Skip to content

Release Notes

Host Access for the Cloud version 2.7.0.3 released February 2022. These release notes list the features, notable changes, and known issues in this release. Host Access for the Cloud provides terminal emulation for 3270, 5250, VT, ALC, UTS, and T27 host types, while requiring only an HTML 5-capable browser.

Note

The End User License Agreement (EULA) is available in English, Spanish, French, Italian, and German in the <install location>\licenses directory.

Management and Security Server

Host Access for the Cloud version 2.7.0.3 released with Management and Security Server version 12.8.0.3

What’s New

All releases are cumulative and contain the features introduced in earlier releases. For previous versions, see HACloud Documentation.

Features and fixes include

  • Log4j library updated to version 2.17.1 to mitigate CVE 2021-44832. (2.7.0.3)

  • Log4j library updated to version 2.17.0 to mitigate CVE 2021-45105. (2.7.0.2)

  • Log4j library updated to version 2.16.0 to mitigate CVE-2021-44228 and CVE-2021-45046. (2.7.0.1)

  • Windows Authentication via Kerberos is now available for end users launching sessions via the session server (2.7)

  • Management and Security Server (MSS) has been made more secure by moving to HTTPS only. (2.7)

  • You can now easily reset the password to the metering service if forgotten. (2.7)

  • Communication from the Security Proxy to MSS when exporting settings has been upgraded to HTTPS. (2.7)

  • You now have the ability to add Subject Alternative Names to certificates while installing HACloud and MSS. (2.7)

  • TLS 1.3 is now supported and enabled. Clients that do not yet support TLS 1.3 will fall back to TLS 1.2. (2.6.1)

  • The ability to Cut text, similar to Copy and Paste, has been added to the HACloud Web Client. (2.6.1)

  • Support is now available for Plus AutoTab and TabOrder. These features provide greater control over cursor tabbing behavior on Plus decorated screens. (2.6.1)

  • A wait.forHostSettle method has been added to the Web Client macro API, Windows Connector API and the JavaScript API. (2.6.1, 2.7.0)

Changes in Behavior

  • MSS has moved to use HTTPS exclusively to increase security. HTTP has been disabled on all endpoints. In upgrades, where session servers had been configured to access MSS, Metering or the Terminal ID Manager (TIDM) over HTTP they will need to be updated to use the HTTPS port in container.properties. (2.7)

  • TLS 1.0, TLS 1.1 have been removed. Both TLS 1.3 and TLS 1.2 are now available. HACloud Sessions that were previous configured for "TLS 1.2 - TLS 1.0" (in Connection Settings) will be updated to "TLS 1.2" the next time they are updated by an administrator (2.7)

  • As a result of updated encryption libraries, customers who use headless server-based installations may experience system delays if system entropy is too low. Insufficient entropy may lead to the installation process hanging or degraded server performance. Some platforms already install and enable an entropy service by default, and the issue will not be noticed. If needed, a hardware or software solution can remedy the issue. See the Knowledge Base article, Ensuring Sufficient Entropy to Avoid System Delays. (2.6.2)

  • When launching an HACloud session from the Assigned Sessions List, a new session is now opened each time a session is selected, even if a session by that name is already open. (2.7)

Known Issues

Micro Focus Technical Support is always available to help you with any issues you may encounter in Host Access for the Cloud.

  • NTLM - Customers using Single Sign-on through Windows to authenticate to Host Access Management and Security Server (MSS) are subject to the Netlogon Elevation of Privilege Vulnerability (CVE 2020-1472). See the MSS Release Notes for more information. With the addition of Kerberos support, NTLMv2 support will be removed in an upcoming release.

Unresolved issues from previous releases are listed in Technical References.

Release Tracks

Host Access of the Cloud provides the following release tracks for you to choose from depending on your needs.

Long-Term Support Release

  • Recommended for all customers.

  • Only receives critical security updates. No new features.

  • Release cadence is approximately once per year.

  • Version numbering example: 2.7

Incremental Release

  • Recommended for customers interested in the latest features.

  • Contains major changes - new features and bug fixes.

  • No patches / updates will be provided.

  • Security updates are obtained by upgrading to the next Incremental or Long-Term Support Release.

  • Release cadence is approximately four to six times per year.

  • Each Incremental Release is a step toward the next Long-Term Support Release.

  • Version numbering example: 2.7.1

Contacting Micro Focus

For specific product issues, contact Micro Focus Support.

Additional technical information or advice is available from several sources:

For information about legal notices, trademarks, disclaimers, warranties, export and other use restrictions, U.S. Government rights, patent policy, and FIPS compliance, see https://www.microfocus.com/about/legal/.

© Copyright 2021 Micro Focus or one of its affiliates

The only warranties for this product and any associated updates or services are those that may be described in express warranty statements accompanying the product or in an applicable license agreement you have entered into. Nothing in this document should be construed as creating any warranty for a product, updates, or services. The information contained in this document is subject to change without notice and is provided “AS IS” without any express or implied warranties or conditions. Micro Focus shall not be liable for any technical or other errors or omissions in this document. Please see the product’s applicable end user license agreement for details regarding the license terms and conditions, warranties, and limitations of liability.

Any links to third-party websites take you outside Micro Focus websites, and Micro Focus has no control over and is not responsible for information on third party sites.