25.1 HSPAS Release Notes

Release Date: March 1, 2025

New Features

  • A button to 'Regenerate the Use My Account SSH keys' has been added.

  • The Delinea sudo plugin is now able to securely inherit environment variables.

  • The Direct Audit packages have been updated with the latest OpenSSL. This update removes Atomic support while adding support for Alpine and RHEL7 ARM64.

Improvements

  • The iOS APNS certificate has been updated to support iOS 15.4 and iPad 13.

  • The connector now uses the asynchronous mode as default when preparing auditing data.

Fixed Issues

  • The validation check has been added for SortBy value when executing the RedRock\query request.

  • You can retrieve all accounts that are accessible based on a user's sys admin role permissions from PAS > Access > Policies > Policy Settings > Policy Sets.

  • Fixed password rotation failures caused by outdated AWS profile instructions, MFA input blockage, and account page opening in new tabs, by requiring a database upgrade script.

  • Fixed a HTTP request smuggling vulnerability.

  • Refactored the javascript code to fix the issue with CSP restriction for CBE Chromium.

  • Improved performance when populating set members for systems and roles.

  • The predefined cipher suite list now includes modern, strong TLS 1.2 ciphers to improve compatibility.

  • Refactored the DataVault and Sets views by decreasing the number of calls, sub requests, and using joins.

Notice of Termination of Support

  • SLES12

  • Debian 10

  • CentOS

  • RedHat Linux 6 and 7

The Cloud Suite Syslog Writer is no longer supported. For more information see, Integrating Cloud Suite with Syslog Collector Plugin