Security Agent for UNIX 7.6.2 Release Notes

November 2019

Security Agent for UNIX 7.6.2 includes new certified platforms and software fixes. Many of these improvements were made in direct response to suggestions from our customers. We thank you for your time and valuable input. We hope you continue to help us ensure that our products meet all your needs. You can post feedback on NetIQ Communities, our online community that also includes product information, blogs, and links to helpful resources.

The documentation for this product is available on the NetIQ website in HTML and PDF formats on a page that does not require you to log in. If you have suggestions for documentation improvements, click comment on this topic at the bottom of any page in the HTML version of the documentation posted at the Security Agent for UNIX documentation page. To download this product, see the Micro Focus Downloads page.

1.0 What’s New?

1.1 New Certified Platforms

Security Agent for UNIX is now certified on the following 64-bit platforms:

  • Red Hat Enterprise Linux 8

  • Red Hat Enterprise Linux 7.6

  • SUSE Linux Enterprise Server 15 SP1

  • SUSE Linux Enterprise Server 12 SP4

  • Oracle Linux 8

  • Oracle Linux 7.6

  • Cent OS 7.6

UNIX Agent Manager is now certified on the following 64-bit platforms:

  • SUSE Linux Enterprise Server 12 SP4

1.2 Software Fix

The following is fixed in this release.

Agent Manager Connector Log Displays Event Parsing Error

Issue: The Agent Manager Connector cannot process buffered events sent by Security Agent for UNIX, if the Connector stops and starts, and if the buffered events reach a threshold during the shutdown time. The Connector fails to process the events and the following error message is displayed in the Sentinel server log: Error SAMConnector0000(SAMConnector): Error occurred while parsing JSON message. (Bug 1151507)

Fix: Buffered events sent by the Security Agent for UNIX are processed correctly.

2.0 System Requirements

For detailed information about hardware requirements, supported operating systems and browsers, see the System Requirements for Security Agent for UNIX 7.6.2.

3.0 Known Issues

Micro Focus strives to ensure our products provide quality solutions for your enterprise software needs. The following issues are currently being researched. If you need further assistance with any issue, please contact Technical Support.

3.1 UAM UI Does Not Open on Linux After the UAM Server Reboots

Issue: After rebooting the UAM server, UAM UI fails to open on Linux. (Bug 985692)

Workaround:

  1. To restart the UAM server, run the following script in the directory where the UAM files are located, to restart the UAM server: ./runserver.sh restart

  2. Run the following script to start UAM: ./run.sh

3.2 Events are not Generated if the Locale Settings are Incorrect

Issue: After configuring Security Agent for UNIX, the agent fails to send events to the Change Guardian server. This happens if the locale settings is incorrect. (Bug 1102111)

Workaround: For information about the workaround, see Troubleshooting section, in Security Agent for UNIX Guide.

3.3 Cannot Install Security Agent for UNIX as a Non-root User

Issue: The installation process does not support installing Security Agent for UNIX as a non-root user. (Bug 1052123)

Workaround: None.

3.4 Directory Delete and Rename Events Might Not Appear in Linux

Issue: When you delete or rename directories on Linux platforms, audit logs show null value for a directory name. Therefore, Change Guardian might not capture the correct directory name in audit logs. (Bug 974273)

Workaround: None.

3.5 UNIX Agent Manager Cannot Deploy Agent on FIPS Enabled Linux or UNIX Computers

Issue: When the operating system is running in FIPS mode, UNIX Agent Manager (Linux and Windows) cannot deploy Security Agent for UNIX. It displays the following error:

SSH Install Failed - Session.connect: java.io.IOException: End of IO Stream ReadInstallation Failed - Session.connect: java.io.IOException: End of IO Stream Read. (Bug 999496)

Workaround: None.

3.6 UNIX Agent Manager 7.5.1 and Later Cannot Monitor Security Agent for UNIX 7.4

Issue: The communication between Security Agent for UNIX 7.4 and UNIX Agent Manager 7.5.1 or later fails due to protocol mismatch. (Bug 989481)

Workaround: Upgrade Security Agent for UNIX 7.4 to 7.5 and then to 7.5.1 or later. For more information about upgrading to Security Agent for UNIX 7.5 and later, see Upgrading Agent Using UNIX Agent Manager.

3.7 Events are not Generated when Soft Link for File is Deleted

Issue: File was deleted events are not generated when soft link for file is deleted. (Bug 975575)

Workaround: None.

3.8 Sentinel Agent Manager Connector Not Working in FIPS Mode

Issue: Sentinel Agent Manager Connector does not work in FIPS mode. (Bug 997589)

Workaround: Perform the steps mentioned in the Knowledge Base Article 7018187 for Sentinel Agent Manager Connector to work in FIPS mode.

3.9 Security Agent for UNIX 7.5.1 or Later with Change Guardian 5.0 and Secure Configuration Manager Cannot Coexist

Issue: When you install Security Agent for UNIX 7.5.1 or later using CG AM for new installation of Change Guardian 5.0 and Secure Configuration Manager 6.x on the same computer, Secure Configuration Manager registration fails due to dynamic certificate changes. (Bug 1045613)

Workaround: To configure Security Configuration Manager server, see the Knowledge Base Article 7023134.

3.10 Secure Configuration Manager Registration Fails While Upgrading Security Agent for UNIX 7.5 to 7.5.1 or Later

Issue: If you are upgrading Security Agent for UNIX from 7.5 to 7.5.1 or later, using Agent Manager in Change Guardian 5.0 or later, registering Secure Configuration Manager fails. (Bug 1056447)

Workaround: Perform the following steps from UAM to re-register Security Agent for UNIX with Secure Configuration Manager server:

  1. Go to Configure > SCM Options.

  2. Click Configure button.

  3. In the SCM Configuration window, ensure that the Core Services Address is same as SCM Core IP Address and click Save.

  4. Restart the agent service by selecting Stop and Start buttons in the Agent Controls panel.

OR

You can perform the following manual registration steps on Security Agent for UNIX:

  1. Navigate to the following location: /usr/netiq/bin

  2. Run the following command: ./wcRegister

  3. Run the following command to restart SCM services: /etc/init.d/uvserv restart

4.0 Legal Notice

© Copyright 2019 Micro Focus or one of its affiliates.

The only warranties for products and services of Micro Focus and its affiliates and licensors (“Micro Focus”) are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. Micro Focus shall not be liable for technical or editorial errors or omissions contained herein. The information contained herein is subject to change without notice.

For additional information, such as certification-related notices and trademarks, see https://www.microfocus.com/about/legal/