Symantec SiteMinder

 View Only

SSO Policy Server r12.52/r12.6/r12.7 Defect Fixes History

By Ujwol posted Jul 03, 2016 07:52 PM

  

R12.7 SP01

==============

Salesforce Case NumberInternal Defect IDIssue Description
00498623DE273154OneView Monitor throws the 404 error when it is configured in silent mode.
00619199DE275849The Policy Server installer always tries to install OneView Monitor without honoring the value of DEFAULT_OVMGUI_CHOICE in the ca-ps-installer.properties file.
00607752DE283213

Policy Server fails to delete policy objects from cache if they are added or deleted using SDK.

00703448DE290373

The pure Java DMS API getAttributes method fails to return user attributes.

00733959DE290975

User authentications fails after upgrade if client certification authentication and CRL are configured.

00717678DE291074

XPSImport fails if cache updates are disabled in Policy Server.

00593328DE295222Translation fails with the APSXLateTest utility.
00753695DE298363

The single sign-on fails due to null Agent Keys in AgentCommand.

00770808DE300558Administrative UI fails to register with Policy Server if the default bootstrap timeout expires.
00241489DE300887

Authentication fails if there is a mismatch in the user certificate name and its name in the user store.

00767401DE301991

OneView Monitor on Tomcat fills the standard output log file frequently.

00651747DE306481

Administrative UI fails to reflect the correct agent group membership information if agent or agent group is created using SDK and mapped to an existing agent group.

00754192DE306598The audit logs written in syslog truncates at 1024 characters when the Enhanced Tracing registry key is enabled.
00809861DE309353Encrypting the assertion throws an error on the IdP side when the certificate contains non-ASCII characters in IssuerDN.

R12.6 SP02

==============

 

Policy Server 

Salesforce Case NumberInternal Defect IDIssue Description
00296881

DE192239

DE198724

Policy Server leaks memory while processing LDAP referrals.
00648650DE269849Policy Server fails to recognize the Enable CustomExprOnly registry key, the registry key is no longer supported.
00531325DE250435XPSSweeper throws the "CA.SM::SAMLv2IdP.Name is not set" error when upgrading from Release 12.0 SP3 to Release 12.6.
 00531325 DE246886 XPSSweeper throws the "CA.SM::SAMLv2IdP.Name is not set" error when upgrading from Release 12.0 SP3 to Release 12.6: :"ERROR MESSAGE: SmApiWrappedException:CA.SM::UserDirectory@0e-000ed1bc-28a6-181b-8cc9-01017f001d7f".
n/a DE254448 Policy Server crashes during the shutdown when X509 authentication scheme is configured.
 00474687 DE250284 COMPONENT fails to prompt user to change the password though it expired, and accepts the expired login credentials.
 00636971 DE268856 During the Policy Server installation in the console mode, the Policy Server configuration wizard fails to point to the default value in the Choose Features menu and it prompts for Super User account password in default installation setup.

 

Administrative UI

Salesforce Case NumberInternal Defect IDIssue Description
00516766DE242603Domain policy fails to work when the Search filter contains "not" for searching users.
00494403DE244464The Member Group and Organization selection fails to persist across multiple pages under creation of roles for applications.

CA Access Gateway 

Salesforce Case NumberInternal Defect IDIssue Description
 00335041DE242989CA Access Gateway fails to return the domain cookie header to clients if the cookie request that is sent from the host-only backend server does not contain the domain.

 

R12.6 SP01

==============

Salesforce Case NumberInternal Defect IDIssue Description
593340DE247886Administrative UI performance degrades when the Federation Partnerships and Certificate Management features are used.
n/aDE245176XPSSweeper stops responding and its CPU usage is 100%.  

 

R12.52 SP02 CR01

==============

Salesforce Case NumberInternal Defect IDIssue Description
n/aDE78525Enabling Session Assurance breaks the existing on-auth-accept-redirect responses used by the GD modules.
00216178DE118729The socket timeout and connection timeout values cause exceptions in OAuth authentication scheme.
00032401DE133069Search for Super User permission results in errors if the user is passed with Active Directory (AD) context.
00236681DE135488Policy Server truncates assertion data if the size of active response in assertion exceeds 48K.
00303348DE135629CAPKI version is upgraded to CAPKI 4.3.9.
00177393DE139043Administrative UI throws an exception when creating or modifying a new domain and adding a new user directory to it.
00305791DE139934The exported metadata shows SHA1 though SHA256 as selected in Entity or Partnership.
00103617DE140166During the Policy Server installation in console mode, the Policy Server configuration wizard does not point to the default value in the Choose Features menu.
00258335DE143015Smconsole throws the following error if you enable the profiler by clicking apply or save button after the Policy Server upgrade: key not found: smc.AdvAuthDataSourceEmpty
00285735DE144421The Identity Mapping objects that are exported using XPSExport fail to get imported in to another Policy Store.
00328359DE154573Users are not listed in the EEM UI when the displayName filter is used.

 

R2.52 SP01 CR08

==============

Salesforce Case NumberInternal Defect IDIssue Description

00302490

00461931

DE139629

DE200163

Policy Server fails to record the audit log.

00069481DE140271

The Policy Server responses are delayed when it handles requests with a delay of at least one second.

00339507DE157079SDK Policy API call getAgent fails to find the agent.
00335233DE159112

The start-all command fails intermittently to execute completely when the stop-all and start-all commands are executed repeatedly.

00364477DE159909The Kerberos libraries are upgraded to Release 1.11.
00365506DE171963

Policy Server fails to retain custom headers when a user successfully logs on to an application and navigates to another page within the application.

00366537DE172890

After unlocking a user account, Policy Server fails to allow the user to log in to the application in the first attempt.

00418724DE175935The Policy Server access logs fail to roll over accurately.

00437744

00183506

DE176727

DE94709

Policy Server fails to generate metrics/statistics for APM user store that is configured in a directory mapping.

00443477DE198382

The FMATTR attribute fails to separate multi-value attributes when it is used with an expression in the attribute values.

00463800DE202900Policy Server fails to generate the WS-Federation SAML 1.1 assertion when multi-value attributes are configured.
00472333DE203466

Perl API generates a core dump when we try to add more values to the ValidateTargetDomains ACO parameter.

00481735

00719355

DE204495

DE287256

Policy server Management thread displays the Error 9 waiting for server management messages error in the smps.log file.

00497374

00519167

DE227108

DE246312

Policy Server fails to return ACO parameters that contain '#' when smagentapi is used in SDK.

00505938

00632270

00470058

DE227173

DE274161

DE224107

The APS LDAP transactions exhibit performance issues during the LDAP connection processing requests.

00485748DE237602Policy Server fails to connect to the backend of LDAPS when TLSv1.1 is used.
00455538DE237693

Policy Server crashes when the X509 authentication scheme is accessed.

00485641DE238341

Policy Server truncates the SAML AUTTHN-Request that it successfully received earlier, and throws an XML parser error.

00453641DE244404

Perl CLI fails to fetch the authentication scheme of a realm when the session is established with the Administrator privileges of the domain to which the realm belongs.

00593328DE245883Translation fails with the APSXLateTest utility.
00449099DE250710

The APS libraries are missing in Solaris 64-bit Web Agent.

00607752DE256008Policy Server fails to delete policy objects from cache if they are added or deleted using SDK.

00372539

00817098

DE258092

DE311005

Policy Server terminates abnormally when Application model is used in conjunction with an OnAuthAttempt rule.
   
00652318DE270502

Policy Server fails to preserve assertion attributes in WSFED/SAML1.1 federation partnership.

00664489

00295831

DE275087

DE136643

Sort Controls are not disabled on LDAP during user search.

00680051DE279215

The WSFED IP-to-RP partnerships fail to display the configured value of Minimum Authentication Level in federation partnerships.

00688005DE284023

When an application is protected with the RSA authenticatioon scheme, Policy Server fails to allow users to log in to the application after idle timeout value expires.

 00709833DE284336

Policy Server shuts down slowly that causes the stop-all script to forcibly kill the smpolicysrv process with an explicit SIGKILL command.

00717678DE286779

XPSImport fails when it is run on a Policy Server on which caches updates are disabled.

00474687

00597575

DE205706

DE237817

Policy Server fails to prompt for a password change though the password has expired, and it accepts the credentials of the locked out user.

00760779DE297518Policy Server fails to let delegated non-super users create Identity Mapping in Administrative UI.
00775720DE315872Policy Server crashes when it is integrated with APM 13.0.

 

R2.52 SP01 CR07

==============

Salesforce Case NumberInternal Defect IDIssue Description
00691198DE282824User store fails with the Cannot contact LDAP server error during a search under heavy load.  

 

R2.52 SP01 CR06

==============

Salesforce Case NumberInternal Defect IDIssue Description

00236681

DE102140

Policy Server truncates assertion data if the size of active response in assertion exceeds 48K.

21955636-01

DE105858

Policy Server intermittently crashes when processing certificates.

00103617

DE106225

During Policy Server installation in console mode, Policy Server configuration wizard does not point to the default value in the Choose Features menu.

00258335

DE124902

Smconsole throws the following error if you enable the profiler by clicking apply or save button after the Policy Server upgrade:

key not found: smc.AdvAuthDataSourceEmpty

00206326

DE133031

Policy Server restarts with Module Faults.

00285735

DE134112

The Identity Mapping objects that are exported using XPSExport fail to get imported in to another Policy Store. 

00174746

DE137239

Protected Resources became unprotected when Policy Server restarts.

00305816

DE137802

Policy Server cache build failure on secondary Policy Server with error "Cannot fetch agent" or "Secondary cache build failure", during administrative changes.

00301544

DE140495

XPSExport crashes when running XPSExport from the command line.

00420620

00312398

DE171901

DE142908

Policy Server generates a core dump upon stopping the server.

00347228

DE156811

smfedexport is not considering the alias given in the command and it always signs xml data with first certificate in the list.

00434175

00346464

DE199271

DE157832

Changes are not reflected in Administrative UI when updating the objects through XPSImport.

00349379

00349379

DE186906

DE159627

Active Response is not cached hence experiencing slow response due to the need to send two different OnAccessAccept active response headers (PROXY_REMOTE_USER and proxy-remote-user) to meet each applications needs.

00374788

DE162137

Policy Server crashes while running the publish command.

21957952-01

DE164000

Performance degrades in R12.52 SP1 compared to R12 SP3 CR10.

00483471

00371347

DE206486

DE165142

Policy Server hangs when connected to Oracle 12c User Store using Administrative UI.

00354719

DE166084

Performance issues were observed in Policy Server during the DB connection processing requests.

00318299

DE201257

DE177286

XPSSweeper tool crashes abruptly.

00419440

DE177765

Policy Server hangs when connection limit is exceeded.

00370648

00449759
00413584
00380676
00337693
00328269
00444984

DE197591

DE187115
DE172081
DE163488
DE156901
DE144249
DE186346

Encrypting the assertion throws an error on the IDP side when cert contains non-ASCI characters in the IssuerDN.

00296881

DE192239

Policy Server leaks memory while processing LDAP referrals.

00469210

DE204579

Secure Session Assurance throws an error when trying to access the protected resource.

00475766

DE204581

Upgrade fails in SPS.

00474687

DE237816

User is not prompted for password change though the password is expired and locked out user credentials are accepted.

00265979
00351582
00327704
0024814
00256060

DE78566
DE157547
DE144175
DE103106
DE129844

Apache Commons Collection vulnerability found in 3.2.1.jar and it is  fixed in 3.2.2. and 4.1.
00303302DE138108Service Provider fails with “java.lang.NullPointerException” while consuming an IDP generated assertion with the SP feature SingleAssertionUsage option is enabled.
00216581DE143166

Web Agent is not failing back to the first Policy Server and requests are not processed successfully when starting the first Policy Server.

00311237DE144432

Dynamic Rollover of agent keys is not happening on time where it is set in the Administrative UI.

00309822DE143104

In Administrative UI, creating and submitting a realm takes time.

00222654DE144528

Agent Key does not rollover when it is configured to rollover on a specific day of the week.

R2.52 SP01 CR05

==============

 

Salesforce Case Number

Internal Defect IDIssue Description
22000073-01DE65940The SAML 1.1 default target configuration is inconsistent in FSS UI and Administrative UI.
00200658DE67510The “ReEnableAfterIncorrectPwd” method of the Policy Management API returns incorrect value.
00203863DE68350Policy Server leaks memory while processing the list of server commands.
00215858DE68366The authentication fails if the username contains &.
00061182DE82998The TargetAsRelativeURI ACO parameter fails to evaluate response URIs.
00069814DE91886The CA RiskMinder service fails to start after the Policy Server reconfiguration because of the Inaccurate SmCommand status.
00219841DE93650URLENCODE fails to handle internationalization characters.
21566865-01DE96366User groups are not populated under roles for Applications for the AD user store.
00144339DE96440The Policy objects imported using XPSImport fail to reflect immediately in the Administrative UI for ADLDS as a Policy Store.
21911402-01DE99403CA Single Sign-On sends the ObjErr_NotFound error as an access error to CA Wily.
00250192DE101595The Authreason codes from Policy Server are not same as the AD response irrespective of the status of isADEnhanced.
00262154DE102899Policy Server fails to parse the format correctly when username contains "%Z".
00228620DE103707The legacy federation objects are migrated every time when XPSSweeper is executed even if there is no modification to the objects.
21971630-0121971630-01The transactions processing speed of Policy Server slows down when CA Directory is used as the session store. The session store size grows exponentially and session deletes are not in sync with the rate of new sessions added to the session store.
00230350DE109200Policy Server intermittently crashes due to buffer over run.
00216178DE118731The socket and connection timeout values cause exceptions in OAuth authentication scheme.
00128842DE130935Smconsole fails to reflect the correct status of Policy Server service for Windows.
00287102DE131010The Policy Server installer includes the database versions in the configuration wizard.
00277901DE131284During the processing of SQL statements containing a NULL, Policy Server results in transport error and hangs the connection.
00259449DE133165There is no option to diagnose performance issues without enabling tracing.
00083756DE135369Policy Server crashes with the loss of LDAP connectivity.
00226144DE138326XPSExplorer allows the addition of the same policy object in XCart twice causing XPSExport to fail.
00230716DE142657The Administrative Operations by Administrator report results in the updated unknown error.
00122286DE155270TrustedHostObject created or updated on the primary Policy Server is not reflected on the secondary Administrative UI.
21875003-01DE75251APS ignores the data specified in the curly braces {} for the Lockout Mail.
00297523DE137668Policy Server terminates abruptly while authenticating a legacy administrator when the Administrative UI is protected by a custom java authentication scheme.
21900345-01DE68861Administrative UI displays FedXPSException for federation naming conflicts.
00202238DE72174The User ID Attribute Name and User Information Services fields are not marked mandatory in the OAuth Partnership page of Administrative UI.
0010847DE74101The Allow Nested Groups option fails to function for AD Namespace during a partnership federation creation.
00177393DE95585Administrative UI throws an exception when creating or modifying a new domain and adding a new user directory to it.
00032401DE112053Search for super user permission results in errors if the user is passed with AD context.
00301430DE137749Deletion of objects in the Web Services Authentication Scheme throws the following error: "AttributeNotPresentException".
00305791DE139933The Metadata export shows SHA1 though SHA256 is selected in Entity or Partnership.

00425273

00417153

00417389

 

R2.52 SP01 CR04

==============

December 30, 2015      CA SiteMinder Policy Server 12.52 SP01 CR04

                        contains fixes for the following tracking numbers:

Tracking #            Problem description

----------            -------------------

RTC 159147 / DE99789  Policy Server for Windows builds search filters

                        incorrectly for SharePoint Agent requests.

RTC 144453 / DE90644  Policy Server fails to retrieve the value for

                        special attributes such as DominoAccessGroups.

RTC 165424 / DE85265  Authorization fails to work with Identity Mapping.

RTC 154234 / DE94402  The Radius server authentication fails due to

                        incorrect Policy Server IP address.

RTC 158902 / DE93911  Policy Server fails to start if more than one

                        Global Domains are defined in Policy Store.

RTC 63534 / DE104786  The CA RiskMinder startup log reports the

                        following FATAL error:

                        "Mon Apr 28 15:52:41.229 2014 FATAL: pid 24728 tid

                        1: 2: 0: Quitting".

RTC 163452 / DE112391  Policy Server experiences high CPU usage.

RTC 163750 / DE111906  The metadata export fails with unexpected system

                        error.

RTC 153157 / DE104171  Web Agent displays the HTTP 500 Server error when

                        a URL ending with .sac extension is accessed.

RTC 153178 / DE104554  The password change from the Java DMS API results

                        in an inconsistent behaviour.

RTC 159570 / DE104660  Modification of few user attributes using the DMS

                        API results in the modification of all the user

                        attributes.

RTC 141833 / DE79301  Duplicate ICU shared library files are present in

                        the ICU third-party folder.

RTC 148852 / DE114208  CA SiteMinder SPS authenticates a user

                        successfully though the user credentials contain

                        leading or trailing spaces.

RTC 154402 / DE91831  The socket error:9999 occurs during initialization

                        of the Policy Server.

RTC 159700 / DE103500  Policy Server fails to send an active response

                        when the "Enable Null Value Response" registry is

                        set to 0x1.

RTC 156152 / DE90351  CA SiteMinder fails to replace the place holders

                        for Risk Minder.

RTC 156789 / DE67270  Sm_AgentApi_Init fails due to select() call.

RTC 167520 / DE104578  The CA RiskMinder service fails to start after the

                        Policy Server reconfiguration.

RTC 154889 / DE96766  The silent mode upgrade of Policy Server upgrades

                        the Policy Store.

RTC 139480 / DE96132  CA SiteMinder FSS UI fails to open if an expired

                        certificate exists.

RTC 118937 / DE107119  Enabling Session Assurance breaks the existing

                        on-auth-accept redirect responses used by the

                        GD modules.

RTC 141895 / DE82640  smpolicy.xml contains incorrect default attributes

                        for the Sharepointdefaultsettings ACO.

RTC 149104 / DE101138  Deadlock with the ACE initialization functions

                        causes Policy Server to generate a core.

RTC 147509 / DE74786  The FedObjects partnership service returns success

                        when transaction commit fails.

RTC 166137 / DE67238  Policy Server crashes on the IM tunnel agent call.

RTC 150117 / DE102338  The smreg -su requires Policy Server restart for

                        password reset.

RTC 155562 / DE78433  The smmigratecds tool crashes with the

                        java.lang.Exception error when -validate is used.

RTC 154392 / DE89586  Policy Server crashes during LDAP failover.

RTC 150754 / DE99826  Administrative UI screen does not display in

                        Japanese language in Internet Explorer 8.

RTC 168791 / DE94469  RSA AceLibrary is upgraded to version 8.1.3

RTC 165810 / DE81830  Scoped Administrator experiences poor performance

                        of Administrative UI.

RTC 159398 / DE103333  Policy Server installer displays the following

                        incorrect non-fatal error in the install logs on

                        Linux whenever the libidn library is missing:

                        "There are consecutive spaces found in the

                        installation home directory. Ensure that the

                        installation home directory does not contain

                        consecutive spaces".

RTC 163151 / DE106953  Policy Server allows the log in of a locked out

                        user when the Enhanced AD integration is enabled.

RTC 137833/158995 /    The smaccess log file fails to display fields in

DE71698/DE95265        the first line.

RTC 157372/163655 /    The SMUSRMSG cookie allows phishing for valid

DE75322/DE113070      usernames with Novell eDirectory as a user store.

 

R2.52 SP01 CR03

==============

Policy server was not released for CR03.

 

R2.52 SP01 CR02

==============

Product: SiteMinder Policy Server 12.52 SP01 CR02

July 17, 2015 Policy Server 12.52 SP01 CR02 contains fixes for the following tracking numbers:

Tracking # Problem description

---------- -------------------

127127 When setting the registry key KeepAgentConnections as 2, the directory server (policy store) log fills up with below log statement many times: msgId=30638 - RESULT err=32

125079 When using Passwordservices, LoginFailure count resets to zero after the account is disabled due to too many login attempts.

134424 Policy Server terminates abnormally when shared secret in the store is larger than 256 bytes.

150155 When the key store is separate and multiple requests com from web agents to Policy Server, some agents fail to get agent keys with the following error msg in the smps log:Policy store failed operation 'MultipleSearch' for object type 'AgentKey'

119472 The date on the generated report does not match the date on the audit report.

147235 Number of LDAP search calls are more during authorization when using the INGROUP expression.

146237 Attempting to retrieve rules associated with a policy having rules and rule groups associated with it, returns an invalid value.

154875 Install Anywhere must be upgraded

64886 Administrative UI does not display certificates with non ASCII characters 149490 SASL Bind fails with Active Directory

137829 Administrative UI fails to display the rules during policy creation under a domain.

72274 WILY reporting Policy Store as RED

151453 Enabling EnableAuditing and disabling IgnoreQueryData creates unexpected audit log entries.

81449 SM_catagory for AgentInstance object is missing in category.txt file. This causes error on loading.tmp files into the Oracle database, when you process audit related to these objects.

145059/144842 Policy Server fails to implement the changes done to rollover frequency configuration once the rollover begins.

153353 The XPS parameter $AgentConnectionMaxLifetime is being read continuously even though the dynamic flag is set to false

135032 Session Assurance is not getting configured if Policy Server is installed in silent mode.

72517 Running XPSCounter against an Active Directory user store fails

154967 FSS UI session times out as an admin logs in.

139126 SM returns smauthreasoon code 0 when Illegal characters are found in username.

141439 Audit logging not working if Postgres is used as the audit store.

144185 smreghost must prompt for the password

63022 KeepAgentConnections parameter does not contain parameters  to support sending soft or hard close when AgentConnectionMaxLifetime time out is reached.

155251 Policy Server terminates abnormally while rebuilding secondary caches.

145890 Error messages displayed when IDP is using an incorrect Public Key/cert for encrypting the assertion, is misleading.

98387 Policy Store displays an error message (Unable to read object smSessionId) in smps.log when you use a CA Directory Server as a Session Store.

144051 Policy Server terminates abnormally and does not recover when LDAP Directory Server hangs due to network  connectivity issues.

144576 The correct offset from GMT is not being displayed correctly in the access.log.

143552 Realms are not displayed in the Administrative UI whenviewing from Domains

141981 Administrative UI is throwing NullPointer Exception during creation/modification of workspace having IDP  partnership.

148504 Identity mapping failing with R12.52 SP1 due to search criterion in ODBC.

147257/150174 Policy Server terminates abnormally crashes due to RpcDispatcher::evalCall

142193 APS CPW embedded form does not allow to disable autocomplete.

158072 R12.5 SiteMinder returns smauthreasoon code 0 when Illegal characters are used in the username.

155298 DataDirect Upgrade to version 7.1.5.

155275 Upgrade CAPKI to version 4.3.8

146073 Policy Server closes the connection with SAP ERP Agent with 10 second idle timeout. The idle timeout session has been made configurable.

135760 Upon shutdown Policy Server crashing when an auth scheme was released.

 

R2.52 SP01 CR01

==============

Product: SiteMinder 12.52 SP01 CR01 Policy Server

February 13, 2015 Policy Server 12.52 SP01 CR01 contains fixes for the following tracking numbers:

Tracking # Problem description

---------- -------------------

64139 Policy Server terminates abruptly because of ACE authentication error.

75274 Policy Server terminates abruptly when Active Expression is authorized as response attribute.

71915 WS Federation transaction fails at Assertion Generator when policy store is temporarily inaccessible.

55835 Policy Server displays java.sql.SQLIntegrityConstraintViolationException error when you run the Audit and Analysis report because of null value in Column 'RPT_INSTANCE_ID'.

55627 CCS Integration fails when you upgrade Policy Server from 12.51 to 12.52.

111439 XPS import fails when you change the expression name in policy store.

134407 Policy Management API fails to send the plain password to Identity Minder.

116213 Policy Server terminates abruptly when the user name of the directory contains special characters especially a percent symbol (%).

55850 Administrative UI fails to activate multiple WS-Federation partnership from Identity Provider to Resource Partner when you use the same RP ID for different partnerships.

116645 XPSExport utility fails abruptly when you export workspace entries.

75050 Policy Server displays CERTREVOKED error instead of CRLEXPIRED error for the expired certificate, when you use the X509 client cert authentication.

138677 Policy Server fails to connect to the CA Directory through TLS  protocol.

139117 Policy Server fails to connect to the CA Directory when the Session transaction store delays by 11milli seconds or more.

70771 Policy Server terminates abruptly when policy store is  configured with SQL and key store is configured as LDAP.

85501 Support for bulk import and export of CDS objects has been  added.

65216 Policy Server displays Policy Server did not start properly  error message during start up.

137785 Policy Server terminates intermittently because of missing  null check.

71917 Policy Server displays "Bulk loading of records is not  supported by driver" error when you import SM audit data into SQL database.

74943 The commented ACO properties get deleted using modifyAgentConfig API.

118104 Policy Server terminates abruptly when XPSExport is run with  the xb switch.

127251 XPSSweeper tool terminates abruptly.

116609 APS change password and forgot password fails for the ODBC  stored procedure.

125655 Policy Server displays "SamlValidator (Pass 2) Caught unknown  exception or error" error when you migrate SAML application from Release 6 to Release 12.52.

114013 Policy Server start-all script displays "unexpected operator/operand" error.

119486 OneView Monitor asks for gif images that do not exist in the SM installation location.

139332 APS displays an incorrect error message when a new password is not accepted.

55134 Policy Server fails to set content-length header when the message body is empty.

139460 Policy Server displays null pointer exception error if the Assertion attribute does not exist in LDAP.

119956 RSA ACE SDK library upgraded to version 8.1.2 on Linux.

125654 RelayState truncates at first occurrence of %22 when you post SAMLResponse to assertionconsumer.

73540 WS-Federation partnership activation fails because of object creation failure in the Novell eDirectory policy store.

74881 Policy Server terminates intermittently because of APSMail.DLL while using the "Forgotten Password" functionality when the XSHADOW feature is enabled in the exchange server.

73587 Policy Server fails to generate WS-FED SAML 1.1 assertion when you configure the multi-value attributes.

73371 APSExpire command fails when you change the name in the SmUser column name of the APS table.

74377 Key store gets updated when Global Tools Setting in Policy Server is modified.

127212 Upgrade to CAPKI 4.3.5 release.

72916 Backreference regular expression fails with SiteMinder password policy.

138621 Federation transaction displays 500 error if the user name contains an apostrophe in the email.

135786 XPSSweeper displays "Failed to migrate the service provider for SAML1.1 partnership" error.

117317 The smaccess.log and smps.log files fail to rollover intermittently.

72210 Federation Partnership fails because of Null PointerException.

117890 Policy Server partially reloads the cache when an Agent connects to the Policy Server with an incorrect shared secret.

 

R2.52 CR01

==============

Product: SiteMinder 12.52 CR01 Policy Server

March 4, 2014 Policy Server 12.52 CR01 contains fixes for the following tracking numbers:

Tracking # Problem description

---------- -------------------

181423/181647 If the encryption key in the EncryptionKey.txt file contains null characters, the file from r6.0, r12.0 SP3, and r12.5 is incompatible with r12.51 CR01.

177001/182984 During the data export, smkeyexport and the -k and  -c options of smobjexport do not decrypt the keys.

182908 The Administrative UI (WAM UI) fails to display the imported certificates in the X509 Certification Management tab.

2 comments
14 views