Security Agent for UNIX includes new platforms, library updates and resolves certain previous issues. Many of these improvements were made in direct response to suggestions from our customers. We thank you for your time and valuable input. We hope you continue to help us ensure that our products meet all your needs. You can post feedback on NetIQ Communities, our online community that also includes product information, blogs, and links to helpful resources.
The documentation for this product is available on the NetIQ website in HTML and PDF formats on a page that does not require you to log in. If you have suggestions for documentation improvements, click comment on this topic at the bottom of any page in the HTML version of the documentation posted at the Security Agent for UNIX documentation page. To download this product, see the Micro Focus Downloads page.
The following sections outline the key features and functions provided by this version, as well as issues resolved in this release:
Security Agent for UNIX now replaces Oracle JDK with Azul Zulu OpenJDK, an open source alternative. This change does not have any functional impact. However, Micro Focus will no longer provide additional Oracle JDK updates for Security Agent for UNIX. Therefore, if there are security vulnerabilities or other bugs related to Oracle JDK, the primary solution is to upgrade to Security Agent for UNIX 7.6.1 or later.
Security Agent for UNIX is now certified on the following 64-bit platforms:
IBM AIX 7.2
Red Hat Enterprise Linux 6.10
Oracle Linux 6.10
Cent OS 6.10
UNIX Agent Manager is now certified on the following 64-bit platforms:
Red Hat Enterprise Linux 7.5
Red Hat Enterprise Linux 6.10
SUSE Linux Enterprise Server 12 SP3
Windows 10
Windows Server 2016
Security Agent for UNIX includes software fixes that resolve certain previous issues.
Issue: On AIX, the Security Agent for UNIX file system gets filled up because the AIXAuditObject__singleton.err file grows extremely large. (Bug 1074187)
Fix: The /usr/netiq/vsau/local/tmp/AIXAuditObject__singleton.err file no longer grows large and does not fill up the file system.
AIX now supports FIPS mode; agent FIPS conversion succeeds. (Bug 1093901)
For detailed information about hardware requirements, supported operating systems and browsers, see the Technical Information page.
Micro Focus strives to ensure our products provide quality solutions for your enterprise software needs. The following issues are currently being researched. If you need further assistance with any issue, please contact Technical Support.
You can install Security Agent for UNIX as a root user; installation as a non-root user is not supported. (Bug 1052123)
When you delete or rename directories on Linux platforms, audit logs show null value for a directory name. Therefore, Change Guardian might not capture the correct directory name in audit logs. (Bug 974273)
When the operating system is running in FIPS mode, UNIX Agent Manager (Linux and Windows) cannot deploy Security Agent for UNIX. It displays the following error:
SSH Install Failed - Session.connect: java.io.IOException: End of IO Stream ReadInstallation Failed - Session.connect: java.io.IOException: End of IO Stream Read. (Bug 999496)
Issue: The communication between Security Agent for UNIX 7.4 and UNIX Agent Manager 7.5.1 and later, fails due to protocol mismatch. (Bug 989481)
Workaround: Upgrade Security Agent for UNIX 7.4 to 7.5 and then to 7.5.1 or later. For more information about upgrading to Security Agent for UNIX 7.5 and later, see Upgrading Agent Using UNIX Agent Manager.
The Assets Monitoring Failures report contains Windows assets only. It does not contain data related to UNIX assets. (Bug 906282).
Issue: File was deleted events are not generated when soft link for file is deleted. (Bug 975575)
Issue: Sentinel Agent Manager Connector does not work in FIPS mode.(Bug 997589)
Workaround: Perform the steps mentioned in the Knowledge Base Article 7018187 for Sentinel Agent Manager Connector to work in FIPS mode.
When you install Security Agent for UNIX 7.5.1 and later using CG AM for new installation of Change Guardian 5.0 and SCM 6.x on the same computer, SCM registration fails due to dynamic certificate changes. To configure Security Configuration Manager server, see the Knowledge Base Article 7023134(Bug 1045613)
Issue: SCM Registration Fails While Upgrading Security Agent for UNIX from 7.5 to 7.5.1 and later using CG AM 5.0 and later where SCM and Change Guardian are enabled. (Bug 1056447)
Workaround: Perform the following steps from UAM to re-register Security Agent for UNIX with SCM server:
Go to Configure > SCM Options.
Click Configure button.
In the SCM Configuration window, ensure that the Core Services Address is same as SCM Core IP Address and click Save.
Restart the agent service by selecting Stop and Start buttons in the Agent Controls panel.
OR
You can perform the following manual registration steps on Security Agent for UNIX:
Navigate to the following location: /usr/netiq/bin
Run the following command:./wcRegister
Run the following command to restart SCM services: /etc/init.d/uvserv restart
For specific product issues, contact Micro Focus Support at https://www.microfocus.com/support-and-services/.
Additional technical information or advice is available from several sources:
Product documentation, Knowledge Base articles, and videos: https://www.microfocus.com/support-and-services/
The Micro Focus Community pages: https://www.microfocus.com/communities/
© Copyright 2019 Micro Focus or one of its affiliates.
The only warranties for products and services of Micro Focus and its affiliates and licensors (“Micro Focus”) are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. Micro Focus shall not be liable for technical or editorial errors or omissions contained herein. The information contained herein is subject to change without notice.
For additional information, such as certification-related notices and trademarks, see https://www.microfocus.com/about/legal/