NetIQ Identity Manager includes software fixes for the following components:
In addition, this service pack resolves security vulnerability CVE-2022-26329 which addresses a potential information disclosure vulnerability in Identity Manger versions prior to 4.8.5. Special thanks go to Kajetan Rostojek for responsibly disclosing this information to us.
NetIQ Identity Manager includes the following software fixes that resolve several previous issues in installation or upgrade:
This release allows you to edit and save an email template with an image file referenced in the HTML without displaying any errors. (Bug 380030)
NetIQ Identity Manager includes software fixes that resolve several previous issues in the Identity Applications:
Mapping a static resource with administrator-assigned values to a role works as expected. Identity Applications no longer return a null pointer exception. (Bug 317258)
Identity Applications successfully evaluates the Activity.getUser() expression in an approval activity and moves the form data into the target flowdata field, without logging error or failure messages in the catalina.out event logs. (Bug 381158)
The getWorkEntriesRequest SOAP Endpoint has been updated to handle the request and returns the appropriate responses for all addressees, even if work entries for one or more addressees are missing or an addressee’s Fully Qualified Distinguished Name (FQDN) does not exist. (Bug 438023 and 438024)
With the latest version of Tomcat 9.0.55-1 bundled with Identity Manager 4.8.5, there is no longer any delay while loading workflows with legacy forms on the Identity Applications Dashboard. (Bug 450031)
Dashboard now takes the colon sign into account when searching for entities such as roles, resources, and permissions, and displays the search results correctly. (Bug 328633)
Identity Applications promptly retrieves the client configurations of a logged-in user via the users/userDefaults REST API, even if a custom groupMembership attribute is added to the user entity.(Bug 329642)
When a Dashboard session is extended with a different credential, the previous session is closed, and a new session based on the new user credentials is launched.(Bug 367148)
The getWorkEntriesRequest SOAP endpoint has been updated to successfully return the work details in response to a query with an array of addressees.(Bug 379272)
After upgrading to Identity Manager 4.8.5, the Dashboard and Applications pages load seamlessly (without a delay), regardless of the number of applications assigned to a user. (Bug 383012)
The search functionality is updated to search all resource assignments in the application and provide accurate search results based on the search criteria. (Bug 328314)
When an email server is configured to use SMTP TLS for secure transmission, the attached or embedded image in the email is displayed successfully. (Bug 348018)
When using the IDVault.get() function in a new JSON form, Identity Applications will validate the entity type in the same way that they did in legacy forms. (Bug 360020)
The search functionality is updated to search all role assignments in the application and provide accurate search results based on the search criteria. (Bug 405005)
When creating a resource for an administrator-defined entitlement type, Dashboard displays the Resource Description text box correctly. Identity Applications then creates an eDirectory resource object with appropriate values for all resource attributes. (Bug 328129)
The migration of users from one organization unit to another is working as expected. Users can perform their tasks successfully after the migration. Identity Applications no longer display errors in the catalina.out event logs. (Bug 340041)
NetIQ Identity Manager includes the following software fixes that resolve several previous issues in Identity Reporting:
The updated driver option enables Data Collection Service Driver to start and synchronize with the service. (Bug 325011)
Identity Reporting is updated to successfully handle manager id in the Reporting Identity table. (Bug 441087)
NetIQ Identity Manager includes software fixes that resolve several previous issues in Designer:
REST Auth URL is a mandatory field only when you configure the authentication method as OAuth2. When configured as Basic, the Designer does not display REST Auth URL field. (Bug 389026)
Designer import from Identity Vault no longer ignores importing servers associated with driverset. (Bug 327242)
This release updates the Designer to use appropriate request type attribute for do-invoke-rest-endpoint action. (Bug 379452)
The 4.8.5 release updates local variable field in the argument builder to text box. (Bug 414434)
The 4.8.5 release enables Designer to reconcile successfully when you add schema class name that contains a colon. (Bug 441037)