Advanced Authentication 6.3 Service Pack 5 Patch 2 Release Notes

September 2021

Advanced Authentication 6.3 Service Pack 5 Patch 2 includes enhancements, improves usability, and resolves several previous issues.

Many of these improvements were made in direct response to suggestions from our customers. We thank you for your time and valuable input. We hope you continue to help us ensure that our products meet all your needs. You can post feedback in the Advanced Authentication forum on NetIQ Communities, our online community that also includes product information, blogs, and links to helpful resources. You can also post or vote for the ideas of enhancement requests in the Ideas forum.

For more information about this release and the latest release notes, visit the NetIQ Advanced Authentication Documentation page.

If you have suggestions for documentation improvements, click comment on this topic at the bottom of the specific page in the HTML version of the documentation posted at the NetIQ Advanced Authentication Documentation page.

Advanced Authentication 6.3 Service Pack 5 Patch 2 includes the following:

1.0 Security Vulnerability Fixes

This release resolved several security vulnerabilities, and we strongly recommend upgrading.

Micro Focus would like to offer special thanks and appreciation to Frank Spierings of Warpnet B.V. for following responsible disclosure practices and responsibly disclosing this vulnerability to us. (CVE-2021-22509)

2.0 Software Fixes

This release includes the following software fix:



Administration Portal

After upgrading to Advanced Authentication 6.3 Service Pack 5 Patch 1, the Identity Provider URL field of the Web Authentication policy changed into a drop-down list. The previous value of Identify Provider URL resets to the top value specified in the Public External URLs policy and the administrator is unable to edit the value. Due to this, the existing OAuth and SAML 2.0 integrations might fail.

3.0 Upgrading

The recommended upgrade sequence is the upgrade of Advanced Authentication servers, followed by plug-ins and Client components. Any change in the upgrade sequence is not supported. You can upgrade to Advanced Authentication 6.3 Service Pack 5 Patch 2 from one of the following versions of Advanced Authentication:

  • 6.3

  • 6.3.1

  • 6.3.2

  • 6.3.3

  • 6.3.4

  • 6.3.5


For more information about upgrading from Advanced Authentication 6.2, see Upgrading Advanced Authentication in the Advanced Authentication- Server Installation and Upgrade guide.

NOTE:From Advanced Authentication 6.3 Service Pack 5 Patch 1 and later versions, the Custom Branding settings of Web Authentication events have been relocated from the Web Authentication policy to the Custom Branding policy.

For more information, see Customizing the Login Page of Web Authentication Events in the Advanced Authentication - Administration guide.

4.0 Planned End of Support in Advanced Authentication 6.4

  • The options, Push salt TTL and Authentication salt TTL will be removed from the Smartphone method settings.

  • The user credentials prompt for HTTPS proxy will be removed during login and the credentials will be made available in the config file.

5.0 Contact Information

Our goal is to provide documentation that meets your needs. If you have suggestions for improvements, please email We value your input and look forward to hearing from you.

For detailed contact information, see the Support Contact Information website.

For general corporate and product information, see the NetIQ Corporate website.

For interactive conversations with your peers and NetIQ experts, become an active member of our community. The NetIQ online community provides product information, useful links to helpful resources, blogs, and social media channels.

6.0 Legal Notice

For information about legal notices, trademarks, disclaimers, warranties, export and other use restrictions, U.S. Government rights, patent policy, and FIPS compliance, see

© Copyright 2021 NetIQ Corporation, a Micro Focus company. All Rights Reserved.