DE247886 | Administrative UI performance degrades when the Federation Partnerships and Certificate Management features are used. |
n/a | DE245176 | XPSSweeper stops responding and its CPU usage is 100%. |
R12.52 SP02 CR01
==============
Salesforce Case Number | Internal Defect ID | Issue Description |
n/a | DE78525 | Enabling Session Assurance breaks the existing on-auth-accept-redirect responses used by the GD modules. |
00216178 | DE118729 | The socket timeout and connection timeout values cause exceptions in OAuth authentication scheme. |
00032401 | DE133069 | Search for Super User permission results in errors if the user is passed with Active Directory (AD) context. |
00236681 | DE135488 | Policy Server truncates assertion data if the size of active response in assertion exceeds 48K. |
00303348 | DE135629 | CAPKI version is upgraded to CAPKI 4.3.9. |
00177393 | DE139043 | Administrative UI throws an exception when creating or modifying a new domain and adding a new user directory to it. |
00305791 | DE139934 | The exported metadata shows SHA1 though SHA256 as selected in Entity or Partnership. |
00103617 | DE140166 | During the Policy Server installation in console mode, the Policy Server configuration wizard does not point to the default value in the Choose Features menu. |
00258335 | DE143015 | Smconsole throws the following error if you enable the profiler by clicking apply or save button after the Policy Server upgrade: key not found: smc.AdvAuthDataSourceEmpty |
00285735 | DE144421 | The Identity Mapping objects that are exported using XPSExport fail to get imported in to another Policy Store. |
00328359 | DE154573 | Users are not listed in the EEM UI when the displayName filter is used. |
R2.52 SP01 CR08
==============
Salesforce Case Number | Internal Defect ID | Issue Description |
---|
00302490 00461931 | DE139629 DE200163 | Policy Server fails to record the audit log. |
00069481 | DE140271 | The Policy Server responses are delayed when it handles requests with a delay of at least one second. |
00339507 | DE157079 | SDK Policy API call getAgent fails to find the agent. |
00335233 | DE159112 | The start-all command fails intermittently to execute completely when the stop-all and start-all commands are executed repeatedly. |
00364477 | DE159909 | The Kerberos libraries are upgraded to Release 1.11. |
00365506 | DE171963 | Policy Server fails to retain custom headers when a user successfully logs on to an application and navigates to another page within the application. |
00366537 | DE172890 | After unlocking a user account, Policy Server fails to allow the user to log in to the application in the first attempt. |
00418724 | DE175935 | The Policy Server access logs fail to roll over accurately. |
00437744 00183506 | DE176727 DE94709 | Policy Server fails to generate metrics/statistics for APM user store that is configured in a directory mapping. |
00443477 | DE198382 | The FMATTR attribute fails to separate multi-value attributes when it is used with an expression in the attribute values. |
00463800 | DE202900 | Policy Server fails to generate the WS-Federation SAML 1.1 assertion when multi-value attributes are configured. |
00472333 | DE203466 | Perl API generates a core dump when we try to add more values to the ValidateTargetDomains ACO parameter. |
00481735 00719355 | DE204495 DE287256 | Policy server Management thread displays the Error 9 waiting for server management messages error in the smps.log file. |
00497374 00519167 | DE227108 DE246312 | Policy Server fails to return ACO parameters that contain '#' when smagentapi is used in SDK. |
00505938 00632270 00470058 | DE227173 DE274161 DE224107 | The APS LDAP transactions exhibit performance issues during the LDAP connection processing requests. |
00485748 | DE237602 | Policy Server fails to connect to the backend of LDAPS when TLSv1.1 is used. |
00455538 | DE237693 | Policy Server crashes when the X509 authentication scheme is accessed. |
00485641 | DE238341 | Policy Server truncates the SAML AUTTHN-Request that it successfully received earlier, and throws an XML parser error. |
00453641 | DE244404 | Perl CLI fails to fetch the authentication scheme of a realm when the session is established with the Administrator privileges of the domain to which the realm belongs. |
00593328 | DE245883 | Translation fails with the APSXLateTest utility. |
00449099 | DE250710 | The APS libraries are missing in Solaris 64-bit Web Agent. |
00607752 | DE256008 | Policy Server fails to delete policy objects from cache if they are added or deleted using SDK. |
00372539 00817098 | DE258092 DE311005 | Policy Server terminates abnormally when Application model is used in conjunction with an OnAuthAttempt rule. |
| | |
00652318 | DE270502 | Policy Server fails to preserve assertion attributes in WSFED/SAML1.1 federation partnership. |
00664489 00295831 | DE275087 DE136643 | Sort Controls are not disabled on LDAP during user search. |
00680051 | DE279215 | The WSFED IP-to-RP partnerships fail to display the configured value of Minimum Authentication Level in federation partnerships. |
00688005 | DE284023 | When an application is protected with the RSA authenticatioon scheme, Policy Server fails to allow users to log in to the application after idle timeout value expires. |
00709833 | DE284336 | Policy Server shuts down slowly that causes the stop-all script to forcibly kill the smpolicysrv process with an explicit SIGKILL command. |
00717678 | DE286779 | XPSImport fails when it is run on a Policy Server on which caches updates are disabled. |
00474687 00597575 | DE205706 DE237817 | Policy Server fails to prompt for a password change though the password has expired, and it accepts the credentials of the locked out user. |
00760779 | DE297518 | Policy Server fails to let delegated non-super users create Identity Mapping in Administrative UI. |
00775720 | DE315872 | Policy Server crashes when it is integrated with APM 13.0. |
R2.52 SP01 CR07
==============
Salesforce Case Number | Internal Defect ID | Issue Description |
---|
00691198 | DE282824 | User store fails with the Cannot contact LDAP server error during a search under heavy load. |
R2.52 SP01 CR06
==============
Salesforce Case Number | Internal Defect ID | Issue Description |
---|
00236681 | DE102140 | Policy Server truncates assertion data if the size of active response in assertion exceeds 48K. |
21955636-01 | DE105858 | Policy Server intermittently crashes when processing certificates. |
00103617 | DE106225 | During Policy Server installation in console mode, Policy Server configuration wizard does not point to the default value in the Choose Features menu. |
00258335 | DE124902 | Smconsole throws the following error if you enable the profiler by clicking apply or save button after the Policy Server upgrade: key not found: smc.AdvAuthDataSourceEmpty |
00206326 | DE133031 | Policy Server restarts with Module Faults. |
00285735 | DE134112 | The Identity Mapping objects that are exported using XPSExport fail to get imported in to another Policy Store. |
00174746 | DE137239 | Protected Resources became unprotected when Policy Server restarts. |
00305816 | DE137802 | Policy Server cache build failure on secondary Policy Server with error "Cannot fetch agent" or "Secondary cache build failure", during administrative changes. |
00301544 | DE140495 | XPSExport crashes when running XPSExport from the command line. |
00420620 00312398 | DE171901 DE142908 | Policy Server generates a core dump upon stopping the server. |
00347228 | DE156811 | smfedexport is not considering the alias given in the command and it always signs xml data with first certificate in the list. |
00434175 00346464 | DE199271 DE157832 | Changes are not reflected in Administrative UI when updating the objects through XPSImport. |
00349379 00349379 | DE186906 DE159627 | Active Response is not cached hence experiencing slow response due to the need to send two different OnAccessAccept active response headers (PROXY_REMOTE_USER and proxy-remote-user) to meet each applications needs. |
00374788 | DE162137 | Policy Server crashes while running the publish command. |
21957952-01 | DE164000 | Performance degrades in R12.52 SP1 compared to R12 SP3 CR10. |
00483471 00371347 | DE206486 DE165142 | Policy Server hangs when connected to Oracle 12c User Store using Administrative UI. |
00354719 | DE166084 | Performance issues were observed in Policy Server during the DB connection processing requests. |
00318299 | DE201257 DE177286 | XPSSweeper tool crashes abruptly. |
00419440 | DE177765 | Policy Server hangs when connection limit is exceeded. |
00370648 00449759 00413584 00380676 00337693 00328269 00444984 | DE197591 DE187115 DE172081 DE163488 DE156901 DE144249 DE186346 | Encrypting the assertion throws an error on the IDP side when cert contains non-ASCI characters in the IssuerDN. |
00296881 | DE192239 | Policy Server leaks memory while processing LDAP referrals. |
00469210 | DE204579 | Secure Session Assurance throws an error when trying to access the protected resource. |
00475766 | DE204581 | Upgrade fails in SPS. |
00474687 | DE237816 | User is not prompted for password change though the password is expired and locked out user credentials are accepted. |
00265979 00351582 00327704 0024814 00256060 | DE78566 DE157547 DE144175 DE103106 DE129844 | Apache Commons Collection vulnerability found in 3.2.1.jar and it is fixed in 3.2.2. and 4.1. |
00303302 | DE138108 | Service Provider fails with “java.lang.NullPointerException” while consuming an IDP generated assertion with the SP feature SingleAssertionUsage option is enabled. |
00216581 | DE143166 | Web Agent is not failing back to the first Policy Server and requests are not processed successfully when starting the first Policy Server. |
00311237 | DE144432 | Dynamic Rollover of agent keys is not happening on time where it is set in the Administrative UI. |
00309822 | DE143104 | In Administrative UI, creating and submitting a realm takes time. |
00222654 | DE144528 | Agent Key does not rollover when it is configured to rollover on a specific day of the week. |
R2.52 SP01 CR05
==============
Salesforce Case Number | Internal Defect ID | Issue Description |
22000073-01 | DE65940 | The SAML 1.1 default target configuration is inconsistent in FSS UI and Administrative UI. |
00200658 | DE67510 | The “ReEnableAfterIncorrectPwd” method of the Policy Management API returns incorrect value. |
00203863 | DE68350 | Policy Server leaks memory while processing the list of server commands. |
00215858 | DE68366 | The authentication fails if the username contains &. |
00061182 | DE82998 | The TargetAsRelativeURI ACO parameter fails to evaluate response URIs. |
00069814 | DE91886 | The CA RiskMinder service fails to start after the Policy Server reconfiguration because of the Inaccurate SmCommand status. |
00219841 | DE93650 | URLENCODE fails to handle internationalization characters. |
21566865-01 | DE96366 | User groups are not populated under roles for Applications for the AD user store. |
00144339 | DE96440 | The Policy objects imported using XPSImport fail to reflect immediately in the Administrative UI for ADLDS as a Policy Store. |
21911402-01 | DE99403 | CA Single Sign-On sends the ObjErr_NotFound error as an access error to CA Wily. |
00250192 | DE101595 | The Authreason codes from Policy Server are not same as the AD response irrespective of the status of isADEnhanced. |
00262154 | DE102899 | Policy Server fails to parse the format correctly when username contains "%Z". |
00228620 | DE103707 | The legacy federation objects are migrated every time when XPSSweeper is executed even if there is no modification to the objects. |
21971630-01 | 21971630-01 | The transactions processing speed of Policy Server slows down when CA Directory is used as the session store. The session store size grows exponentially and session deletes are not in sync with the rate of new sessions added to the session store. |
00230350 | DE109200 | Policy Server intermittently crashes due to buffer over run. |
00216178 | DE118731 | The socket and connection timeout values cause exceptions in OAuth authentication scheme. |
00128842 | DE130935 | Smconsole fails to reflect the correct status of Policy Server service for Windows. |
00287102 | DE131010 | The Policy Server installer includes the database versions in the configuration wizard. |
00277901 | DE131284 | During the processing of SQL statements containing a NULL, Policy Server results in transport error and hangs the connection. |
00259449 | DE133165 | There is no option to diagnose performance issues without enabling tracing. |
00083756 | DE135369 | Policy Server crashes with the loss of LDAP connectivity. |
00226144 | DE138326 | XPSExplorer allows the addition of the same policy object in XCart twice causing XPSExport to fail. |
00230716 | DE142657 | The Administrative Operations by Administrator report results in the updated unknown error. |
00122286 | DE155270 | TrustedHostObject created or updated on the primary Policy Server is not reflected on the secondary Administrative UI. |
21875003-01 | DE75251 | APS ignores the data specified in the curly braces {} for the Lockout Mail. |
00297523 | DE137668 | Policy Server terminates abruptly while authenticating a legacy administrator when the Administrative UI is protected by a custom java authentication scheme. |
21900345-01 | DE68861 | Administrative UI displays FedXPSException for federation naming conflicts. |
00202238 | DE72174 | The User ID Attribute Name and User Information Services fields are not marked mandatory in the OAuth Partnership page of Administrative UI. |
0010847 | DE74101 | The Allow Nested Groups option fails to function for AD Namespace during a partnership federation creation. |
00177393 | DE95585 | Administrative UI throws an exception when creating or modifying a new domain and adding a new user directory to it. |
00032401 | DE112053 | Search for super user permission results in errors if the user is passed with AD context. |
00301430 | DE137749 | Deletion of objects in the Web Services Authentication Scheme throws the following error: "AttributeNotPresentException". |
00305791 | DE139933 | The Metadata export shows SHA1 though SHA256 is selected in Entity or Partnership. |
00425273
00417153
00417389
R2.52 SP01 CR04
==============
December 30, 2015 CA SiteMinder Policy Server 12.52 SP01 CR04
contains fixes for the following tracking numbers:
Tracking # Problem description
---------- -------------------
RTC 159147 / DE99789 Policy Server for Windows builds search filters
incorrectly for SharePoint Agent requests.
RTC 144453 / DE90644 Policy Server fails to retrieve the value for
special attributes such as DominoAccessGroups.
RTC 165424 / DE85265 Authorization fails to work with Identity Mapping.
RTC 154234 / DE94402 The Radius server authentication fails due to
incorrect Policy Server IP address.
RTC 158902 / DE93911 Policy Server fails to start if more than one
Global Domains are defined in Policy Store.
RTC 63534 / DE104786 The CA RiskMinder startup log reports the
following FATAL error:
"Mon Apr 28 15:52:41.229 2014 FATAL: pid 24728 tid
1: 2: 0: Quitting".
RTC 163452 / DE112391 Policy Server experiences high CPU usage.
RTC 163750 / DE111906 The metadata export fails with unexpected system
error.
RTC 153157 / DE104171 Web Agent displays the HTTP 500 Server error when
a URL ending with .sac extension is accessed.
RTC 153178 / DE104554 The password change from the Java DMS API results
in an inconsistent behaviour.
RTC 159570 / DE104660 Modification of few user attributes using the DMS
API results in the modification of all the user
attributes.
RTC 141833 / DE79301 Duplicate ICU shared library files are present in
the ICU third-party folder.
RTC 148852 / DE114208 CA SiteMinder SPS authenticates a user
successfully though the user credentials contain
leading or trailing spaces.
RTC 154402 / DE91831 The socket error:9999 occurs during initialization
of the Policy Server.
RTC 159700 / DE103500 Policy Server fails to send an active response
when the "Enable Null Value Response" registry is
set to 0x1.
RTC 156152 / DE90351 CA SiteMinder fails to replace the place holders
for Risk Minder.
RTC 156789 / DE67270 Sm_AgentApi_Init fails due to select() call.
RTC 167520 / DE104578 The CA RiskMinder service fails to start after the
Policy Server reconfiguration.
RTC 154889 / DE96766 The silent mode upgrade of Policy Server upgrades
the Policy Store.
RTC 139480 / DE96132 CA SiteMinder FSS UI fails to open if an expired
certificate exists.
RTC 118937 / DE107119 Enabling Session Assurance breaks the existing
on-auth-accept redirect responses used by the
GD modules.
RTC 141895 / DE82640 smpolicy.xml contains incorrect default attributes
for the Sharepointdefaultsettings ACO.
RTC 149104 / DE101138 Deadlock with the ACE initialization functions
causes Policy Server to generate a core.
RTC 147509 / DE74786 The FedObjects partnership service returns success
when transaction commit fails.
RTC 166137 / DE67238 Policy Server crashes on the IM tunnel agent call.
RTC 150117 / DE102338 The smreg -su requires Policy Server restart for
password reset.
RTC 155562 / DE78433 The smmigratecds tool crashes with the
java.lang.Exception error when -validate is used.
RTC 154392 / DE89586 Policy Server crashes during LDAP failover.
RTC 150754 / DE99826 Administrative UI screen does not display in
Japanese language in Internet Explorer 8.
RTC 168791 / DE94469 RSA AceLibrary is upgraded to version 8.1.3
RTC 165810 / DE81830 Scoped Administrator experiences poor performance
of Administrative UI.
RTC 159398 / DE103333 Policy Server installer displays the following
incorrect non-fatal error in the install logs on
Linux whenever the libidn library is missing:
"There are consecutive spaces found in the
installation home directory. Ensure that the
installation home directory does not contain
consecutive spaces".
RTC 163151 / DE106953 Policy Server allows the log in of a locked out
user when the Enhanced AD integration is enabled.
RTC 137833/158995 / The smaccess log file fails to display fields in
DE71698/DE95265 the first line.
RTC 157372/163655 / The SMUSRMSG cookie allows phishing for valid
DE75322/DE113070 usernames with Novell eDirectory as a user store.
R2.52 SP01 CR03
==============
Policy server was not released for CR03.
R2.52 SP01 CR02
==============
Product: SiteMinder Policy Server 12.52 SP01 CR02
July 17, 2015 Policy Server 12.52 SP01 CR02 contains fixes for the following tracking numbers:
Tracking # Problem description
---------- -------------------
127127 When setting the registry key KeepAgentConnections as 2, the directory server (policy store) log fills up with below log statement many times: msgId=30638 - RESULT err=32
125079 When using Passwordservices, LoginFailure count resets to zero after the account is disabled due to too many login attempts.
134424 Policy Server terminates abnormally when shared secret in the store is larger than 256 bytes.
150155 When the key store is separate and multiple requests com from web agents to Policy Server, some agents fail to get agent keys with the following error msg in the smps log:Policy store failed operation 'MultipleSearch' for object type 'AgentKey'
119472 The date on the generated report does not match the date on the audit report.
147235 Number of LDAP search calls are more during authorization when using the INGROUP expression.
146237 Attempting to retrieve rules associated with a policy having rules and rule groups associated with it, returns an invalid value.
154875 Install Anywhere must be upgraded
64886 Administrative UI does not display certificates with non ASCII characters 149490 SASL Bind fails with Active Directory
137829 Administrative UI fails to display the rules during policy creation under a domain.
72274 WILY reporting Policy Store as RED
151453 Enabling EnableAuditing and disabling IgnoreQueryData creates unexpected audit log entries.
81449 SM_catagory for AgentInstance object is missing in category.txt file. This causes error on loading.tmp files into the Oracle database, when you process audit related to these objects.
145059/144842 Policy Server fails to implement the changes done to rollover frequency configuration once the rollover begins.
153353 The XPS parameter $AgentConnectionMaxLifetime is being read continuously even though the dynamic flag is set to false
135032 Session Assurance is not getting configured if Policy Server is installed in silent mode.
72517 Running XPSCounter against an Active Directory user store fails
154967 FSS UI session times out as an admin logs in.
139126 SM returns smauthreasoon code 0 when Illegal characters are found in username.
141439 Audit logging not working if Postgres is used as the audit store.
144185 smreghost must prompt for the password
63022 KeepAgentConnections parameter does not contain parameters to support sending soft or hard close when AgentConnectionMaxLifetime time out is reached.
155251 Policy Server terminates abnormally while rebuilding secondary caches.
145890 Error messages displayed when IDP is using an incorrect Public Key/cert for encrypting the assertion, is misleading.
98387 Policy Store displays an error message (Unable to read object smSessionId) in smps.log when you use a CA Directory Server as a Session Store.
144051 Policy Server terminates abnormally and does not recover when LDAP Directory Server hangs due to network connectivity issues.
144576 The correct offset from GMT is not being displayed correctly in the access.log.
143552 Realms are not displayed in the Administrative UI whenviewing from Domains
141981 Administrative UI is throwing NullPointer Exception during creation/modification of workspace having IDP partnership.
148504 Identity mapping failing with R12.52 SP1 due to search criterion in ODBC.
147257/150174 Policy Server terminates abnormally crashes due to RpcDispatcher::evalCall
142193 APS CPW embedded form does not allow to disable autocomplete.
158072 R12.5 SiteMinder returns smauthreasoon code 0 when Illegal characters are used in the username.
155298 DataDirect Upgrade to version 7.1.5.
155275 Upgrade CAPKI to version 4.3.8
146073 Policy Server closes the connection with SAP ERP Agent with 10 second idle timeout. The idle timeout session has been made configurable.
135760 Upon shutdown Policy Server crashing when an auth scheme was released.
R2.52 SP01 CR01
==============
Product: SiteMinder 12.52 SP01 CR01 Policy Server
February 13, 2015 Policy Server 12.52 SP01 CR01 contains fixes for the following tracking numbers:
Tracking # Problem description
---------- -------------------
64139 Policy Server terminates abruptly because of ACE authentication error.
75274 Policy Server terminates abruptly when Active Expression is authorized as response attribute.
71915 WS Federation transaction fails at Assertion Generator when policy store is temporarily inaccessible.
55835 Policy Server displays java.sql.SQLIntegrityConstraintViolationException error when you run the Audit and Analysis report because of null value in Column 'RPT_INSTANCE_ID'.
55627 CCS Integration fails when you upgrade Policy Server from 12.51 to 12.52.
111439 XPS import fails when you change the expression name in policy store.
134407 Policy Management API fails to send the plain password to Identity Minder.
116213 Policy Server terminates abruptly when the user name of the directory contains special characters especially a percent symbol (%).
55850 Administrative UI fails to activate multiple WS-Federation partnership from Identity Provider to Resource Partner when you use the same RP ID for different partnerships.
116645 XPSExport utility fails abruptly when you export workspace entries.
75050 Policy Server displays CERTREVOKED error instead of CRLEXPIRED error for the expired certificate, when you use the X509 client cert authentication.
138677 Policy Server fails to connect to the CA Directory through TLS protocol.
139117 Policy Server fails to connect to the CA Directory when the Session transaction store delays by 11milli seconds or more.
70771 Policy Server terminates abruptly when policy store is configured with SQL and key store is configured as LDAP.
85501 Support for bulk import and export of CDS objects has been added.
65216 Policy Server displays Policy Server did not start properly error message during start up.
137785 Policy Server terminates intermittently because of missing null check.
71917 Policy Server displays "Bulk loading of records is not supported by driver" error when you import SM audit data into SQL database.
74943 The commented ACO properties get deleted using modifyAgentConfig API.
118104 Policy Server terminates abruptly when XPSExport is run with the xb switch.
127251 XPSSweeper tool terminates abruptly.
116609 APS change password and forgot password fails for the ODBC stored procedure.
125655 Policy Server displays "SamlValidator (Pass 2) Caught unknown exception or error" error when you migrate SAML application from Release 6 to Release 12.52.
114013 Policy Server start-all script displays "unexpected operator/operand" error.
119486 OneView Monitor asks for gif images that do not exist in the SM installation location.
139332 APS displays an incorrect error message when a new password is not accepted.
55134 Policy Server fails to set content-length header when the message body is empty.
139460 Policy Server displays null pointer exception error if the Assertion attribute does not exist in LDAP.
119956 RSA ACE SDK library upgraded to version 8.1.2 on Linux.
125654 RelayState truncates at first occurrence of %22 when you post SAMLResponse to assertionconsumer.
73540 WS-Federation partnership activation fails because of object creation failure in the Novell eDirectory policy store.
74881 Policy Server terminates intermittently because of APSMail.DLL while using the "Forgotten Password" functionality when the XSHADOW feature is enabled in the exchange server.
73587 Policy Server fails to generate WS-FED SAML 1.1 assertion when you configure the multi-value attributes.
73371 APSExpire command fails when you change the name in the SmUser column name of the APS table.
74377 Key store gets updated when Global Tools Setting in Policy Server is modified.
127212 Upgrade to CAPKI 4.3.5 release.
72916 Backreference regular expression fails with SiteMinder password policy.
138621 Federation transaction displays 500 error if the user name contains an apostrophe in the email.
135786 XPSSweeper displays "Failed to migrate the service provider for SAML1.1 partnership" error.
117317 The smaccess.log and smps.log files fail to rollover intermittently.
72210 Federation Partnership fails because of Null PointerException.
117890 Policy Server partially reloads the cache when an Agent connects to the Policy Server with an incorrect shared secret.
R2.52 CR01
==============
Product: SiteMinder 12.52 CR01 Policy Server
March 4, 2014 Policy Server 12.52 CR01 contains fixes for the following tracking numbers:
Tracking # Problem description
---------- -------------------
181423/181647 If the encryption key in the EncryptionKey.txt file contains null characters, the file from r6.0, r12.0 SP3, and r12.5 is incompatible with r12.51 CR01.
177001/182984 During the data export, smkeyexport and the -k and -c options of smobjexport do not decrypt the keys.
182908 The Administrative UI (WAM UI) fails to display the imported certificates in the X509 Certification Management tab.