Access Manager 4.4 Service Pack 4 (4.4.4) includes enhancements, improves usability, and resolves several previous issues.
Many of these improvements are made in direct response to suggestions from our customers. We thank you for your time and valuable input. We hope you continue to help us ensure our products meet all your needs. You can post feedback in the Access Manager forum on our community website that also includes product notifications, blogs, and product user groups.
For information about the previous release, see Access Manager 4.4 Service Pack 3 Release Notes.
If you have suggestions for documentation improvements, click Documentation page.at the bottom of the specific page in the HTML version of the documentation posted at the
For information about Access Manager support lifecycle, see the Product Support Lifecycle page.
This release provides the following enhancements and fixes:
This release includes the following enhancement:
This release adds support for configuring Single Sign-On to SharePoint Server 2013 and 2016.
For more information, see NetIQ Access Manager 4.4 Administration Guide.
In addition to the existing supported platforms, this release adds support for RHEL 7.6.
NOTE:For more information about system requirements, see NetIQ Access Manager 4.4 Installation and Upgrade Guide.
This release adds support for the following dependent components:
This release includes software fixes for the following components:
The following issue is fixed in Administration Console:
In risk-based authentication, if multiple authentication methods are configured for step up authentication, then Administration Console does not display the methods in any particular order. (Bug 1053634)
The following issues are fixed in Identity Server:
When the risk score matches the score defined in the deny condition, Access Manager does not display the Access Denied message. (Bug 1086823)
In pre-risk-based authentication, when a user is prompted to execute the duo contract after executing the SNPF contract, authentication fails. When the user retries to execute the duo contract, the customized content of the login page is not displayed and the user cannot specify the credentials. (Bug 1121259)
After executing the first post-risk-based authentication method, the user is asked to execute an additional authentication method against another user store. When the user specifies the credentials, Access Manager displays an error message that the user is disabled. (Bug 1121260)
When RADIUS is used as a step up authentication method, authentication fails after executing the method. This issue occurs because Access Manager does not send state attribute to the client. (Bug 1121366)
While executing a pre-risk-based authentication contract, authentication fails if X509 method is used as the step up authentication method. (Bug 1109549)
OAuth client receives the access token but when the OAuth client sends the access token to retrieve identity information of a user, the request fails. This is a random issue. (Bug 1121373)
After purchasing Access Manager 4.4.4, log in to the NetIQ Downloads page and follow the link that allows you to download the software.
The following files are available:
Table 1 Files Available for Access Manager 4.4.4
Contains Identity Server and Administration Console .tar file for Linux.
Contains Identity Server and Administration Console .exe file for Windows Server.
Contains Access Gateway Appliance .iso file.
Contains Access Gateway Appliance .tar file.
Contains Access Gateway Service .exe file for Windows Server.
Contains Access Gateway Service .tar file for Linux.
NOTE:This release does not support installation or upgrade of Analytics Server. For a fresh installation of Analytics Server, use AM_442_AnalyticsServerAppliance.iso file, then upgrade Analytics Server to 4.4 SP3 version by using AM_443_AnalyticsServerAppliance.tar.gz file. If you are already using a previous version of Analytics Server, then upgrade to Analytics Server 4.4 SP3. For more information about installing Analytics Server, see NetIQ Access Manager 4.4 Installation and Upgrade Guide.
For information about the upgrade paths, see Section 4.0, Supported Upgrade Paths. For more information about installing and upgrading, see the NetIQ Access Manager 4.4 Installation and Upgrade Guide.
NOTE:Before upgrading Access Manager, ensure to check the Troubleshooting Section in the NetIQ Access Manager 4.4 Installation and Upgrade Guide.
After upgrading to Access Manager 4.4.4, verify that the version number of the component is indicated as 22.214.171.124-22. To verify the version number, perform the following steps:
In Administration Console Dashboard, click> .
Verify that the 126.96.36.199-22.field lists
To upgrade to Access Manager 4.4.4, you need to be on one of the following versions of Access Manager:
4.4 Service Pack 1
4.4 Service Pack 1 Hotfix 1
4.4 Service Pack 2
4.4 Service Pack 3
For more information about upgrading Access Manager, see NetIQ Access Manager 4.4 Installation and Upgrade Guide.
NetIQ Corporation strives to ensure our products provide quality solutions for your enterprise software needs. The following issues are currently being researched. If you need further assistance with any issue, please contact Technical Support.
Issue: When you configure AWS as a SAML 2.0 service provider, the constant value attribute does not contain the expected value. The constant value must contain the role ARN and the trusted SAML provider ARN. For example, arn:aws:iam::638116851885:role/admin,arn:aws:iam::638116851885:saml-provider/NAMIDP (Bug 1123154)
Workaround: Change the constant value manually.
Perform the following steps:
Click> > > .
Select the Amazon Web Service and click.
Edit and change the constant value.
Issue: This issue occurs because there is an incorrect setting in the Tomcat Java options of JNDI. (Bug 1117444)
Workaround: Perform the steps mentioned in TID 7023648.
Issue: After converting the Secondary Administration Console to Primary Administration Console, the converted Administration Console does not work because it fails to communicate with other servers. (Bug 1122742)
Issue: This issue occurs when the HTML rewriting is enabled. (Bug 1116982)
Workaround: Disable the HTML rewriting.
NOTE:You cannot use a different published DNS name and port than that of the backend SharePoint server 2016.
Our goal is to provide documentation that meets your needs. If you have suggestions for improvements, please email Documentation-Feedback@netiq.com. We value your input and look forward to hearing from you.
For detailed contact information, see the Support Contact Information website.
For general corporate and product information, see the NetIQ Corporate website.
For interactive conversations with your peers and NetIQ experts, become an active member of our community. The NetIQ online community provides product information, useful links to helpful resources, blogs, and social media channels.
For information about legal notices, trademarks, disclaimers, warranties, export and other use restrictions, U.S. Government rights, patent policy, and FIPS compliance, see https://www.netiq.com/company/legal/.
Copyright © 2019 NetIQ Corporation. All Rights Reserved.