Advanced Authentication 5.6 Patch Update 4 resolves specific previous issues. This document outlines why you should install this patch update.
Many of these improvements were made in direct response to suggestions from our customers. We thank you for your time and valuable input. We hope you continue to help us ensure that our products meet all your needs. You can post feedback in the Advanced Authentication forum on NetIQ Communities, our online community that also includes product information, blogs, and links to helpful resources.
The documentation for this product is available on the NetIQ website in HTML and PDF formats. If you have suggestions for documentation improvements, click comment on this topic at the bottom of any page in the HTML version of the documentation posted at the Advanced Authentication NetIQ Documentation page. To download this product, see the Advanced Authentication Product website.
Advanced Authentication 5.6 Patch Update 4 provides the following enhancements and fixes in this release:
This release introduces the following enhancement:
Previously, Advanced Authentication RADIUS server returned all the groups of a user in the filter-id attribute in an authentication response to the RADIUS Client. However, in large environments, user can be a part of many groups and as a result the list of all groups can be large. The size of RADIUS response exceeded the maximum size of RADIUS packet.
As a solution, Return user groups along with User groups white list option to specify a list of groups of a user has been added to the RADIUS event that must be returned by the RADIUS server. The usage of this option is summarized in the following three scenarios:
The option is turned OFF: The filter-id attribute does not exist in the RADIUS response.
The option is turned ON and the User groups white list is empty: All the groups of a user are returned in the filter-id attribute.
The option is turned ON with the group list in the User groups white list: Only the groups of a user from the specified list are returned.
For more information, see RADIUS Server
in the Advanced Authentication - Administration guide.
Advanced Authentication 5.6 Patch Update 4 includes the following software fix:
Issue: When a request to resend the SMS or Email OTP methods is initiated through REST API, an error that states the current OTP has not yet expired is displayed.
Fix: The issue has been fixed to resend the same OTP if the OTP has not expired for a request made through the REST API for the SMS and Email methods.
You can upgrade to Advanced Authentication 5.6 Patch Update 4 from any one of the following versions:
5.5
5.5 Patch Update 1
5.6
5.6 Patch Update 1
5.6 Patch Update 2
5.6 Patch Update 3
NOTE:After you upgrade to 5.6 Patch Update 4, the Database (DB) slave servers are susceptible to a replication conflict. To resolve this conflict, click Fix in the Conflicts section on both the DB master and slave servers. Such conflicts will not occur again.
For more information about upgrading, see Upgrading Advanced Authentication
in the Advanced Authentication Installation and Upgrade guide.
Our goal is to provide documentation that meets your needs. If you have suggestions for improvements, please email Documentation-Feedback@netiq.com. We value your input and look forward to hearing from you.
For detailed contact information, see the Support Contact Information website.
For general corporate and product information, see the NetIQ Corporate website.
For interactive conversations with your peers and NetIQ experts, become an active member of our community. The NetIQ online community provides product information, useful links to helpful resources, blogs, and social media channels.
For information about legal notices, trademarks, disclaimers, warranties, export and other use restrictions, U.S. Government rights, patent policy, and FIPS compliance, see https://www.netiq.com/company/legal/.
Copyright © 2018 NetIQ Corporation, a Micro Focus company. All Rights Reserved.