Fixed Issues in 7.1 Patch 4

Document created by RSA Information Design and Development Employee on Aug 14, 2019Last modified by RSA Information Design and Development Employee on Nov 21, 2019
Version 5Show Document
  • View in full screen mode

The following issues were fixed in RSA Identity Governance and Lifecycle version 7.1 Patch 4.

Access Certification

                           

Issue

Description

SF-1190649

ACM-88508

The global table options for filters, groups, and columns did not work for the Reassign and Share Review functions in the new User Access Review interface.

SF-1195963

ACM-88680

A reviewer without required privileges could download the full list of users and attributes from any User Picker pop-up.

SF-1205481

ACM-89536

A privilege column added to the reviewer coverage file of an account review definition did not appear in a .csv file saved from the data.

SF-1239517

ACM-91180

Review Generation for large datasets slowed in performance after an upgrade.

Access Requests

                           

Issue

Description

SF-1044261

ACM-79614

Several entitlements were removed at once when only one entitlement was requested for removal.

SF-1162322
SF-1171080
SF-1185324

ACM-75782

A change request could not be performed because it misnamed the account name for the requested entitlements.

SF-1223556

ACM-90304

When reverting a pending account, an Oracle error “ORA-19279” prevented successful completion of the action. Also, restarting RSA Identity Governance and Lifecycle while some change requests were not finalized could result in the same Oracle error “ORA-19279” and prevent server initialization that resulted in users not being able to log in.

SF-1189389
SF-1189398
SF-1189404

ACM-88467
ACM-88468
ACM-88477

The system did not generate change requests from violation remediation actions for revoked accounts when simultaneously revoking and giving exceptional access for multiple accounts that belonged to the same app role.

Aveksa Statistics Report

               

Issue

Description

SF-810446
SF-834464
SF-1078132
SF-1183919

ACM-64920

A null pointer exception error occurred when creating an ASR with "Include database performance statistics" enabled.

Change Requests and Workflows

                                       

Issue

Description

SF-1059087

ACM-81419

Canceling a change request that added a role with entitlements or groups reverted the role but did not remove indirect entitlements.

SF-1168903

ACM-89833

A change request generated from a termination rule bypassed a custom fulfillment workflow.

SF-1217300

ACM-89860

The URL parameter variables ${ValidReplyAnswers} and ${WorkItemURL} did not show in the workflow design page as available shortcuts.

SF-981092

ACM-84977

The decision node for workflow conditions on a request escalation was always set as "true".

SF-1192314

ACM-90476

A custom task could not be deleted if it was scheduled.

SF-1258377

ACM-92069

After applying a patch, Workflow SQL nodes periodically failed with null pointer exceptions.

SF-01171991

ACM-88211

Non-Access Request workflows had inconsistent behavior dealing with Activities.

Collector

                   

Issue

Description

SF-1185812

ACM-88921

An LDAP search initiated by RSA Identity Governance and Lifecycle asked for the same AD attribute multiple times if it was mapped to more than one of the attributes for RSA Identity Governance and Lifecycle.

SF-1190006

ACM-88607

When testing a role collector query, syntax errors occurred.

Connector

               

Issue

Description

SF-1205499
SF-984004
SF-1051212
SF-836060

ACM-89197

After performing a migration, the Federated Salesforce connector template and Microsoft Exchange connector template remained in a migration required state.

Data Collection Processing and Management

                                   

Issue

Description

SF-1193983

ACM-88706

The Role Data Collector failed with an Oracle error that reported unstable rows in the source tables.

SF-1213227

ACM-89674

The Account Data Collector could not call custom code prior to loading the raw data.

SF-1197266

ACM-88960

Any unprivileged user could export or save data in a table displayed within a pop-up.

SF-1220029

ACM-90277

Manually mapping a user account submitted a new indirect relationship processing job whether or not the job was already in queue.

SF-1062777
SF-1020344
SF-1108676
SF-1213238
SF-1224190
SF-1219428

ACM-81403

Group collection rejected the nested group relationships and misidentified groups as accounts when listed as members of other groups.

SF-1175678

ACM-87948

Collections from a .csv file returned too many rows after an upgrade.

Database Management/Performance

                           

Issue

Description

ACM-90149A backup started with a backup already in progress stopped with a warning but did not return with a failed status.

SF-892279
SF-1068981
SF-1186911

ACM-72284

The PV_USER_DIRECT_ACCESS view did not have a join condition on the entitled ID to show correct information.

SF-1190864
SF-1190863

ACM-88534

Slow SQL query performance occurred after upgrading from version 6.9.1.

SF-1128305

ACM-85934

User interface page-loading time and collections took an unusually long time.

Descriptions

               

Issue

Description

SF-1209242

ACM-89625

During the import of business descriptions, the status pop-up that appears when importing business descriptions did not appear when choosing to overwrite or skip existing entries.

Email

               
IssueDescription

SF-1038728

ACM-79982

The user interface became unresponsive when an emailed tabular report bounced due to size limitations of the recipient’s mailbox server and the aveksaServer.log file recorded the email along with the entire attachment in encrypted format.

Installer

                       
IssueDescription

SF-1166648

ACM-87123

After patching RSA Identity Governance and Lifecycle, the user interface did not display an Edit button for the Email Fulfillment Handler as expected.

SF-1193541

ACM-88761

The oracle error "ORA-30657: operation not supported on external organized table" occurred when applying an upgrade or patch.

SF-973587

ACM-75344

The Patch installation process did not stop to show an error message when an issue occurred with the archived .ear file.

Metadata Import and Export

               

Issue

Description

SF-1077965

ACM-82017

Incorrect error message was displayed when importing a rule with an invalid global role reference.

Migration

               

Issue

Description

SF-1220848
SF-1222279
SF-1226660

ACM-90260
ACM-90607
ACM-90220

The ViewPasswordUrl setting in the t_system_settings table failed to update when using the oracle dbms_lob utility with a large customerstring.properties file.

Password Management

               

Issue

Description

SF-1173793

ACM-88150

The current password could not be validated against a stored password history hash during a password change.

Reports

               

Issue

Description

SF-882602

ACM-71754

An Out of Role Entitlements report did not show the expected results.

Request Forms

               

Issue

Description

SF-1038696

ACM-79773

The form did not correctly show certain colors to highlight target users depending on their access.

Role Management

                               

Issue

Description

SF-911444

ACM-77583

Terminated users were erroneously granted indirect role memberships when they were still part of a role that added an entitlement.

SF-927983

ACM-73210

Role Discovery stalled and timed out on a database query when using a high-load HASH-JOIN view on the GTT_CLUSTER_ENT_COUNTS table.

SF-901924

ACM-73623

A specific role showed a "could not execute query" error in the user interface instead of the role data.

SF-1213844

ACM-90265

A null pointer exception error occurred when viewing the Out of Constraints users section in Analytics if "Remove" is the only column in the table.

SF-950510

ACM-74637

The "Role Missing Entitlement Rule" email notification did not include the group entitlement collected from ADC. Code was missing to add the group entitlement to the email notifications.

Rules

                       
IssueDescription

SF-1169066

ACM-87411

Provisioning Termination and Attribute Sync rules incorrectly processed local user mapping for pending accounts.

SF-1147687

ACM-87267

Renaming a Notification Rule left an orphaned item in the scheduled tasks for that rule.

SF-1208949

ACM-90043

Detected violations did not associate with remediation workflow jobs during rule processing due to an Oracle buffer overflow error.

Server Core

               
IssueDescription

SF-1061884
SF-1197693

ACM-83205

Scheduled and manually initiated tasks required improved handling and diagnostics.

User Interface

                               

Issue

Description

SF-954920

ACM-87252

Different security context configurations in the same .csv file did not work as expected.

SF-1073714

ACM-81669

After changing the name of a business unit, the user interface showed the old business unit name when grouping users by business unit.

SF-913568

ACM-75393

The User Change data table still showed the User ID field when not selected as a displayed column in Table Options.

SF-612632

ACM-51311

The What Access tab did not disable the filter to show pending entitlements when switching to another application.

SF-947231

ACM-75230

Disabled accounts on the Submit Request > Available Accounts page were not crossed out.

Attachments

    Outcomes