2020-09-September
PKWARE Release Notes – September 2020
Release Version: Smartcrypt September 2020
General Availably Date: October 9, 2020
Introduction
The following ‘minor’ release provides new product functionality, resolution to customer reported issues and other general improvements to the PKWARE software.
Updated Components and Versions
PKWARE Component | New Version |
---|---|
PKWARE Enterprise Manager | v18.7.86 |
Archive Client Application - Persistent Data Encryption (PDE) Agent | v16.60.0011 |
Transparent Data Encryption (TDE) Agent | v3.40.3 |
Smartcrypt SDK | Java 2019.7.4 / .NET 2020.2.4 |
Smartcrypt Mobile App for iOS | 1.5.32 |
Smartcrypt for Intune Mobile App for iOS | 1.7.1 |
Smartcrypt Mobile App for Android | 1.5.4 |
Smartcrypt for Intune Mobile App for Android | 1.5.4 |
PKWARE Enterprise Manager / Archive Client Application Version Compatibility
PEM Version | Archive Client Application Versions |
---|---|
PEM v18.7.86 September 2020 | PDE Agent: 16.60.0011 (Sept ’20), 16.50.0007 (June ‘20) and 16.40.0010(March ‘20) TDE Agent: v3.40.3 |
Supported 3rd Party Platforms
The following PKWARE and 3rd Party products and versions listed below represent those which have been tested for quality, interoperability and functional operation. Customers are strongly encouraged to maintain their environment in accordance with the versions and dependencies listed below, to avoid unforeseen issues with compatibility or unexpected behavior.
PKWARE Enterprise Manager | |
---|---|
Operating System Type | Version |
Microsoft Windows | Windows Server 2019, 2016, 2012, 2012 R2, 2008 R2 |
Browser Type | Version |
Internet Explorer / Edge | Internet Explorer 11 / Edge 85.x |
Firefox | 80.x |
Google Chrome | 85.x |
Safari | 14.x |
Database Type | Version |
PostgreSQL | 9.5 |
MSSQL | SQL Server 2016, 2014, 2012 |
Web Server | Version |
Internet Information Server (IIS) | IIS 10.0, 8.5, 8.0 |
Archive Client Application | |
Operating System Type | Version |
Microsoft Windows | Windows Server 2019, 2016, 2012, 2012 R2, 2008 R2, Windows 10, 8.1 |
MacOS | Catalina (10.15), Mojave (10.14) and High Sierra (10.13) |
Linux – RedHat | RedHat 5 or greater |
Linux – SUSE | 10 and greater on x86, and x86_64 |
Linux - Ubuntu | 12.04 (LTS) and greater on X86 and X86_64 |
UNIX – IBM AIX | 7L version 7.1 (7100-00) or higher, 6L Version 6.1 (6100-00) or higher with required patches |
UNIX - Solaris | 10 or greater on UltraSPARC and X86 |
UNIX – HPUX | 11iv2 with patches |
IBM z/OS | Software: z/OS 2.4, z/OS 2.3, z/OS 2.2, z/OS 2.1, z/OS 1.13 Hardware: z10-EC, z10-BC, z-10, z196, z114, zEC12, zBC12, z13 (2964), z13 (BC (2965)), z14, zR1, z15 |
IBM i | Software: IBM i 7.4, 7.3, 7.2, 7.1 Hardware: Power 7, 8 and 9 |
Operating System Type - Mobile | Version |
Smartcrypt for iOS | 13.x and newer |
Smartcrypt for Android | 10.x and newer |
Smartcrypt SDK | |
Language | Version |
Java v2019.7.1 | Dependencies:
|
Application Operating System | Version |
MacOS | Catalina (10.15) |
Windows | Windows Server 2019, 2016, 2012, 2012 R2, 2008 R2 (64-bit) Windows 10, 8.1 (64-bit) |
Linux – RedHat | RedHat 8 (64-bit) |
Linux – SUSE | Linux Enterprise Server 12, 11 |
Linux – Ubuntu | Ubuntu 18.04, 16.04 (64-bit) |
Language | Version |
.NET v2020.2.4 | Dependencies:
|
Application Operating System | Version |
Windows | Windows Server 2019, 2016, 2012, 2012 R2, 2008 R2 (64-bit) Windows 10, 8.1 (32-bit + 64-bit) |
MacOS | Catalina (10.15) |
Linux – RedHat | RedHat 8 (64-bit) |
Linux – Ubuntu | Ubuntu 18.04, 16.04 (64-bit) |
Other PKWARE Components | |
Component | Version |
Transparent Data Encryption (TDE) Agent - Server | Windows Server 2016, 2012, 2012 R2, 2008 R2 |
Transparent Data Encryption (TDE) Agent – Desktop | Windows Server 2019, 2016, 2012, 2012 R2, 2008 R2, Windows 10, 8.1 |
Smartcrypt Reader - Windows | Windows 8.1 and higher |
Smartcrypt Reader – macOS | macOS 10.13 and higher |
Features and Improvements
The following capabilities have been added to the Manager, Client or both in the current release.
PKWARE Enterprise Manager | |
---|---|
PKWARE Enterprise Manager | Summary |
Appliance / Windows Version 18.7.86 | Features
|
Archive Client Application | Summary |
Windows, Mac, Linux Version 16.60.0011 | Features
|
Transparent Data Encryption | Summary |
Windows Version 3.40.3 | Features
|
Other | Summary |
‘Smartcrypt for Intune’ Mobile App | Features
|
Fixed Issues
Component | ID | Title | Description |
---|---|---|---|
SEM | MGR-3933 | Error in event log after Satellite Registration | A timing issue when registering an SEM account with CMDS can occur and cause an error with Performance Policies |
SEM | MGR-3930 | Data Center AD OU Path cannot be edited once value is set | In the Smartcrypt Appliance, once a Datacenter OU was defined, it was not able to be updated. |
SEM | MGR-3927 | Device record check optimization on master/slave are different | When a TDE Agent would sync with a replica in a SEM Cluster, an etag drift could occur and updates in policy would not take place on the agent. |
SEM | MGR-3892 | Policy failure with one TDE Key | TDE Key retirement calculation eliminated all TDE Keys from being passed out, so the TDE Agent was not getting any TDE Keys to use. |
SEM | MGR-3855 | Primary server still referred to as master | As part of renaming the Master node to the primary node, all visible labels were planned to be updated. A few were missed. |
SEM | MGR-3817 | Cluster - Replica warning still says "make changes on master" | As part of renaming the Master node to the primary node, all visible labels were planned to be updated. A few were missed. |
SEM | MGR-1270 | Cannot set "Verbose Logging User Ids" on replica nodes | When needing detailed logging for a specific user, a replica node would fail trying to set the value. |
SEM | MGR-3854 | Unable to use reset all log levels button on support page on non-primary | When on a replica support page, resetting the log levels would fail |
SEM | MGR-3849 | Admin API for Active Directory Connectors order should use PUT | Admin API using wrong type of update for an Active Directory Connector |
SEM | MGR-3809 | Admin API - Policy contingency_groups always includes Satellite email, contrary to UI | Admin API mishandling the contingency group field on archive policies |
SEM | MGR-3836 | Cluster Replica tried to write to database during AppSettings initialization | An initializer for PKMetadataServer.AppSettings had attempted to INSERT into the database and failed because the database was (rightly) read-only |
SEM | MGR-3835 | SameSiteStrict cookies in MDS to support modern browser updates | Modern browsers are becoming more strict on how /which cookies are allows. |
SEM | MGR-3832 | Support page, typo in "pronouncable" password hash | Typo on pronounceable hash on the support page, introduced with master password rotation |
SEM | MGR-3782 | UpdateProcessor for RemediationAction got stuck complaining about nonexistent non-uniform Locker | A background queue that handles large updates could fail and repeatedly error |
Windows Client | ARC-2395 | Prompt for passphrase when decrypting several archives with right click option | Contingency key enabled archives when decrypted in mass (more than 1) were causing a prompt when the Smartkey should've been used |
Windows Client | ARC-2327 | Replace + re-zip not working | When working with a multi-file archive the items added back to the zip might not be the last version the user worked on. |
Windows Client | ARC-2319 | Partial Performance Policy Sync Offline | Agent will misbehave if the SEM went offline after the agent only synced 1 time as the agent doesn't have the details of the performance policy |
Agent | ARC-2345 | Updating file filter on remediation does not re-scan data | File filters being updated were not triggering re-scans in the agents. |
Agent | ARC-2310 | Re-encryption always aborts on error, even if configured not to | With the Admin API, however, it's actually possible to configure such lockers and assignments (and with SMDS 18.6 it's much easier to configure them this way), and it turns out that this flag doesn't actually work - if a single non-decryptable file is encountered inside an archive, the Agent (or Service) still aborts the entire operation. |
Agent | ARC-2410 | Password change (SID) causes unlink on second login | When an unmanaged user (or local user) changes their unmanaged password, a new SID is created and posted to the server. When a 2nd device logged requires entry of the new password, a new SID object is stored on the client, but the old SID is not discarded. This extra SID causes failure when checking the validity of the metadata on startup. |
CLI | ARC-2336 | Archivedate option works incorrectly with TGZ/TBZ archives | For simple archives such as ZIP and TAR, this works correctly, but for embedded archive types such as TGZ (TAR.GZ) and TBZ (TAR.BZ2) it ends up using today's date and time, presumably because it's getting them from the TAR file itself rather than its contents. |
PKWARE Enterprise Manager Appliance – OS and Major Packages
For a full list of the packages included in your appliance, see the Systems/Packages page.
PKWARE Enterprise Manager Appliance | |
---|---|
Package / OS | Version |
Ubuntu | 16.04.6 LTS (Xenial Xerus) |
Dotnet | 3.1.7-1 |
Apache2 | 2.4.18-2ubuntu3.17 |
Postgresql | 9.5.23-0ubuntu0.16.04.1 |
Openssl | 1.0.2g-1ubuntu4.16 |
Python3 | 3.5.1-3 amd64 |
Related documentation
Questions and Support
Support Hours and Contact Information
- Monday through Friday 8-6 Eastern Time Zone
- Technical Support 937.847.2687
- Customer Service 937.847.2374
- Request Tech Support Form
Support Links