Change Guardian 6.3 includes new features, improves usability, and resolves several previous issues. Many of these improvements were made in direct response to suggestions from our customers. We thank you for your time and valuable input. We hope you continue to help us ensure that our products meet all your needs.
The documentation for this product is available on the Micro Focus website in HTML and PDF formats on a page that does not require you to log in. If you have suggestions for documentation improvements, click comment on this topic at the bottom of any page in the HTML version of the documentation posted at the Change Guardian Documentation page. To download this product and patches, see the Micro Focus Downloads website.
The following sections outline the key features and functions provided by this version, as well as issues resolved in this release:
Change Guardian enables monitoring the AD Query events which can provide information about:
LDAP queries that are run
Insecure LDAP binds
LDAP Connection Timeouts
Expensive and inefficient AD queries
For more information see, Configuring AD Query Monitoring (LDAP Query)
.
Change Guardian allows you to monitor success and failures for the following Active Directory Federated Services events:
Application token generation
Credential validation
Password update request
For more information, see Configuring Federation Service Monitoring
.
There are several updates to the list of operating systems that Change Guardian supports. For more information about supported platforms, see System Requirements for Change Guardian 6.3.
The release includes software fixes that resolve several previous issues:
Issue:Change Guardian fails to send attachment event data to Sentinel server as Event Destination. The VigilEntAgent log displays data corrupted messages in SQLite DB due to incompatible sqlite3.dll on the CG agent. (Defect 327496)
Fix: The SQLite library is updated to 3.38.5 on the CG agents.
Issue:CG server unable to handle changing IP addresses for the Windows agents. (Defect 566115 and Defect 604003)
Fix: Chane Guardian server displays dynamic Source IP addresses in event details for Windows agents.
Issue: Change Guardian Windows Agent fails to generate events if there is more than one .CEF file in the CEF Data Output Path location.(Defect 297099 and Defect 496265).
Fix: Change Guardian Windows Agent monitors the latest .CEF files in the CEF Data Output Path location.
Issue: After upgrading Change Guardian from version 6.1.x.x, the TLS 1.1 protocol used for communication by the Change Guardian is enabled.(Defect 609002)
Fix: TLS 1.1 is disabled and Change Guardian no longer supports TLS 1.1.
You can install Change Guardian 6.3 on supported platforms. For more information about the installation procedure, see Change Guardian Installation and Administration Guide.
You can upgrade to Change Guardian 6.3 from Change Guardian 6.2 or later. For information about the upgrade procedure, see Upgrading Change Guardian
in the Change Guardian Installation and Administration Guide.
Micro Focus strives to ensure our products provide quality solutions for your enterprise software needs. The following issues are currently being researched. If you need further assistance with any issue, please contact Technical Support.
Issue: When a user tries to import a license with file name containing space as a character, the file is invalidated and the import fails. (Defect 503025)
Workaround: Rename the file with a name without space.
Issue: When the cgadDisableExternalInitiatorHostLookup registry key is set to 0, Change Guardian does not display InitiatorHostName in Active Directory events.(Defect 324179 and 353068)
Workaround: Manually update the value of the cgadDisableExternalInitiatorHostLookup registry key to 1 and restart the Change Guardian Agent for Windows. If you reconfigure the Change Guardian Agent for Windows using AMS, the registry key value updates back to 0, in which case, you must manually update the registry key value to 1.
Issue: Change Guardian agent for UNIX does not display events for changes to /etc and /home files for RHEL 8.4, RHEL 8.6, and Oracle Linux 8.6 platforms. (Defect 637042)
Workaround: Monitor changes for the other file systems except /etc or /home files.
Issue: If a process is terminated within a second of its creation, the Change Guardian Agent for Windows cannot collect the command line details such as Command Line, Command Line Length, Command Line Parameter, and Command Line Parameter Length. Events that are generated for these processes do not display the command line details.(Defect 292163)
Workaround: None.
Issue: When you assign policies to Solaris UNIX Agent machine, the VigilEntAgent service may go down. (Defect 353077)
Workaround: When the server receives the next heartbeat, the Agent turns online and sends events normally.
Issue: When the Change Guardian appliance boots after installation, the appliance reports that some services have failed to start: (Defect 174273)
Failed to start LSB: NetIQ Javos. Failed to start LSB: NetIQ LDAP Expander. Failed to start LSB: Sentinel Server.
Workaround: The services start correctly. You can ignore such error messages.
Issue: The assembly path for certain Windows processes is not available to the Change Guardian Agent for Windows, due to which the agent cannot collect the Windows process description. Events that are generated as a result of such processes do not display the process description.(Defect 290154)
Workaround: None, it is the operating system limitation.
For information about Micro Focus legal notices, see https://www.microfocus.com/about/legal/
Copyright © 2023 Micro Focus or one of its affiliates.