4.2.0

Salesforce (SCIM) (agtsalesforcescim.con)

Amazon Web Services (SCIM) (agtscimaws.con)

Oracle ERP Cloud (agtoraerp.con)

The new SCIM 2.0 connectors are added as samples to maintain backwards compatibility for older versions. They must be manually copied to the agent folder and installed using loadplatform with instances for version 12.3.0+.

SAP server, SAP HR, and SAP GRC to use SAP NetWeaver 7.5+ SDK in 64 bit. (support for SAP GRC is deprecated in Connector Pack 4.5).

OpenBSD connector (agtopenbsd ).

SuccessFactors HCM (Human Capital Management) REST (agtsfrest.con) connector.

SuccessFactors EC (Employee Central) REST (agtsfrestec.con) connector.

Added additional logging for the Active Directory DN connector (agtaddn) regarding WNET* connections on authentication.

Improved the performance for the Azure Active Directory (agtazure) connector's listing operations.

Added the "Max read timeout", "Max write timeout", and "Max read size" target system address options for the SSH and Telnet connectors for both Cisco Adaptive Security Appliance (ASA) and Cisco IOS networking equipment.

Changes to common agtssh/PSLang code in regards to passing through uid and gecos attributes. The family of agents known as unixssh and include both Linux and UNIX.

Modified the value for the "Enable on reset" target system address parameter to be false by default for the "Oracle Solaris Server 9.x+ (SSH)" and Generic Linux Server (SSH)" targets.

Added the "Use centrify 'dzdo' as privileged escalation" privilege escalation type for Linux, Solaris, OpenBSD, AIX, and HP-UX targets to address the need of a custom Linux or unix template for domain systems.

Upgraded the Putty library for unix connectors to version 0.76.

Added the List Override target address configuration option and the listoverride.py sample script to provide the ability to copy/move the target sqlite database list file from another target.

Adjustments to be able to load the generic SCIM connector as a separate special new platform.

Added a new address line option to the Oracle Hyperion EPM Shared Services connector (agthss) to list accounts only from particular groups.

Enhanced the DUO connector (agtduo) to support token devices.

Added a feature to allow listing users by specified filter for the Okta connector.

Improved the logging when the serverinfo operation fails for SQL-based scripted agents and DLL dependencies cannot be resolved.

Upgraded Siteminder libraries to version 12.8 64 bit.

Added the ability to update the ntfs-owner attribute for shares or folders, as well as propagate permission changes.

The managed group listing for the LDAP connector has been modified to now be in a sort list to improve performance.

Enabled TLS 1.2 for the SSL communications for the agtxml connector.

The pxsvcnow interface program has been updated to now be using ServiceNow's latest REST API.

Added error handling for multi-page listing and the "Records per page" pagesize target address parameter for the Workday connector.

Fixed an issue in Salesforce connector (agtsalesforce) with longid returned from create being quoted.

Fix Salesforce connector (agtsalesforce) to list defined account attributes instead of listing all found.

Modified the LDAP Directory Service (agtldap) connector to handle overriding default rnd attribute "cn" with a different rdn attribute such as "uid".

Modified the LDAP Directory Service (agtldap) connector to reduce the logging noise when listing computers and when listing to handle rdn attributes that are not specifically of type "cn".

Modifications for the LDAP Directory Service (agtldap) connector for additional logging to aid in troubleshooting issues around listing group memberships.

Fixed an issue with the LDAP Directory Service (agtldap) connector to not return attributes when they have not been set during a group create.

Resolved an issue with the agtldap (LDAP Directory Service) connector with handling prefixed meta-attributes to ensure that password and account attributes may be updated properly when targeting LDAP systems such as IBM Tivoli directory servers.

Modified the agtldap-topsecret.cfg sample script to be able to handle suspended attributes for newer versions.

Added the ability for the Persistent Connector Service (agtsvc) to resync accounts and groups on full listing. This allows for accounts and groups not found during a listing, such as changes within filters, to now be correctly invalidated. This feature may be disabled using the AGTSVC_RESYNC_ON_FULL registry key.

agtssh Reinstated "Access denied" PuTTY library messages so that we can detect authentication failures agent side. The change is made to both SSHv1 and SSHv2 protocols but only SSHv1 problems were encountered.

Fixed an issue with the PSLang common code for errors in logging affecting unix connectors.

Fixed an issue for the Powershell connector (agtps) when system credentials are not provided.

Fixed memory leak in pxpython which was leaking due to not freeing resources properly.

Modification for the Microsoft Active Directory DN connector (agtaddn) time attributes from the native Active Directory large integer (nano seconds) format to the ISO standard time in the agent output. Also added support to set the time attribute using ISO standard time in operations such as for list, create, update, etc.

Fixed a bug in network resource connector that could occur when using DN format long IDs.

Fixed the Azure Active Directory (agtazure.exe) connector to improve the listing performance as well as for when listing specified attributes.

Fixed the Novell eDirectory (agtnds) connector to return the proper error code when verifying the password for a disabled user.

Added refresh token support for the Microsoft Azure Active Directory connector (agtazure) and fixed a multi-page listing bug.

Resolved potential race condition when removing user from groups in Active Directory.

Modified the Active Directory DN (agtaddn) connector to add escaping for the CN attribute to allow for commas when renaming.

Modified the Active Directory DN (agtaddn) connector to ensure that when failing to list OUs or groups and when "Abort listing when an invalid group is encountered" or "Abort listing when an invalid OU is encountered" are checked, that listing for the target will fail during auto-discovery.

Resolved a performance issue with the Active Directory connector related to OutputDebug when listing during the auto discovery process.

Fix a performance issue in the Google Apps connector when listing groups and listing managed groups' members.

Fix to agtdmno group owner listing to be able to handle extra whitespace.

Fixed a bug that reports error when unlocking an unlocked user in Okta connector.

Added a -debug option for agtsvccli to output accounts, groups, and memberships in the logs for target level information submitted to iddiscover for diagnostics.

Added a --loopcount option for agtsvccli to set a limit on the target level for the number of incremental iterations that persistent listing runs before exiting.