Fixed Issues in 7.1 Patch 6

Document created by RSA Information Design and Development on Aug 14, 2019Last modified by RSA Information Design and Development on Nov 21, 2019
Version 5Show Document
  • View in full screen mode

The following issues were fixed in RSA Identity Governance and Lifecycle version 7.1 Patch 6.

Access Certification

                                       

Issue

Description

SF-1262429

ACM-92238

The Member, Entitlements, and Analytics tabs of a role could not be clicked in a role review with "submit" as the mandatory signoff comment.

SF-1090220

ACM-83577

The “Explicit by Owner” option in the Account Access and Ownership review, when sub-components were automatically revoked through a revoked parent component, caused incorrect confirmation messages after canceling review changes.

SF-845541

ACM-67727

The "Apply to account entitlements" option for bulk actions did not work on associated app roles and entitlements in an account review due to a column filter in a custom review display view.

SF-1300767

ACM-94654

The Account Name column was missing from the available columns to display in a review display view.

SF-1170335

ACM-87413

Could not send emails using the Send Email button in the All Groups tab of group reviews.

SF-1150335

ACM-93895

Reviewers attempting to save or sign off changes while their earlier changes were still processing saw the following error message: “The request could not be handled.”

SF-1307372

ACM-87205

Localization in the new reviewer user interface required multiple improvements.

Access Requests

                           

Issue

Description

SF-781743
SF-856286
SF-872111

ACM-61578

Change requests with fulfillment dates set later than 2040 were erroneously fulfilled immediately.

SF-1290694

ACM-94018

The ${avform.requestor.Id} variable did not resolve as expected for users.Supervisor and grayed out the associated button due to the resulting sql error.

SF-1260207
SF-1290214

ACM-92751
ACM-93823

The default out-of-office functionality failed to process Global Common Submission Questions when configured.

SF-843249

ACM-67217

When a user viewed a request form with table grouping enabled, the list of entitlements took much longer than expected to expand if the checkbox next to the entitlement type was selected.

Account Management

               

Issue

Description

SF-1191999

ACM-89978

The AFX output parameter did not update the pending account, even though AFX received the value from the endpoint.

Admin Errors

               

Issue

Description

SF-1205426

ACM-90188

Email failures did not appear in the notification tray to alert the admin.

AFX

               

Issue

Description

SF-936411

ACM-73373

AFX erroneously resent requests that had previously failed or been canceled.

Application Wizards

               

Issue

Description

SF-1073265

ACM-82980

Custom Value List display names were not allowed in an advanced search with Integer Type attribute filtering.

Change Requests and Workflows

                                                   

Issue

Description

SF-1284183

ACM-93525

A fix applied in an earlier patch for change requests stuck in the fulfillment phase stopped working after an upgrade.

SF-1293969

ACM-94160

The AFX create account action failed when a change request with multiple “Create Account” items for multiple applications and for a single user has one of the “Create Account” items rejected.

SF-1292210
SF-1228815

ACM-94109

Role approvals grouped by a custom category mixed up the acm.JobGroup values assigned in the workflow to define the group.

SF-1307962

ACM-95063

A new workflow form for an activity or approval did not associate to its respective node when saved and did not replace the previous form as a result.

SF-1279390

ACM-93461

Corrupted mapping for provisioning command parameters occurred after an upgrade.

SF-1314848

ACM-95214

The conditional transition selection failed to save the first time when setting the condition through the drop-down selection button.
ACM-94082Could not delete an escalation that referenced an escalation workflow that did not exist from the approval node.

SF-1274945

ACM-92854

When a change request was created with an entitlement that had a business description, the short and long business descriptions appeared empty under User Changes in the change request approval screen.

SF-1155926

ACM-87274

Additional Javadoc was needed about the use of Java nodes in workflows.

SF-1255736,
SF-1279531,
SF-1349690,
SF-1332507

ACM-91858

After importing a workflow from a higher patch version into a lower patch version, migration failed with the ORA-0001 error.

Collector

                       

Issue

Description

SF-1299910

ACM-94323

The Salesforce ADC was missing attributes listed in the datasheet.

SF-1298037

ACM-94661

The ServiceNow collector failed after certain plug-ins were activated.

SF-1273747

ACM-93287

The Office365 PowerShell Collector took an excessively long time to complete.

Dashboard

               

Issue

Description

SF- 938836,
SF-1082693

ACM-74513

Secondary pages of a report displayed within a dashboard were not displayed properly.

Data Collection Processing and Management

                                       

Issue

Description

SF-1260229

ACM-92496

Unification failed with unknown error after an upgrade.

SF-1300333

ACM-94263

Running two MAEDCs failed with error ORA-30926 if they overlapped in applications and IDs.

SF-1187676

ACM-89996

Users could not login during the first step, Account Data Collection, of a running ADC.

SF-1249962

ACM-91612

Change Verification performance slowed on large datasets after an upgrade.

SF-1312017

ACM-94871

The App Metadata collector trimmed values longer than 38 characters for owner and CAU fields.

SF-1217455

ACM-89969

Indirect relationship processing ran for more than 5 days after changes to the MAEC.

SF-1216820

ACM-92280

The provided fix to truncate the T_AV_BUSINESS_DESCRIPTIONS table did not successfully shorten the long collection time.

Data Governance

               

Issue

Description

SF-1302256

ACM-94318

Data purging failed with the ORA-02292 error "integrity constraint (AVUSER.FK_T_PCS_EXN_HY_PC_ID_T_PCS_ID) violated - child record found".

Database Management/Performance

                   

Issue

Description

SF-1246819

ACM-93524

A database import process generated unneeded statistics for certain tables.

SF-1297442

ACM-94181

The "Provisioning screens for 50 users" performance test showed an unoptimized sql query.

Email

                           
IssueDescription

SF-824105
SF-1006954

ACM-65511

The Review Completed event sent emails only to reviewers with open items.

SF-803604

ACM-64365

The View Review hyperlink to a deleted review result in a New Review email incorrectly showed the error "The Request could not be handled."

SF-1300504

ACM-94697

Case-sensitive email approvals resulted in "Wrong user replied" responses when taking an approve or reject action through email.

SF-1155182

ACM-88160

Lotus Notes could not correctly display Nordic characters in emails sent by RSA Identity Governance and Lifecycle.

Metadata Import/Export

                   

Issue

Description

SF-1257224

ACM-92539

Performance slowed for importing or modifying an application with a large amount of users.

SF-1230774

ACM-92269

An application that was imported from an exported metadata file was missing information about mapping the application to a connector.

Migration

               
IssueDescription

SF-1341007

ACM-96450

Updating RSA Identity Governance and Lifecycle 7.1.0 through 7.1.0 P02 to 7.1.0 P03 through 7.1.0 P05 failed with the following error: java.lang.ClassNotFoundException: com.aveksa.migration.db.password.ViewPasswordSettingMigrator.

Password Management

               

Issue

Description

SF-1177525

ACM-87860

In a clustered environment, the PasswordResetNag and PasswordChangeNag tasks could be duplicated and cause a startup error.

Platform

                   

Issue

Description

SF-642369

ACM-52522

Changes to the root logger level in a clustered environment failed to apply to all associated nodes.

SF-1019541

ACM-78253

After running the HardenHTTPSProtocols.sh script in the /home/oracle/deploy directory, the following warning occurred: “WARN: can’t find jboss-cli.xml. Using default configuration values.”

Reports

                                   

Issue

Description

SF-1158510

ACM-93535

Two OOTB report templates, Changes in User Global Roles by Date Range and Changes in User Global Roles in the Last n Days, worked only for collected role changes and not local role changes.

SF-1261751

ACM-93822

The report query processed the < character as HTML mark-up code and truncated text that followed it.

SF-1163099

ACM-86916

When using the replace function during a preview or submission, special characters were removed from queries.

SF-1190029

ACM-88495

Query parameter detection did not work properly with an unmatched single quotation mark in the comment.

SF-986549

ACM-78252

A request form vulnerability showed authorizations that a user should not be able to request.
ACM-89680When a user tried to view a report that was no longer available, the following incorrect error message was displayed: “Access Denied. Insufficient privileges to view this page.”

Request Forms

                       

Issue

Description

SF-1300030

ACM-94292

The User picker control type reports an SQL exception error when the user filter is enabled and no variable substitution is defined in the filter.

SF-1310845

ACM-94989

Variable substitution in the control type "Drop Down with Web Service" did not encode for javascript.

SF- 1201270

ACM-88959

After a button was configured to include forms of multiple form types, only global forms were displayed when the button was pressed.

Role Management

               

Issue

Description

SF-1158276

ACM-86615

An indirect entitlement provided through a role could erroneously be removed while comparing users.

Rules

                   
IssueDescription

SF-1264397

ACM-93893

When the UCD rule detected an orphan account, an email was sent to a random supervisor if no supervisor was associated to the account.

SF-1322268

ACM-95316

The Attribute Change rule skipped users when multiple Rule runs were queued.

Security

                           

Issue

Description

SF-1307234

ACM-94695

Sensitive info in REST and SOAP Web Service node configuration could be viewed by users without edit privileges.

SF-1158051

ACM-86836

The status page shown at the end of the password reset process needed a sanitized URL.

SF-1284851

ACM-93533

Needed to update the Apache Commons jar to the most recent version to increase security.

SF-1158051

ACM-86955

Additional validation and sanitization was needed for the file upload functionality in access requests.

Server Core

               

Issue

Description

SF-1257836

ACM-93038

Scheduled Unification was triggered before the scheduled IDC run and caused the incorrect processing of rules.

User Interface

                                       

Issue

Description

SF-1233063

ACM-91269

The database view V_ROLE_TO_APPS did not include local roles in addition to collected roles.

SF-1257307

ACM-93514

The UI became unresponsive when using French language settings.

SF-1251232

ACM-92551

The load time for Review pages and Request Activity pages slowed after an upgrade.

SF-1310137

ACM-94849

After a data retention job runs, the Change State column in the Activities view could not display some of the remaining data.

SF-1193085

ACM-88580

The user interface did not notify that a previously uploaded .jsp file reloaded with modifications required a server restart for the changes to take effect.

SF- 1167740

ACM-92498

In a dashboard, the complete name of a request button was not fully visible.

SF-630081,
SF-680821

ACM-54208

When a user submitted a request, the Select Request Source screen displayed incorrect business source attributes.

Web Services

               
IssueDescription

SF-108829

ACM-87443

Online documentation for the createChangeRequest webservice needed to clarify when the change request is not created.

Attachments

    Outcomes