PGP Universal Server 3.2.1 - Resolved Issues

Article:TECH195811  |  Created: 2012-08-29  |  Updated: 2013-04-12  |  Article URL http://www.symantec.com/docs/TECH195811
Article Type
Technical Solution


Issue



This article details a list of resolved issues in PGP Universal Server 3.2.1 including all Maintenance Packs.


Solution



PGP Universal 3.2.1 MP5

  • Resolved an issue so that an administrator with Basic Administrator privileges was able to create external users. [2950224]
  • Resolved an issue in PDF Messenger where creating messages containing certain invalid characters failed with an error. [2876644]
  • Resolved an issue where a new external user passphrase change resulted in an error when the email with the temporary password was sent with a “Require Sender Authorization” setting in consumer policy. [2917571]
  • Resolved an issue so that the PGP Universal Web Messenger accounts are deleted based on the Inactivity Expiration value specified in PGP Universal Server. [2950248]
  • Resolved an issue so that clicking the PGP Universal Web Messenger passphrase recovery link now appropriately opens the Password Reset page. [2952096]
  • Resolved an issue so that users no longer see an error message when they click the browser back button after opening a PGP Universal Web Messenger email message. [2952134]
  • Resolved an issue so that users no longer see an error message when they try to print an email message with attachment from the Sent message folder, and then cancels the print task and opens the attachment. [2955040]
  • Resolved an issue so that clicking the PGP Universal Web Messenger passphrase recovery mail link now appropriately opens the Create Your Passphrase page. [2956572]
  • Resolved an issue in PGP Universal Server so that users who are not super users cannot create nor change WDE Administrator passphrases. [2949862]
  • Resolved an issue so that users no longer see an error message during key synchronization. [2950220]

 

PGP Universal 3.2.1 MP3

  • Resolved the issue that caused duplicate entries on the Directory Synchronization page. [2670039]
  • Resolved the issue that prevented Microsoft Outlook 2010 .isc invitation files from being properly displayed by PGP Universal Web Messenger. [2651770]
  • Resolved the issue so that the deletion of PGP Universal Web Messenger messages properly replicates throughout the cluster. [2897017]
  • Resolved the issue so that PGP Universal Web Messenger message content is intact after replication across the cluster.[2883802]
  • Resolved the issue so when the PGP Universal Server policy is set to lock a removable device with the option to encrypt data, the device is write protected and data cannot be written can be written to the device. [2473623]
  • Resolved the issue with PGP BootGuard so that when a system is encrypted with PGP WDE and PGP Universal Server policy, the domain field is now remembered. [2839329]
  • Resolved the issue so that when administrators enable force SSO in Consumer policy, the option to Enable Windows SSO is no longer an available option on the Windows Account Logon screen of the PGP Disk Assistant wizard. [2860470]
  • Resolved the issue so that when Consumer policy and advanced prefs specify removable disks should be created as portable disks, when users insert a removable disk, PGP Portable displays a dialog box to encrypt the disk. [2720740]

 

PGP Universal 3.2.1 MP2

  • Resolved issues with using special characters (such as '(',')','*','/','\','NULL') in LDAP bind user names. [2608515]

 

PGP Universal 3.2.1 MP1

  • Resolved the issue so that a large number of emails in the mail queue no longer cause the mail proxy to fail with an out of memory SQL error on the PGP Universal Server. [2476294]
  • Resolved the issue so that invisible silent enrollment no longer fails if the user and system are in a different Active Directory Forest. [2768515]
  • Resolved the issue that changed the “&” sign in LDAP to “&amp”. [2563352]
  • Resolved the issue that listed the administrator in the logs for all instances when a WDRT is used, and not the actual user who requested it. [2579243]
  • You can now sort alphabetically by OS or client tabs in WDE computers, as well as by string fields. [2586025, 2604713]
  • Resolved the issue so that when a user is excluded as part of a policy, that user’s key is no longer published to the keyserver. [2604413]
  • Resolved the issue so that a Java exception no longer occurs for administrative users who do not have a mail address setup but are configured to receive daily status emails. [2633051]
  • Dashboard Policy Group Membership summary no longer uses template data when group display limit reached. [2691144]
  • Resolved the issue so that a PGP Universal Web Messenger user who has used more than 2 GB of space (even if that is less that the allotted amount) no longer receives an error message when logging in. [2712480]
  • Checking or unchecking the Consumer Policy checkbox now updates the client preferences file (prefs.xml) as expected. [2733084]
  • Resolved the issue so that the user is logged in to the administrative interface and the Overview page is displayed as expected. [2740414]
  • Resolved the issue so that PGP Universal Server successfully communicates with a Lotus Domino server using a secured SMTP session using TLS. [2767569]
  • Resolved the issue so that when a user sends email containing an attachment using PGP Universal Web Messenger, a copy of the sent email appears under Sent Items. [2672498]
  • Updated Basic Administrator roles so that these accounts can now delete, update, and modify users and groups. [2663601]
  • Resolved the issue so that changing the PGP Universal Server host name using the administrative interface never updated the host name on the client email policy.[2632832]
  • Resolved the issue so that users no longer received Java exceptions when selecting the Keys tab in the administrative interface after upgrading PGP Universal Server from version 3.1 to version 3.2. [2535234]
  • Resolved the issue with consumer policy so that Microsoft Outlook users now see only one copy of a sent email in their “Sent Items” folder. [2689657]
  • Resolved the issue so that when users click on the link received in a PGP Universal Web Messenger notification message, users are now prompted to enter only their passphrase. [2703908]
  • Resolved the issue so that PDF files created by PGP PDF Messenger can now be opened on BlackBerry devices. However, the encryption algorithm that is supported at this time is AES-256. Support for AES-128 and RC4 will be provided in an upcoming release. [2777592]
  • Resolved the issue so that the Windows domain name is now transmitted with the user’s user name when enrolling. [2651197]
  • Resolved the issue so that the Symantec “Norton Secured” seal now appears once in the PGP Universal Web Messenger browser. [2821104]

 

PGP Universal 3.2.1

General

  • Performance improvements for enrollment, consumer policy synchronization, and WDE events. [2634523]
  • Administrators from managed domains no longer need to be enrolled as internal users to receive Daily Status Emails. [30076/2475033]
  • Resolved the CVE vulnerability (CVE-2011-3389) where browsers could be vulnerable to blockwise chosen-boundary attack (BCBA) on an HTTPS session. [2657733/2658545]
  • Resolved the CVE vulnerability (CVE-2011-0419) where Apache HTTP servers were vulnerable to denial of service attacks. [2620738]
  • Resolved the Qualys vulnerability where scans report that “X-FRAME-OPTIONS” were not being set for the administrative interface. [2682295]
  • Resolved the issue where Qualys vulnerability scan reported x-frame-options not being set. [2587717]
  • Increased the swap partition size to a maximum of 11 GB (from the previous maximum of 5 GB). [2630732]
  • Updated CentOS to resolve operating system vulnerabilities identified in PGP Universal Server 3.2 MP3. [2639981]
  • Resolved the issue with PGP Universal Server where directory synchronization service was not resilient to java exceptions [2571121]
  • Resolved the issue with accessing the PGP Universal Server administrative interface with Mozilla FireFox 8.0 so that using http:// now redirects to https://. [2641784]
  • Resolved the POSIX time problem where root CA’s certificate might not have been valid beyond 19th January 2038. [2680242]
  • Resolved the SSL CBC security vulnerability attack to limit the SSL ciphers in httpd and slapd (reference issue CVE-2011-3389). [2701292]
  • Resolved the issue where Apache Version 2.2.19 and other versions were vulnerable to DOS attack [2602061]
  • PGP officially supports the NC382i NIC that ships by default on-board the HP ProLiant DL 380 G7 server. This information was omitted from the PGP Universal Server version 3.2 released documentation.
  • Several issues resolved to improve the performance of the PGP Universal Server, including improvements to user interface responsiveness when there are a large number of external users. [NBN]
  • Resolved the issue with PGP Universal Server that was allowing duplicate data to exist in the database. [2563571]
  • Resolved the issue so that when the Recover Passphrase PDF Messenger default mail template is edited to specify HTML formatting, external users see the formatted HTML [31109/2476066].
  • Resolved the issue so that when an email is sent to a global distribution list with an invalid email address, this email is no longer stuck in Outbox. Instead, it is deleted from the Outbox [31492/2476449].
  • Resolved the issue with PGP Universal Server that was causing issues with Blackberry devices when downloading a Certificate Revocation List (CRL). [2476465]
  • Resolved the issue with PGP Universal Server that was allowing multiple instances of the replication process to be started. [2516130]
  • Resolved the issue with PGP Universal Server that was causing debug logs to be displayed when debug logging was disabled. [2554233]
  • Resolved the issue with PGP Universal Server that was causing unexpected errors when viewing user accounts. [2476184]

Installation and Upgrades

  • Resolved the issue where upgrading from PGP Universal Server version 2.x now preserves all PGP BootGuard text and audio cues. [2471938]
  • Resolved the “schema did not match” error that was displayed after updating from PGP Universal Server 3.1.2 to 3.2. The migration error "The default canonical schema did not match the PGP Universal schema." no longer appears. [2496505]
  • Resolved the issue with PGP Universal Server that was causing schema comparison errors after upgrade. [2577643]
  • Resolved the issue that would cause an error if the LDAP directory type was changed after migrating from a previous version of PGP Universal Server. [2576214]
  • Resolved an issue so that upgrades from PGP Universal Server 3.2.0 MP3 now succeed as expected. [2699527]
  • Resolved the issue with PGP Universal Server where the database schema was changed after update. [2604098]
  • Resolved the issue with PGP Universal Server where a migration script failed during update. [2609251, 2603572]
  • Resolved the issue with PGP Universal Server where the PGP Remote Disable & Destroy service was disabled and could not be started after a PUP update. [2476159]

Keys

  • Resolved an issue where X.509 key lookups on directory.verisign.com would fail. [2682291]
  • Resolved an issue with PGP Universal Server that could cause key usage flags to be removed from externally signed X.509 certificates. [2682310]
  • Resolved an issue where enrolled users with SKM keys were changed to GKM users. [2646335]
  • Resolved the issue with PGP Universal Server where X.509 keys on directory.verisign.com were not found due to no response for the namingContexts query. [2526018]
  • Resolved the issue with PGP Desktop so that MAPI can decrypt any email for which the user has the private key, even if the user no longer has the specific X.509 certificate that the message was encrypted to. To enable this functionality, use the new hidden pref mailSmimeDecryptWithAnyKey. [2677388]

PGP NetShare

  • General performance improvements made when using Group Keys for PGP NetShare file and folder encryption. [2476370]
  • Improvements made to how PGP NetShare handles blacklists. [2611607]
  • Only ADKs with the NetShare usage flag are used to encrypt the PGP NetShare folder; when the ADK does not have a NetShare usage flag the NetShare folder is not encrypted to it. [2558745]
  • Individual files in blacklisted folders can no longer be protected by PGP NetShare. [2588140]

PGP Remote Disable & Destroy

  • Many improvements made to PGP RDD.
  • Resolved an issue where no error message appeared if you try to enable PGP Remote Disable & Destroy with Intel Anti-Theft Technology without the necessary license and activation files. [2613155]
  • Resolved the issue with PGP Universal Server where PGP Remote Disable & Destroy was not generating any logs. [2476038]
  • Resolved the issue with PGP Universal Server where the PGP Remote Disable & Destroy service was disabled and could not be started after a PUP update. [2476159]

PGP Whole Disk Encryption

  • Resolved the issue with updating the last access time for WDRTs. [2482796]
  • Resolved the issue so that setting the WDE Administrator password in PGP Universal Server no longer causes client enrollment to fail with a “bad parameters” error. [2533985]
  • Resolved the issue with PGP Universal Server upgrades where by default the BootGuard setting Display Detailed Authentication Fields was enabled. [2680244]
  • Resolved the issue so you can now use customized splash and start images for PGP BootGuard. [31548/2489245]
  • Resolved the issue so that your users' computers automatically encrypt after email enrollment to PGP Universal Server completes, if specified by policy [31378/2496536].
  • PGP Universal Server no longer times out when you try to view user information for users with a large number of WDRTs. [25498/2470450]
  • Exporting a WDE activity report in the scalability cluster with a 69K whole disk recovery token no longer takes over 45 minutes. [27033/2471988]
  • Resolved the issue that resulted in the "Could not start disk encryption err: -12198" error displaying on client systems when installing PGP Desktop using silent enrollment and when single sign-on and auto encrypt are enabled. [31509/2476466]
  • Resolved the issue where custom PGP BootGuard text did not get applied. Note: when customizing the PGP BootGuard screen, enter a maximum of 79 characters (if using UTF-8 characters). Exceeding this number of characters results in a truncated line of text in the PGP BootGuard screen. [2660786]

PGP Universal Web Messenger

  • PGP Universal Web Messenger users get an error at login if their messages have duplicate mail parts for the same message. Contact Symantec Technical Support for help. [27508/2472463]
  • Resolved the issues around deleting Sent messages from PGP Universal Web Messenger. [2591969]
  • Resolved the issue so that when you access PGP Universal Web Messenger using HTTP over port 80, it now redirects to using the secured HTTPS over port 443 [2509908].
  • Resolved the issue that was causing PGP Universal Web Messenger user’s login to time out under light loads. [2517610]
  • Resolved the issue with PGP Universal Server that was causing PGP Universal Web Messenger users to see an error when logging in to their accounts. [2599562]
  • Resolved the issue with PDF Messenger that would cause users to be taken to a PGP Universal Web Messenger mailbox after resetting their passphrase. [2604013]
  • Resolved the issue with PGP Universal Server that was causing the replication of certain PGP Universal Web Messenger database records to be delayed by 90 seconds when under a light load. [2530050]
  • Resolved the issue where external LDAP authentication for PGP Universal Web Messenger matches email addresses from the proxyAdresses attribute only if "smtp:" is added at the beginning of the email address. [2626011]
  • Resolved an issue so that PGP Universal Web Messenger users no longer receive an error when saving a reply. [2714752]
  • Resolved the issues around deleting Sent messages from PGP Universal Web Messenger. [2717668]
  • Resolved an issue that prevented PGP Universal Web Messenger 3.2.0 MP3 users from successfully sending messages to internal users when an ignition key was configured on the server. [2717684]
  • Resolved an issue where the vertical scroll bar was missing from the print page of the PGP Universal Web Messenger mail. [2717687]
  • Resolved an issue where PGP Universal Web Messenger messages are not replicated on initial cluster join because the High Availability setting is evaluated incorrectly. Now messages are in sync across the cluster after nodes join. [2665375]
  • Resolved the issue with PGP Universal Server version 10.2 MP3 where PGP Universal Web Messenger mail insert time increased to O(N^2). [2620752]

Reports

  • Improvements made to decrease the time required to export PGP Whole Disk Encryption activity reports. [2471988]

Client Management

  • Resolved issues with using special characters (such as '(',')','*','/','\','NULL') in LDAP bind user names. [2608515]
  • Resolved an issue so that advanced searches in Consumers > Devices now returns the correct results and no longer displays an error. [2714669]
  • Resolved the issue so that when you customize the PGP Universal Server on the Download PGP Clients page, the installed client connects to the correct customized PGP Universal Server. [2493491, 2496315]
  • Resolved the issue so that PGP Universal Satellite is now compatible with IMAP email accounts using Microsoft Outlook 2010 64-bit [31443/2476400].
  • Resolved the issue so that when you upgrade to PGP Universal Server 3.2, LDAP enrollment now works and users in custom groups are not moved to the Everyone group [2510210].
  • Silent enrollment now works when you create a client installer and the domain for the PGP Universal Server specified in the Download Clients dialog box does not match a managed domain. [25046/2469998]
  • Resolved the issue with PGP Universal Server where the Preset Policy Group was ignored if Directory Synchronization was enabled [2656596]
  • Resolved an issue where the option to force PGP Portable usage is now applied on the client. [2664385]
  • Resolved the issue with PGP Universal Server where database permissions would cause client policy to not download. [2598299]
  • Resolved the issue with PGP Universal Server that was preventing some XML preferences from being edited. [2481069]

 




Legacy ID



1013


Article URL http://www.symantec.com/docs/TECH195811


Terms of use for this information are found in Legal Notices