|
|
|
CA Identity Manager r12.5 SP3 includes the fixes in the following table. This release also includes fixes and enhancements from CA Identity Manager r12 CRs 9-11.
|
Support Ticket |
Synopsis |
|
16978047 |
After upgrading from eTrust Admin 8.1 SP2 to Identity Manager r12.5, any Microsoft SQL or Oracle endpoints acquired before the upgrade require a manual reconfiguration using the Provisioning Manager, to use JDBC URLs instead of Data Source Names (DSNs). |
|
17145005 |
When trying to open a PKI group property sheet in the Provisioning Manager, the error message "Unable to display the requested property sheet" is displayed. |
|
18240718 |
Capture Snapshot task fails when 'imr_attrvalue' column is set to 20 characters in length. |
|
18624436 |
When generating screens, tasks, and roles for an LDAP DYN endpoint type using the RoleDefGenerator, an exception occurs. |
|
18664092 |
When installing the extensions for SiteMinder on a separate server, the user is prompted for the SiteMinder install directory only. |
|
18726210 |
CA Identity Manager extensions to SiteMinder are not available on Linux. |
|
18726850 |
After CA Identity Manager is deployed on a WebSphere cluster, the JDBC password is stored as plain text. |
|
18745183 |
Samples for localization contain Localization and location2 folders, which is confusing. |
|
18758373 |
While using Connector Xpress to build a connector for Oracle Internet Directory, errors appear during the mapping process. |
|
18751087 |
New tabs that were added to the AD connector are visible in the Provisioning Manager, but not in the User Console. |
|
18942182 |
When the account synchronization is set to OnEveryEvent for the Enable/Disable User task or the Modify User task and the user's Enabled State is updated, the request sent to Provisioning Server is missing the eTSyncAccounts=1 so the new value is not synchronized with associated accounts. |
|
18950014-01 |
Tile image in IM Vista Credential Provider is customizable. |
|
18898396-01 |
Under some circumstances, SiteMinder transforms the header ca_im_notification into ca-im-notification. The second version was not supported. |
|
18981757 |
Unable to view reports on German Localized Server. |
|
18988910 |
Setting the eTHomepage value containing space clears the value. This was caused because of having a space in the attribute is an invalid URL. |
|
19030877-02 |
If the customer is using JDK 1.5 and attempts to use the RDT tool to generate a JIAM extension jar for a custom connector it fails with following: errorNoClassDefFoundException thrown for javax.xml.stream.XMLStreamException. |
|
19030877-05 |
Provisioning SDK needs to be addressed in order to get pttconvert.bat working. |
|
19043290-02 |
CA Identity Manager Provisioning Manager logout information required in the Provisioning Server log. |
|
19067356 19004912 |
The auditing database may eventually accumulate records that are no longer necessary. There needs to be a way to remove these records. |
|
19103826 |
Included as part of CQ 113005 |
|
19122949-01 |
When a GU has no corp ID, changing the suspended status will cause the following error: ERROR: ETACallbackException:There is no task mapped to the provisioning event. 'POST_ADD_GLOBAL_USER' for the environment 'corp' |
|
19125743-01 |
Aux OC not updated via Provisioning Role. |
|
19135793-01 |
Setting the Answer field to be of Type="Password" and with Permissions="Read/Write Required" generates errors. |
|
19136165-01 |
In Connector Xpress, duplicating a Template does not set eTAccountContainer. |
|
19137329:1 19137329 |
When the customer enters a token that contains a single quote, such as "can't" or "owner's", this character is not escaped property, and the token displays incorrectly. |
|
19145596-01 |
Identity Policy evaluations lacks delta evaluation phase. |
|
19141667 |
Logical Attribute Handler lifecycle methods are not being called. This prevents access to properties defined for the LAH. |
|
19154215 |
Imlanguage header variable set by Siteminder was ignored and default locale files were used if browser did not have any languages defined. If the browser did have any languages defined, it uses the smlanguage header variable. |
|
19156852 |
LND account templates contain different values in Identity Manager and Provisioning Manager |
|
19158692-01 |
When either the "Actions performed by user" or "Actions performed on user" tabs were clicked, an exception error was generated. |
|
19159246-1 |
Trying to Add or Remove Roles or Policies from a user that has an Aux class causes an LDAP error 65, Object Class Violation. |
|
19161923 |
Customer would like failed attempt Counter to be updated each time the questions page is loaded rather than each time the FPR task is initiated. |
|
19172631-01 |
After propagating password change through AD PSynch agent, users were able to log into Oracle with the new password but were prompted to change their password again. Password_date field was not being updated after password has been changed. This causes Oracle to prompt for a password change when user first logs into the system. |
|
19175330-01 |
Supporting OID 4-way association attributes, including physical=>physical assocs. |
|
19199844 |
Websphere custom 404 page can display the a stack trace that can contain the CA Identity Manager application's code's footprint, compromising system security. |
|
19208273-01 |
When the customer upgraded their Provisioning Server from 8.1sp2 to r12.5, the upgrade failed. The customer enabled the password profile, but the global user password they put in the r12.5 installer did not match the password profile. |
|
19218319 |
There is inconsistent behavior where CA Identity Manager sends a response with transaction ID – in some cases even when the event fails later, and in some cases an error is returned without a transaction ID. With this fix, a transaction ID is returned in all cases. If the task did not generate an error, the response consists of the response data and the transaction ID. If the task did generate an error, the response consists of the transaction ID and the IMSException message. |
|
19233440-01 |
In Connector Xpress, cannot create an OID account on endpoint if executing through Role assignment and Account Template from Provisioning Manager. |
|
19236949-01 |
Reporting: Validation errors when submitting report start/stop dates. |
|
19237112 |
114796When attempting to acquire Lotus Notes target system, the JCS reported an error "Insufficient access to Domino Databases" and the acquisition fails. |
|
19241289-02 |
Enhance ADS connector and Exchange remote agent to provide support for MS Exchange Server 2010 and also support a mixed 2007 and 2010 Exchange environment. |
|
19257834-01/19257834-02 |
When sending email (using sendmail program exits, for example), need ability to configure to send with 8BITMIME or 7BITMIME encoding. The MailConnector class (part of core product) formats and sends an e-mail. |
|
19260912-03 |
With directory mapping and protecting TEWS URLwith Siteminder, an error was thrown indicating that CA Identity Manager could not find the administrator in the directory. |
|
19285874 |
When defining a wellknown "%GROUP_ADMIN_GROUP%" attribute for an CA Identity Manager environment with UserStore=ProvisioningStore, CA Identity Manager User Console does not display the Admin Group you added. |
|
19309023:1 |
Adding members to a group with over 1000 users in Active Directory throws Failed to execute AddToGroupEvent. ERROR MESSAGE: NoSuchElementException:Attribute member has no value |
|
19312573 |
Provide support for multivalued Owner attribute |
|
19312793;02 |
Provide support for Unique LND Shortnames |
|
19312829;02 |
Currently, the CA Identity Manager User Console generates a set of requests to modify a multi-value attribute (one request per one value). This causes problems in LND connector new features (for example, multi-value short name and owner attributes), |
|
19312847-02 |
Add support for specifying additional header attributes in the CA Identity Manager email templates. |
|
19312856;02 |
The current method of finding unused token to assign to a user has unacceptable performance. |
|
19315032 |
In the Connector - RACF, wrong object class filter into one level search request when full name requested. |
|
19315466-01 |
An error message ""Failed to delete Endpoint Type "Inet Portal…" is received when trying to remove a DYN connector that has been incorrectly deployed using Connector Xpress |
|
19351567-01 |
The following message is received routinely in the CA Identity Manager log: 13:31:07,720 WARN [com.ca.iam.model.impl.IAMSessionImpl] Session com.ca.iam.model.impl.IAMSessionImpl@1a837c9 was not shut down properly. |
|
19380885-01 |
The XML payload in UPO Program Exit has an empty value for password although a non empty value was configured. |
|
19391958-01 |
When trying to reset a user password, the number of task persistence database connections increases exponentially. After some time, the maximum number of connections are increased and the application server crashes. |
|
19409953-02 |
Assigning multiple SAP R/3 Roles to users does not apply all the Roles selected. Using the CA Identity Manager User Console to add 4 roles to an existing SAP user would often result in only one role being applied. |
|
19420859;01 |
Existing RSA 7 Provisioning Connector supports an assignment of a next available (unassigned) token without the ability to distinguish between hardware and software tokens. |
|
19442206 |
The Data Query section of Policy Xpress's does not have an option available to connect in a secure manner i.e. using SSL |
|
19466106/19455231-02 |
In a sibling ADS environment, when the CCS tries to create a failover server list, the DsBindWithCred function crashes because the SAMID for the Enterprise Administrator is empty. |
|
N/A |
Create a new CA DLP connector. |
|
N/A |
RSA token Explore gives the following error message: org.apache.directory.shared.ldap.exception.LdapSizeLimitExceededException: JCS: countLimit 500 exceeded error message |
|
N/A |
Certify Microsoft Exchange Connector and Remote Agent against Exchange 2010 |
|
N/A |
It is not possible for customers to use the RoleDefGenerator to generate account screens for their custom C++ connectors. It only works for DYN connectors and the standard static connectors. |
|
N/A |
If LANG is set to xxxUTF-8 on Linux systems, you may see a sun.io.MalformedInputException error during workflow startup. This happens on WebSphere on Linux. |
|
N/A |
When you click the Initiated by User tab in the View User Activity task for the first time, an error occurs. |
|
N/A |
If you attempt an automatic migration of your Directories and Environments during a CA Identity Manager upgrade, you may get a SiteMinder error. If you have changed the default SiteMinder port for authentication (44442), the installer incorrectly detects that SiteMinder is not running, and does not allow you to proceed. |
|
N/A |
If you change one of the specified Provisioning Servers, CA Identity Manager may send failover requests to the original Provisioning Server instead of the new Provisioning Server. |
|
N/A |
When installing CA Identity Manager, you must use a fully qualified URL. |
|
N/A |
If you are using WebLogic 9 or 10 in production mode, the Identity Manager EAR may not auto-deploy the first time you start the application server after an install or upgrade. |
|
N/A |
After upgrading, mapping the DYN attributes, and redeploying the metadata into your DYN endpoint types, the first tab on the Endpoint screens generated using the RoleDef Generator tool is not displayed. |
|
N/A |
In the Provisioning Manager, accounts created in Organization and Organizational Units containing Japanese characters do not show their Group Membership(s) in the Member Of tab. |
| Copyright © 2010 CA. All rights reserved. | Email CA about this topic |