Directory and Resource Administrator 9.2 includes new features, improves usability, and resolves several previous issues.
Many of these improvements were made in direct response to suggestions from our customers. We thank you for your time and valuable input. We hope you continue to help us ensure that our products meet all your needs. You can post feedback in the Directory and Resource Administrator forum on NetIQ Communities, our online community that also includes product information, blogs, and links to helpful resources.
The documentation for this product is available in HTML and PDF formats on a page that does not require you to log in. If you have suggestions for documentation improvements, click comment on this topic at the bottom of any page in the HTML version of the documentation posted at the Directory and Resource Administrator Documentation page.
To download this product, see the Directory and Resource Administrator Product Upgrade website.
The following sections describe the new features and enhancements in DRA 9.2:
The processing time for the Managed Domain Accounts cache and AD collectors was improved.
Two new checks were added to the Health Check Utility for AD LDS replication and back up of the AD LDS schema. Improvements were also made to configuration checks such as Domain Accounts Overview and Skype Accounts Overview.
The ActiveView Analyzer helps you manage ActiveView performance related issues. With the ActiveView Analyzer, you can collect data on ActiveViews from actions performed by Assistant Administrators. After the data is collected, you can generate reports and use that information to resolve issues.
Microsoft BitLocker stores its recovery passwords in Active Directory. Using the DRA BitLocker Recovery feature, you can delegate powers to Assistant Administrators to find and recover lost BitLocker passwords for end-users.
Public Folder is a Microsoft feature that runs on an on-premises Exchange Server to enable information sharing. DRA now enables you to configure the Public Folder environment, so you can delegate Public Folder management powers to Assistant Administrators.
The Unified Change History (UCH) feature enables you to generate reports for changes made by DRA and Change Guardian for Active Directory.
Web Content Accessibility Guidelines (WCAG) are supported for improving web accessibility. Level A and AA guidelines are supported in this release.
You can now configure the Workflow Server connection from the Web Console. Assistant Administrators can also now customize workflows, start workflows manually, and get the status of workflow execution.
For detailed information on hardware requirements and supported operating systems and browsers, see the Directory and Resource Administrator Installation Guide that is packaged with the release download.
You can upgrade the DRA Server to DRA 9.2 from DRA 9.0 or a later version. The DRA REST Extensions installation requires DRA 9.0.1 or later for upgrade. For detailed information about installing the Directory and Resource Administrator and Exchange Administrator components and modules, see the Directory and Resource Administrator Installation Guide that is packaged with the release download.
This release includes the following stabilizing fixes:
Resolved a memory processing issue that produced the following error: “No more threads available to process the request.” (ENG343206)
Resolved an issue that prevented setting the Password Not Required flag. (ENG346743)
Resolved an issue where DRA does not return results when searching for computer objects using the Display Name attribute. (ENG344597)
Resolved an issue that prolonged the switch to a different preferred DC when an IACR fails. (ENG347655)
Resolved an issue that caused the return of all AD objects to fail when the preferred DC is down. (ENG347656)
Resolved an issue that generated an RSA error when attempting to launch the Web Console. (ENG342981)
Removed the legacy warning message for the Exchange Domain Servers group. (ENG346112)
Resolved an issue that prevented connecting with Skype for Business Support. (ENG347022)
Resolved an issue that prevented the creation of Home directories in the DFS path. (ENG347411)
Resolved an issue that prevented from setting the NetbootGUID function using DRA Power Shell. (ENG346744)
Resolved an issue with the Web Console scroll bars not working in the Office 365 License page. (ENG347148)
Resolved an issue that caused a timeout when built-in NRC reports were generated for user accounts. (ENG346818)
Resolved an issue where the delegation model did not correctly display the OU name in ActiveView after you move or renamed the OU. (ENG346437)
Resolved an issue that allowed an Assistant Administrator to restore objects from the Recycle Bin with the REST Web Console. (ENG344870)
Resolved an issue with DRA loading the incorrect schema and applying it to all managed domains. (ENG344850)
Resolved an issue that prevented running PowerShell commands. (ENG347352)
Resolved an issue where you could not change the Scope Type for an AD global group using the Web Console. (ENG347005)
Resolved an issue that prohibited creating a user object when the Manager Object Browser field was added in the Create User page. (ENG347404)
Resolved an issue where DRA displays an incorrect error message when a match is not found for the specified attribute while configuring the Event Stamping feature. (ENG347120)
Resolved an issue where DRA submits a cmdlet to Exchange servers that are not in the same AD location. (ENG344123)
Resolved an issue where the Web Console displays an incorrect error message when trying to add a member to a group for which they are already a member. (ENG346427)
Resolved an issue where DRA copies the mS-DS-ConsistencyGuid attribute from the source into the target when cloning an AD user. (ENG347093)
Resolved an issue where the $McsCanbeJoinedBy permission behaved differently for computers created in DRA and those created from the Active Directory Users and Computers console. (ENG346222)
Resolved an issue where you cannot create a shared mailbox if the MBX Alias is greater than 20 characters. (ENG345922)
Resolved an issue where DRA fails to display a user listed within a Mail Enabled Distribution List Delivery Restrictions if the user has the “/” slash special character. (ENG345488)
Resolved an issue when restoring a user from the DRA Recycle Bin, the AD property $McsSmartcardRequired flag changes the set value. (ENG345253)
Resolved an issue where DRA returns the mailbox move status with the default set of attributes when the attribute contains an invalid value. (ENG344799)
Resolved an issue where DRA displays an error when you create a WorkFlow process form that contains multiple carriage returns. (ENG345504)
Resolved an issue where the WorkFlow Form date and time by default was set to a month later than the actual month. (ENG345882)
Resolved an issue where the DRA Cache Loader crashes or fails, when the OU starts collecting and moves the OU to another location while the Cache Loader is running. (ENG341888)
Resolved an issue where DRA removes the WCF entry if the DRA Service is stopped and adds the WCF when the service is started. (ENG346531)
Resolved an issue where the “Modify All User Properties” power enables users to modify all Office 365 properties while disabling Exchange tasks. (ENG346541)
Resolved an issue where DRA creates a date value VarSet/POST for TGAAddAssignment operation with the DRA REST Endpoint service. (ENG342125)
Resolved an issue that impacted performance while the cache is running. (ENG343042)
Resolved an issue that prevented setting the password for new users. (ENG337443)
Resolved an issue where the DRA Dynamic Group Static filter was limited to 500 objects. (ENG346014)
Resolved an issue where DRA does not create a user with an alias that ends in a period and a single character when the Office 365 Naming Policy is enabled. (ENG346956)
Resolved an issue where you could not create an ActiveView rule using the Shared Mailbox or Resource Mailbox object types. (ENG346440)
Resolved an issue where you could not set the Skype user UPN attribute using the Web Console. (ENG345941)
Resolved an issue where you could not edit the Display Name on an Exchange Enabled Distribution Group in the Web Console. ( ENG346111)
Resolved an issue where DRA does not display the Shared Mailboxes object in the Managed Object Browser field. (ENG346572)
Resolved an issue where the DRA installer was getting corrupted while upgrading to the latest version. (ENG345936)
Resolved an issue where you could not delete an Exchange 2016 Mail Enabled Contact from the DRA Console. (ENG345914)
Resolved an issue that was making the “Where” field blank when changing from an LDAP search to a DRA search. (ENG346552)
Resolved an issue where the Unlock user account option is unavailable while viewing the user properties of a locked user in the User Properties page. (ENG345963)
Resolved an issue where the administrator was unable to clear the Logon to Workstation value in the User Properties page. (ENG346110)
Resolved an issue where the Group Name Length Policy returns to default setting after installing a DRA hotfix. (ENG345323)
Resolved an issue where the DRA Dynamic Group wizard was not filtering Virtual Attributes from the list of object attributes. (ENG 344504)
Resolved an issue where the custom handler Form Field Macro Editor page fails. (ENG346035)
Resolved an issue where DRA displays a false error message about Recycle Bin objects when you upgrading versions. (ENG344793)
Resolved an issue where the DRA standalone Health Check Utility fails to run the IIS Version check. (ENG346238)
Resolved an issue where the DRA SQL SSIS jobs fail when the Temp Tables are not present in the SMCubeDept database. (ENG345252)
Resolved an issue that caused a delay when accessing and setting the Office 365 Mailbox Delegation tab. (ENG345267)
Resolved an issue where the Exchange tasks are grayed out when you try to use the Mailbox rights or Mailbox security operation. (ENG345503)
Resolved an issue where the Office 365 Tenant IACR status displays incorrectly when you schedule a cache refresh. (ENG344124)
Resolved an issue where the Exchange 2010 Mailbox Security error displays while setting the Mailbox Security permissions. (ENG345085)
We strive to ensure our products provide quality solutions for your enterprise software needs. The following issues are currently being researched. If you need further assistance with any issue, please contact Technical Support.
When you configure the Office 365 tenant in the a TLS 1.2 environment, it fails to validate access credentials and displays the Failed to get http response error message.
Workaround: Change the registry keys below to the values indicated:
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v4.0.30319] "SystemDefaultTlsVersions"=dword:00000001 "SchUseStrongCrypto"=dword:00000001
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v4.0.30319] "SystemDefaultTlsVersions"=dword:00000001 "SchUseStrongCrypto"=dword:00000001
For more information, see https://docs.microsoft.com/en-us/dotnet/framework/network-programming/tls.
ActiveView rules are limited to 50,000 objects. Any objects after 50,000 are no longer collected.
Cannot execute the following workflow functions if the Aegis Server is version 3.3 or an earlier version:
Configure a workflow form and launch a specific workflow
Use the search for feature and view the properties of submitted forms
Workaround: Install Aegis 3.4 and connect to the 3.4 Aegis Server.
When DRA is installed on a single server and the NetIQ Reporting Center is installed on the SQL server without installing the DRA Reporting Server, a connection error displays when you try to enable DRA reporting.
Workaround: Install DRA Reporting in the SQL Server TLS 1.2 environment.
When the Service account of the Secondary Server is different from the Primary Server or the Secondary Server is installed in a different domain than the Primary (Trusted domains/untrusted domains), and promote the Secondary Server, the MMS synchronization fails.
Workaround: Delegate the Audit All objects, Configure Servers and domains, and Generate UI reports roles before promoting the Secondary Server, and ensure the MMS synchronization is successful.
The Skype for Business Online Administration option in the Office 365 Policies configuration will be disabled if you previously installed the Microsoft Beta version of the Microsoft Online Services Sign-in Assistant.
Workaround: Restart the NetIQ DRA Skype Service to enable the Skype for Business Online option.
Exchange operations are failing with error "winrm cannot reach the server, check whether the server is up and spelled correctly" when connecting to a secondary server.
Workaround: When the Exchange operations are managed with a member server/workgroup, AD LDS may have stale or orphan entries under DRAExchangeServerLink. Remove the entries manually under DRAExchangeServerLink in AD LDS.
If the service account on the Secondary Server is different from the service account on the Primary Server, or if the Secondary Server is installed on a different domain than the Primary Server, ActiveView rules may not be getting collected.
Workaround: Ensure that the service account on the Secondary Server is assigned the Audit All Objects role.
While updating email enabled objects such as user, group, and contacts, the Exchange Management Shell issue is seen.
Workaround: When DRA is enabled with both exchange 2010 and 2013 policies, disable the Exchange 2010 policy and try again.
Our goal is to provide documentation that meets your needs. If you have suggestions for improvements, please email Documentation-Feedback@netiq.com. We value your input and look forward to hearing from you.
For detailed contact information, see the Support Contact Information website.
For general corporate and product information, see the NetIQ Corporate website.
For interactive conversations with your peers and experts, become an active member of our community. The NetIQ online community provides product information, useful links to helpful resources, blogs, and social media channels.
© Copyright 2007-2018 Micro Focus or one of its affliates.
The only warranties for products and services of Micro Focus and its affiliates and licensors (“Micro Focus”) are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. Micro Focus shall not be liable for technical or editorial errors or omissions contained herein. The information contained herein is subject to change without notice.