Fixed Issues in 7.1.1 Patch 2

Document created by RSA Information Design and Development on Jul 12, 2019Last modified by RSA Information Design and Development on Nov 15, 2019
Version 5Show Document
  • View in full screen mode

The following issues were fixed in RSA Identity Governance and Lifecycle version 7.1.1 Patch 2.

Access Certification

                                                       

Issue

Description

SF-1215357

ACM-89832

Users were able to schedule reviews and collectors using a past date.

SF-1325510

ACM-95533

Multi-step review generation failed when secondary step definitions enabled the user selection option "By selecting supervisors and using their subordinate users.”

SF-1292722
SF-1310682

ACM-94322

A review with a value for SIGN_OFF_ENABLED other than Y or N caused a server startup failure.

SF-968449

ACM-76811

In a review definition that already had a coverage file that determined the monitors, if the definition was edited to deselect the coverage file option, the earlier coverage file was still saved with the review definition despite being displayed as unselected in the user interface.

SF-1382502

ACM-98334

The reassign action in the review user interface took longer than expected.

SF-1255036

ACM-91744

Review analysis failed with the ORA-01706 error.

SF-1397681
SF-1395088

ACM-98952
ACM-98950

The By Monitor tab for group and role reviews showed incorrect display names.

SF-1373306

ACM-98532

Account Review Change Preview tab did not download content when exporting the table.

SF-1315720

ACM-95128

A role review caused changes in the review state even when all review items were maintained.

SF-1284145

ACM-93466

Group review definitions erroneously displayed the Include Users option.

SF-1284174
SF-1268046

ACM-95654

An SQL error occurred when changing a review state to complete.

Access Requests

                                           

Issue

Description

SF-1316456

ACM-96218

Pre-processing for unauthorized change detection failed with the ORA-06402: PL/SQL: numeric or value error.

SF-1343435

ACM-96760

Subject of email incorrectly contained HTML markup.

SF-1396177

ACM-98900

When multiple sessions changed role-related items, such as users or entitlements, deadlocks could occur when refreshing role metrics, which interrupted processing.

SF-1323250

ACM-97156

The Revert Completed Changes option was missing from the cancellation pop-up when canceling a change request, even though completed items existed.

SF-1277795

ACM-95117

Local entitlements were not provisioned to the user when given through an account or when the directory for accounts was set in an application.

SF-1162529

ACM-87884

The request button type Add/Remove Using Request Sources did not have an option for including terminated users.

SF-1324409

ACM-97577

When users clicked a link to a change request in an email, after logging in, they were redirected to the home page instead of the change request.

 

ACM-89679

If a user closed the browser or navigated away from the page using any function other than the cancel or back buttons, entries for pending accounts were left in T_AV_ACCOUNTS.

Account Management

                   

Issue

Description

SF-1301058

ACM-94501

When generating a request, if a resolved pending account name already existed but was deleted, the reactivated account was not updated for all of the change items that depend on the pending account.

SF-1302083

ACM-94348

When saving the data from an application accounts table as a CSV file, the column name "Is Deleted" was displayed in the CSV output along with HTML code for an unneeded special character.

ACM Security Model

               

Issue

Description

SF-1224247

ACM-90477

Account information on the MAEDC wizard was not displayed as expected to users authorized to edit or administer the MAEDC.

AFX

                               

Issue

Description

SF-1169677

ACM-87391

In a clustered environment, afx start incorrectly checked for the application running in standalone mode.

SF-1240999

ACM-91585

Improved error messages with regards to connector configuration.

SF-1341660

ACM-96646

The ISIM 6.0 connector timed out when testing the connector, and Test Connector Capabilities indicated a "class not found" error.

SF-1368720

ACM-98673

A provisioning command node stalled the workflow if the AFX request was in an invalid state.

SF-1033350
SF-1193133

ACM-87007

AFX requests were getting stuck after upgrading to 7.x.x with the error "Error handling AFX primary request java.lang.NullPointerException", due to the schema change.

Authentication

               

Issue

Description

SF-1309424

ACM-94936

PV_AUDIT_EVENTS erroneously displayed logged users as AveksaAdmin instead of the user logged in through SSO.

Change Requests and Workflows

                                   

Issue

Description

SF-1275666
SF-1181059

ACM-95849

The workflow setting "Show job level variables" did not work as expected.

SF-1293434

ACM-95053

In a fulfillment workflow, REST nodes did not display job variables as expected.

SF-1311025

ACM-94899

A change request was canceled when an approver approved an indirect role that was deleted.

SF-1322920

ACM-95537

When change requests were split based on the Max Items settings, the generated requests did not have a set fulfillment date.

SF-1366953

ACM-98397

The error "RSA002: Invalid Configuration" was displayed during workflow runtime for a REST node, even though the node was successful.

SF-1372602

ACM-98859

Reassign Escalation Workflow and Technical Approval nodes changed the watch Workflow ID to the escalation Workflow ID.

Collector

                       

Issue

Description

SF-1131553

ACM-85344

The Salesforce Entitlement Data Collector on versions 7.0.0 or 7.0.2 failed when collecting large data sets.

SF-1262200

ACM-92309

The account data collector incorrectly processed the AD PwdLastSet attribute when the value was set to zero.

SF-1196283
SF-1282645

ACM-90783

Data on the account/entitlement collector page loaded more slowly than expected.

Custom Attributes

                   

Issue

Description

SF-1295911
SF-1345994

ACM-94081

After setting a specific user as a Backup Business Owner or Backup Technical Owner for any Directory, Application or Role set, when the user's name was changed through the IDC, the CAU1_NAME attribute was not updated and the application object showed an outdated name in details, tables, and pop-ups.

SF-1276994

ACM-94117

After upgrading, custom attributes were missing from the PV_USER_ALL_ACCESS view.

Dashboard

                   

Issue

Description

SF-769669

ACM-60805

A dashboard using the component System Portlet: System Summary displayed incorrect values.

SF-1215915

ACM-89817

Dashboard import and export created new dashboard topics instead of overriding previous topics.

Data Collection Processing and Management

                   

Issue

Description

SF-1333332

ACM-95877

The “Is Terminated” attribute was not being displayed as collected for some unified users.

SF-1323406

ACM-95768

Indirect relationship processing failed with the following error: "ORA-30926: unable to get a stable set of rows in the source tables."

Database Management/Performance

                                               

Issue

Description

SF-1377550

ACM-98168

Data purging failed due to the ORA-02292 error while deleting data from work point tables.

SF-1291300

ACM-93837

RSA Identity Governance and Lifecycle did not start during remote database switchover.

SF-1350067

ACM-97048

Data archiving runs failed.

SF-1367049

ACM-97770

Migration from 7.0.x to 7.1.x failed with the following error: "ORA-01720: grant option does not exist for 'SYS.DUAL'"
ACM-98488After creating 500 SoD rules using a correlation specification, rules processing exceeded 17 hours.

SF-1401651

ACM-99098

The system performed slowly after upgrading and using Oracle 12.2.

SF-1353607

ACM-98233

Users experienced performance issues with the email log page.

SF-1367802

ACM-97881

Users experienced performance issues with the overall user interface, workflows, and collections.

SF-1380172

ACM-98282

Reviewers performing a bulk revoke during a fine grain role review experienced performance issues.

Email

               

Issue

Description

SF-1293405

ACM-95236

Special characters were not displayed properly in email subjects.

Migration

                       

Issue

Description

SF-1341401

ACM-96645

Deprecated migrate_deleted_connectors code because it was failing during role migration.

SF-1373931

ACM-98050

Database migration stalled with the ACM-76636_2.sql query processing for three days.

SF-1342412

ACM-96551

The migration script ACM-72719.sql failed with the ORA-19011 error.

Provisioning

               

Issue

Description

SF-1184940
SF-1223424

ACM-88349

An Oracle ORA-22835 “Buffer to small” error could occur while provisioning an account through AFX under high load.

Reports

                           

Issue

Description

SF-1169924

ACM-87390

Column display names in a report definition were not updated if the alias column name in the query was the same as the display header but with different capitalization.

SF-0688516

ACM-54534

Old attributes in jrxml report definitions resulted in spam to the server logs.

SF-1334676

ACM-96179

Reports that use styles did not retain the style when downloaded to an output file such as PDF or HTML.

SF-1356825

ACM-97280

The default Drop Down Select with Web Service control was unable to pass a request token to a Web Service.

Request Forms

                                   

Issue

Description

SF-1348816

ACM-96918

Check boxes on a form were not disabled when the form was disabled.

SF-1361380

ACM-97592

Users were unable to submit a form that used an external validation URI, because the Next button was unusable.

SF-1278644

ACM-96541

Request forms allowed the selection of entitlements for a user that they had already been indirectly granted.
ACM-98192Validation URI JSPs did not work when uploaded to the secured JSP pages.

SF-1262036

ACM-94030

Could not open an associated request form from a change request.

SF-1385726

ACM-98842

A conditionally disabled drop-down passed only the first value.

Role Management

                               

Issue

Description

SF-1331149

ACM-95790

During role creation, users who were configured as the Other Technical Owner for some role sets and who had the Role Set: View All entitlement were erroneously able to create roles under any role set.

SF-1331250

ACM-95788

The Role Creation wizard displayed a role set’s raw name instead of the role set name to technical and business owners.

SF-1332139
SF-1349556

ACM-96219

A role membership rule could not be removed or deleted after it was created.

SF-1377952

ACM-98164

When the Apply Changes button was clicked on a changed global role, the View Changes link incorrectly showed the same entitlements as both added and removed.

SF-1238763

ACM-97112

The rule type Role Missing Entitlements did not capture missing Global Role entitlements in email.

Rules

                               

Issue

Description

SF-1338165

ACM-97943

User access rules failed during execution.

SF-1326701

ACM-97109

The unauthorized access rule detected and revoked legitimate account to group memberships that had been previously provisioned by RSA Identity Governance and Lifecycle as user changes or Add User to Group requests.

SF-1382297

ACM-98319

A segregation-of-duties rule with a correlation attribute created violations with one bucket only.

SF-1253494

ACM-97325

Segregation of duties rules did not work properly with child application roles.

SF-1322268

ACM-95316

The Attribute Change rule skipped users when multiple Rule runs were queued.

Server Core

               

Issue

Description

SF-1354187

ACM-97194

Data purging failed with the following error: “ORA-02292: integrity constraint (AVUSER.FK_T_IDCAV_T_IDCA_ID) violated - child record found.”

User Interface

                                       

Issue

Description

SF-1301016

ACM-94283

In the list of applications, the Sensitivity column was not available in the table options under Displayed Columns.

SF-1330310

ACM-95789

A custom help URL did not work immediately after logging into RSA Identity Governance and Lifecycle.

SF-1344459

ACM-96671

When the Ignore Case option was selected, the "one of" search option erroneously remained case sensitive.
ACM-96675A "request cannot be handled" error occurred when clicking on an external URL request button with a special character in its name.

SF-1353826

ACM-97111

Import incorrectly allowed values greater than the defined value of 256 for the short description of business descriptions.

SF-1193085

ACM-88580

The user interface did not notify that a previously uploaded .jsp file reloaded with modifications required a server restart for the changes to take effect.

SF-673708

ACM-53828

Under Resources > Applications, in the Accounts tab, custom attributes were not displayed for Application Roles or Entitlements.

Web Services

               

Issue

Description

SF-1169306
SF-1250474

ACM-87462

When multiple records were found for userId, the web service failed to update the user's review items.

Attachments

    Outcomes