NetIQ Identity Console 1.7 Service Pack 2 (1.7.2) added various new features and resolved several previous issues. Many of these improvements were made in direct response to suggestions from our customers. We thank you for your time and valuable input. We hope you continue to help us ensure our products meet all your needs.
For more information and for the latest release notes, see the Identity Console Documentation Web site. To download this product, see the NetIQ Downloads Web site.
This release notes have the following sections:
Identity Console 1.7 Service Pack 2 provides the following updates in this release:
Identity Console 1.7 Service Pack 2 adds support for the following operating system:
Red Hat Enterprise Linux (RHEL) 8.9 and 9.3 (for Standalone and Docker)
Red Hat Universal Base Image 9.3 (for Containers).
Identity Console 1.7 Service Pack 2 supports the latest version of the following browsers:
Google Chrome
Mozilla Firefox
Microsoft Edge
This release of the Identity Console comes with the following new features:
This release has the following changes to the identity Console installer:
Silent Installation:
Identity Console can be installed in unattended mode using Silent Installation method. In addition to the existing interactive installation method, the silent installer simplifies the installation process and eliminates the need for any interactive input, making it more efficient. For more information on silent installer, see Performing a Silent Installation in the Identity Console Installation Guide.
Auto generation of CA Certificate and Server Certificate
Identity Console installer comes with utilities to generate CA Certificate and Server Certificate during the installation. This utilities can be used in Standalone and Windows Workstations.
For more information see:
Standalone (Non-Docker): Utilities to Generate Certificates.
Windows Workstation: Utilities to Generate Certificates.
Identity Console now has a new option for restricting a user from logging in to the application during restricted hours. You can set the restriction in the Time Restrictions property page in the Identity Console user interface. However, note that Identity Console does not impose any login restrictions by default. For more information, see Login Time Restrictions for Remote Users.
Email-based approval feature supports modern authentication to authenticate the email notification server. Modern authentication helps you to securely manage email approvals. You can authenticate to the server using either basic or modern authentication. Identity Console now allows you to configure these authentication methods from the Email Server Options page. To enable modern authentication, click the Email Server Configuration settings on the Identity Console landing page, select the Modern Authentication radio button and specify the server settings you want to use for your SMTP e-mail server. For more information on how to configure modern authentication on your server, see Authenticate the Server by Modern Authentication.
NOTE:This configuration is required for Modern Authentication feature that is planned with the next Identity Manager Minor release.
Identity Console 1.7 Service Pack 2 includes the following software fixes:
LDAP query is corrected to fetch the Static & Dynamic Group Members. The query displays Included, Dynamic members, and All members in dynamic group under members.(Defect: 611021)
Identity Console installation is successful when the server certificate password contains special characters or spaces.(Defect: 646009 and 867003)
Repair Default Certificates adds the correct server name and IP address for the selected server.(Defect: 801006)
IDM Driver Jobs Dialog displays a list of servers and allows the user to select multiple servers from a drop-down menu.(Defect: 823023)
‘SessionIdleTimeout' Configuration Parameter can be added to edirapi.conf file which represents the amount of time users can leave a page unattended in their web browser. On session time out, Identity Console will redirect to login page. For more information, see Configuring Session-timeout for Identity Console. (Defect: 824025)
Identity Console provides users the option to create a self-signed server certificate valid for one year. Users can also import CA certificate by providing the IP address and port information during installation. (Defect: 824006)
The Startup Options in the Configuration tab now includes the Do Not Automatically Synchronize the Driver check box. If you change a driver’s state from Disabled to Auto start or Manual, you can check the box to prevent the driver from automatically synchronizing objects when it loads. (Defect: 894004)
This release resolves CVE-2023-7240: NetIQ Identity Console Broken Access Control leading to SSRF.
As part of the fix, the user has to provide eDirectory IP address(es) along with LDAPS port in the edirapi.conf file to connect to the Identity Console. This is applicable for Standalone and Container platforms. For more information see Login Failure due to Invalid Credentials.
For information about prerequisites, computer requirements, installation, upgrade, or migration, see Planning to Install Identity Console in the Deploying Identity Console.
Log in to the Software License and Download page and follow the instructions provided on the page to download the software. NetIQ provides a tar.gz or .zip file to install Identity Console.
Table 1 For example:
|
For Docker: |
IdentityConsole_172_Containers.tar.gz |
|
For Standalone Installation: |
IdentityConsole_172_Linux.tar.gz |
|
For Windows workstation: |
IdentityConsole_172_workstation_win_x86_64.zip |
The installation process of the Identity Console varies depending on the destination platform. Please select the appropriate section:
For more information on installing Identity Console, see Deploying Identity Console as Docker Container section in the Identity Console Installation Guide.
For more information on installing Identity Console, see Deploying Standalone Identity Console (Non-Docker) section in the Identity Console Installation Guide.
For more information on installing Identity Console, see Deploying Identity Console Workstation on Windows section in the Identity Console Installation Guide.
For more information on upgrading to Identity Console 1.7 Service Pack 2, see Identity Console Installation Guide.
For information about legal notices, trademarks, disclaimers, warranties, export, and other use restrictions, U.S. Government rights, patent policy, and FIPS compliance, see https://www.netiq.com/company/legal.
Copyright © 2024 NetIQ Corporation, an OpenText company. All Rights Reserved.