UVM Security Management Appliance Software 3.2.1 Release Notes

March 12, 2020

New Features and Enhancements:

  • The appliance now boots and is app-and-services ready faster by setting a service health handler.
  • UVM Protection policy improvements (file name and service logic).
  • As an Administrator, you can now view the UVM Protection Policy Name and creation date in Maintenance to help determine which policy is currently applied.
  • The installer and services have been changed from DPAPI to ACL entries in the registry.
  • Improved backups; refactored the UVMInterface Version class and added it to the ApplianceSystemDetails service.
  • Ported the Rename Machine and IP Settings Functions to the SystemAccessService and the BIAPI Service.
  • Improved authentication services code.
  • Updated the backup service to run under Backup operators.
  • The BeyondTrust EULA is now displayed in the Configuration Wizard.
  • Backups are excluded from the transaction logs so that they do not take up space in the backup location; transaction logs are no longer restored.
  • The timeouts for restore and data migration functions have been increased.
  • Added a check for the Identity Service running state in LegacyDataMigrationJob.
  • Added a global dependency check to backup/restore and make plugin dependency checks role-aware.
  • If the Administrator account is locked, it is now unlocked when a new password is set.

Resolved Issues:

  • Resolved an issue in which notification events prior to configuration appeared in the user's notification dropdown.
  • Resolved an issue in which an incorrect error was displayed on login pages when a login failure occurred.
  • Resolved an issue in which a reboot pending call returned a 404 error on a Roles Editor's login page.
  • Resolved an issue in which the Apply Updated Settings button did not appear when Diagnostics was viewed specifically in the Internet Explorer 11 browser.
  • Resolved an issue in which the High Availability for Services Only option could not be set for the High Availability Role in the Roles Editor.
  • Resolved an issue in which cell spacing for the blue product versions page in the configuration wizard results in unnecessary word wrap or text being displayed out of the cell area.
  • Resolved a formatting issue that resulted when the version card was selected on final configuration wizard page.
  • Resolved an issue in which pages were not loading properly if the user was on a page for an extended period of time, but not yet at the timeout limit.
  • Resolved an issue that caused a double install when running the UVM Software Installer and the UVM was pending reboot.
  • Resolved an issue that was preventing the update of a Central Policy password via the UVM UI.
  • Resolved an issue with unexpected AM/PM selector behavior experienced when scheduling a backup.
  • Resolved an issue during installation in which a delay in removing the Maintenance folder caused a retry prompt.
  • Resolved an issue in which service alerts could not be toggled on and off without a page refresh.
  • Resolved an issue in which sending a test email did not display a confirmation message in the UI; resized the email address display to fit longer addresses.
  • Resolved an issue in which the diagnostics Analyzer tool failed to run a report.
  • Resolved an issue in which Services does not restart when a user switches roles back in HA Service Only configuration.
  • Resolved an issue in which the message Error finding SQL server path was returned when a 2019-R1 UVM Appliance was renamed.
  • Resolved an issue in which BeyondInsight Database Access indicated that there was a local SQL server when the appliance did not actually have one.
  • Resolved an issue in which multiple services in existing installs were set to Take No Action on failure.
  • Resolved an issue in which the Retina plugin in backups did not include a path for RetinaSetup622.
  • Resolved an issue in which passwords were visible in the log file and during processing during a restore.
  • Resolved an issue in which a minimum version check broke the automated build pipeline.
  • Resolved an issue in which a Check for Available Updates pop-up notification containing visible HTML code was displayed.
  • Resolved an issue in which service encryption was impacted after sysprep.
  • Resolved an issue that made the Maintenance and Diagnostics pages inaccessible after RADIUS Authentication was enabled but not added to the btadmin account.
  • Resolved an issue in which the Roles Editor displayed pending changes after a restore when there were none.
  • Resolved an issue that was causing the login page to break because initial access to pre-logon banner settings allowed for invalid settings.
  • Resolved an issue in the High Availability application where the Set High Availability and Update Settings buttons were disabled after changing text values on the screen.
  • Resolved an issue that caused restore from backup to fail on 2016 UVM.
  • Resolved an issue in which backups run after an upgrade to 3.2 failed due to an incorrect database path when attempting to back up the BeyondInsight Analytics and Reporting database.
  • Resolved an issue in which backups run after an upgrade to 3.2 failed due to an incorrect database connection when attempting to back up the BeyondInsight Analytics and Reporting database.
  • Resolved an issue that caused backups to fail if the Windows UserName was changed.
  • Resolved an issue in which BIUL backups were failing with the message Could not find a part of the path.
  • Resolved an issue in which Invalid records could be added to a 3.2.0 backup database.
  • Corrected the import logic for importing schedules in which it was not checking for an existing backup location.
  • Corrected an issue in which backup locations could not be edited or deleted.
  • Resolved an issue in which renaming the UVM's admin account without restarting the SQL service can cause backups to fail.
  • Resolved an issue in which settings are not saved to the SQLite table if not using an existing location from the backups page.
  • Resolved an issue in which existing backups are not detected as candidates when running a restore on a cold spare.
  • Resolved an issue in which roles would not load if the SQL Server Service or the SQL Server agent was in a stopped state.
  • Resolved an issue in which the login card authentication service was not running an error message.
  • Resolved an issue in which failed services did not restart because a dependent service did not start.
  • Resolved an issue in which schedule backup notifications were spawning at 12PM instead of 12 AM.
  • Resolved an issue in which schedule backup and restore jobs were not getting deleted on scheduled update.
  • Resolved an issue in which a Backup Service Account change caused a restore of 3.2.0 backups to fail on 3.2.1.
  • Resolved an issue that was causing the backup service to consume a large amount of memory.

Known Issues:

  • NTP Server is displayed as Local CMOS Clock and reverts to default after setting NTP to none.
  • Missing pre-logon banner message should be highlighted in red with warning message consistent with missing banner title.
  • A VMWare Tools periodic time sync option is visible both on a physical UVM and Hyper-V UVM, but should not be.
  • Button outline for Next button has a separate square outside of the typical click area.
  • The Legacy Restore Tool is not signed.
  • The Backup Extraction Tool is not signed.
  • When Evaluation Mode is available, the serial numbers from the config file will not populate.
  • The default SSL bindings cause an issue with World Wide Publishing Services and UVM Services when the customer has custom IP certificate binding.
  • The login page comes up without displaying banner messages.
  • Resolved an issue in which, because a user saved the Logon Banner settings without all the required fields filled out, loading the logon page would result in the username and password fields not being populated with their labels.
  • The Configuration Wizard prerequisite page does not check for the License Processing Service.
  • A reference to BT Security Mgmt Appliance application for 3.1.5 is not being removed from the list of installed programs.
  • The Trigger Connections Test is disabled on the API Key Maintenance page.
  • There is a typo on the Review screen when choosing Evaluation Mode.
  • Snackbar notifications prevent clicking any items on either side of popup.
  • The BeyondTrust logo on the login page is not displayed in the proper size.
  • The top of the first notification is cut off in the notifications list.
  • The list of appliance software versions has changed the sort order and the Security Management Appliance version is no longer at the top.
  • The Appliance Logs page lists services which no longer exist and is missing some that do.
  • Resolved an issue in which the BIUL Role in the Roles Editor would show a previously configured remote BIUL database to be local.
  • On a hardware UVM, after applying changes to Service Alerts, the two Apply Changes buttons are disabled until the page has been refreshed.
  • Schedule a Reboot items are misaligned at smaller browser sizes.
  • The BeyondTrust Appliance API Key Management service crashes unexpectedly.
  • The login card does not indicate a reboot is required when there is a pending reboot.
  • The Include Session Files in Backup option is unchecked after checking it for the schedule.
  • The confirmation message when discarding changes refers to undefined.
  • Corrected a typo in a snack bar message that should have read The scheduled appliance reboot has been cleared successfully.
  • The Windows license key displayed in Maintenance > Accounts & Licensing is not accurate on the 2016 UVM.
  • UVM Interface Log file [INF] items should be [WRN] items.
  • Taking a backup using a 3.2.1 build 49 fails on a 2008 R2\SQl 2008 R2 appliance.
  • The authentication service doesn't have access to the BeyondInsight database it needs to fully do a RADIUS login.

Notes:

  • With this release, there will also be a 3.2.1 Standalone Roles Editor Installer made available for Software Installs.
  • This update is available via BeyondTrust Updater or as a manual installer from the download tool. Shipping on new Appliance Images in March 2020.