Last updated: 18-Jan-2013

ReadMeFirst for Enterprise Vault™ 10.0.2
Cumulative Hotfix 2

This document describes the issues fixed by:

The Installation Instructions file, which is available with the cumulative hotfix at http://www.symantec.com/docs/TECH201383, gives details of dependencies, updated files, and how to install the hotfix.

Cumulative Hotfix 2

Enterprise Vault cumulative hotfix 2 fixes the following issues:

Enterprise Vault server

Archiving performance slowed by large converted content E2828682, E2831933

Some items or attachments can result in very large files of converted content. The conversion and indexing of these files could affect archiving performance. Files of several gigabytes could cause archiving errors.

This has been fixed. By default, when converted content is larger than 30MB, that converted content is neither indexed nor stored. The original item or attachment is archived as normal.

Processing attached messages with large numbers of recipients caused high CPU usage E2878916

Processing attached messages that had thousands of recipients caused high CPU usage.

This has been fixed. Storage Crawler now uses considerably less CPU resource when processing these attached messages.

Alternate data streams for FSA archive points and folder points were truncated if the target returned an error E2987921

FSA uses alternate data streams on target folders to indicate archive points and folder points. If a target returned an error while a File System Archiving task was trying to save an alternate data stream, the alternate data stream was truncated and the following error was logged in the File System Archiving task report:

*** Warning *** - One more Root folders were not synchronized for many folders

Now, FSA writes the updates to the content of the alternate data stream in a transactional manner to prevent truncation. If the File System Archiving task fails to save the alternate data stream on the first attempt, it performs a number of retries.

Unable to view the contents of S/MIME-signed messages in Lotus iNotes if they had been sent from an external mail system E2989365

Lotus iNotes users could not view the contents of an S/MIME-signed message if it had been sent from an external mail system. In addition, one of the following errors would appear in the mail server console:

This has been fixed.

Enterprise Vault created internet shortcuts to archived files even though the vault store setting for Remove safety copies was set to "Never" E2997526

Even though the vault store setting for Remove safety copies was Never, Enterprise Vault created internet shortcuts to archived files after the vault store was backed up, if the folder policy shortcut creation rule was Create Shortcut immediately.

This has been fixed.

EVInstall.nsf generated errors when run against customized templates E2998364

In some circumstances, when you ran EVInstall.nsf against templates which had customizations on certain shared actions, the EVInstall log contained the following error:

WARNING: Error compiling shared actions

This could occur if you had customized any of the following shared actions:

This has been fixed.

Could not archive public folders when FixOrphanedShortcut registry value used E3002922

When the FixOrphanedShortcut registry value was enabled, public folder targets were not archived. Error event 4167 was logged for each failed public folder target.

If you use FixOrphanedShortcut, remember to remove it as soon as the shortcuts have been fixed. This registry value may have an adverse effect on archiving performance.

This has been fixed.

Domino archiving tasks could archive failed items multiple times E3003268, E3004206

In some circumstances the Domino Archiving task could repeatedly fail to archive some items, producing one of the following errors:

This has been fixed. Items that previously failed are now blacklisted and event ID 41456 is logged.

If items have previously failed in this manner it is possible that Enterprise Vault archived many duplicates of those items. For details on how to manage blacklisted items, see http://www.symantec.com/docs/TECH201608.

SharePoint server archiving

Shortcuts could not be opened when using extended web site URL E3005095

When a SharePoint Web Application had been extended to another IIS web site, users could not open shortcuts if they used the extended web site URL to access SharePoint.

This has been fixed.

Discovery Accelerator

Intermittent errors in placing items on legal hold could leave them eligible for deletion E2983657

Intermittent errors in placing certain items in a case on legal hold could lead to the situation where the items were still eligible for deletion. Discovery Accelerator gave these items a LegalStatus code of 425, which means "Hold Error", and it did not make any further attempts to place the items on hold.

This has been fixed. If Discovery Accelerator initially fails to place certain items on hold, it now repeatedly tries to do so until it succeeds. In addition, Discovery Accelerator now alerts you to the situation by recording the following Error event in the log on the Discovery Accelerator server:

Discovery Accelerator has identified some cases in which it could not apply legal hold to certain items.
It will make repeated attempts to apply legal hold to these items. If you continue to receive this error
message for the next few days, contact Symantec Technical Support.
The following cases contain items to which Discovery Accelerator could not apply legal hold:
case1: n items (out of m)
case2: n items (out of m)

By default, Discovery Accelerator records this event in the log every 12 hours. The event has the ID number 562.

Cumulative Hotfix 1

Enterprise Vault cumulative hotfix 1 fixes the following issues:

Enterprise Vault server

SharePoint archiving could fail when custom list template had empty DisplayName attribute E2912639

Enterprise Vault could not archive documents from SharePoint libraries when all the following were true:

This has been fixed.

If you have experienced this problem then, after you install the hotfix, force the library to be updated as follows:

  1. Make a change to the existing policy that is associated with the library. For example, change the pruning setting to 999. Note the change so that you can undo it later.
  2. Run the archiving task or wait for the next run of the archiving task to complete.
  3. Change the policy back to its original setting.

'Performance Trace' log files were incomplete E2920002

The Enterprise Vault Administration Console 'Performance Trace' traces generated log files that did not show all time-related information.

This has been fixed.

Mailbox permissions for linked external accounts were not synchronized E2951309

In some circumstances, mailbox permissions for linked external accounts were not synchronized to the users' archives, with the result that users had no access to their archives.

This has been fixed.

Items archived from Exchange Server remained in Pending state E2958809

If a mailbox legacy DN had a NULL value, items that were archived from that mailbox remained in the Pending state.

This has been fixed.

EVSVR DatabaseReferences Repair operation could not fix SIS part records for items on a Hitachi Content Platform streamer device whose root folder path exceeded 37 characters E2970415

If the root path that you configured for a Hitachi Content Platform streamer device exceeded 37 characters, the EVSVR DatabaseReferences Repair operation could not fix certain records in the fingerprint databases and vault store databases for the items stored on the device. If you encountered this issue, the EVSVR log file would contain "Store Identifier mismatch" error messages like the following:

2012-05-17 06:36:48 Store Identifier: jnvs01/ptn17/11990A0753723546AD69AFDBBA084805/2012/May/03/c49416fe-cf15-4148-8c90-ddba700f216d/23_26_40/00621, Stored Date: 2012-05-11 14:48:37Z, Size (B): 44589
2012-05-17 06:36:48 File Type: DVSSP, File Identifier: F12E1D5706D1D13585830D987882B451~C6~05D7FC85~00~1, Archived Date: 2012-05-03 23:45:00Z
2012-05-17 06:36:48 Store Identifier mismatch, SISPart Store Identifier: EVJRNVaultStore01/EVJRNVaultStore01_Ptn017/11990A0753723546AD69AFDBBA084805/2012/May/03/c49416fe-cf15-4148-8c90-ddba700f216d/23_

The cause of the issue was a character limit on a SQL column that Enterprise Vault uses to store the URL to each saveset's storage location on the Hitachi Content Platform streamer device. A root path longer than 37 characters caused the URL to exceed the column limit and consequently be truncated. These truncated URLs prevented EVSVR from processing SIS parts effectively.

This has been fixed.

EVSVR DatabaseReferences Repair operation handled savesets with no associated index entries inefficiently E2970419

The EVSVR DatabaseReferences Repair operation would always check the index volumes when it recreated records in the fingerprint databases and vault store databases for savesets with no associated index entries, even if you unchecked the Require Index Entries box. This prolonged the operation unnecessarily.

This has been fixed. The Repair operation now only searches those index volumes where the missing item's archive date falls within the volume's archived date range.

Unable to retrieve items from a Hitachi Content Platform streamer device whose root folder path exceeded 37 characters E2970420

If the root path that you configured for a Hitachi Content Platform streamer device exceeded 37 characters, Enterprise Vault could not index, recall, and restore the items stored on it. The following errors in the Enterprise Vault event log were the most obvious signs of this issue:

Event Type: Error
Event Source: Enterprise Vault
Event Category: Storage Crawler
Event ID: 28944
Computer: EVSERVER
Description:
The 3rd party storage system application 'Hitachi Content Platform (HCP) Streamer' has logged the following message:
CStreamerObject::Read method failed
Reason = 0x80070002
ConnectionManager::Set_Curl_Operation method http://HCPStorage.mydomain.com/rest/VeryLongRootPathNameForHitachiTestDevice
/94618370CEA1E545AFDF5186F1604A8E/2012/May/03/7fd197f7-f12c-44ab-8653-0752c49f8b01/23_28
Reason = 404 : Not Found - opr_GETConnectionManager::Set_Curl_Operation method http://HCPStorage.mydomain.com/rest/VeryLongRootPathNameForHitachiTestDevice
/94618370CEA1E545AFDF5186F1604A8E/2012/May/03/7fd197f7-f12c-44ab-8653-0752c49f8b01/23_28
Reason = 404 : Not Found - opr_GET
Event Type: Error
Event Source: Enterprise Vault
Event Category: Storage Crawler
Event ID: 7083
Computer: EVSERVER
Description:
Retrieval of saveset failed.
Archive Id: 17309ED17DCB9B746931C1521D361D5061110000EVMBX01
Transaction Id: F0ECD449CD75B30B7FDCD645018E5691
Extended information: The system cannot find the file specified. (0x80070002)
Internal Ref: Vault/RI

The cause of the issue was a character limit on a SQL column that Enterprise Vault uses to store the URL to each saveset's storage location on the Hitachi Content Platform streamer device. A root path longer than 37 characters caused the URL to exceed the column limit and consequently be truncated.

This has been fixed. If you have previously encountered this issue, we recommend that you do the following:

  1. Use the HCP Data Migrator to move the data on your Hitachi Content Platform streamer device to a shorter root path.
  2. Use the EVSVR DeleteSurplusReferences Repair operation, and then use the EVSVR DatabaseReferences Repair operation.

EVSVR DeleteSurplusReferences Repair operation did not always handle SIS parts on streamer devices E2980053

When you ran the EVSVR DeleteSurplusReferences Repair operation against a partition on a streamer storage device, the operation would sometimes fail to delete orphaned SIS part records. If this issue arose, the message "The parameter is incorrect" would appear in the EVSVR log file.

This has been fixed. The DeleteSurplusReferences Repair operation now takes streamer-specific attributes into account when it verifies SIS parts.

Enterprise Vault Mobile Search

Mobile Search users received "Access Denied" message when index volume rollover occurred E2865000

When Mobile Search users searched an archive with multiple index volumes, the search failed with an "Access Denied" message.

This has been fixed.

Enterprise Vault Reporting

Vault Store Usage by Billing Account report did not correctly populate the Full Name column E2920015

The Vault Store Usage by Billing Account report did not correctly populate the Full Name column for each billing account.

This has been fixed.

Enterprise Vault Outlook Add-In

Vault Cache initial synchronization downloaded too many items E2919895

Enterprise Vault did not apply the Exchange Vault Cache setting Download item age limit correctly during the Vault Cache initial synchronization. It downloaded all items that had been archived in the calendar quarter in which the age limit fell.

This has been fixed. Enterprise Vault does not now download items older than the age limit.

Outlook 2010 could close unexpectedly when moving items between delegate mailboxes E2941625

An issue could occur with Outlook 2010 if a user was granted delegate access to another user’s mailbox, and they added the mailbox to their Outlook profile. When the delegate moved an item to the other user’s Inbox, Outlook closed unexpectedly.

This has been fixed.

Vault Cache incremental synchronization could fail to download some items E2986769

In some circumstances, Enterprise Vault did not download all items to the Vault Cache during an incremental synchronization. Enterprise Vault incorrectly used the age limit for the initial synchronization, which is set by the Exchange Vault Cache setting Download item age limit. If the age limit was after the last incremental synchronization, items that were archived between the age limit and the last synchronization would not be downloaded.

This has been fixed. After this hotfix has been installed, incremental synchronizations download all items that have been archived since the last synchronization.

Vault Cache initial synchronization sometimes displayed "Last synchronization was interrupted" message E2998345

If the Exchange Vault Cache setting Download item age limit was set to a value other than zero, a "Last synchronization was interrupted" message was incorrectly displayed after an initial Vault Cache synchronization, even though the synchronization had completed successfully. This occurred if the oldest calendar quarter within the age limit did not contain any items to download to the Vault Cache.

This has been fixed.

Compliance Accelerator server

Client users would sometimes retain permissions to perform actions in the Compliance Accelerator client after you revoked the permissions E2736708

In the following circumstances, a Compliance Accelerator client user would continue to have the Folder Delete permission on research folders after you had seemingly revoked it:

  1. You added the user to a Compliance Accelerator employee group.
  2. You gave the employee group a role whose permissions included the Folder Delete permission on departments and research folders.
  3. You removed the user from the employee group.

This has been fixed.

Compliance Accelerator client

Unable to change the "Sampling percentage" value of a scheduled search from a whole number to a fraction E2853452

After you saved the criteria for a scheduled search, you could not change its "Sampling percentage" value from a whole number to a fraction. For example, if you originally set the value to 10, you could not subsequently change it to 10.25. However, if the original value was a fraction then you could change it to another fraction, provided that you retained the period (.) in the original value and simply changed the numbers on either side of it.

This has been fixed.

Legal notice

Copyright © 2013 Symantec Corporation. All rights reserved.

Symantec, the Symantec Logo, the Checkmark Logo, Enterprise Vault, Compliance Accelerator, and Discovery Accelerator are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners.

This Symantec product may contain third party software for which Symantec is required to provide attribution to the third party (“Third Party Programs”). Some of the Third Party Programs are available under open source or free software licenses. The License Agreement accompanying the Software does not alter any rights or obligations you may have under those open source or free software licenses. Please see the Third Party Software file accompanying this Symantec product for more information on the Third Party Programs.

The product described in this document is distributed under licenses restricting its use, copying, distribution, and decompilation/reverse engineering. No part of this document may be reproduced in any form by any means without prior written authorization of Symantec Corporation and its licensors, if any.

THE DOCUMENTATION IS PROVIDED "AS IS" AND ALL EXPRESS OR IMPLIED CONDITIONS, REPRESENTATIONS AND WARRANTIES, INCLUDING ANY IMPLIED WARRANTY OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE OR NON-INFRINGEMENT, ARE DISCLAIMED, EXCEPT TO THE EXTENT THAT SUCH DISCLAIMERS ARE HELD TO BE LEGALLY INVALID. SYMANTEC CORPORATION SHALL NOT BE LIABLE FOR INCIDENTAL OR CONSEQUENTIAL DAMAGES IN CONNECTION WITH THE FURNISHING, PERFORMANCE, OR USE OF THIS DOCUMENTATION. THE INFORMATION CONTAINED IN THIS DOCUMENTATION IS SUBJECT TO CHANGE WITHOUT NOTICE.

The Licensed Software and Documentation are deemed to be commercial computer software as defined in FAR 12.212 and subject to restricted rights as defined in FAR Section 52.227-19 "Commercial Computer Software - Restricted Rights" and DFARS 227.7202, "Rights in Commercial Computer Software or Commercial Computer Software Documentation", as applicable, and any successor regulations. Any use, modification, reproduction release, performance, display or disclosure of the Licensed Software and Documentation by the U.S. Government shall be solely in accordance with the terms of this Agreement.

Symantec Corporation
350 Ellis Street
Mountain View, CA 94043

http://www.symantec.com