Host Access Management and Security Server - Release Notes

January 2022

Management and Security Server (MSS) version 12.6 SP1 HF1 ( released with Reflection for the Web 13.1 HF9.

1.0 MSS 12.6 SP1 Hotfix 1

released January 2022

  • Updated log4j to 2.17.1 to mitigate multiple vulnerabilities

2.0 Introduced in MSS 12.6 SP1

released April 2020

Management and Security Server 12.6 SP1 released with Host Access for the Cloud version 2.5.

All releases are cumulative, and contain the features introduced in earlier releases. See What’s New since 12.6.

2.1 Features and Fixes

  • Added the ability to upload certificates into MSS trust stores via the Administrative Console (12.6 SP1). Uploaded certificates are automatically replicated to all servers in the cluster. See Trusted Certificates for details.

  • Resolved Security Vulnerability CVE-2020-1938. See 7024547 for details (12.6 SP1)

  • Improved and simplified the Clustering configuration and workflow (12.6.3)

  • Added a configurable temp directory (12.6.3)

  • Increased security of stored passwords in MSS (12.6.3)

  • Removed the dependency on Java in the browser for Reflection Desktop administrators (12.6.2)

  • Multiple bug fixes and security updates

2.2 Changes in Behavior and Usage

These changes may affect your existing installation of Management and Security Server.

  • The Clustering workflow is consolidated in a single user interface (12.6.3)

    Clustered servers are considered peers (no Master or Slave roles) that can be managed from one server's Administrative Console. See the Clustering help for details, including Upgrading replicated servers.

  • SAML assertions must be signed (12.6.2)

3.0 Known Issues

If you encounter issues with Management and Security Server 12.6 SP1, contact Micro Focus Support.

4.0 Contacting Micro Focus

Check these online resources.

For specific product issues, contact Micro Focus Support.