Manualshelf

Specifications

ManualsBrandsDell ManualsComputer equipmentPowerconnect W-ClearPass Hardware Appliances
21222324252627282930
28 | Issues Fixed in Previous 6.2.x Releases ClearPass 6.2.5 | Release Note
Fixed in 6.2.1
Policy Manager
Guest
Table 25 Policy Manager Issues Fixed in 6.2.1
Bug ID Description
15382 The 6.2.1 patch addressed a known vulnerability in Struts CVE-2013-2251 that could be introduced by
manipulating parameters prefixed with “action:”/”redirect:”/”redirectAction:”, allowing remote command
execution.
16498 Support was added for the vendor-specific attribute Aruba-Essid-Name.
16586 Corrected an issue with netevents generation where more than 10,000 audit entries within two minutes
would cause high CPU and memory usage, affecting CPPM functionality.
16712 The CPPM 6.2 Dissolvable Agent did not work if a Virtual IP FQDN was used to load the Clearpass
Onguard portal.
16803 After upgrading to 6.2.0, a configuration file was deleted. This caused the Dissolvable Agent to not load
the Clearpass Onguard portal page, and a “Cache entry not found” Java error was displayed.
16825 VIP service restart on the nodes is no longer required when VIP failover wait time is changed in
cluster-wide parameters.
17130 The cpass-async-netd service sometimes failed to start. This issue was seen on low-power virtual
machines (VMs) when most of the services were activated, causing a high load.
17145 The AD recovery section of Radius Service Parameters now includes an option to restart Winbind
Service.
17280 When installing certificates in the machine store, onboarding did not work for usernames that contained
a period character (.).
17283 The MaxClients limit for the Apache httpd Web server could not be set to a value greater than 256.
17321 CPPM now supports using Radius CoA for Network Access Devices (NAD) that use Classless
Inter-Domain Routing (CIDR) addresses.
17531 The “Not Valid After” attribute did not return a proper value. This caused authorization decisions based
on that attribute in a certificate to not work properly.
17645 The HTTP authorization source feature now supports talking to HTTPS servers and servers that require
authentication. Nested elements in the JSON payload returned by the server are ignored.
17648 Disabled support for AECDH ciphers to prevent a possible man-in-the-middle attack against the SSL
protocol.
Table 26 Guest Issues Fixed in 6.2.1
Bug ID Description
17132 Corrected an issue in self-registrations where, if the user logged in after looking up a sponsor, the error
message “NwaLdapSponsorUserSearchAjax not callable” was displayed.
17165 Users were able to log in without sponsor approval if MAC caching was enabled.
17173 The custom CSS Class field was ignored when rendering the Submit button on a registration form. The
class is now included as expected.
17188 Corrected the import of Amigopod 3.9 “Network Login Access Setup” settings. Operator login
“allowed” and “denied” networks are now ignored as they are obsolete.