Please Read: Before starting the Control Center upgrade/uninstall process, you must backup the entire "conf" directory found under Control Center install location. Please follow the steps below before upgrading: The following instructions apply to maintenance upgrades. 1. Copy CCInstall64.exe or CCInstall64.bin to a temporary location on the server where Control Center is installed. - If you are upgrading from a pre-6.2.1.0 release to 6.2.1.0 (i.e. upgrading FROM 5.4.2.2 through 6.2.0.0 TO 6.2.1.0), the initial upgrade to 6.2.1.0 cannot be a rolling upgrade. You must bring down all EPs and upgrade each EP to 6.2.1.0 before starting any of the EPs again. All EPs must be in sync for the initial upgrade to 6.2.1.0, before being started. After the initial upgrade to 6.2.1.0, you may resume with rolling upgrades (eg. 6.2.1.0 to 6.2.1.0 iFix01), where one EP is brought down at a time, upgraded, then restarted. 2. Back up the existing configuration data: If upgrading from 5.4.2.2 or prior, back up \conf directory found under Control Center install location. Backup your Control Center database. If upgrading from 6.0.0.0 or later, run exportConfig.sh/bat under \bin. The script creates a folder with all of the configuration data from the database and the conf folder. The location of this folder is conf-exported/{date_time}/conf. As per your need, for recovery purpopse, backup your existing Control Center database. 3. Proceed normally with installing the latest version of Control Center in original . (The installer would automatically un-install the previous version - but all of the configuration data will still be there). 4. Run configCC.sh 5. Start the Control Center engine. 6. Ensure the engine starts, and a user can login to the Control Center web console and access the links in the hamburger menu, including "Launch Classic Console". -------------------------------------------- 6.2.1.0 iFix11 (Released 2023-03-14) 1. IT43067/TS011876151/MFT-14008 (2023-01-31) Description of issue: Control Center healthStatus api endpoint returning incorrect data. We are wanting to utilize the healthStatus endpoint (/sccwebclient/svc/healthStatus) in the Control Center api to integrate Sterling health data in our dashboard and we are noticing that the server data number for "down" (inactiveNum property in the api response) is being returned in the "warningNum" property instead. I've attached a sample response with corresponding screenshot from the Control Center dashboard. You'll see in the screen shot for the "Adapter" category that there are 72 down but the response shows 72 in the warningNum property whereas the "Perimeter" category shows 4 warning and, correctly has 4 in the warningNum. Description of issue: Corrected logic for stopped server count. 2. LS-194 (2023-02-02) Description of issue: When using CCD to copy an existing user-id to a new user-id the Functional Authorities gets stuck on Directory as the Web Client does not like for the values from the original user. You can not advance past this screen without removing all the from each Directory type. Also, On CD Unix Netmap entries also show some . For User Proxy, on the Main page we are seeing . Description of issue: Replace with empty string. 3. IT43068/TS011373252/MFT-13896 (2023-02-03) Description of issue: With this new version of browser-based control center, the most items that can be displayed at one time is 50 per page. Is there a way to regain the old functionality of seeing everything on one page? Description of issue: Changed page count selections from (10/20/30/40/50) to (50/100/150/200/250/300/500). 4. IT43096/TS011971789/MFT-14039 (2023-02-07) Description of issue: configCC fails when attempting to upgrade to newer MSSQL JDBC driver(s). Please add support for all MSSQL 9.2, 9.4, 10.2, 11.2 and 12.2 JDBC drivers. Description of fix: Added support for all current MSSQL JDBC drivers. NOTE: The very first time when upgrading an existing Control Center installation to use mssql-jdbc-10.2.0.jre8.jar or above, you must specify yes to configCC question to re-enter the database information. This causes the connection url in both /conf/system/services/JDBCService.xml and /web/ccbase/webapps/application.properties to be updated with an additional required parameter in the connection URL string (trustServerCertificate=true). 5. MFT-13866 (2023-02-14) Description of issue: Required changes to address Node.js Angular vulnerability CVE-2022-25844 - CVSS 5.3 - Potential Denial Of Service. Description of fix: Removed the affected code, which is not required for production execution. 6. MFT-14077 (2023-02-16) Description of issue: While copying a Netmap entry to more than one server, even though a server group is selected, it forces the user to select servers. Description of fix: Corrected logic to enable the Next button, allowing continued navigation if a server group is selected. 7. MFT-14079 (2023-02-21) Description of issue: When netmap entries are selected across multiple pages, only the last selection is remembered (i.e. Web UI - Control Center Director >> Configuration >> Netmap Entries). Description of fix: Corrected logic to preserve all selections on previous pages. 8. IT43199/TS011674235/MFT-14091 (2023-02-23) Description of issue: Running the node configuration report for netmap nodes output empty reports. Description of fix: For each report the logic acquired the service XML data for each server whose netmap nodes were to be included. The logic that processed the service XML data was failing due to data it included so the processing logic was updated to avoid the issue that was occurring. 9. IT43207/TS012054632/MFT-14064 (2023-02-23) Description of issue: Not able to generate an alert through ICC rest API. We are trying to create the Actions from the Rest API ICC. (https://server-id:58083/sccwebclient/svc/actions/) but we are getting the following error: { "errorCode": 405, "errorDescription": "Method not allowed" }. Description of fix: Corrected Actions Services url to specify actiongroups, instead of actions (i.e https://server-id:58083/sccwebclient/svc/actiongroups/). 10. IT43241/TS012221989/MFT-14119 (2023-02-28) Description of issue: Event element SSP.adapter not set for CSSP015I, and other, related, events. Description of fix: Corrected logic to set SSP.adapter. It was set for SSP data gotten via MQ, but not via OSA. Now it is set for both. 11. LS-201 (2023-02-28) Description of issue: Request by Support to list out the certificates in the keystore and truststore in the engine log during startup to help with quicker diagnosis of certificate related issues. Description of fix: Added logic to display requested certificate information in engine log. 12. LS-212 (2023-03-01) Description of issue: INFO lines started appearing in Engine logs that have no meaning (i.e. "INFO Node - xxxxxxx"). This was due to a test debug message erroneously left in CDJAI.jar. Description of fix: Upgraded CDJAI.jar to 2.6.24 (from 2.6.19). 13. IT43289/TS012075245/MFT-14112 (2023-03-01) Description of issue: Valid initialization parameters and values are erroneously flagged as invalid, and Connect:Direct UNIX initialization parameter values are not allowed to be continued across multiple lines. Description of fix: The initialization parameter parsing and validation logic was updated, and the initparmValidation.properties data was changed as follows: • Updated ZOS.IMMEDIATE.SHUTDOWN = SELECTION [I|R]|[I,0-999]|[R,0-999] • Updated ZOS.STAT.TPREC = SELECTION [,,1-60]|['TIME 8',,1-60]|[,'TIME 8',1-60]|['TIME 8','TIME 8',1-60] • Added ZOS.TCP.FMH.TIMER.RETRIES = RANGE 1-100 • Replaced ZOS.ZIIP.EXTCOMP.DATASIZE with ZOS.ZIIP.EXTCOMP.DATASIZE.THRESHOLD = RANGE 512-65536 • Updated UNIX.options = SELECTION []|['STRING',...20] (Note Also requires parser update to validate) • Added UNIX.recv.file.open.perm = RANGE 0 - 999 • Added UNIX.recv.file.open.ovrd = SELECTION y|Y|n|N|p|P • Added UNIX.fsync.after.receive = SELECTION y|Y|n|N • Updated UNIX.license.edition = SELECTION [PREMIUM|premium|Premium|STANDARD|standard|Standard|SOLO|solo|Solo] • Updated UNIX.license.type = SELECTION PRODUCTION|production|Production|NON-PRODUCTION|non-production|Non-Production|Non-production • Added UNIX.license.vpc = RANGE 0-2147483647 • Added UNIX.agent.installation_id = SELECTION []|['STRING'] • Updated UNIX.osa.rest.url = SELECTION []|['URLSEMI'] (Note Also requires parser update to validate) • Updated UNIX.osa.disable = SELECTION []|y|n|Y|N • Added UNIX.installer.location = STRING 1024 • Added UNIX.cd.backup = STRING 1024 • Added UNIX.agent.backup = STRING 1024 • Added UNIX.emergency_restore.installers = STRING 1024 • Added UNIX.process.dir = STRING 1024 • Added UNIX.trusted.addr = SELECTION []|['STRING',...8] • Added WIN.password.exit.dll = SELECTION |'STRING' • Added WIN.password.exit.hash = SELECTION |'STRING' • Added WIN.password.exit.appl.id = SELECTION |'STRING' • Added WIN.password.exit.policy.id = SELECTION |'STRING' • Added WIN.password.exit.url = SELECTION |'STRING' • Added WIN.instance.id = STRING 255 • Added WIN.trusted.addr = SELECTION |'STRING',...8 • Updated WIN.license.edition = SELECTION PREMIUM|premium|Premium|STANDARD|standard|Standard|SOLO|solo|Solo| • Updated WIN.license.type = SELECTION PRODUCTION|production|Production|NON-PRODUCTION|non-production|Non-Production|Non-production| • Updated WIN.agent.installation_id = SELECTION |'STRING' 14. MFT-14126 (2023-03-05) Description of issue: Required Apache commons-fileupload upgrade to address CVE-2023-24998 - CVSS 7.5 - Potential Denial Of Service. Description of fix: Upgraded to commons-fileupload-1.5.jar (from commons-fileupload-1.3.3.jar). 15. MFT-14145 (2023-03-07) Description of issue: i5 SQL statement cannot be run successfully - An internal object limit has been exceeded. Description of fix: Removed use of prepared statements and initialized driver to not use stored procedures to obtain database metadata. -------------------------------------------- 6.2.1.0 iFix10 (Released 2023/01/31) 1. MFT-13794 (2022-11-14) Description of issue: Request to add Server Address, Port and Protocol columns to Server Inventory report. Description of fix: Added columns to the report. 2. IT42578/TS011087400/MFT-13814 (2022-11-22) Description of issue: Unable to update netmap entry in CCD when sess.pnode.max=0 (i.e. Navigated to CCD >> Configuration >> Netmap >> click on CD Unix node >> Click on update button and update the Max pnode session to 0, the next button is greyed out). Description of fix: Corrected web UI to allow sess.pnode.max=0 3. IT42579/TS011237194/MFT-13864 (2022-11-23) Description of issue: CCD - Certificate Label from Secure+ nodes parameter is missing from Configuration tab of Web Console (i.e. Login to the CCD Web console >> Configuration >> Secure+ >> Nodes >> Select the node from where you want to copy the secure+ configuration parameter >> Click node from where you want the parameter to be copied >> next screen on the General Detail page all the parameters are present, except the Certificate Label. Description of fix: Added Certificate Label. 4. LS-161 (2022-11-25) Description of issue: When the Control Center database is partitioned, the option to "Begin Moving Data" by minutes should be greyed out and only allowed for running daily (i.e. hamburger menu (upper right) >> system settings >> Database). This is how the Classic Console functioned in 6.1.3.0. Description of fix: Corrected logic to grey out "Run Every nn Minutes", when database is partitioned. 5. IT42652/TS010175530/MFT-13564 (2022-11-25) Description of issue: Unable to apply Search Events criteria from Monitor Tab. Multiple issues need to be addressed: -When selecting a search parameter, two keys don't have correct text mapped, ccm.serverLabels.eventTypeDescr and ccm.serverLabels.shortMsg. -When selecting criteria, NodeID, Equals, only shows CD servers. No B2B or other nodes are selectable. -When selecting criteria, numeric values like Event Type should include "Not Equal To" value. -When selecting criteria, for numeric values like Event Type, you should be able to select the same key twice. Currently, this returns an error. -Log Date/Time is selected for display, but is not displayed in the results. -Event Type is selected for display, but has two columns in results, one numeric and one string value. It is shown once when selecting columns, but twice when ordering columns. -When selecting Event Search from a server overflow menu, the NodeID is pre-populated. If I edit nodeId criteria, the same value appears in Servers and Selected Servers. -Results displays only 1 page of max 50 items, instead of multiple scrollable pages. -Sorting on column does not work (tried on 4-5 columns: Event Type/Message ID/Message Text/etc.) Description of fix: Corrected above issues to allow proper Event Search selection/display. 6. IT42664/TS011314933/MFT-13885 (2022-12-06) Description of issue: Only CD Unix Servers are exporting, when using the exportCDServersFromICC utility. Description of fix: Changed the default behavior to export all CD servers (instead of only CD Unix servers). 7. TS010542156/MFT-13664 (2022-12-06) Description of issue: Server monitoring stops. Description of fix: Additional changes made to prevent database connection "leaks" from happening when database outages occur. First changes made for same case and defect made in iFix09. 8. IT42663/TS011332610/MFT-13893 (2022-12-07) Description of issue: Errors occur when copying Secure+ nodes and Netmap nodes. Description of fix: Instead of passing fips.enabled=Disabled for Secure+ nodes, fips.enabled=N is passed. Instead of passing tcp_crc=D for Netmap nodes, tcp_crc=N is passed. 9. IT42680/TS011384059/MFT-13899 (2022-12-07) Description of issue: When using Chrome to open the web console, it's difficult to detect the vertical and horizontal scroll bars. They are very thin and light-colored. Because of this, it is difficult to land the mouse pointer on the scroll bar in order to scroll. Description of fix: Changed the color and width of the scroll bar to make it darker and wider for easier access. 10. MFT-13900 (2022-12-09) Description of issue: Required IBM JRE upgrade to address CVE-2022-21626 - CVSS 5.3 - Potential Denial Of Service. Description of fix: Upgraded from 8.0.7.15 to 8.0.7.20. 11. MFT-13901 (2022-12-09) Description of issue: Required IBM JRE upgrade to address CVE-2022-3676 - CVSS 6.5 - IBM Java OpenJ9 could allow a remote attacker to bypass security restrictions Description of fix: Upgraded from 8.0.7.15 to 8.0.7.20. 12. IT42782/TS011323917/MFT-13907 (2022-12-12) Description of issue: When clicking Jobs Properties in CCD Configuration, (eg. secure+ node, the screen is mostly blank). Navigation path: CCD >> Configuration >> Configuration Jobs >> Queued jobs >> Jobs Properties. Description of fix: Added guard code to check for null to prevent the bad display. 13. MFT-13913 (2022-12-12) Description of issue: Missing certificate expiry date in trust certs report. Description of fix: Added certificate expiry date to Secure+ Trusted Certificate Report. 14. LS-183 (2022-12-15) Description of issue: Configure Jobs search defaults should be changed. The default choices without out going into advance search areJob Name, Job Description, Server IDs, Operation Type. Job Description and Operation Type should be removed, and Job ID and Return Code should be added instead to make the defaults available. Job ID Job Name, Return Code, Server IDs. Description of fix: Changed default search criteria. 15. TS011370588/MFT-13925 (2022-12-23) Description of issue: Node configuration jobs never run when using Oracle RAC. Description of fix: Oracle DB sequences for Control Center were not defined with ORDER specified, so they were, by default, NOORDER, which could cause the cluster event ID values to be out of order, resulting in the Control Center EPs never processing them. And if that happened for a cluster event related to a new node configuration job, that job would not run and stay queued forever instead. Running configCC after upgrading an existing CC instance will correct the sequences by altering them to be ORDER, not NOORDER. Newly installed CC instances will have their sequences defined correctly with ORDER. 16. IT42818/TS011524146/MFT-13926 (2022-12-23) Decription of issue: Copy to parms, for S+ nodes, doesn't allow cipher suites to be copied, so each server must be updated, one at a time. Description of fix: Added cipher suites to Copy parameter selection list. 17. MFT-13949/TS010771377/MFT-13742 (2022-12-23) Description of issue: CCM/CCD Unable to monitor when CD's password has "|"(pipe) symbol/special character. Description of fix: Upgraded Control Center with latest CDJAI.jar which now supports the special character. 18. IT42819//TS011524146/MFT-13928 (2022-12-26) Description of issue: Have to click multiple times on Select from list on Secure+ Netmap. Description of fix: Corrected GUI logic to properly require one click as expected. 19. IT42820/TS011370588/MFT-13930 (2022-12-26) Description of issue: Queued Job View is getting an error and not displaying. Description of fix: Added guard code to prevent the null exception which caused the display error. 20. LS-163 (2022-12-27) Description of issue: Install of CDU from CCD is failing. Description of issue: Updated script installCD.sh to set required permissions for cdCertAuth.pem, PrivateKey.pem, cdCert.pem. 21. IT42822/TS011113910/MFT-13938 (2022-12-28) Description of issue: From the CCD web screens it is not possible to blank out the password. Customer was trying to change from user-id & password to TLSv1.2 certificate based log on. Description of fix: Corrected logic to allow password to be blanked out for certificate based logon. 22. LS-184 (2022-12-29) Description of issue: Signing into the Web Console often gets a spinning wheel for too long. Description of fix: Corrected some internal global constants which resolved the issue. 23. IT42840/TS011524146/MFT-13927 (2023-01-03) Description of issue: "Secure+ Nodes / Copy Parameter to" screen does not list the target server entries in alphabetical order. Description of fix: Corrected sorting logic to ensure servers are listed in alphabetical order. 24. IT42858/TS011524146/MFT-13920 (2023-01-05) Description of issue: Changing Netmap Secure+ entries from the Web Console is not keeping the value for the Protocols when changing other properties like certificate label. Description of fix: Corrected some checks to allow for all use cases of protocol list with and without enclosing parenthesis. 25. LS-173 (2023-01-05) Description of issue: We have had a few recent cases of customers running 6.2.1.0 iFix07 and the Jetty Server is running out of memory. Would be nice to track how memory is working in the Web Console like we can in the Engine. Description of fix: Added Web Memory collection to the CC Metrics. Default values are 100 MB as a bad value and 500 MB as a good value for jetty free memory metric. 26. IT42929/TS01152414/MFT-13979 (2023-01-16) Description of issue: "Secure+ Nodes" screen displays "disabled" in Enabled Protocol column, but "Update Secure+ Node" screen radio button is set to "Select from the list" instead of set to "None". Description of fix: Corrected radio button "None" to be set when protocols are disabled. 27. IT42926/TS011370588/MFT-13932 (2023-01-17) Description of issue: As we scroll thru the list of servers in "Secure+ Nodes" drop down, refreshing is occurring (the screen can go blank, and sometimes you see the spinner). Description of fix: Corrected logic to prevent refresh while scrolling through the drop down list. 28. IT42927/TS011610574/MFT-14001/MFT-13944 (2023-01-17) Description of issue: Server inventory report is not able to produce correct data for OSA servers. Description of fix: Corrected logic which obtains OSA server details and displays in report. 29. LS-174 (2023-01-17) Description of issue: We should have a stand alone program using CDJAI to make connections to Connect Direct servers were we can do tracing and TLS tracing easily for a single server definition without having to turn on handshake tracing on the entire Control Center. Description of fix: Created a standalone program to test secure connections to CD servers. The program is executed by running script testSecureConnectionToCD.bat|.sh =================================================================================================== Inputs for the script: Argument Required/Optional Description -------- ----------------- ------------- cdhost Required This is running Connect:Direct host IP cdport Required This is running Connect:Direct port protocol Required TLS, TLS1.1, TLS1.2 keystore Required Keystore file in JKS format keystorepwd Required Keystore password truststore Required Truststore File in JKS format truststorepwd Required Truststore Password networktracing Required This is used for enabling the java network tracing Y/N cduser Optional CD user id How To Run: The location for the testSecureConnectionToCD script is: /bin directory. It accepts input in two ways. 1. User can provide all inputs in command line such as: - C:\IBM\bin>testSecureConnectionToCD.bat cdhost=111.111.111.111 cdport=1363 protocol=TLS1.2 keystore=C:\CCenter.keystore keystorepwd=changeit truststore=C:\CCenter.truststore truststorepwd=changeit networktracing=Y 2. User can provide all inputs via prompts such as: C:\IBM\bin>testSecureConnectionToCD.bat ----------------------------------------- *** Checking Secure connections to CD server... *** ----------------------------------------- Current time is 01/18/2023 23:53:13.92 Please provide the node connection information Enter host address: 111.111.111.111 Enter api port: 1363 Enter protocol: TLS1.2 Enter user id: Enter keystore path: C:\CCenter.keystore Enter keystore password: ******** Enter truststore path: C:\CCenter.truststore" Enter truststore password: ******** Do you want to enable java network tracing press: Y/N Y The script provides appropriate messages in case required inputs are not supplied. Note: userId is an optional field. When connection is successful with Connect:Direct server, then user will get such as below screen output: Node Connected Successfully! Node Tracing Status: true Node Tracing ON Successfully! Signed on to Connect:Direct for Windows, Version = 6102000, Server name = NODE123 Press enter to continue: =================================================================================================== 30. IT42928/TS011370588/TS011741514/MFT-13967 (2023-01-17) Description of issue: Number of servers is limited to 20. In Control Center Director under the Configure Servers tab, when viewing our servers in Netmap entries, or in Secure Plus Entries, we're needing to do an advanced search to find servers. This is due to when the Web UI is pulling back the servers in the server drop down, the permissions API call (Request URL: https://xxxxx.yyyyy.com:58083/api/v1/config/permissions) is limiting the returned servers to 20 in its payload. Would it be possible to increase this count to say 50? Description of fix: Increased limit to 50. 31. IT42962/TS011774556/MFT-13971 (2023-01-23) Description of issue: CCM Invalid connection username after upgrade to 6.2.1. For a Windows node that does not support Secure+, we specify a userid in format 'userid@domain'. It appears that CCM 6.2.1 no longer accepts the '@' separator hence 'userid@domain' is now invalid. Description of fix: Corrected user name validation routine to allow @ character. 32. IT42963/TS011674235/MFT-13982 (2023-01-23) Description of issue: Standard reports (e.g. NetmapNodes) are not running for customer after upgrading from 6.2.0.0_iFix18 to 6.2.1.0_iFix09. If customer selects a few CD server then reports work. But these are scheduled reports for customer and customer has selected All CD server in Server Groups and not selected any server under Servers section. This was caused by a NullPointerExcetion. Description of fix: Added guard code to prevent NullPointerException. -------------------------------------------- 6.2.1.0 iFix09 (Released 11/11/2022) 1. IT42314/TS009978877/MFT-13500 (2022-09-21) Description of issue: No option to Disable Security Mode for Secure+ in the CCD web UI (i.e. Configuration Tab > Secure+ > Nodes > Click on .Local > Click on Update > Advanced > Security Mode drop down is missing "Disabled") Description of fix: Added Disable option to drop down menu. 2. LS-129 (2022-09-22) Description of issue: Default values for recordLimit and siRecordLimit in CCEngineService.xml are not optimal for most customers. Description of fix: For new installations of Control Center the recordLimit default is down to 2499 from 4999 and the siRecordLimit default is up from 4999 to 9999. 3. IT42131/TS010557381/MFT-13680 (2022-09-22) Description of issue: Exception trying to delete FILE_COUNTS data. Description of fix: Logic wasn't passing date in appropriate format for SQL used to do purging for all database types supported by Control Center and that has been rectified now. 4. IT42185/TS010712778/MFT-13716 (2022-09-25) Description of issue: runEngineCold.sh is missing variable definition NOHUP_PATH used do direct nohup.out to either /bin or /log (on-premise or container environments respectively). Description of fix: Corrected the script. 5. MFT-13692 (2022-09-25) Description of issue: Required IBM JRE upgrade to address CVE-2021-2163 - CVSS 5.3 - When JAR files signed with SHA-1 are disallowed (now the default behaviour), they may not be rejected in some circumstances. The fix ensures that JAR files signed with SHA-1 are always rejected when SHA-1 is disabled via the jdk.security.legacyAlgorithms security property. Description of fix: Upgraded from 8.0.7.11 to 8.0.7.15. Security Bulletin: 6. MFT-13718 (2022-09-26) Description of issue: cdbrowser.xml missing classpath entries, causing cdbrowser start failure. Description of fix: Added missing classpath entries. 7. MFT-13684 (2022-09-26) Description of issue: When newly discovered CD servers were added that had time zones not currently in the time zone database table CC_TIMEZONES they were not added to the list of time zone choices until Control Center was restarted. Description of fix: When new time zones are added a cluster event is now generated, and logic was added to process those time zone cluster events to essentially update the list of time zones that are available for use. 8. MFT-13713 (2022-09-27) Description of issue: While MFT-12594 addressed the problem of not being able to see the row count in CC_PROCESS and CC_FILE_TRANSFER, the values were only accurate at EP startup. As rows were added, and removed, during runtime the counts were not adjusted. Description of fix: Logic added to adjust the row counts shown as the system runs, with some caveats. Each EP only knows what it has added to the table and those counts, added to the initial values, are what will be displayed to users. So the problem has only been partially addressed, but it has been done this way in the interest of performance. Obtaining row counts from large database tables is onerous and has been avoided with the solution applied for getting ongoing added rows. 9. IT42182/TS010496105/TS010748334/MFT-13727 (2022-09-29) Description of issue: Control Center is sending a userid and password to CD when not configured. Description of fix: Change was made to delete the password associated with a monitored server when the definition is updated without a user ID. Note if it is desired to change the connection for a monitored Connect:Direct server from non-secure to secure, but continue to send a user ID value other than the EP's host address, then two updates must be done. The first update would be to change the protocol from TCP/IP to a secure one, and to omit the user ID. This tells the EP to remove any password currently defined for the server. And the second update would be to specify the user ID to be used when making a secure connection. 10. LS-156 (2022-09-29) Description of issue: Trying to add a filter to the Events screen is giving and ERROR A system error has occurred. Please contact your system administrator. Following is top of resulting stack trace error found in //web/wlp/usr/servers/defaultServer/logs/application.log: [8/4/22 14:28:12:835 UTC] 00002fae id=00000000 SystemOut O [ERROR] 2022-08-04 14:28:12.834 [LargeThreadPool-thread-478] com.ibm.tenx.ui.page.Page {} - java.lang.NumberFormatException: For input string: "Xml" java.lang.NumberFormatException: For input string: "Xml" at java.lang.NumberFormatException.forInputString(NumberFormatException.java:76) ~[?:2.9 (01-04-2022)] at java.lang.Integer.parseInt(Integer.java:592) ~[?:2.9 (01-04-2022)] Description of fix: Corrected filter logic to check for string numeric value. 11. IT42197/TS010757774/MFT-13731 (2022-10-03) Description of issue: Threads for scheduled automated reports, SLCs, and more, stopped functioning because they were all were waiting on a database connection. Description of fix: Control Center uses two database pools, but one had a maximum that could not be increased, nor would automatically change based on the number of servers being monitored. And when the database connection pool limit is reached, in can cause problems. So the default limit for the fixed pool has been doubled to 200, and a new property, MAX_10X_DB_CONNECTIONS, may be added to the runEngine script to change/increase the default. 12. MFT-13746 (2022-10-06) Description of issue: A Connect:Direct copy terminiation statistic with a non-printable character resulted in an EventMonitor error "Exception occurred converting XMLString to notification", which causes the event to not be passed to the SLC service for evaluation. Description of fix: The CERT value in Connect:Direct statistics is now passed to the "stripNonValidXMLCharacters" method before being included in events that are constructed from them. 13. IT42225/TS010166658/MFT-13744 (2022-10-07) Description of issue: Summary data not always appearing in Sterling File Gateway reports that should have it. Description of fix: Problem seemed to be caused by null pointer exceptions caused for various reasons. Additionally, it was seen that a second database connection was gotten to get the report data, causing the first connection that should have been used to never be freed. This results in deadlocks throughout Control Center if all the database connections from the pool reports, and other services - including node services, get them from are consumed. 14. LS-165 (2022-10-10) Description of issue: No option to delete SSP and GM servers from the Web Console UI added dynamically via OSA. To delete those OSA-added servers (SSP and GM), you need to log in to JAVA/Swing/Classic Console and navigate to Server groups and then right-click on the server you want to delete. Description of fix: Added remove server option in web UI OSA server list. 15. IT42306/TS010557501/MFT-13671 (2022-10-10) Description of issue: Multiple reports identified as not true csv format, as they contain headers, trailers and extra delimiters. Description of fix: Corrected the following reports to remove headers, footers, extra delimiters. -Sterling B2B Integrator Process Detail -Sterling B2B Integrator Process Summary -Sterling B2B Integrator File Transfer -Sterling B2B Integrator Mailbox Report -Size Of Files Over Time Report -Number Of Files Over Time Repor -Events by Date Report -Events by Date and Event Type Report -Events by Date and Server Report -Events by Date and Hour Report -Events by Date and Server Type Report -Events by Date-Hour and Server Report -Events by Date-Server and Event Type Report -Sterling Connect : Direct Configuration Changes Audit Report -IBM Control Center Configuration Changes Audit Report -Sterling Secure Proxy Configuration Changes Audit Report -Alerts Report -Monthly File Transfer Activity Report -Server Inventory Report -Server Status Report -Service Level Criteria Summary Report -User Role Summary Report -Sterling Connect:Direct Configuration Changes Audit Report -Connect:Direct File Agents Versions Report -Sterling Secure Proxy Configuration Changes Audit Report 16. IT42305/TS010557449/MFT-13730 (2022-10-10) Description of issue: Size Of Files Over Time Report and Number Of Files Over Time Reports are only showing first 12 char of the Server Name. Description of fix: Corrected reports to display full server name. 17. IT42250/TS010166658/MFT-13762 (2022-10-11) Description of issue: Summary data not always appearing in Sterling file Gateway reports that should have it. Description of fix: Summarized all producers instead of only those whose name contained the string "producer". 18. MFT-13764 (2022-10-12) Description of issue: CDJAI-InputStream that is used to open cdjai.properties is not closed, resulting in multiple instances of the file to remain opened. Description of fix: Upgraded CDJAI.jar 2.6.12, which contains the fix to properly close the cdjai.properties file. 19. MFT-13697 (2022-10-12) Description of issue: CCM WebConsole not accessible via Secure port if initially Keystore/Truststore file was used as same and later truststore file is change by running configCC. Description of fix: Corrected engine/web startup initialization logic to properly set keystore and truststore location. 20. CC-10273 (2022-10-12) Description of issue: Not able to export Roles data Description of fix: Corrected web UI logic to properly allow Roles data to be exported. 21. IT42329/TS010814281/MFT-13771 (2022-10-14) Description of issue: Web server is core dumping due to OOM (Out Of Memory). Customer increased the web server max heap size in /conf/InstallationInfo.properties (i.e. WEB_SERVER_MAX_HEAP_SIZE=-Xmx4096m), but the default value of -Xmx2048m was still being used. Reason: Batch file \bin\readWebServerMaxHeapSetting.bat was missing from the Control Center Windows installation. Description of fix: Added readWebServerMaxHeapSetting.bat to the installer. 22. IT42226/TS010840656/MFT-13752 (2022-10-17) Description of issue: Unable to create a password for a new user. Error about password/passphrase strength displayed. Description of fix: Passwords for new users have some default rules that must be met, including that they must contain a special character. That list of special characters did not include "?". The fix was to change this list of special characters from "@!^*&#$%" to "@#()$!%*?&{}^><". 23. MFT-13769 (2022-10-17) Description of issue: When first displaying the SLC and Rule Schedules in the web console, the SLC schedules are shown when Rule Schedules should be. Description of fix: The logic that puts the initial focus on the SLC Schedules button, versus Rule Schedules button, was corrected. 24. IT42226/TS010840656/MFT-13752 (2022-10-17) Description of issue: Unable to create a password for a new user. Error about password/passphrase strength displayed. Description of fix: Passwords for new users have some default rules that must be met, including that they must contain a special character. That list of special characters did not include "?". The initial fix was to change this list of special characters from "@!^*&#$%" to "@#()$!%*?&{}^><", but it did not. It only seemed to add "?" to the list. WIth this second update, the list of special characters is "@#()$!%*?&{}^><". 25. MFT-13779 (2022-10-18) Description of issue: Required Apache commons-text upgrade to address CVE-2022-42889 - CVSS 9.8 - Variable interpolation is performed, allowing properties to be dynamically evaluated and expanded. Starting with version 1.5 and continuing through 1.9, the set of default Lookup instances included interpolators that could result in arbitrary code execution or contact with remote servers. Description of fix: Upgraded from commons-text-1.8.0.jar to commons-text-1.10.0.jar. 26. LS-176 (2022-10-19) Description of issue: Console messages concerning the web server running have time stamps but those output when the web server is seen as not running do not. Description of fix: Added time stamp to console messages concerning the web server not running. 27. MFT-13778 (2022-10-19) Description of issue: When system properties are updated via the Web console, no audit events are generated. Description of fix: New audit events with new message "CCTR250I System property data updated. Data: {0}, User ID: {1}" are generated when system properties are updated via the Web console. 28. TS010542156/MFT-13664 (2022-11-07) Description of issue: Server monitoring stops. Description of fix: Additional changes made to fix for MFT-13731 to ensure the number of database connections specified by MAX_10X_DB_CONNECTIONS was, and stayed, allocated. Plus new diagnostics were added to log what was consuming database connections every six hours, and the number of thread dumps to now be accumulated in the log folder was increased from four to six. Plus, most importantly, multiple areas were updated to no longer "leak" connections when database outages occur. 29. IT42476/MFT-13835/TS011125500/TS011229472 (2022-11-08) Description of issue: Unable to open SCC GUI Console after PC Java upgrade to 8_351, due to jars being signed with SHA1. Beginning with 8_351, jars signed with SHA1 are disallowed by default. Description of fix: Changed build process to sign jars using SHA256. -------------------------------------------- 6.2.1.0 iFix08 (Released 09/14/2022) 1. MFT-13059 (2022-04-21) Description of issue: Times shown in web consoles for users whose preferred timezone is a custom time zone are incorrect and other similar issues are occurring. Description of fix: Corrected logic. There may still be other time display problems, but many were corrected by the updates associated with this defect. 2. MFT-13232 (2022-04-25) Description of issue: Invalid User Profile not loaded when EP starts because of activeSwingCount element not subelement of properties. Description of fix: Ensured when user profiles are created and/or updated, a username element and value are added in the user profile properties. 3. IT40570/MFT-13228/TS008241596 (2022-04-25) Description of issue: Control Center does not obtain 100% of statistics generated by monitored CD i5. This may manifest itself as processes in the Web console's Queued Process View that never complete. This was caused by Control Center not necessarily getting data with the same time stamp in the same order back from CD i5 when its requested. Description of fix: Logic added to Control Center to see if CD i5 CDSTATFILE has SEQUENCE column or not, and when it does, logic used to query for data updated to use it. To avoid this problem, customer must monitor CD i5 with a fix also. When Control Center detects a monitored CD i5 server that does not have the appropriate fix, a WARNING message will be logged with the following text: "CDSTATFILE does not have column SEQUENCE. Without the fix found in 3.8.03 PTF2204C collection of statistics may be problematic. Statistics may be missed." Another change was also made to avoid inappropriate duplicate server errors being issued for CD i5 servers with the same host name/IP address. 4. IT40571/MFT-13235/TS009074009 (2022-04-28) Description of issue: After removing a B2Bi server via the Web console its components were not deleted and they still showed in the dashboard and elsewhere in the Web console. Description of fix: When the web console removes a server, logic was added to delete components associated with it. Also, because polling does not stop instantaneously wen the server is deleted by the web console, some/all components may be added back in, so logic was also added so the CEP would remove components for logically deleted servers when it starts. 5. IT40573/MFT-13181/TS008931219 (2022-04-28) Description of issue: Not seeing file sizes for some SFG transfers. Description of fix: The configuration files fgEventCodes and FgMessages.properties needed to be updated to incorporate additional FG event codes that they were missing, including FG_0428, FG_0429, FG_0430, FG_0431, FG_0432, FG_0459, FG_0460, FG_0461 and FG_0710. If you are upgrading, as opposed to doing a new install, you will need to manually update your existing fgEventCodes "file" via the Web Console's ability to update properties, and insert the following new fgEventCode elements in it: FG_0428 9 FG_0429 1 FG_0430 2 FG_0431 2 TRUE FG_0432 9 FG_0461 4 TRUE TRUE FG_0710 9 ConsumerFilename ConsumerFileSize 6. IT40205/MFT-13040/TS008596751/MFT-13470/TS009625279 (2022-04-29) Description of issue: Deployment Job remains in status "In Progress" although completed and successful Description of fix: Corrected SQL statements to uniquely qualify CD server entry type. [Note for L3/Support: This is a follow-on/completion of fix to original issue partially addressed in iFix06 under MFT-13040/MFT-12976] 7. IT40827/MFT-13194/TS009040771 (2022-05-02) Description of issue: Unable to cancel a CD server configuration job that has been running for a long time. Description of fix: The changes were done in UI to show overflow menu options for configuration jobs and various actions associated with it. 8. IT40834/MFT-13236/TS009136603/TS009088258 (2022-05-02) Description of issue: ICC not saving BP xpath information and Web console showing invalid hostname. Description of fix: Corrected issues in server address validation and BP list xpath. 9. MFT-13253/LS-136 (2022-05-06) Description of issue: Changing Time Zone for any user from classic console or web-console user-settings does not take effect. Description of fix: Corrected logic to properly save and display with updated user time zone. 10. IT40869/MFT-13277 (2022-05-09) Description of issue: Only processes that ended are affected by the purging of summary data. Description of fix: Logic was added to purge summarized processes that started, but do not have an ended value set. To disable this new purging behavior you may specify the engine property SUMMARY_TABLES_PURGE_PROCESSES_NOT_COMPLETED with a value of FALSE. 11. IT40870/MFT-13275/TS008820835 (2022-05-09) Description of issue: When the Swing console is connected to the non-CEP the display of queued node configuration jobs is not right. Description of fix: Logic was fixed to go to the database to obtain the current list of queued configuration jobs, regardless of the user's role, instead of using an internal cache of jobs when the role was found to be unrestricted. 12. IT40871/MFT-13070/TS008241404 (2022-05-09) Description of issue: The queued process view wouldn't show more than 250 queued processes for a server even after setting the XML element value for 'maxProcessQueueEventSize' in CCEngineService.xml. (It's default is 250.) And doing so caused Control Center to crash due to JDBC errors. Description of fix: Logic was fixed to address the problems caused by increasing 'maxProcessQueueEventSize' in CCEngineService.xml to values greater than the default of 255. 13. IT40936/MFT-13262/TS009183601 (2022-05-09) Description of issue: Not able to delete the Deployment jobs. There is no delete button for job TYPE 'COMPLETED JOBS' only, a user is only able to delete job types that are in 'HELD' status or in the combination of jobs with at least one job in HELD type. As of now, there is no way to clear/clean up the job type 'COMPLETED JOBS'. Customer will submit an RFE, specifically to allow deletion of "COMPLETED" jobs. Description of fix: Corrected logic to display the delete button only if there is at least one Deployment job listed as being in "HELD" state. 14. MFT-13198/TS009040959 (2022-05-15) Description of issue: Control Center Report Name and Format changes in C:D Statistics Details/Summary reports after upgrading from 6.1.3 to 6.2.x. Customer noticed the .csv (comma separated values) reports contained extrtaneous data (report titles, blank columns, row number, page number, etc). Description of fix: Modified the reports to a true .csv raw data report (i.e. removed the header and footer records from the 6.2.x jasper reports, same as formatted in 6.1.3 Cognos reports). 15. MFT-13305/LS-145 (2022-05-16) Description of issue: Server Inventory Report lists CD i5/OS as configurable (i.e. column titled "Configure" has an "x"). Description of fix: Corrected the report to list CD i5/OS servers as not configurable. 16. IT41092/MFT-13358/TS008771692 (2022-05-31) Description of issue: Getting errors trying to modify netmap node record for server that doesn't support FASP. Description of fix: After making changes for MFT-13087, additional problems were found - more code that didn't check for null FASP values before checking their contents, which caused null pointer exceptions (NPEs) to occur, and addressed all the spots I could find with this problem with this fix. 17. IT41015/MFT-13300/TS009324865 (2022-05-23) Description of issue: In the web UI, when clicking on the Standard SLCs link, it shows Simple SLCs. Description of fix: Corrected routing logic. 18. IT41099/MFT-13331/TS009410707 (2022-06-01) Description of issue: EVENTS table data inserted by the deployment service logic formatted the data for DATE_TIME differently than all the other logic within Control Center causing that data to never be purged. Description of fix: The deployment service now uses common logic to add data to the EVENTS table. It also routes that data through the Data Visibility Group, Metadata, and Rule services now, prior to adding it to the EVENTS table. The fix does not do anything for data previously added to EVENTS by the deployment service logic. It will have to be removed manually with a query like this "DELETE FROM EVENTS WHERE PART_KEY IS NULL" or this "DELETE FROM EVENTS WHERE DATE_TIME LIKE ‘%T%’" 19. IT41103/TS009099520/MFT-13340 (2022-06-02) Description of issue: CD config mgmt has issues with Secure+ on CDU/CDW/CDZ 6.0 servers. When the user issues a refresh of the SecurePlus Ciphers, the following command is always included: select s+ciphersuites protocol=TLS1.3. If the CD server is at a level less than 6.1.0.0 (where TLSv1.3 support started), the request fails with the following error in the NodeConfigService logs: "Command failed. Command: select s+ciphersuites protocol=TLS1.3 , Error: Node detected error. SPCL114E Invalid key word 'Protocol' value specified. CCOD=8 FDBK=-1 SBST= LCCC058I" Description of fix: Added logic to only send the request if the C:D server is 6.1.0.0 or later. 20. IT41628/MFT-13335/TS009261591 (2022-06-07) Description of issue: CD Servers onboarded via API default polling interval set to NULL. Customer used an internal API that should not have been exposed in Swaggger. Description of fix: Removed internal API references. 21. IT41176/TS008869901/MFT-13385 (2022-06-09) Description of issue: When browser configured for language other than English it caused the display of event element times for alerts, and more, to be displayed erroneously. Description of fix: Updated logic to key on the event element name, instead of the label used, to know when to format date time values. 22. MFT-13383/CC-9010 (2022-06-10) Description of issue: Not able to open Audit logs in classic console after report update. Description of fix: Corrected logic to allow audit log selection/display. 23. MFT-13402 (2022-06-10) Description of issue: Request to add proper meaningful property usage statements for backend framework parameters in application.properties file. Description of fix: Added comments: #Uncomment below property to enable debug mode logging for web appication - required restart after change / #logging.level.root=DEBUG 24. IT41017/MFT-13101/TS008820835 (2022-06-13) Description of issue: Node configuration jobs intiated by the non-CEP for servers assigned to it sometimes stay queued until the system is restarted and never run. Description of fix: Additional debug level diagnostics were added to the NodeConfigService and changes were made to how inter-EP communication is acheived via cluster events. 25. IT41237/MFT-13392/TS009078658/TS009662914 (2022-06-14) Description of issue: Dashboard display is empty. Only showing blank pages and getting 404 error. This occurred after a database outage and the web server did not re-establish it's DB connections after the DB server came back online. Description of fix: Implemented a process that runs in the engine and detects if the DB server had been down. With this fix, when the DB server is restarted, the web server will be restarted to reinitialize the web applications to properly re-establish database connections. This feature is turned off by default. It must be turned on via engine.properties: true (i.e. web UI hamburger menu (top right) >> System Settings >> Properties >> engine.properties). 26. MFT-13444 (2022-06-22) Description of issue: During configCC, if user is removes the engine/EP secure port (xxx81), after having been previously configured, then during a subsequent configCC if user removes the secure port (changes port to 0), InstallationInfo.properties is not updated. Description of fix: Corrected logic to update /conf/InstallationInfo.properties (i.e. set CCENTER_SECURE_PORT=0 and remove SECURE_HTTP_CONFIGURED). 27. IT41804/MFT-13214/TS009040959 (2022-07-04) Description of issue: The Control Center Report Name Format changed (name of the automated report email attachment) after upgrade from 6.1.3 to 6.2 for automated reports. Correct name of 6.1.x report file attachment: [user-saved-report-name].suffix Incorrect name of 6.2 report file attachment: [user-saved-report-name] + [calendar-name] + [user-saved-report-name].suffix Description of fix: Removed the erroneous additional data from the attachment file name to match that of the 6.1.x reports. 28. MFT-13478 (2022-07-15) Description of issue: While monitoring CD i5 server errors occur causing "java.sql.SQLException: [SQL7049] An internal object limit has been exceeded." errors to be output to the engine/event processor log file. Description of fix: Updated logic that ascertains whether or not the CD i5 stat file has a SEQUENCE column to close its result set and for the logic that invoked it to only do so once at signon time instead of prior to each request for statistics. 29. MFT-13516 (2022-07-20) Description of issue: OSA servers stay in a reassignment in progress state after their EPs go down even though they've been reassigned. Description of fix: Changed logic to only set reassignmentInProgress true for legacy type monitored servers. 30. MFT-13477 (2022-07-20) Description of issue: Reports whose criteria specified TODAY and/or TOMORROW for criteria for data to be included used an incorrect starting date if the UTC date differed from the local date. Description of fix: Corrected the logic used to compute the starting date whenever TODAY or TOMORROW was specified for date criteria. 31. MFT-13384 (2022-07-27) Description of issue: When selecting "Configuration Management" report category in the classic console (swing UI), the checkbox at bottom is missing the text "Allow selection of non-current versions" and when checked, does not proceed to the Versions screen. Description of fix: Corrected logic to display checkbox text and proceed to the versions page. 32. IT41665/TS009920296/MFT-13484 (2022-08-02) Description of issue: File Agent SNMP listen address displayed by web console does not reflect correct address listening. Description of fix: The display only issue was rectified. The message logged when the CEP updates the SNMP listen address was corrected, and an audit event is no longer generated when the change is initiated by the system. 33. IT41664/TS010151751/MFT-13550 (2022-08-02) Description of issue: Monthly File Transfer report would not allow an end year to be specified beyond 2022. Description of fix: Selectable years changed to start at 2015 and go through 2030. 34. IT41667/MFT-13518 (2022-08-02) Description of issue: Required Apache commons-configuration upgrade to address CVE-2022-33980 - CVSS 9.8 - Variable interpolation is performed, allowing properties to be dynamically evaluated and expanded. Description of fix: Upgraded from 2.2.7 to 2.2.8.0. Security Bulletin: https://www.ibm.com/support/pages/node/6620939 35. IT41702/MFT-13502/TS009979407 (2022-08-02 Description of issue: In CC Web UI, Netmap Unix Entry does not have the Netmap Check TRUE as a value to set. GoTo Configuration Tab > Netmap Entries > Unix Advanced >> Netmap Check >> Drop down shows: FALSE, LOCAL, REMOTE (but missing TRUE). Description of fix: Corrected drop down list to display all four values. 36. IT41805/MFT-13462/TS009040959 (2020-08-03) Description of issue: SFG Route Detail Consumer/Producer .csv reports still contain some residual spaces and delimiters after original fix MFT-13198. Description of fix: Corrected logic to remove the extra data from .csv reports. 37. IT41703/MFT-13501/TS009986036 (2022-08-04) Description of issue: Unable to alter PNODE/SNODE Session information for local.node in CCD Web UI. GoTo Configuration Tab > Netmap Entries > Click on local.node > Click on Update > Click Unix > Max SNODE Session / Max PNODE Session cannot be changed. Description of fix: Correct logic to allow updates to both fields. 38. MFT-13561 (2022-08-04) Description ofissue: APIs not working as expected: /api/v1/server/events/b2bi/bp/search and /api/v1/server/events/cd/search. Description of fix: Corrected code to ensure query includes node type is used to filter for events. 40. IT41663/TS009667981/MFT-13460 (2022-08-04) Description of issue: When multiple SEAS authenticated users attempt to log on, or use RESTful APIs, simultaneously erroneous authentication errors are logged and may cause the Control Center event processors to have to be restarted for authentication to work again. Description of fix: Made the logic that requests authentication from the SEAS server be thread-safe. 41. IT41795/MFT-13551/TS010026339 (2022-08-08) Description of issue: ICC Configuration Management Reports return empty results. The following reports are no longer generating results: Functional Authorities, Secure Plus Cipher Suites, Initialization Parameters, Secure Plus Key Certificates, Netmap Communication Paths, Secure Plus Nodes, Netmap Modes, Secure Plus Trusted Certifications, Netmap Nodes and User Proxies. Description of fix: Corrected logic to properly return report data. 42. MFT-13578 (2022-08-10) Description of issue: Need to upgrade to latest JRE level. Description of fix: Upgraded to IBMJRE 8.0.7.11 / OpenJava 8.0.332 43. IT41796/MFT-13565/TS010178473 (2022-08-10) Description of issue: Problems changing pages in ICCD Configuration page. When I click the left/right arrows I stay on page 1. If I try to change the number of results per page to something other than 10, the screen flashes with my new results but then goes back to 10. And if I try to change pages using the drop-down menu of page numbers, that will work but the page number displayed at the top of the drop down after it loads stays at 1. This only happens for Netmap Entries on one node, and I believe it's because there are a large number of nodes (over 1000). Description of fix: Corrected paging logic in affected functions (netmap, secure+, functional authority, user proxies). 44. MFT-13591 (2022-08-12) Description of issue: Unable to perform SEAS authentication for users of older, 10x-based, RESTful APIs. Description of fix: The logic needed to be updated to find the location of both the trust and keystore files, and the values for the user IDs and passwords to use for their access, as it changed in 621 to application.properties from bootstrap.properties, with the update to using Jetty instead of Websphere. 45. MFT-13593 (2022-08-13) Description of issue: config/configCC prompts erroneously reference Websphere Application Server. Description of fix: Changed prompt text to "web application server" where appropriate. 46. MFT-13488/TS009964390 (2022-08-15) Description of issue: Customer is having blank screens on the 10x screens, but Angular pages display properly. Customer closed case as this was environmental with something blockcing iFrame pages in one environment. Determined a need to provide iFrame test checker in product for future troubleshooting by Support. Description of fix: Added iframe check html files to scclaunchpage application. You may also access the iFrame test page using the explicit url accordingly: http://<>/scclaunchpage/iframecheck.html or https://<>/scclaunchpage/iframecheck.html 47. IT41797/MFT-13537/TS010098134 (2022-08-16) Description of issue: CCD Node Configuration update error: Command failed. Command: "change s+node nodename=.Client .... sea.enabled=DefaultToLN .... Error: Node detected error. SPCL103E Invalid key word 'SeaEnable'. CCOD=8 FDBK=-1 SBST= ". The "seaEnabled=" parameter was erroneously sent for the .Client node. Description of fix: Corrected logic in CCD web UI node configuration to omit "sea.enabled=DefaultToLN" when updating the .Client node. 48. LS-153 (2022-08-17) Description of issue: NodeServiceLogger, used to obtain additional detailed logging from the NodeConfigService, and more, was not in EngineLogger.xml. Description of fix: Added NodeServiceLogger entry to EngineLogger.xml with log level set to INFO. 49. MFT-13614 (2022-08-19) Description of issue: configCC warning message erroneously displayed if Oracle 18/19 minor version > 0: "Important: This version(Major Version :19, Minor Version :1) of database server is unsupported. Reconfigure your instance of IBM Sterling Control Center with a supported database version." Description of fix: Corrected check to allow minor version greater or equal to 0 (instead of equal to). 50. MFT-13613 (2022-08-23) Description of issue; Query used by ClearProcessQueueJob task, which is responsible for cleaning completed jobs from the queued process list, resulted in full table scan being done. Description of fix: Query changed to not use inequality to limit types of nodes events were retrieved for. 51. MFT-13627 (2022-08-29) Description of issue: ORA-01795: maximum number of expressions in a list is 1000 Description of fix: Problem occurred when a new server was added or removed and a non-system server group that had over 1000 server was modified. Logic used to obtain details on servers in server group was altered to avoid having too large of an IN clause. 52. LS-159 (2022-08-29) Description of issue: Seeing messages like this being logged - WARN EmailService - EmailService: Error getting node type description for nodeType=100 Description of fix: When Control Center creates the body of an email for a Rule action because no text was supplied, and it is unable to ascertain descriptive text for the nodeType value, it will now go to the NODE_TYPE database table to obtain the value to use rather than log this message. 53. MFT-13641 (2022-08-29) Description of issue: Logic that checked for heartbeats from servers using the OSA interface iterated through the full list of monitored servers. Cluster events for CD file agents did not include the ID of the server the file agents were associated with. Controller logic that monitored and processed cluster events mishandled cluster events for servers. These last two issues could cause exceptions to be logged like these: 24 Aug 2022 16:48:13,233 899792 [ClusterEventMonitor] WARN ClusterEventMonitor - Exception occurred processing configuration changed event conf(68351112, Wed Aug 24 21:44:25 UTC 2022, EP1, ) in com.sterlingcommerce.scc.agent.SCCAgent java.lang.RuntimeException: Exception occurred processing cluster event: conf(68351112, Wed Aug 24 21:44:25 UTC 2022, EP1, ), Exception msg: null at com.sterlingcommerce.scc.agent.SCCAgent.onConfigurationChanged(SCCAgent.java:7741) ~[SCCenter.jar:?] at com.ibm.cc.embedded.ClusterEventMonitor.fireConfigurationChanged(ClusterEventMonitor.java:287) [SCCenter.jar:?] at com.ibm.cc.embedded.ClusterEventMonitor.run(ClusterEventMonitor.java:749) [SCCenter.jar:?] at java.lang.Thread.run(Thread.java:825) [?:2.9 (01-04-2022)] Caused by: java.lang.NumberFormatException: null at java.lang.Integer.parseInt(Integer.java:554) ~[?:2.9 (01-04-2022)] at java.lang.Integer.valueOf(Integer.java:778) ~[?:2.9 (01-04-2022)] at com.sterlingcommerce.scc.agent.SCCAgent.onConfigurationChanged(SCCAgent.java:7329) ~[SCCenter.jar:?] ... 3 more 24 Aug 2022 21:23:32,594 17419153 [TenxDaoHandleServerUpdates-30-thread-1] WARN ClusterEventMonitor - Exception occurred processing configuration changed event conf(null, null, null, ) in com.sterlingcommerce.scc.agent.controller.Controller com.ibm.saas.core.exception.BaseRuntimeException: com.ibm.tenx.db.NoSuchObjectException: com.ibm.cc.model.Server(2357) at com.ibm.cc.model.ClusterEvent.getChangedEntity(ClusterEvent.java:158) ~[ccwc-6.1.jar:?] at com.sterlingcommerce.scc.agent.controller.Controller.onConfigurationChanged(Controller.java:116) ~[SCCenter.jar:?] at com.ibm.cc.embedded.ClusterEventMonitor.fireConfigurationChanged(ClusterEventMonitor.java:287) [SCCenter.jar:?] at com.sterlingcommerce.scc.agent.EngineClusterEventMonitor.notifyLocalListeners(EngineClusterEventMonitor.java:134) [SCCenter.jar:?] at com.sterlingcommerce.scc.agent.EngineClusterEventMonitor.notifyLocalListeners(EngineClusterEventMonitor.java:81) [SCCenter.jar:?] at com.sterlingcommerce.scc.agent.services.adapter.dao.TenxJdbcDAO.updateServer(TenxJdbcDAO.java:3735) [SCCenter.jar:?] at com.sterlingcommerce.scc.agent.services.adapter.dao.TenxJdbcDAO.handleServerUpdateRequests(TenxJdbcDAO.java:3697) [SCCenter.jar:?] at com.sterlingcommerce.scc.agent.services.adapter.dao.TenxJdbcDAO.access$3500(TenxJdbcDAO.java:104) [SCCenter.jar:?] at com.sterlingcommerce.scc.agent.services.adapter.dao.TenxJdbcDAO$50.run(TenxJdbcDAO.java:3659) [SCCenter.jar:?] at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1160) [?:1.8.0] at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:635) [?:1.8.0] at java.lang.Thread.run(Thread.java:825) [?:2.9 (01-04-2022)] Caused by: com.ibm.tenx.db.NoSuchObjectException: com.ibm.cc.model.Server(2357) at com.ibm.tenx.db.impl.OpenJPAEntityManager.findByKey(OpenJPAEntityManager.java:1814) ~[ccwc-6.1.jar:?] at com.ibm.tenx.db.PersistenceSession.findByKey(PersistenceSession.java:569) ~[10x-app-3.9.0.jar:?] at com.ibm.tenx.db.svc.ReadService.findByKey(ReadService.java:555) ~[ccwc-6.1.jar:3.9.0] at com.ibm.tenx.db.svc.ReadService.findByKey(ReadService.java:497) ~[ccwc-6.1.jar:3.9.0] at com.ibm.tenx.db.metadata.EntityDefinition.findByKey(EntityDefinition.java:2947) ~[ccwc-6.1.jar:3.9.0] at com.ibm.tenx.db.metadata.EntityDefinition.findByKey(EntityDefinition.java:2933) ~[ccwc-6.1.jar:3.9.0] at com.ibm.cc.model.ClusterEvent.getChangedEntity(ClusterEvent.java:154) ~[ccwc-6.1.jar:?] Description of fix: For monitoring of heartbeat events the logic was made more efficient by only retreiving a list of OSA servers. For Cluster events for CD file agents, the logic was updated to include pertinent information on the server the file agent is associated with. And for processing of cluster events by Controller, the logic was fixed to only obtain a server if the cluster event concerned a server. 54. MFT-13640 (2022-08-29) Description of issue: /web/ccbase/resources/log4j2.xml erroneously contains CR (carriage return), instead of Unix LF (line feed) on Linux/AIX installations.. Description of fix: Updated the installer with a post install action to ensure the proper end of line character is written per platform. 55. LS-162 (2022-08-29) Description of issue: The logic that obtains Connect:Direct license data on a daily basis updates the CD_LICENSE_DATA table and it was found that the queries used by that logic consumed quite a bit of database server time. Description of fix: The index LIC_SERVER_ID_IDX was added to CD_LICENSE_DATA. 56. MFT-12594 (2022-09-02) Description of issue: Not able to see the number of rows in database for CC_PROCESS and CC_FILE_TRANSFER tables (i.e. Web UI hamburger menu upper right > System Settings > Database > Production DB Information > Statistics). Description of fix: Corrected logic to retrieve/display row counts. 57. IT41984/MFT-13320 (2022-09-02) Description of issue: Spring Framework handling file uploads (potential DOS attack) - CVE-2022-22970 - CVSS 6.5 Description of fix: Upgraded to spring framework 5.3.20 and spring boot 2.7.0. Security Bulletin: https://www.ibm.com/support/pages/node/6619839 58. IT41984/MFT-13322 (2022-09-02) Description of issue: Spring Framework websocket impl with STOMP DOS vulnerability - CVE-2022-22971 - CVSS 6.5 Description of fix: Upgraded to spring framework 5.3.20 and spring boot 2.7.0. Security Bulletin: https://www.ibm.com/support/pages/node/6619837 59. IT41895/TS010377363/MFT-13624 (2022-09-06) Description of issue: The rollover log files whose names start with "scc10xwebapp_default" were being put in web/ccbase instead of in web/ccbase/logs. Description of fix: The log4j.xml file was updated to correct the rollover file path used. 60. IT41994/MFT-13603/TS010303150 (2022-09-07) Description of issue: Unable to search User Node from Functional Authorities for CDz servers. CCD Web Console >> Configuration Tab >> Functional Authorities >> select CD zOS server from the drop-down list >> in the Search criteria put the User Node and the name of the user node you desire to search. Example: "User Node Contains ABCD". Description of fix: Corrected filter logic to display expected result. 61. IT42036/MFT-13559/TS010166658 (2022-09-13) Description of issue: Sterling File Gateway Route Detail Report (by Consumer) has no summary in 6210 (like it did in 6130) Description of fix: Corrected report to display summary data. 62. IT42037/MFT-13674/TS010585421 (2022-09-13) Description of issue: After customer upgraded browsers to Chrome 105.0.5195.102 and Edge 105.0.1343.27, many of the Control Center web UI pages displayed in dark red under the buttons. Description of fix: Corrected an obsolete css configuration setting. 63. IT42038/MFT-13622/TS010382605 (2022-09-13) Description of issue: CCM CD Config reports in csv format is not a true delimited file. We have a problem with extra delimiters between fields and junk (headers and trailers) in the csv format. Description of fix: Corrected the following configuration reports to remove headers, footers, extra delimiters. The following configuration related reports were addressed in this fix: -Functional Authorities Report -Initialization Parameters Report -Netmap Communication Path Report -Netmap Modes Report -Netmap Nodes Report -Secure+ Cipher Suites -Secure+ Key Certificates Report -Secure+ Nodes Report -Secure+ Trusted Certificates Report -User Proxies Report The following configuration related reports will be fixed under MFT-13671 (post iFix08) -Versions Report -Sterling Connect:Direct Configuration Changes Audit Report -------------------------------------------- 6.2.1.0 iFix07 (Released 04/20/2022) 1. IT40478/TS008771692/MFT-13087 (2022-04-04) Description of issue: Unable to update a CD netmap entry when verifying that CD and CC objects match. Description of fix: Corrected logic to properly compare objects. 2. MFT-12959/TS008363164 (2022-03-24) Description of issue: Web login error "AUTH003E: Invalid Credentials" - Behaves as if user does not exist. This occurred after an upgrade from 6.0.0.1 to 6.2.x (via 6.1 upgrade). Description of fix: Added logic for handling EmptyResultDataAccessException and provide helpful diagnostic log messages. Resolution in this case was to update following properties in \web\ccbase\webapps\application.properties: spring.datasource.url=jdbc:sqlserver://n.n.n.n:1433;databaseName=[database] and spring.datasource.username=[database-user] 3. MFT-13114 (2022-03-30) Description of issue: ACBV001E: Unexpected exception occurred. Details have been logged in the web server log file. Message : null, when trying to do a new CDW install from CCD 6.2.1 latest iFIx but the link gives an error. Description of fix: Added guard code to check for a null/empty value to prevent this error. 4. MFT-13153 (2022-04-05) Description of issue: Required Apache Xerces2 upgrade Description of fix: Upgraded from 2.12.1 to 2.12.2 5. TS008646507/MFT-13059 (2022-04-05) Description of issue: Web Console showing incorrect UTC offset value for Time zone for some time zones when creating a schedule/calendar. Description of fix: Corrected logic handling UTC timezone offset values. 6. MFT-13155 (2022-04-06) Description of issue: Engine log fills with warning messages when older OSA monitored servers like SSP or SEAS send a JSON packet with that specifies the heartbeat interval in a string rather than a number. Description of fix: Changed logging level from WARN to DEBUG. 7. MFT-13148 (2022-04-06) Description of issue: Required upgrade of ibm.mq.allclient Description of fix: Upgraded from 9.2.1.0 to 9.2.4.0. 7. MFT-13143 (2022-04-07) Description of issue: Fix some misc. code issues identified in Checkmarx scan. Description of fix: Corrected identified issues (i.e. stack trace printing, Regex pattern matching, static/final variables, etc.) 9. MFT-13160 (22-04-07) Description of issue: Required upgrade of JAX-RS API (jersey jar). Description of fix: Upgraded to 2.35. 10. MFT-13161 (22-04-07) Description of issue: Required upgrade of Jakarta Expression Language 3.0 Implementation 3.0.3 Description of fix: Upgraded to 4.0.4. 11. MFT-13169 (2022-04-07) Description of issue: Functional authority template ZOS platform parameters usernode, security id and security ID password seems to be missing on details page in CCD web UI. Description of fix: Added missing items to template to correctly display on page. 12. MFT-13142 (2022-04-07) Description of issue: Required upgrade of JDOM Description of fix: Upgraded to 2.0.6.1 13. IT40579/TS008946375/MFT-13166 (2022-04-07) Description of issue: When the Connect:Direct File Agent Versions report is run on any EP except the CEP the file agent version values are not shown. Description of fix: The file agent version value is now stored in the database and the report will run successfully now regardless of the EP it is initiated on. 14. MFT-13144/MFT-13146/MFT-13147 (2022-04-12) Description of issue: Required upgrade of Spring Framework Description of fix: Upgraded to spring framework 5.3.18 and spring boot 2.6.4 15. MFT-13146: (2022-04-14) Description of issue: Required upgrade to latest Apache active-mq Description of fix: Upgraded to activemq-all-5.17.0 16. MFT-13205 (2022-04-15) Description of issue: Example in conf/CC_java.security shows outdated default jdk.tls.disabledAlgorithms values. Description of fix: Updated example in /conf/CC_java.security to reflect current default values for jdk.tls.disabledAlgorithms in /jre/lib/security/java.security 17. IT40828/MFT-13092/TS008689530 (2022-04-17) Description of issue: CCD Server Save button is grayed out. Customer navigated to the CCD UI and wanted to edit a server's IP address. After modifying the IP address, the Save button remained grayed out and would not allow the change to be saved. Description of fix: Corrected logic which determines a field update, which in turn enables the Save button. -------------------------------------------- 6.2.1.0 iFix06 (Released 03/25/2022) 1. IT39985/TS007939762/MFT-12824 (2022-01-24) Description of issue: After upgrading from 6.1.3 to 6.2.x, "ACBV032E: Cannot use special Characters" is displayed when attempting to update a role with a hyphen in the name. Some special characters were excluded from a list of valid characters. The original work around was to create a new role without the hyphens. Description of fix: Corrected the validation logic to allow the same special characters as in 6.1.3 (i.e. - ! $).T 2. IT39761/TS007321362/MFT-12911 (2022-01-27) Description of issue: CACL014E error decrypting password prevents the node service from starting. Description of fix: Update the logic to avoid trying to decode the password when there's no value or a value of "null". And change the logic that does the decode to simply log a warning if there's a problem, which will allow the node service to start. The cd server may still be unreachable until a valid password is specified. 3. IT39837/MFT-12915/TS008232575 (2022-01-28) Description of issue: Scheduled reports stop running 4-5 days after Control Center is re-cycled. This is caused by a database connection leak. Meaning, each time a report is run, a connection is obtained but never closed. Description of fix: Corrected the report logic to always close the database connection upon completion. 4. LS-128 (2022-02-03) Description of issue: runDalaCollector.sh|exe results in Out Of Memory when running in a large environment (i.e. thousand of monitored servers). Description of fix: Increased heap size from 1GB to 2GB. 5. IT39988/TS008187134/MFT-12902 (2022-02-11) Description of issue: Error trying to update netmap from Web Console. ACBV001E Unexpected exception occurred. Details have been logged in the web server log file. : query did not return a unique result: 2. This error occurred because there were two instances of the the same server found (an active instance and a logically deleted instance). Description of fix: Corrected a SQL query to exclude logically deleted servers. 6. IT40084/TS008187134/MFT-12909 (2022-02-19) Description of issue: "ACBV001E: Unexpected exception occurred. Details have been logged in the web server log file. Message : null" displayed in web UI C:D Configuration >> Netmap Entries. User could not get to the option that initiates a refresh from the CD server. Description of fix: Corrected logic to be more forgiving when a version is detected with no objects and ensure actions are still available on the configuration screens. 7. IT39984/TS008148513/MFT-12926 (2022-02-21) Description of issue: Remove Header and Footer of Control Center in SFG (.csv) reports After upgrade to 6.2.x, when running the report (Sterling File Gateway Route Detail Report by Consumer) through Define/run or Automate If you choose CSV, it has a header and footer, whereas the old version did not have header and footer records. Description of fix: Removed the header and footer from the SFG Route Detail Consumer/Producer csv reports. 8. MFT-12900 (2022-02-22) Description of issue: Changes to configCC to better warn users about potential performance implicatons if configuring MSSQL globalization. Description of fix: Updated configCC MSSQL globalization prompt as follows: Globalization is only needed if data to be stored contains multi-byte characters, which are common in character sets such as Kanji. Database I/O performance may drop multiple orders of magnitude if globalization support is selected, so it is NOT recommended you do so with MSSQL. If you select Y (yes), then your database size can also increase significantly. Do you want your database to support globalization? (Y/N) [N] 9. IT40042/MFT-12997/TS008515135 (2022-02-24) Description of issue: When creating/updating a rule with the Web console, the validation logic for the file size parameter did not allow a value larger than 2,147,483,647 to be specified even though the java console allowed a value up to 9,223,372,036,854,775,807 to be specified. Description of fix: Validation logic for the Web console for file size, and other numeric type criteria, changed to allow the larger values to be specified just like the java console does. 10. IT40060/MFT-12995/TS008472243 (2022-02-24) Description of issue: Can not use OpenJDK 1.8.0_312-2-redhat on IBM control Center when attempting a secure connection from the classic console. The following error message displayed when trying to configure the keystore/truststore in the Control Center java console: "ControlCenterMessages: Unknown JVM vendor ..Red Hat, Inc". Decription of fix: Modified the client side code to allow "Red Hat" as a valid java vendor. 11. MFT-12993 (2022-02-28) Description of issue: Connect:Direct UNIX systems with netmaps that have node names with unprintable characters or no names at all cause problems in the configuration object versions created from them. Description of fix: Control Center will now ignore netmap nodes that have no names and log error messages when they, and names with unprintable characters, are encountered. 12. IT40242/MFT-13003/TS008224708 (2022-02-28) Description of issue: Unable to start Control Center Engine after iFix 12 update resulting in error message: Control Center database schema is not upto date. Run configCC.bat/sh to update the database schema. Description of fix: Updated DB upgrade scripts adding "FETCH FIRST 1 ROWS ONLY" on update statmements: UPDATE CC_AUDIT_LOG_CHANGE_SET... and UPDATE CC_SERVER... 13. IT40082/MFT-13008/TS008241596 (2022-03-01) Description of issue: Control Center does not collect all stats from CD i5 servers consistently. Results in processes staying in the queued view and missing data in the completed process and file transfer views. Description of fix: Logic used to identify the Statistic file members that data should be retrieved from was fixed. 14. IT40101/MFT-13208/TS008426518 (2022-03-02) Description of issue: Test connection to CD server, initiated via the web console, to a CD server using TSL fails to work with anything but certificate based authentication. Description of fix: When a password is specified for test connection, it will be used now, regardless of the protocol to be used. 15. IT40204/MFT-12976/TS008385036 (2022-03-02) Description of issue: CCD web console shows 2 nodes with same name and port address added. This was caused by a query unintentionally selecting an entry for both CDAgent and FileAgent (instead of just CDAgent). Description of fix: Corrected SQL statements to uniquely qualify CD server entry type. 16. IT40205/MFT-13040/TS008596751 (2022-03-02) Description of issue: Deployment Job remains in status "In Progress" although completed and successful Description of fix: Corrected SQL statements to uniquely qualify CD server entry type. [Note for L3/Support: This issue was addressed by same code fix for above issue: IT40204/MFT-12976] 17. IT40135/MFT-12992/TS008414433 (2022-03-03) Description of issue: Control Center's database ran out of space but it did not shutdown or generate the CJDB026E event. Description of fix: Issue boiled down to the fact that when the CJDB026E needed to be generated, because the database was unable to be updated, a new, unique event ID could not be obtained. The logic for generating the CJDB026E event was changed to not require the database anymore and the system will now shutdown as it should. 18. IT40239/MFT-12895/TS008176538 (2022-03-04) Description of issue: Upgraded to 6.2.1.0_iFix04, but still see these older Log4j jars: saas-log-log4j-1.2.0.jar and slf4j-log4j12-1.7.30.jar Description of fix: Updated jars. 19. LS-109 (2022-03-08) Description of issue: https.cipherSuite is not supported in engine.properties to specify secure protocols. Description of fix: Update the doc and remove all references in the code. 20. IT40183/MFT-12988/TS008398021 (2022-03-08) Description of issue: The 'Read-only Dashboard' role is not working as expected after the customer upgraded his environment from 6.1.1.0 iFix04 to 6.2.1.0_iFix05. A role with view only for processes should be able to navigate Monitor->Processes, but they are unable to even see the Monitor choice. Description of fix: Correct logic to allow a role with "View Only" permission for "Processes" to see/access the Monitor tab. 21. IT40306/MFT-12739 (2022-03-11) Description of issue: Required IBM JRE upgrade to address CVE-2021-35578 - CVSS 5.3 - A maliciously crafted TLS 1.3 ClientHello packet can trigger a NullPointerException and an SSLException instead ofbeing rejected gracefully. Description of fix: Upgraded from 8.0.6.15 to 8.0.7.5. Security Bulletin: https://www.ibm.com/support/pages/node/6564751 22. IT40307/MFT-13012 (2022-03-11) Description of issue: Required IBM JRE upgrade to address CVE-2021-35550 - CVSS 5.9 - A flaw in the JSSE component causes cipher suites to be offered in the wrong order with some weaker cipher suites ahead of stronger suites. Description of fix: Upgraded from 8.0.6.15 to 8.0.7.5. Security Bulletin: https://www.ibm.com/support/pages/node/6564763 23. IT40308/MFT-13013 (2022-03-11) Description of issue: Required IBM JRE upgrade to address CVE-2021-35603 - CVSS 3.7 - Some operations in the JSSE component are implemented in a way that could be exploited by anattacker in a side-channel attack due to timing differences. Description of fix: Upgraded from 8.0.6.15 to 8.0.7.5. Security Bulletin: https://www.ibm.com/support/pages/node/6564753 24. MFT-13071 (2022-03-11) Description of issue: configCC.bat|sh fails after upgrading to IBM JRE 8.0.7.5 during keystore/truststore configuraton due to invalid policy jar files. Description of fix: Updated Control Center with the latest security policy jar files provided in JRE 8.0.7.5. 25. IT40269/MFT-12998/TS007308422 (2022-03-12) Description of issue: Unable to get User Profile. Description of fix: Remove unnecessary encryption from application.properties for spring datasource. 26. MFT-13074/LS-131 (2022-03-11) Description of issue: Actions do not display "serverMetaData[1-9]" in the selection list of insertable variables. Description of fix: Added missing variables. 27. IT40240/MFT-12737/TS007873052 (2022-03-23) Description of issue: ERROR RuleService - CRUL029E Error while adding event to Event Queue. This was caused at startup during recovery processing due to the EmailService not yet being load. Description of fix: Changed the services startup order so the EmailService is available during startup Recovery processing. -------------------------------------------- 6.2.1.0 iFix05 (Released 01/21/2022) 1. MFT-12821 (2022-12-27) Description of issue: Incorrect count while searching server list in create node flow. Description of fix: Corrected pick list logic to provide correct count. 2. MFT-12825 (2022-12-29) Description of issue: Password set email is not sent out when a user is created through REST API. Description of fix: Added text for externalID instructing user: "specify an empty field if external authentication is to not be used" (i.e. a non-SEAS user). 3. CC-8447 (2022-01-05) Description of issue: Config fails after replying Y to DB Init when upgrading from 6200. Description of fix: Replying Y causes only non-CC tables to be re-created. When dbChecker.checkTables() is run, it fails because the cc_configCC__fixes.sql has not been run yet. So, now added code to run c_configCC__fixes.sql before calling dbChecker.checkTables(). 4. IT39707/TS007706719/MFT-12738 (2022-01-06) Description of issue: Users are unable to login, due to a duplicate default timezone entry in CC_FILES. Description of fix: Added logic to remove duplicate entries. 5. MFT-12861 (2022-01-07) Description of issue: runeEngineCold.sh ends with error message: "cd: file not found" (cd was meant to be an echo statement). Description of fix: Corrected the echo statement to properly display: "Check nohup.out for startup status...". 6. MFT-12854 (2022-01-10) Description of issue: Erroneous reference to obsolete C:D zOS Functional Auth parameter no longer used (apkey). Description of fix: Removed Functional Auth Zos Obselete Key. 7. LS-121 (2022-01-10) Description of issue: api-docs link does not work on Swagger. Description of fix: Corrected Links. 8. MFT-12704 (2022-01-11) Description of issue: Automated Reports are not enforcing user's Server Group/DVG restrictions set in role. Description of fix: Corrected automated reports logic to honor restrictions. 9. IT39708/TS007250531/MFT-12673 (2022-01-14) Description of issue: CCD not populating sessions parameters from CDW. Description of fix: Corrected logic to fetch max simultaneous sessions. 10. IT39668/TS008061383/MFT-12867 (2022-01-18) Description of issue: The CCAPI ConfigServiceProxy.getManagementObjectTypes() method does not return the correct response when invoked on the EP that is not the assigned server for the server specified. Description of fix: The logic needed to be fixed to use the method that converted a comma separated string value into a List of Integers. 11. IT39706/MFT-12831 (2021-01-18) Description of issue: Apache Log4j2 Remote attack vulnerability CVE-2021-44832 - CVSS 6.6. Description of fix: Upgraded to Log4j 2.17.1 (from 2.17.0). -------------------------------------------- 6.2.1.0 iFix04 (Released 12/22/2021) 1. MFT-12801 (2021-12-17) Description of issue: Seeing NPE in engine log, albeit intermittently, when Xferlog FTP server reassigned Description of fix: Added an indication that reassignment is in progress to avoid the intermittent problem and added some additional debug level logging. 2. IT39491/MFT-12809 (2021-12-21) Description of issue: Apache Log4j2 Denial-of-service vulnerability CVE-2021-45105 - CVSS 7.5. Description of fix: Upgraded to Log4j 2.17.0 (from 2.16.0). -------------------------------------------- 6.2.1.0 iFix03 (Released 12/17/2021) 1. IT39455/MFT-12765 (2021-12-16) Description of issue: Apache Log4j2 Denial-of-service vulnerability CVE-2021-45046 - CVSS 3.7. Description of fix: Upgraded to Log4j 2.16.0 (from 2.15.0). -------------------------------------------- 6.2.1.0 iFix02 (Released 12/14/2021) 1. IT39169/TS006763114/MFT-12497 (2021-11-15) Description of issue: When displaying the 'All C:D Servers' web page in Director, the user is unable to filter on active 'Agent' instances. The filter allows for up or down 'Server' instances, but there isn't an option to filter on the status of the install 'Agent' connection. Description of fix: Added an "Agent Status" filter allowing selection of up or down. 2. IT39073/MFT-12674/TS007366284 (2021-11-16) Description of isssue: Seeing "ClusterEventMonitor - Exception occurred processing configuration changed event Configuration Changed" errors in the Engine logs from the ClusterEventMonitor, primarily at startup. Description of fix: Updated the Controller logic that processed cluster events to not log errors when processing cluster events for non-existing objects unless debug level logging is on. 3. MFT-12693 (2021-11-16) Description of issue: Unable to send SNMPv3 traps Description of fix: The beginnings of SNMPv3 support has been added to the code base. Updating the hosts to receive SNMPv3 traps must be done directly to the snmpAdaptorWrapper.xml data using special directions that may be obtained from the L3 support team for any customers willing to try it out. 4. MFT-12706 (2021-11-18) Description of issue: deleteEP had problems if a user key had been configured, or other EPs were running when initiated (EventProcessorMonitor log entries showed errors occurring, repeatedly) Description of fix: Logic added to deal with prompting for the user key, when configured, was added, and changes were made to the EventProcessorService and EventProcessorMonitor logic to address an EP being removed to avoid errors. 5. MFT-12707 (2021-11-18) Description of issue: No metrics existed for Deployment service logic so it had no visibility in the web console's System Health view Description of fix: Metrics added for Deployment service and minor performance improvements were also made. 6 IT39173/TS006406084/MFT-12401 (2021-11-18) Description of issue: Duplicate servers erroneously being added by discovery logic in Director. Description of fix: Database schema change was made. CC_SERVER.DUAL_HOST_NAME was changed to ALT_HOST_NAMES. New logic was added to ascertain all possible host names for CD agents' requests. Values obtained used to locate existing servers in database by searching CC_SERVER.HOST_NAME and ALT_HOST_NAMES. Two engine properties were added: CD_DISCOVERY_ENABLED: true/false - if set to false, adding new server is disabled. Default is true CD_IP_CACHING_ENABLED: true/false - if set to true, CD agents' request IP address will also be added to AltHostNames. Default is false. 7. CC-7994 (2021-11-18) Description of issue: Director unable to filter on active 'Agent' connections. Description of fix: Added filter capability for Agent status. 8. IT38908/MFT-12624/MFT-12715/TS007229815 (2021-11-23) Description of issue: "ORA-12899: value too large for column xxxxxxxx" errors when running Server Inventory Report. This was caused by a newline in the server description field. This is a follow-on fix for the same defect originally addressed in iFix11 for comma separators. Description of fix: Changed logic to handle newline escape sequence. 9. TS006339559/MFT-12398 (2021-11-29) Description of issue: Customer wants better documentation for the Restful API's Description of fix: Updated documentation with useage and field descriptions. 10. MFT-12728 (2021-11-30) Clone CC-8485 Making Empty Server Group visible in CCd mode Description of issue: UI Server Groups - New Server group with no server groups and no Servers is only visible on CCM , not on CCD Description of fix: Correct issue to make Server Group visible in CCD. 11. MFT-11458 (2021-11-30) Description of issue: GUI console locks up with blank error window trying to obtain Secure+ Nodes from Connect:Direct server Description of fix: Consoles, classic and Web, did not handle errors from back level Connect:Direct servers when the Node Configuration Service was unable to obtain the list of Secure+ nodes. This has been corrected for both types of consoles. 12. MFT-12736 (2021-12-01) Description of issue: CE zOS node service fails to restart correctly after server reassignment Description of fix: Update logic was trying to clear node messages that did not exist, causing a null pointer exception to be thrown, which stopped the node service from starting on the EP the server was reassigned to. This issue was fixed. 13. CC-8486 (2021-12-06) Description of issue: Potential problems could occur during deletion of monitored server. Description of fix: Certain clean up, like removal of checkpoint data, was not always occurring. This has been fixed. 14. CC-8519/MFT-12700 (2021-12-06) Description of issue: Code that handled EVENT_MONITOR_EVENT_DELAY when it was set greater than zero was problematic. Description of fix: Corrected EVENT_MONITOR_EVENT_DELAY logic issues. 15. MFT-12733 (2021-12-02) Description of issue: Creating/Editing Secure+ Node shows protocol selection (TLS1.3) not available on older CD server. Description of fix: Corrected selection to not present TLS1.3 for older CD server which don't support the protocol. 16. MFT-12716 (2021-12-02) Description of issue: System setting permission for role as No Access not working in CCD in suite mode. Description of fix: Correct permissions logic. 17. CC-8350 (2021-12-10) Descripton of issue: All Config Objects. The Listing of versions under Manage Versions is not showing correctly. There is difference in Versions displayed under Versions dropdown and list of versions under manage versions. Description of fix: Correct the logic to display the correct versions. 18. MFT-12704 (2021-12-12) Description of issue: Automated Reports are not enforcing user's Server Group/DVG restrictions set in role. Description of fix: Correct automated report logic to honor the server group and DVG restrictions defined in the user's role 19. MFT-12747 (2021-12-12) Description of issue: Missing ILMT tag for 6.2.1 Description of fix: Updated installer with new ILMT tag for 6.2.1 20. IT39385/TS007790083/MFT-12768 (2021-12-12) Description of issue: Apache Log4j2 Zero-Day/Log4Shell vulnerability CVE-2021-44228 CVSS 10.0. Description of fix: Upgraded to Log4j2 2.15.0 (from 2.14.0). 21. IT39483/TS007083158/MFT-12611 (2021-12-13) Description of issue: Cannot add Functional Auth users to certain connect direct servers. This had to do with a SEAS user attempting an update from the non CEP environment. Description of fix: Corrected the logic where token signin mechanism is added for seas users (i.e. CC_TOKEN prefix). -------------------------------------------- 6.2.1.0 iFix01 (Released 11/12/2021) 1. IT38918/MFT-12641/TS007291848 (2021-11-03) Description of isssue: Don't see expected SLC alerts associated with a specific server. Description of fix: Did not occur SLC alerts did not appear to be associated with servers whose name was in the alert. This is caused by the fact the queries included the node type, in addition to the name of the server, while the "did not occur" alerts themselves only had the name of the server. The web console query logic was changed to ignore server type when it also queried for specific server(s). 2. MFT-12654 (2021-11-03) Description of issue: Unable to successfully pause CE z/OS server Description of fix: Problem was caused when the EP processed cluster events for pausing and resuming, which caused the system to have the node service associated with the server to be updated. Fix was to stop the processing of cluster events for pausing and resuming unnecessarily. 3. CC-8380 (2021-11-05) Description of issue: The pipe operator is not supported in code for CONTAINS operator with case sensitive or insensitive version in quick search. Need to add support for that. Description of fix: Corrected logic to support pipe operator when specified in filter. 4. CC-8417 (2021-11-05) Description of issue: Advance search in Secure Plus node "DefaultToLN" not working. Description of fix: Corrected search. 5. MFT-12658 (2021-11-08) Description of issue: Customized tag label is not visible in the filtering list for "Completed File Transfer" and "Completed Process" tab in the web UI. Description of fix: Corrected filter display logic to show custom tag labels. 6. CC-5022 (2021-11-08) Description of issue: Automated Reports are not enforcing user's Server Group/DVG restrictions set in role. Description of fix: Corrected logic to use the userid of the report submitter (creator). 7. CC-8392 (2021-11-08) Description of issue: After upgrading from 6002 to 6121 all server configuration screens fail to display for a windows server except for Secure Plus nodes. Description of fix: Corrected logic to handle a large number which caused the issue in javascript. 8. CC-8416 (2021-11-08) Description of issue: Multiple web UI issues to be addressed: Duplicate Netmap entry in Windows Advanced / CD zOS FASP / Secure Plus Cipher Suite template. Description of fix: Corrected all above mentioned issues. 9. MFT-12663 (2021-11-09) Description of issue: lastPollDateTime tag has null value in properties causing issue on UI Side. null (affected server types: CX/FTP/FG/MQ). Description of fix: Corrected logic to ensure lastPollDateTime is not null. 10. CC-8423 (2021-11-09) Description of issue: Web UI Functional Authorities - Security ID is not getting updated for ZOS Server. Description of fix: Correct logic to update Security ID. 11. CC-7447 (2021-11-10) Description of issue: Secure plus filter/column management/sorting for step viewer and step detail viewer for config job not working. Description of fix: Corrected logic for step viewer/step detail. -------------------------------------------- ************************************************************************************************* All fix items listed ABOVE represent fixes made after 6.2.1.0 GA (i.e. 6.2.1.0 iFix01 and later). All fix items listed BELOW represent fixes included in 6.2.1.0 GA. ************************************************************************************************* -------------------------------------------- 6.2.1.0 (Released 11/05/2021) The following represent 6.2.0.0 iFixes included in 6.2.1.0 GA base release 6.2.0.0 iFix11 (Released 11/12/2021) 1. MFT-12552 (2021-09-22) Description of isue: When you see a server with an alert badge on its icon in the Swing console and right click it to view its active alerts you can see nothing. Description of fix: The problem occurs for alerts based on SLC events from standard SLCs because while they have the server name in the event, they did not have the node type set. The fix was to change the query to only specify the server name but not the server type. 2. MFT-12455 (2021-09-23) Description of issue: During configCC, the step to reconfigure the package directory continuously displays the following line over again until "Y" is pressed: "Because this is an imported configuration, existing Packages location path value must be reviewed and reconfigured". Description of fix: Corrected logic to display the message only once and then continue prompting for further input. 3. IT38521/TS006717865/MFT-12501 (2021-09-24) Description of issue: Lack of full TLSv1.3 support for Connect:Direct node configuration in Control Center classic console in the following two scenarios: -right click on Connect Direct node -> Configure Server -> Secure+ -> Secure+ Nodes -> double click on Secure+ entry: (list does not contain TLS1.3 ciphers supported by the server) -right click on Connect Direct node -> Configure Server -> Secure+ -> Secure+ Cipher Suites -> column "Name": (list does not contain TLS1.3 ciphers supported by the server) Description of fix: Corrected logic to request the TLSv1.3 ciphers supported by the server. 4. LS-102 (2021-09-28) Descripton of issue: Rules created from Web UI showing invalid status if it contains special characters. This was caused by escaped characters in rules xml not being removed. Description of fix: Corrected logic to extract exact value from XML as real value not escaped value. 5. MFT-12570 (2021-09-28) Descripton of issue: During configCC, ERR_SSL_VERSION_OR_CIPHER_MISMATCH error occurs when the wrong Alias for Keystore is entered. Description of fix: Enhanced keystore/certificate validation logic to check for: valid keystore password, certificate exists, certificate expired/nearing expiration date, keystore contains multiple certificates, keystore contains private certificate and then re-prompt user for info or display warning msg or exit configCC accordingly. 6. MFT-12567 (2021-09-30) Descripton of issue: The latest MSSQL JDBC driver mssql-jdbc-9.4.0-jre8.jar is not in the list of known valid drivers. Description of fix: Update list with above mentioned driver. 7. CC-7888 (2021-10-01) Description of issue: Connect:Direct Configuration in classic console is missing C:D Unix initparms: cd.file.agent and cdfa.enable. Description of fix: Added support for these paramters. 8. MFT-12560 (2021-10-04) Descripton of issue: The process for deleting an EP, and its constituent parts from Control Center is too onerous. Description of fix: Scripts deleteEP.sh and deleteEP.bat now exist that can be used to remove an EP that's not running, and has no servers that identify it as their assigned or active EP, from Control Center, along with its constituent parts. 9. CC-8190 (2021-10-05) Description of issue: Need to correct user license acceptance in container environment. Description of fix: Corrected user license acceptance check in CCM/CCD container environment. 10. MFT-12542 (2021-10-06) Description of issue: Web UI page not resolving (i.e. HTTP ERROR 503 Service Unavailable) due to duplicate server entries in the CC_SERVER table. This scenario was caused by a customer installing a second EP on the same server and specifying the same port values. The original intent was to install a new single EP instance (instead of a 2nd EP to an existing instance). The workaround was to manually delete the duplicate EP/Web server entries. Description of fix: Implemented validation logic in configCC during port configurtion to make sure no other Web server entries already exist with the same hostname/port. If so, re-prompt user for a different port. 11. IT38654/MFT-12552/TS006939941 (2021-10-08) Description of issue: Email addresses specified in email lists wre still receiving emails after being removed from the list. Description of fix: Properly initialize the addesses list before generating the email. Note this issue (before being fixed) caused a memory leak to occur EVERY TIME an email action runs! It may just be a few dozen bytes each time, but after a while that would add up. It also causes email actions to take longer and longer to run each time they're taken. So this fix will both boost performance and eliminate a memory leak. 12. LS-88 (2021-10-12) Description of issue: The pmrstamp.info sent in the data collector does not give an easy method to determine the version of Linux the customer is running (example: os.version: 3.10.0-1160.21.1.el7.x86_64). Description of fix: Modified the Linux dataCollector output to display the OS version and name (and also added Disk usage and RAM usage) in pmrstamp.info. 13. IT38905/MFT-12350 (2021-10-13) Description of issue: Multiple vulnerabilities in Apache Commons Compress affect Control Center (CVE-2021-35516, CVE-2021-35515, CVE-2021-36090, CVE-2021-35517 (all CVSS 5.5)). Specially crafted 7Z/zip/tar files can result in looping or out of memory conditions causing denial of service. Description of fix: Upgraded affected component jar. 14. MFT-12608 (2021-10-14) Description of issue: Specifying 0.0.0.0 in config.sh/bat for staging DB host to remove staging DB causes Jetty to not start. Description of fix: If 0.0.0.0 is specified for the DB host properly remove all references to the staging DB. 15. IT38906/MFT-12507/TS006716504 (2021-10-15) Description of issue: OS Command execution error occurs when a curl command was specified. Part of the command included an apostrophe (single quote) embeded inside of a quoted string. Description of fix: Add logic to optionally split the OS command string by space excluding the tokens which are single/double quotes by specifying a new property: USE_REGEX_TO_SPLIT_CMD_ARGS = true|false. The default is false. The following example illustrates the results: input = curl -i -H "Content-type: application/json" output = curl,-i,-H,Content-type: application/json (when USE_REGEX_TO_SPLIT_CMD_ARGS = true) output = curl,-i,-H,Content-type:, application/json (when USE_REGEX_TO_SPLIT_CMD_ARGS = false) 16. IT38718/MFT-12599/TS006406084 (2021-10-15) Description of issue: Connection information and more for monitored Connect:Direct servers was all blank Description of fix: The problem was caused by the node services not starting, and therefore the Swing console could not get properties data for the servers from the EP. This was due to the fact that deleted servers had been erouneously left in the CD Configuration Needed system server group. This logic has been fixed, and start up logic was added to ensure no deleted/logically deleted servers remain in the CD Configuration Needed server group. 17. MFT-12619 (2021-10-21) Description of issue: Automated Reports are not enforcing user's Server Group/DVG restrictions set in role. Description of fix: Corrected logic to use the userid of the report submitter (creator). 18. MFT-12558 (2021-10-22) Research/fix objects created from Web UI showing invalid status ... Descripton of issue: The following objects created from the web UI show invalid status if they contain special characters: Rule Schedules, Actions, Simple SLCs, SLC Schedules,calendars and email lists. This was caused by escaped characters in the xml not being removed. This is a follow-on fix to LS-102, where the same fix was made for Rules. Description of fix: Corrected logic to extract exact value from XML as real value not escaped value. 19. IT38908/MFT-12624/TS007229815 (2021-10-22) Description of issue: ORA-12899 errors when running Server Inventory Report. This was caused by commas in the server description field. Description of fix: Corrected logic to ignore commas in the server description. 20. MFT-12628 (2021-10-22) Description of issue: Connection information lost when upgrading from 6002. Description of fix: Insure that server properties are properly populated when upgrading. -------------------------------------------- 6.2.0.0 iFix10 (Released 09/20/2021) 1. CC-6073 (2021-07-02) Description of isue: Server group added before upgrade gets deleted after upgrade in CCD mode. Description of fix: Corrected logic to not erroneously delete the server group. 2. IT36923/MFT-2298/TS004984094 (2021-07-06) Description of issue: The "Export All to CSV" function failed from the Completed File Transfers screen in the web UI. The original query to view the file transfer activity displayed relatively quickly on the screen with many entries. The error occured when attempting to Export all the returned/displayed activity to a CSV file. The error resulted in a pop-up error message stating a system error has occurred. Description of fix: Modified the Export to CSV logic to reduce unnesessary overhead and successfully create the CSV file. 3. IT37449/MFT-12262/TS005891894 (2021-07-08) Description of issue: Error during configCC caused by multiple MSSQL JDBC drivers at different levels in /lib/thirdparty and /web/ccbase/lib/ext directories. The presence of mssql-jdbc-9.2.1-jre8.jar caused a conflict. Description of fix: Added mssql-jdbc-9.2.1-jreX.jar files to a list used to delete all JDBC drivers for all JRE levels (not just JRE 8 levels) from /web/ccbase/lib/ext prior to installing the current user specified JDBC driver and exclude from the classpath. This is a follow-on fix to original fix MFT-12262 in iFix08 to simply add an entry to one list (missed in original port). 4. CC-6771 (2021-07-08) Description of issue: Swing console does not open from inside after logging to scc web console. Description of fix: Corrected logic to obtain proper host:port. 5. IT37572/MFT-12317/TS006029667 (2021-07-09) Description of issue: Server Inventory report failed to run with following error messages: ERROR RecoverableDAO - ORA-12899: value too large for column "IBM_CCD"."SERVERINV_SCC_3620943855261"."SERVER_NAME" (actual: 61, maximum: 50) executeQuery - SQL Exception msg : ORA-00942: table or view does not exist .... executeQuery - SQL State : 42000 .... executeQuery - SQL Error Code : 942 Note: the server name is not really 61 characters long in this case. The error has to do with the user incorrectly specifying the Oracle database parameter NLS_LENGTH_SEMANTICS=BYTE (should be set to CHAR) as documented: https://www.ibm.com/docs/en/control-center/6.2.0?topic=schemas-additional-settings-oracle-database-instance This error will not occur when this property is correctly configured. Description of fix: Made a fix to compensate for the customer mis-configuration to allow the affected reports to successfully execute: Server Inventory Report, High Watermark Report, C:D Configuration Changes Audit Report. 6. MFT-12315 (2021-07-09) Description of issue: MSSQL errors occur during configCC when attempting SQL command: DROP PARTITION SCHEME|FUNCTION because these objects did not exist. Following messages found in ccinstall.log: ERROR DB_Init - Cannot drop the partition scheme 'XX_PART_SCHEME', because it does not exist or you do not have permission. ERROR DB_Init - Cannot drop the partition function 'XX_PART_FUNC', because it does not exist or you do not have permission. (where XX is corresponding table name prefix: eg. CD, CE, EV, etc.) Description of fix: Added a check to determine if the partition scheme and function exist. If not, then skip the DROP command(s). 7. IT37624/MFT-12295/TS005958829 (2021-07-13) Description of issue: configCC.bat/sh is not prompting user to alter the web service non-secure port. Customer initially defined Control Center with web non-secure=0, and secure=58083. They need to have non-secure open. The issue is running configCC now, does not prompt to alter the non-secure port. Description of fix: Corrected logic in configCC to prompt the user to configure the web server non-secure port for either CCM only or CCM/CCD entitlement. 8. IT37591 /MFT-12260/TS005719790 (2021-07-13) Description of issue: RESTART / RESUME commands for a BP (Business Process) fails with the following error message returned in the SI Response: {newWorkflowId=null, isError=true, errorCode=-1, message=Not enough parameters...} Description of fix: Corrected the order of parameters passed to SI in the request. 9. IT37627/MFT-12326/TS005623073 (2021-07-14) Description of issue: Control Center's CD Browser displaying CT (Copy Termination) statistics records differently than CDzOS. Customer recently upgraded to CDzOS v6.0. They have reported seeing different results when viewing statistics using the C:D z/OS IUI and using C:D Browser available through Control Center. The CT (Copy Termination) record when viewed using C:D Browser has the PNODE and SNODE swapped when CDZ is the SNODE in the file transfer. It would appear that CD Browser is looking at the raw CT records to produce the output display under Control Center and must now account for the changes made in CDz 6.0. In CDz 5.2 (and prior releases) the PNODE and SNODE were swapped in the CT, FI and MC statistics records when the local node is the SNODE. This was fixed in CDz 6.0 (and later releases). There was a flag 'xxFXNODE' (where xx is CT, FI or MC) added to 6.0 that indicates when the PNODE/SNODE are corrected. Description of fix: Updated Control Center with C:D Browser 1.5.0.2 iFix29 to obtain the fix. 10. IT37630/MFT-12329/TS006144381 (2021-07-20) Description of issue: Excessive messages in FileAgentService log and Engine log. Description of fix: Changed the FileAgentService message from INFO to DEBUG and updated /conf/EngineLogger.xml to redirect DeploymentService/CDAgentService messages to corresponding logs, instead of Engine log. 11. MFT-12247 (2021-07-20) Description of issue: Web UI should not allow the Externally Authenticated user to reset password. Description of fix: Removed "Reset Password" action for SEAS user from the Actions selection menu (Users and Roles >> List Users >> ... -and- Users and Roles >> List Users >> individual user >> ... Actions). 12. IT37744/MFT-12353/TS006075139 (2021-07-23) Description of issue: Unable to create a rule as shown in documentation: https://www.ibm.com/docs/en/control-center/6.2.0?topic=risfg-how-can-producer-get-notified-when-file-does-not-arrive-in-their-mailbox-within-5-minutes-after-connection-is-initiated Description of fix: Corrected rule validation property table to allow the specified rule. 13. LS-97 (2021-07-27) Description of issue: The forgot password action does not work for admin user on the web UI login screen. The web page shows a message that an email is being sent, but nothing ever comes. There are errors in the ccweb log. Description of fix: Corrected the logic to display message: "Password reset is not allowed for this user". There are special instructions to reset the admin user password. These can be proveded by Support. 14. MFT-12246 (2021-07-27) Description of issue: When an External Authenticated user is created (Users and Roles >> Create User), an incorrect message is displayed: "An email has been sent to the user". No email is sent since no password is maintained in CC for the externally authenticated user. Description of fix: Corrected the display message upon successful creation: "External Auth User has been successfully created". 15. IT37853/MFT-12320/TS006093984 (2021-07-28) Descripton of issue: Emails are not sent when user is created and during password reset. This only occurs when the SMTP server requires authentication. Description of fix: Corrected logic to properly decrypt and pass the SMTP server password in the logon request. 16. LS-93 (2021-08-02) Description of issue: Some VIEWs were missing after a database server crash due to lack of space. The server crash caused Control Center to shutdown. After the space issue was fixed and DB server restarted, Control Center immediately shut down during startup, due to the missing VIEWs (even after running configCC in an attempt to create the views). Description of fix: Updated SQL scripts cc_configCC_[db2|oracle|sqlserver]_fixes.sql to check for the existence of all VIEWs and create any that are missing, whenever configCC is executed. 17. MFT-11873 (2021-08-04) Description of issue: When updating a server's properties in a multi-EP environment, changes aren't propagated to other EPs and Swing consoles Description of fix: Changes were made to improve when Swing consoles are notified of changes to server properties, including server status values. Note it still may take several moments for changes made to be reflected across Swing consoles connected to EPs that are not the active EP for a server. 18. MFT-12402/CC-7247 (2021-08-06) Description of issue: Events generated for pause and resume monitoring do not contain the ID of the initiating user. Description of fix: The element userId will be added to events created for pause and resume monitoring with the value set to the name of the initiating user. 19. MFT-12408 (2021-08-09) Description of issue: Events in SLC Debug reports show a processed time that is derived only from the EVENTS.ACTIONS_COMPLETED value. But that is the time the RuleService completed processing of the event, not necessarily the SlcService processed time, because unless BYPASS_EVENT_MONITOR_FOR_EVENTS is true, which can only be done in a single-EP environment, the SLC service gets its data from the EventMonitor, not the RuleService. Description of fix: Since the MetricsService logs the average EventMonitor delay between the ACTIONS_COMPLETED value and when it reconstitutes them, on an hourly basis, new logic uses those hourly average values to compute an approximate processed time for each event based on the hour each event occurred. 20. CC-6764 (2021-08-16) Description of issue: Found some input edit errors on the web UI Console screen (i.e. hamburger menu in upper right >> System Settings >> Console). Additionally have a requirement to increase the session time out/display warning message values. Description of fix: Corrected screen input edit logic and changed the default "Time Out After" value to 180 minutes and "Display Warning Message" value to 170 minutes. 21. IT38225/MFT-12292/TS005997093 (2021-08-18) Description of fix: Dashboard display is empty. Only showing blank pages and getting 404 error. This occured after a database outage and the web server did not re-establish it's DB connections after the DB server cam back online. Description of issue: Implemented a process that runs in the engine and detects if the DB server had been down. With this fix, when the DB server is restarted, the web server will be restarted to reinitialize the web applications to properly re-establish database connections. This feature is turned off by default. It must be turned on via engine.properties: true. 22. IT38223/MFT-12452/TS006569295 (2021-08-26) Description of issue: ICC performance issue. When the customer used a MSSQL JDBC driver that was not listed in the check list, the JDBC URL did not include SendStringParametersAsUnicode=false setting. Description of fix: Removed the driver specific check to always build the url to include SendStringParametersAsUnicode=false. 23. IT38219/MFT-12415/TS006469655 (2021-08-27) Description of issue: DeploymentService.xml is missing from /conf/services/system as referenced on the following "Troubleshooting Deployment Scenarios" page: https://www.ibm.com/docs/en/control-center/6.2.0?topic=troubleshooting-deployment-scenarios Description of fix: Created a new REST API to configure DeploymentService.xml. This file actually resides in the CC_FILES table. Updated REST API documentation: https://www.ibm.com/docs/en/control-center/6.2.0?topic=support-using-restful-apis-deployment-configuration 24. MFT-12473 (2021-08-30) Description of issue: SSP Audit events for ICAP and SOCKS Proxy configuration objects were not recognized and therefore not handled by Control Center when they were received. Description of fix: Added logic to process audit events from SSP for ICAP and SOCKS Proxy configuration objects. 25. IT38248/MFT-12281/MFT-12410 (2021-0-8-30) Description of issue: Required IBM JRE upgrade to address the following vulnerabilities: - CVE-2021-2161 (CVSS 5.9) - A flaw in the java.lang.ProcessBuilder API on the Windows platform leads to mishandling of escaped quotes inargument strings in certain circumstances. This allows an attacker to manipulate the Process command line and potentially run unexpected commands. - CVE-2021-2369 (CVSS 4.3) - A flaw in the JAR validation implementation may, under certain limited circumstances, lead to a failure to detect signedJAR files that have been modified. The fix ensures that JARs that have been modified since they were signed are properly detected and treated as unsigned. Description of fix: Upgraded from 8.0.6.25 to 8.0.6.35. 26. MFT-12478 (2021-08-31) Description of issue: Database report not working since upgrade to 6.2. Received error message "CCTR189E: Unable to obtain database information from database". The web server entry (node_type_id 99) in CC_SERVER did not have the expected hostname. Description of fix: Modified logic to use the value specified in CCENTER_WEB_START_HOSTNAME in InstallationInfo.properties. 27. MFT-12485 (2021-09-01) Description of issue: When an upgrade is performed from older CDU/CDW versions to 6.2 via CCD, upgrade is successful but version is still appearing as the the older one (in CCD web console >> Servers >> All C:D Servers). Description of fix: Corrected logic to detect a version change in the C:D server after an upgrade and correctly display it. 28. MFT-12483 (2021-09-03) Description of issue: configCC allows the secure web port to be disabled in Suite mode (i.e. both CCM and CCD are installed). CCD requires a secure web port to be configured. Description of fix: Modified configCC logic to not allow the secure web port to be disabled (set to 0). 29. MFT-12494 (2021-09-03) Description of issue: Control Center build job completes as successful when jar signing fails. When this occurs, installers are created with unsigned jars. Description of fix: Corrected the build process to immediately end whenever jar signing fails. 30. IT37358/MFT-12407/MFT-12114 (2021-09-06) Description of issue: DB2 z/OS initialization fails with multiple configCC errors. Description of fix: Corrected issues specific to DB2 zOS (i.e. SQL syntax and logic awareness for differences between DB2 LUW vs DB2 z/OS). 31. IT38404/MFT-12498/TS006763214 (2021-09-13) Description of issue: Director Deploy 'Select Servers' does not allow for column expansion. The full "C:D Version" value was not visible. Description of fix: Modified the screen display to wrap to a second line if needed, to display the complete values. 32. IT38405/MFT-12499/TS006763284 (2021-09-13) Description of issue: Director Server Group display limited to 1 screen. When viewing C:D groups under 'All C:D Groups' in Director, unable to scroll to next set of servers. Limited to 10 servers without the ability to go to the next page. Description of fix: Added capability for page scrolling and selecting number of items per page. 33. IT38406/MFT-11866/TS005079378 (2021-09-13) Description of issue: Scheduled reports stop running 4-5 days after Control Center is re-cycled. This is caused by a database connection leak. Meaning, each time a report is run, a connection is obtained but never closed. Description of fix: Corrected the report logic to always close the database connection upon completion. 34. MFT-12480 (2021-09-14) Description of issue: Customer is unable to run manual SQL queries against the EVENTS table to obtain summary statistics. Needs Events by date and server type report. Description of fix: Created a new report category named "Events Summary" which includes the following reports (i.e. classic java console >> Tools >> Reports >> Define/Run >> Events Summary): -Events By Date Report -Events By Date And Event Type Report -Events By Date and Server Report -Events By Data And Hour Report -Events By Date And Server Type Report -Events By Date-Hour And Server Report -Events By Date-Server And Event Type Report 35. CC-7731 (2021-09-14) Description of issue: Report does not open after logging onto scc web console (applies to container environment). Description of fix: Modified logic to generate the correct URL to route the report to. 36. LS-105 (2021-09-15) Description of issue: configCC fails with a NullPointerException after upgrading from 6002 to 6200 iFix09 with the following error message (from top of stack trace): java.lang.NullPointerException at com.sterlingcommerce.scc.agent.services.jdbc.DB_Init.removeDuplicateCCUsers(DB_Init.java:3540) Description of fix: Added gaurd code to check for a null value to prevent the error. 37. MFT-12529 (2021-09-16) Description of issue: Classic console webstart launch fails on non-secure port when secure port is also enabled. Description of fix: Corrected logic set the correct port when building the url for the webstart launch. -------------------------------------------- 6.2.0.0 iFix09 (Released 06/30/2021) 1. IT36829/MFT-12100/TS005444031 (2021-05-10) Description of issue: FileAgentService logs filling up with unneeded messages, exceptions logged by the ClusterEventMonitor after shutdown initiated, and totals from metrics weren't being logged, only maximum and average values. Description of fix: The FileAgentService was changed to log most messages only when debug level logging is set. Also, changes were made to prevent exceptions from being thrown when it processed CD 400 servers, which aren't able to have CD File Agents. Also, logic was added to the ClusterEventMonitor to stop processing cluster events as soon as it sees the shutdown process has started, which limits the exceptions it will log. And finally, the metrics being logged were by design not logging the total values if average and max values were shown. It was changed to show the total values too as it is helpful information at times. Note these changes were made during the work done for MFT-12092, which was a part of iFix08. They just were not delivered until now as they were not critical. 2. IT36925/MFT-11828/TS004995222 (2021-05-17) Description of issue: Config.sh/bat fails after upgrade due to duplicate USERNAMEs in the CC_USER table and a new unique index cannot be created. Description of fix: Check for duplicates entries and delete them after update any related table entries that referenced them. 3. IT36923/MFT-11868/TS004984094 (2021-05-19) Description of issue: The "Export All to CSV" function failed from the Completed File Transfers screen in the web UI. The original query to view the file transfer activity displayed relatively quickly on the screen with many entries. The error occured when attempting to Export all the returned/displayed activity to a CSV file. The error resulted in a pop-up error message stating a system error has occurred. Description of fix: Modified the Export to CSV logic to reduce unnesessary overhead and successfully create the CSV file. 4. IT36986/MFT-12171/TS005651544 (2021-05-20) Description of issue: Cannot establish a secure connection with the classic console using OpenJDK (does not apply to Control Center installations with the IBM JRE). Description of fix: Corrected a check for the JVM vendor. 5. IT37024/MFT-12181/TS005584597 (2021-05-26) Description of issue: Configuration Management copy parameter option to multiple servers fails after the first server with error: CCFG151E Operation failed. Operation: copy parameters Object type: InitParms Reason: java.lang.IndexOutOfBoundsException: Index: 0, Size: 0 8 Description of fix: Corrected logic that iterates through the config objects parameters to be copied so they'll be there for each server they're to be copied to. 6. MFT-12016 (2021-05-26) Description of issue: New install of Control Center resulted in MSSQL database error: HTTP ERROR 503 SQL Error: 208, SQLState: S0002. This was caused be the improper collation setting having been specified when the database was setup. Per the Control Center documentation one of the following must be specified: SQL_Latin1_General_CP1_CI_AS or Latin1_General_CI_AS. Description of fix: Added Error / Warning messages during configCC execution as follows: 1) If this is a fresh install (i.e. new database), configCC will fail with error messages instructing the user to correct the collation setting. 2) If this is an upgrade (i.e. existing Control Center database), configCC will continue with warning message stating the valid collation settings values and the currently specified invalid setting. 7. LS-65 (2021-05-26) Description of issue: Need to display info/warning messages during configCC about the current summary tables purge setting (i.e. how many days of summary data to keep), in order to help avoid performance issues. Description of fix: Modified configCC logic as follows: If the value is set to 0 (i.e. never purge summary data), warning messages are displayed instructing the user how to run a one-tme manual purge of the summary tables and then afterwards change the value in System Settings in the web UI. Otherwise if the existing value is not 0, the current value is displayed, informing the user it can be changed in System Settings. 8. IT37092/MFT-12153/TS005649292 (2021/06/02) Description of issue: Regardless of the number of summary days of data retained the web console dashboard widgets attempt to show a month of historic data. Description of fix: The dashboard content logic was changed to show a minimum of either 31 days of data, or the number of summary days of data retained (plus one day for the current day) 9. MFT-12213 (2021/06/02) Description of issue: After upgrade from 6.2 iFix08, config.sh displayed database tables out of sync message Description of fix: configCC process has been changed to run the schema changes scripts first and then validate the database tables to avoid the out of sync message. 10. IT37091/MFT-12091/TS05479369 (2021/06/04) Description of issue: Data movement over B2Bi Mailbox adapters not counted as transfers, by default, making it impossible to find data in the completed file transfer activity widget associated with movement over them. Description of fix: Added new engine property, COUNT_TRANSFERS_VIA_MAILBOX_ADAPTORS. It's value is false, by default, but when set true, and ICC is restarted, ICC will mark data moved over B2Bi Mailbox adapters as transfers, which will cause them to be displayed in the completed file transfer view, and allow searches for those transfers to succeed. 11. MFT-12174 (2021-06-04) Description of issue: Duplicate monitoring of a CD server is erroneously allowed, if a CD server definition is updated with the same ippaddr/port of another existing CD server definition. Description of fix: Added a check for this condition upon server update attempt. If so, the following error message will be displayed: "CCTR110E Duplicate monitoring not allowed. This C:D Server {0} at port {1} is already monitored using alias {2}". 12. IT37155/MFT-12221/TS005725519 (2021-06-07) Description of issue: Engine log is flooded with leftover diagnostic messages from troubleshooting previously resolved defect MFT-12138. The messages begins with the text "Uh Oh!!!" as in the following example: java.lang.Exception: Uh Oh!!! No Server properties. Server.setProperties() invoked with |null| for server <> at com.sterlingcommerce.component.common.util.Util.stackTrace(Util.java:841) at com.ibm.cc.model.Server.setProperties(Server.java:941) Description of fix: Removed the offending diagnostic messages. 13. IT37153/MFT-12209/TS005756513 (2021-06-07) Description of issue: The automation to add SEAS users fails in version 6.2 with "password cannot be blank" (i.e. via CCAPI createUser). The following messages are displayed in the engine log: ERROR SccContextChecker - com.sterlingcommerce.scc.common.AclException: Password can not be blank INFO UserMgr - ACL Service.createUser...Begin ERROR AccessControlUtil - CACL014E Error while decrypting password. Description of fix: Added a check to skip password validation for SEAS users. 14. IT37162/MFT-12206/TS005691464 (2021-06-07) Description of issue: Need to limit the data that goes into the logs or limit the size of the SCC/web/ccbase/logs Log Files: sccwebclient-.request .request. Files are not required for normal operations and can produce multi GB files. Description of fix: Changed the default configuraiton to turn off logging to the files. These files are not required for normal operations. If needed for a specific issue, Support will instruct how to turn on logging. 15. MFT-12046 (2021-06-07) Description of issue: Required updates to address the following vulnerability: Upgrade Apache log4j - CVE-2020-9488 - CVSS 3.7 Description of fix: Applied updates to above components. 16. IT37171/MFT-11976/TS004975555 (2021/06/07) Description of issue: The email test function in the web UI fails if the SMTP server requires authentication (i.e. System Settings >> Email Server >> Test). Description of fix: Corrected the Email Server test function to properly pass the username/password in the request and provide more meaningful error messages, due to bad input data or a connection problem. This is a follow-on fix to the original first fix attempt for this issue in the previous 6200 iFix08, but with new APAR number. 17. IT37167/MFT-12148/TS005604608 (2021-06-08) Description of issue: CC shuts down due to errors inserting/updating entries into the CC_PROCESS table. Description of fix: Ensure that insert failures due to duplicate entries are handled as updates. 18. IT37295/MFT-12145/TS005590679 (2021-06-15) Description of issue: Connecting to Director corrupts previous configuration, reverting to default values in Server Properties. Description of fix: Update logic to preserve existing CD server definitions. 19. MFT-12266 (2021-6-16) Description of issue: Requirement to support the Linux Power LE platform Description of fix: Introduced Linux Power LE installers/fix packages beginning with iFix09. 20. IT37365/MFT-12249/TS005842283 (2021-06-21) Description of issue: Connect:Direct Statistics Detail Report is not showing complete filenames for the Source File and Destination File. Description of fix: Corrected the report definition to display the complete file name. 21. MFT-12066 (2021-06-21) Description of issue: Required update to address the following PDFBox vulnerabilities: CVE-2021-31811 CVSS 5.5 / CVE-2021-31812 CVSS 5.5 Description of fix: Applied update to above component. 22. MFT-12104 (2021-06-22) Description of issue: Required update to address the following Castor vulnerability: CVE-2014-3004 - CVSS 5 Description of fix: Applied update to above component. 23. MFT-12282 (2021-06-23) Description of issue: Build date/time calculated using hour of day as 01-24 (instead of 00-23), causing confusion. Following example shows an engine log entry where the installer was built during 11pm: "Starting Engine 6.2.0.0_iFix08 - build June 21 2021 24:03". This should be calculated/displayed as 23:03 instead. Description of fix: Corrected the build process to use the SimpleDateFormat specification for hour of day 00-23. 24. IT37399/MFT-12257/TS005775429 (2021-06-23) Description of issue: After upgrading from 612 to 62 ICC crashing with out of memory (OOM) error Description of fix: Changes made to deal with "Maximum open cursors exceeded" issues exposed a logic error that had to do with how statements were being created, but not closed, when performing batch updates and inserts. The logic has been changed to use a single statement, instead of multiple ones, which is closed, which resolves the memory leak that was occurring. 25. MFT-12240 (2021-06-24) Description of issue: Requirement to allow Sterling Secure Proxy (SSP) servers to be monitored via Open Server Architecture (OSA). Description of fix: You can now use Open Server Architecture for IBM Sterling Secure Proxy event/status publishing for IBM Sterling Control Center Monitor monitoring. For more information, refer to: https://www.ibm.com/docs/en/control-center/6.2.0?topic=considerations-sterling-secure-proxy / https://www.ibm.com/docs/en/control-center/6.2.0?topic=issues-monitoring-osa-servers 26. IT37453/MFT-12227/TS005681027 (2021-06-24) Description of issue: Web console times out after 30 minutes, logging off the user, no matter what timeout value is specified in the web UI (i.e. home page >> hamburger menu (upper right) >> System Settings >> Console >> Time Out After). Description of fix: Corrected logic to populate the timeout value in multiple locations (tables/xml files). Please note: If a change is made to any of the values on the Console screen, a re-cycle is required of all EPs. Whenever an update is made on this page, the following pop-up message will display: "Data updated succesfully. For this change to become effective, it requires restarting all instances of Event Processor" 27. IT36205/MFT-11866/TS005079378 (2021-06-24) Description of issue: Scheduled reports are failing to run in Jasper (thousands of old virtual work files found in: /web\ccbase\reports\temp\virt-xxxxxxxxxxxxxxxx. Description of fix: Added logic to remove the temporary virtual work files during engine startup and upon report execution completion to ensure proper cleanup. This is a follow-on fix to the original first fix attempt for this issue in the previous 6200 iFix06. 28. MFT-12172 (2021-06-25) Description of issue: Requirement to allow users to create custom reports. Control Center provides several out of the box reports that can be run on demand and schedule basis. These out of the box reports are generated using Jasper Reports Library. Description of fix: You can now create your own Jasper report using Jasper Report Sudio and use it within Control Center. Please refer to the Control Center online documentation for detailed instructions: https://www.ibm.com/docs/en/control-center/6.2.0?topic=reporting-custom-reports 29. IT37449/MFT-12262/TS005891894 (2021-06-25) Description of issue: Error during configCC caused by multiple MSSQL JDBC drivers at different levels in /lib/thirdparty and /web/ccbase/lib/ext directories. The presence of mssql-jdbc-9.2.1-jre8.jar caused a conflict. Description of fix: Added mssql-jdbc-9.2.1-jreX.jar files to a list used to delete all JDBC drivers for all JRE levels (not just JRE 8 levels) from /web/ccbase/lib/ext prior to installing the current user specified JDBC driver and exclude from the classpath. -------------------------------------------- 6.2.0.0 iFix08 (Released 05/11/2021) 1. IT36651/MFT-12027/TS005305922 (2021/04/22) Description of issue: Excessive database cursor usage resulted in reoccuring "ORA-01000: maximum open cursors exceeded" errors and/or seeing high database cursor usage by ICC. Description of fix: Reduced cursor usage by changing more logic to stop caching queries that would never be used again. 2. CC-5039 (2021/04/28) Description of issue: HTTP Error 500 javax.servlet.ServletException: org.apache.jasper.JasperException while launching the SCC launch page. Description of fix: Removed obsolete jasper jars from cdbrowser.war. 3. LS-68 (2021/04/29) Description of issue: configCC failed from 6.1.x upgrade to 6.2.0.0 (AUDIT_LOG gone and installer log missing from data collector). Description of fix: Corrected a reference to an upgrade script ccd1000001_iFix1_[dbtype]_changes.sql which did not get executed during configCC (name was missing an underscore). Also corrected the name of the the installation log in the data collector (i.e. IBM_Sterling_Control_Center_V6.2_Install_mm_dd_yyyy_hh_mm_ss.log). The version reference had been changed to uppercase beginning with 6.2.0.0 (i.e. v6.2 >> V6.2) 4. LS-55 (2021/04/29) Description of issue: INFO messages that are filling up Engine logs: "Adding stat with Unknown Process name ......". Description of fix: Changed this message from INFO to DEBUG as to not fill the logs. 4.1 IT36868/MFT-11976/TS004975555 (2021/04/30) Description of issue: The email test function in the web UI fails if the SMTP server requires authentication (i.e. System Settings >> Email Server >> Test). Description of fix: Corrected the Email Server test function to properly pass the username/password in the request. 5. MFT-12039 (2021/05/04) Description of issue: Required updates to address the following vulnerability: Upgrade Jar ICU4J - CVE-2020-10531 - CVSS 9.8 Description of fix: Applied updates to above components. 6. MFT-12040 (2021/05/04) Description of issue: Required updates to address the following vulnerability: Upgrade Jar Apache HttpClient - CVE-2020-13956 - CVSS 5.3 Description of fix: Applied updates to above components. 7. MFT-12041 (2021/05/04) Description of issue: Required updates to address the following vulnerability: Upgrade Jar Spring Framework - CVE-2020-5421 - CVSS 5.3 Description of fix: Applied updates to above components. 8. MFT-12043 (2021/05/04) Description of issue: Required updates to address the following vulnerabilities: Upgrade Jar - Jetty: Java based HTTP/1.x, HTTP/2, Servlet, WebSocket Serverr - CVE-2020-27218 - CVSS 5.8 + CVE-2020-27216 - CVSS 7.8 Description of fix: Applied updates to above components. 9. CC-5982 (2021/05/04) Description of issue: On switching from non secure CCM mode to secure configuration in all products mode (CCM/CCD), facing issue in downloading jnlp file, error in remoteUIURL api. Description of fix: Added in required file for configuring secure port and ssl. 10. MFT-12038 (2021/05/04) Description of issue: Required updates to address the following vulnerabilities: Upgrade Jar Apache Ant - CVE-2020-1945 - CVSS 6.5 / CVE-2020-11979 - CVSS 5 Description of fix: Applied updates to above components. 11. MFT-12105 (2021/05/04) Description of issue: Required updates to address the following vulnerabilities: Upgrade Jar CKeditor WYSIWYG editor: - CVE-2021-26271 CVSS 7.5 / CVE-2021-26272 - CVSS 7.5 / CVE-2018-17960 - CVSS 6.1 / CVE-2020-9281 - CVSS 6.1 Description of fix: Applied updates to above components. 12. MFT-12102 (2021/05/04) Description of issue: Required updates to address the following vulnerability: Upgrade Jar JasperReports - CVE-2018-18809 - CVSS 9.9 Description of fix: Applied updates to above components. 13. MFT-12036 (2021/05/04) Description of issue: Required updates to address the following vulnerabilities: Upgrade Jar IBM MQ - CVE-2020-4310 - CVSS 5.9 / CVE-2020-4320 5.3 / CVE-2019-4762 CVSS 5.9 / CVE-2020-4338 CVSS 5.1 Description of fix: Applied updates to above components. 14. MFT-12042 (2021/05/04) Description of issue: Required updates to address the following vulnerability: Upgrade Jar Guava: Google Core Libraries for Java - CVE-2020-8908 - CVSS 5.4 Description of fix: Applied updates to above components. 15. MFT-12124 (2021/05/05) Description of issue: Strengthen algorithm of encrypting internal keys. Description of fix: Changed key encryption algorithm. 16. MFT-12037 (2021/05/05) Description of issue: Required updates to address the following vulnerabilities: Upgrade Jar Hibernate ORM - CVE-2020-25638 - CVSS 7.4 / CVE-2019-14900 CVSS Description of fix: Applied updates to above components. 17. MFT-12138 (2021/05/08) Description of issue: CD Server definition was erroneously deleted after upgrading from 6.1.x. After the upgrade, the web UI has logic to query all the CD servers that do not have a value for CC_SERVER.DUAL_HOST_NAME column and updates the value. The query that retrieved the Servers did not have this additional condition: AND logicallyDeleted = 0. When this process posts a cluster event, it posts the cluster event for an already deleted server entity. And it causes the EP to delete an active server. Description of fix: Corrected the conditional query. 18. IT36829/MFT-12092/TS005514377/TS005581175/TS005596248/TS005552025 (2021-05-10) Description of issue: During server reassignment CC_SERVER.PROPERTIES entry for server becoming null rendering the server unable to be monitored. Description of fix: When server entities are updated, if up-to-date properties are not available from the node service, which happens when the node service is stopped, the logic was updated to no longer null out CC_SERVER.PROPERTIES. 19. MFT-12144 (2021/05/10) Description of issue: Upgrade to 6200 (from 6002 and 6130) fails in configCC, when using Oracle database. Description of fix: Added a check to skip execution of the offending script when upgrading with an Oracle database. -------------------------------------------- 6.2.0.0 iFix07 (Released 04/12/2021) 1. IT36373/MFT-11877/TS005005223 (2021-03-26) Description of issue: During SEAS Authenticated User logging into Web Console, "extended authentication check failed" error occurs. Description of fix: Fixed the issue by addressing the case mis-match while checking the existence of the user ID. 2. MFT-12007 (2021-04-06) Description of issue: Not able to schedule/automate the Server Status Report. The following message was displayed in the classic console when attempting schedule the report: "The following Report Types are not supported: Server Status Report". Description of fix: Corrected saved report type validation logic. 3. MFT-11749 (2021-03-25) Description of issue: Address vulnerablities: -General Information Disclosure CVE-2021-20529 CVSS 5.3 -Clickjacking in cdbrowser Description of fix: Removed webserver version from response / Upgraded to to latest cdbrowser.war file. 4. IT36496/MFT-11643/MFT-11775/MFT-11823/MFT-11824 (2021-04-07) Description of issue: Required IBM JRE upgrade to address the following vulnerabilities: -Flaw in the CertPath impl. allows bypass of cert. fingerprint checks - CVE-2020-14782 - CVSS 3.7 -User could gain unauthorized read access to java embedded accessible data. CVE-2020-114781 - CVSS 3.7 -Buffer overflow in widely used function writing characters to a file - CVE-2020-27221 - CVSS 9.8 -Unauthenticated attacker could cause a denial of service - CVE-2020-2773 - CVSS 3.7 Description of fix: Upgraded from 8.0.6.15 to 8.0.6.25. 5. MFT-11886 (2021-04-08) Decription of issue: Remove remaining sccwebstart.war Jasper dependencies (and remove Jasper jars). This is a follow-on fix to MFT-11885 in previous iFix06 where the Jasper jars had to be re-instated due to some remaining dependencies in some of the reports. Description of fix: Removed the remaining dependencies and removed all Jasper jars from sccwebstart.war. -------------------------------------------- 6.2.0.0 iFix06 (Released 03/19/2021) 1. IT35740/MFT-11783/TS004884358 (2021-01-29) Description of issue: Node messages shown in the Swing console sometimes include the full exception stack trace. Description of fix: Stopped appending the exception trace to the message text (in most cases) to be displayed by the Swing console. 2. MFT-11767 (2021-02-01) Description of issue: Unable to run CX Summary Report resulting in the following error messages: ERROR ScheduledReportsJob - Unable to generate report output. Exception Msg :Could not load the following font: pdfFontName: DejaVu Sans / pdfEncoding: Cp1252 / isPdfEmbedded : false Description of fix: Corrected font specification in the report template. 3. LS-62 (2021-02-04) Description of issue: When tracing is enabled for monitored Connect:Direct server the output goes to the console instead of the appropriate log file. Description of fix: Redirected console output generated by the CDAIJ to the appropriate log file via code changes in Control Center. 4. IT35755/MFT-11773/TS004868677 (2021-02-09) Description of issue: Default summarizer computed invalid transfer durations for SFG redeliveries. Description of fix: Adjusted summarizer logic to account for the fact that SFG redeliveres are done with the same process ID as the original deliveries and that those processes have multiple end events but a single start event. 5. IT35848/MFT-11764/TS004546288 (2021-02-09) Description of issue: AdHoc Reports do not allow the report to be saved as PDF, XLS, XML. Description of fix: Added a new "Report Output Format" selection screen in the report wizard which allows the user to select one of the following formats: HTML, PDF, CSV, Single sheet XLS, Multi Sheets XLS. HTML is the default. 6. MFT-11803 (2021-02-09) Description of issue: Warnings generated in engine log when updating Servers in swing console: Warning: Neither heartbeat interval nor polling interval was specififed for [server name] Description of fix: Removed warning message. 7. MFT-11799 (2021-02-09) Description of issue: After exporting and importing config to a new instance, when admin user first logs in to web UI, it prompts for email address. This would seem to indicate that the email address, which was already defined in the instance when config was exported, is not being included in export. Description of fix: Corrected logic to correctly import the admin user email address. 8. MFT-11800 (2021-02-09) Description of issue: Port to maint branch RUNBATCH allows creation o a user with no pasword. Description of fix: Added logic to verify password is present and conforms to password policy. 9. CC-4336 (2021-02-09) Description of issue: Audit log entries for changes to System Settings are not showing up in ICC Conig Changes Audit report. Description of fix: Corrected audit log logic to correctly display System Setting objects in the report. 10. MFT-11801 (2021-02-10) Description of issue: Logger errors running exportConfig.sh Description of fix: Corrected casing of the following reference in some scripts/xml files: FROM configEximLogger.xml TO ConfigEximLogger.xml 11. MFT-11798 (2021-02-10) Description of issue: Engine will not start after importing configuration with DVG-restricted Role. Description of fix: Moved reference to VisibilityService.xml to a common startup services list. 12. MFT-11802 (2021-02-10) Description of issue: DB Info statistics panel not displaying correct record count. Description of fix: Corrected panel display. 13. IT35963/MFT-11781/TS004901712 (2021-02-12) Description of issue: IBM Control Center classic console fails to open when launching sccwebstart.war, while downloading a jasper jar file, resulting in the following stack trace error message: java.io.IOException: Server returned HTTP response code: 503 for URL: host-name:port/webstart/lib/Jasper_Jars/jasperreports-6.7.0.jar Description of fix: Removed obsolete jasper jar files from sccwebstart.war 14. IT35971/MFT-11766/TS004818440 (2021-02-12) Description of issue: Error while processing osa event :: NullPointerException","statusCode":"BAD_REQUEST","statusCodeValue":400} Description of fix: Added guard code to check for unconfigured parameters. 15. MFT-11817 (2021-02-14) Description of issue: Cannot enable node discovery for servers that use cert based authentication. Description of fix: Allow for discovery if a secure protocol in in use. 16. IT35892/MFT-11695/TS004688667 (2021-02-17) Description of issue: High cursor count associated with Control Center in Oracle database Description of fix: The query used to obtain the events needed to summarize processes was being cached by Control Center, causing a cursor to be left open as long as it was, but there's no point in caching those queries as they're never used again, so the fix was to stop caching them. 17. CC-4945 (2021-02-18) Description of issue: Getting exception: Invalid new install bundle Description of fix: Modifed error message to include install bundle ID. 18. IT36004/MFT-11851/TS004956346 (2021-02-27) Description of issue: CCTR135I slow inserts into EVENTS occurring Description of fix: Changed some queries used for MSSQL servers related to handling alerts, improved the logic used to automatically handle alerts, and added a new index to CC_PROCESS for MSSQL server databases. 19. MFT-11846 (2021-03-01) Description of issue: Duplicate records in NODE_TYPE table caused shutdown. This condition can exist if an old 5.4.2.2 release is upgraded to a 6.x release. The following error mesages were displayed in the engine log. ERROR SQLExceptionShutdownHandler - ** SQLExceptionShutdownHandler entered with sqlex=java.lang.IllegalStateException: Found more than one NodeType with NODE_TYPE "3"! ERROR SQLExceptionShutdownHandler - ** Event not updated or details on what was being done when error occurred -> Found more than one NodeType with NODE_TYPE "3"! ERROR SQLExceptionShutdownHandler - Found more than one NodeType with NODE_TYPE "3"! Description of fix: Added logic to check if the NODE_TYPE table contains a primary key. If there is no primary key, the table is re-created with primary key and re-populated with one of each NODE_TYPE (i.e. DROP, CREATE, INSERT). 20. MFT-11885 (2021-03-03) Description of issue: The following reports cannot be created in the classic console after implementing MFT-11781: [Configuration Management/all reports], [Monitoring/High Watermark Report], [Audit/Sterling Connect:Direct Configuration Changes Audit Report]. Some jars were removed from sccwebstart.war believed to have no remaining dependencies across all reports. Description of fix: Re-instated the previously removed Jasper jars in sccwebstart. There will be a follow-on fix to eliminate the remaining dependecies on these jars from the reports mentiond above, so they may be removed again later. 21. MFT-11908 (2021-03-08) Description of issue: See null pointer exceptions, and node services are started and stopped multiple times when server reassignments are performed. Description of fix: Adjusted the logic that handles server updated cluster events to ignore them if the server was in the process of being reassigned. 22. IT36169/MFT-11928/TS005067737 (2021-03-10) Description of issue: Customer wanted to use the embedded flag expression (?s) in the regex for a milestone parameter value but the existing validation logic would not permit parenthesis to be specified in the value Description of fix: Updated validation logic to allow parenthesis to be specified. 23. IT36205/MFT-11866/TS005079378 (2021-03-12) Description of issue: Scheduled reports fail to run due to a problem creating temporary tables. Description of fix: Added logic to detect if the temp tables normally used during report execution fail to be created. If so, use a CSV file instead to create the report. 24. IT36206/MFT-11831/TS005021428 (2021-03-12) Description of issue: Automated reports are not being emailed, resulting in the following error message found in the engine.log: CRPT038E Error while trying to send E-Mail message. Error message : Access to default session denied Automated Report Group : [report-group] Schedule : [schedule-name] Schedule Time : hh:mm Report Name : [report-name] Description of fix: Modified the email send function to create a new session instance, instead of using the default session instance. 25. IT36247/MFT-11878/TS005095362 (2021-03-12) Description of issue: User getting HTTP ERROR 503 Service Unavailable when trying to access the web UI. The cause of this was an SQL syntax error due to the existence of 1000+ user roles being defined. The following error was displayed in ccweb.log: Caused by: java.sql.SQLSyntaxErrorException: ORA-01795: maximum number of expressions in a list is 1000 Description of fix: Modified the logic which constructs the query to limit each IN clause to a maximum of 999 items. 26. IT36273/MFT-11870/TS005076913 (2021-03-16) Description of issue: Reinstalling to a deleted/cleared directory fails. Description of fix: Update CCNameConfigurator to treat this as if installation.propeties had AGENT_NAME_INSTALLED=true and CCENTER_NAME=existing_ep_name specified. 27. IT36274/MFT-11903/TS005023041 (2021-03-18)MFT-11903: TS005023041 - High CPU on EPs that are not the CEP Description of issue: High CPU on EPs that are not the CEP. Description of fix: Changed the DeploymentService, a CCD service, to only run when it is on the CEP. Other changes made include moving the DeploymentService.xml and LicenseDataCollectorService.xml configuration files to the database at startup, and allowing their values to be modified via the ICC Web interface. 28. IT36282/MFT-11945/TS005212567 (2021-03-18) Description of issue: Java jar signing certificate expired on 2021-03-14, at which time users could no longer launch the classic console via webstart because the jars were not signed with a timestamp. Description of fix: Implemented a new jar signing process using a current certificate and also turned on the the jar signing timestamp. This timestamp is used to verify the code was signed prior to the certificate's expiration date. -------------------------------------------- 6.2.0.0 iFix05 (Released 01/22/2021) 1. CC-4221 (2020-11-27) Description of issue: CognosStopper erroneously called during self initiated shutdown due to a database outage. The following error messages occurred in the engine.log: ERROR CognosStopper - CRUL041E Error while invoking user operation: CognosStopper for rule: CognosStopper ERROR CognosStopper - Cannot run program "/bin/sh" (in directory "/Cognos/bin"): error=2, A file or directory in the path name does not exist. Description of fix: Removed the call to the deprecated code. 2. CC-4095 (2020-11-30) Description of issue: Multiple bundle are getting added with same name from CCD UI Description of fix: Updated database upgrade scripts to ensure a unique index is created on CC_BUNDLE table to prevent multiple bundles with the same name. 3. CC-3901 (2020-12-01) Description of issue: After upgrade of CCD installer from 1.2 to 6.2 if we do not confirm truststore and keystore and reconfirm it second time getting truststore already been used error. Description of fix: Added logic to detect and recover from duplicate truststore. 4. CC-4222 (2020-12-01) Description of issue: Unable to delete tokens message in Jetty log as follows: main] c.a.a.s.ScheduledAuthenticationTasks :Error while deleting Tokens :: [ACCESS: [token here - long character string] Description of fix: Corrected logic to delete tokens. 5. CC-4126 (2020-12-01) Description of issue: Server export is exporting only first page data irrespective of navigation of list Description of fix: Corrected logic to export all servers (not just the currently displayed page). 6. CC-4199 (2020-12-02) Description of issue: Users added with Web console do not set time zone preference, resulting in Swing console NullPointerException. Description of fix: Set default timezone setting to UTC. 7. CC-1853 (2020-12-02) Description of issue: Search is disabled if filter is made hidden with the filter icon toggle Description of fix: Corrected filter icon toggle processing leave search enabled. 8. MFT-11625/IT35132/TS004557926 (2020-12-02) Description of issue: StartWebAppServer.bat will fail if %DATE% has a comma in it. Description of fix: Remove a date/time entry from the name of the jettyStartup log file. 9. MFT-11667/IT35201/TS004500628 (2020-12-09) Description of issue: The web UI is not loading, although port 58082 is up. HTTP 503 error. This was caused by two MSSQL JDBC drivers at different JRE levels both in a directory. The presence of both correct/invalid drivers (mssql-jdbc-8.4.1.jre8.jar/mssql-jdbc-8.4.1.jre14.jar) caused a conflict. Description of fix: Added logic in configCC to delete all JDBC drivers for all JRE levels (not just JRE 8 levels) from /web/ccbase/lib/ext prior to installing the current user specified JDBC driver. 10. CCP-12386 (2020-12-09) Description of issue: Missing permissions cause install/configuration failures. Description of fix: Added code to check required database permissions before proceeding. 11. CC-4036 (2020-12-10) Description of issue: Intermittent NPE when starting an EP as it starts monitoring its servers Description of fix: Fixed the logic that caused this. 12. LS-38 (2020-12-10) Description of issue: Users use the EST time zone errouneously thinking it supports Daylight Saving Time when they really should use the time zone named America/New_York Description of fix: Logic added to remove EST as a choice and to update current usage to be America/New_York. The one area that may require manual modifications are reports. Scheduled reports using EST will be updated, but report criteria specifying EST will have to be manually updated. 13. CC-3572 (2020-12-10) Description of issue: Counts displayed of active Swing console users can be incorrect. Description of fix: Logic added to address incorrect Swing console user counts. 14. IT35194/CC-4313/MFT-11633/TS004561575 (2020-12-10) Description of issue: Tag mapped value not being set consistently. This occurred whenever the value came from XML string and contained a new line character or other non-alphanumeric characters. Description of fix: The logic used to extract the tag mapped value from XML string was updated to account for any valid value, including new line characters. 15. IT34943/CC-4314/MFT-11546/TS004390039 (2020-12-10) Description of issue: ICC doesn't recognize the 'replication' events from Global Mailbox Description of fix: The real issue was ICC when ICC determined that the GM server went down, it set the status of all the servers components to UNKNOWN, resulting in red lines that never changed because new status events from the components are not sent when the GM server restarts. So rather than change the status of an OSA servers components to UNKNOWN when the OSA server is determined to be down, the status of its components will be left as they are.. Also, before this update, when heartbeat event received, server's status would only be changed to up/active if its status was down or unknown. Now the status will be changed to active, and a server up event broadcast, if it was not in an active status before receiving the heartbeat event. 16. CC-4037 (2020-12-10) Description of issue: Errors in engine log when deleting B2B server in multi-EP system Description of fix: Logic that caused errors to be logged has been fixed. 17. CC-3941 (2020-12-10) Description of issue: Performance problems caused when using Swing console in multi-EP environment. Description of fix: In a multi-EP environment, requests for data made by Swing consoles are sometimes forwarded to other EPs, which has a negative impact on performance. The bulk of these remote procedure calls have been eliminated for data from monitored Connect:Direct servers and for Connect:Direct File agents. 18. IT34944/CC-4315/MFT-11576/TS004456801 (2020-12-10) Description of issue: ICC shows SEAS down, even though SEAS up. Description of fix: New diagnostic ability added to the EventProcessorService, which handles OSA events for processing. Specifically a new log file, EventProcessorServiceEvents, was added to allow all OSA data received, from servers like SEAS and GM, to be seen. If the EngineLogger.xml is updated, such that debug level logging is enabled for EventProcessorServiceEvents, all events processed by the EventProcessorService will be written to the EventProcessorServiceEvents log file. 19. CC-4216 (2020-12-10) Description of issue: Weak cipher suites warning message appears in jetty log. Description of fix: Disabled weak cipher suites which caused the warning message from jetty default log files 20. CC-3838 (2020-12-10) Description of issue: Slow running Server Inventory report. Description of fix: Eliminate remote calls to EP when when this report is run in cluster mode. 21. MFT-11472 (2020-12-11) Description of issue: Upgrade from 6.0.0.x with a STAG database to 6.2.0.0 fails. After running configCC, engine startup fails with the following error message: ERROR CCEngine(CCenter) - CCTR142E The Event Processor name has not been properly configured since its location is not set. Please run configCC to configure event processor name. Name: CCenter Description of fix: Corrected logic to properly reference both the PROD and STAG database connection pools as needed. 22. CC-3782 (2020-12-14) Description of issue: Audit log creating multiple entries for adding SNMP host and other objects in System Setting. Description of fix: Modified logic to create audit log entry for add and delete. 23. MFT-11481 (2020-12-16) Description of issue: Unable to login in web console after upgrading to ICC 6.2 Description of fix: Corrected Oracle upgrade scripts. 24. CC-4219 (2020-12-17) Description of issue: Web App log messages are in different time zone than the Jetty Log messages Description of fix: Corrected logging configuration files to use consistent time zones. 25. LS-52 (2020-12-17) Description of issue: Oracle JDBC driver ojdbc10.jar remained in /lib/thirdparty after having been erroneously specified during configCC. When the customer ran configCC again to specify the correct ojdbc8.jar, the presence of both correct/invalid drivers (ojdbc8.jar/ojdbc10.jar) caused a conflict. Description of fix: Added ojdbc10.jar to a list of drivers to ensure it is excluded from the classpath (i.e. only the current JDBC driver is added). 26. CC-4009 (2020-12-17) Description of issue: Cannot enter initparms for license and install agent on CDW and CDU servers. Description of fix: Add support for the new fields. 27. MFT-11468 (2020-12-17) Description of issue: Json documentation fot heartbeat interval listed to value as a string and not a number. Description of fix: Change code to accept a sting that is a number with a warning as well as a number. 28. CC-4215 (2020-12-21) Description of issue: Monitor rest time ignored for CD servers with manage and monitoring turned off. When a CD server is configured with both Do not monitor and Do not allow configuration management selected, the internal logic in the CD Node service ignores the monitor rest time and polls the server every 60 seconds. Description of fix: Corrected logic to always use monitor rest time, regardless of the settings for Do not monitor and Do not allow configuration management. 29. CC-4375/MFT-11718 (2020-12-21) Description of issue: Error occurs importing monitored server from exported configuration at startup while processing the server's time zone value. Description of fix: Logic used to ascertain time zone from database treated the time zone ID as a numeric value instead of the string it is. This was fixed. 30. CC-4255 (2020-12-21) Description of issue: Servers configured to not be monitored or managed had a fixed monitor rest time of one minute instead of honoring the configuring monitor rest time. Description of fix: Logic changed to honor the configured monitor rest time even for servers not monitored or managed. 31. CC-4362 (2020-12-23) Description of issue: Database purge and movement timed scheduling not working properly. Note daily scheduling works fine. Description of fix: Correct tome zone handling. 32. MFT-11650 (2020-12-28) Description of issue: Can not access the Web Console, gets error HTTP ERROR 503 Service Unavailable. This was caused by a program referencing table lowercased column name instead of uppercased. Following error message found in ccweb-yyyy-mm-dd.log: [ main] o.h.e.j.s.SqlExceptionHelper : Invalid column name 'm_version'. Description of fix: Corrected code to referenced columns names in uppercase. 33. LS-35 (2020-12-28) Description of issue: I have multiple Connect Direct servers not U/W/Z defined in CCD/CCM and they show in the CCD Web Console, but the CCD Dashboard OS Distribution does not show these as part of Unknown or as the platform they are. CD i5/OS servers are not being counted. Description of fix: Corrected logic to count/display OS distributions as expected in categories: Unix, Unknown, Windows, Z/OS. 34. CC-4213 (2020-12-29) Description of issue: Bad error text when adding a duplicte SNMP host (i.e. error message pop-up box only partially display). Description of fix: Corrected error display. 35. LS-47 (2020-12-29) Description of issue: Error messages with stack trace written to engine.log when executing startWebAppServer.sh due to a normal InteruptedException. Beginning of of stack trace messages follow: [StreamConsumerThread - //bin/startWebAppServer.sh] ERROR StreamConsumer - RULE011E Error while executing user operation: //bin/startWebAppServer.sh Stack Trace: java.io.IOException: Stream closed at java.io.BufferedInputStream.getBufIfOpen(BufferedInputStream.java:181) Description of fix: Removed logic which catches this type of exception. Processing continues as normal (but without displaying the stack trace). 36. CC-4101 (2020-12-30) Description of issue: Users and Roles summary report shows incorrect IP address for logged in user. Description of fix: Corrected report. 37. CC-3724/CC-4086/MFT-11716 (2020-12-30) Description of issue: CCM 6.2>User having view permission on system setting not able to view Audit Logs Swing UI. Description of fix: Corrected permissions checking to properly allow audit logs visibility. 38. CC-4208 (2021-01-03) Description of issue: Misspelling on Successful Windows Installation Dialog. Description of fix: Correct dialog display. 39. LS-19 (2021-01-03) Description of issue: Errors in install logs are confusing customers (i.e. multiple occurrences of the following message): ERROR Unable to locate appender "B2BConversionAppender" for logger config "B2BConversion" (multiple occurrences of this line) Description of fix: 40. CC-4414 (2021-01-04) Description of issue: Non-admin users unable to update custom views, properties for web console, caused by erroneous authentication failure for non-admin user. Description of fix: Corrected authentication parameter. 41. MFT-11589 (2021-01-05) Description of issue: Required updates to address the following vulnerabilities. CVE-2020-1953 CVSS 7.5 - ccroot/lib/thirdparty/commons-configuration2-2.7.jar CVE-2012-5784 CVSS 5.8, CVE-2014-3596 CVSS 5.8, CVE-2018-8032 CVSS 4.3 , CVE-2019-0227 CVSS 5.4 - ccroot/lib/thirdparty/axis-ant.jar Description of fix: Applied updates to above components. 42. CC-4365 (2021-01-05) Description of issue: In License API , historical usage, no of servers are coming up as blank Description of fix: Corrected logic to display historical usage. 43. CC-4433 (2021-01-07) Description of issue: Connection type,connection timeout and status monitor rest time are getting displayed as blank on editing server. Description of fix: Corrected display logic. 44. CC-4482 (2021-01-07) Description of issue: Required update to address vulnerability dom4j: flexible XML framework for Java CVE-2020-10683 CVSS 7.5 Description of fix: Removed affected obsolete jar file: /lib/Cognos_Jars/dom4j-1.6.1-osgi.jar 45. LS-53 (2021-01-08) Description of issue: ConfigureEntitlement locks up when customer tries running the script (configureEntitlement.sh) with the following console error message: Exception while executing com.sterlingcommerce.scc.agent.install.EntitlementConfigurator:java.lang.RuntimeException: java.sql.SQLSyntaxErrorException: ORA-00942: table or view does not exist Description of fix: Correct configuration logic. 46. MFT-11719 (2021-01-10) Description of issue: Configuration Changes Audit Report does not show or allow editing of servers/groups. Description of fix: Corrected logic in the classic console to initialize all report subpanels allowing fields to be displayed/edited. 47. CC-4403 (2021-01-11) Description of issue: Getting FilenameEventTypeFilter exception while upgrading installer from CCD 1.2 to 6.2 with the following error in ccinstall.log: UPDATE CC_SEERVER SET TIMEZONE_ID - timezone.TIMEZONE_ID FROM CC_SERVER server, CC_TIMEZONE timezone WHERE NODE_TYPE_ID NOT IN(0,99,98) and NODE_TYPE_ID is NOT NULL AND timezone.IANA_CODE = server.TIMEZONE_ID SQL Error 209 Error: Ambiguos column name 'TIMEZONE_ID' Description of fix: Corrected SQL upgrade scripts to properly set timezone in CC_SERVER table. 48. CC-4526 (2021-01-12) Description of issue: Setting B2Bi server BP selection to be not monitored reverts back to monitored (i.e. Server Properties >> Settings >> Selected Business Process to be: Monitored / Not Monitored) Description of fix: Corrected logic to preserve the udated setting. 49. CC-3819 (2021-01-12) Description of issue: Requirement to upgrade cdbrowser.war to address the following vulnerability: CVE-2020-8022 CVSS 3.1 Description of fix: Upgraded cdbrowser.war with fix. 50. MFT-11715 (2021-01-14) Description of issue: Not able to update CD Server license settings from Swing UI (i.e. agent.enable and agent.installation_id) Description of fix: Updated a validation properties table to allow these arameters. 51. CC-4532 (2021-01-14) Description of issue: Error when an OSA (SEAS) server and server group is first created, resulting in the following error message: [ClusterEventMonitor] ERROR ClusterEventMonitor - Exception occurred processing configuration changed event Configuration Changed(nnn, day mon dd hh:mm:ss TZ yyyy, Monitor_event_repository, ) in com.sterlingcommerce.scc.agent.services.security.ServerGroupMgr java.lang.RuntimeException: CUSR007E User not found for user ID: Unknown Description of fix: Corrected to skip updating user role when creating a new server group due to a cluster event because there is no user id in this type of request. 52. CC-4277/MFT-11729 (2021-01-15) Description of issue: Cannot view any Staging DB or production DB Movement information in the web UI. Description of fix: Corrected logic to properly display the information. 53. CC-3820 (2021-01-15) Description of issue: Requirement to address the following vulnerability in Apache log4j: CVE-2020-9488 CVSS 3.1 Description of fix: Updated affected classes in Apache ActiveMQ 5.15.14. 54. CC-4554/CC-3819/CC4555 (2021-01-21) Description of issue: Multiple issues addressed in cdbrowser.war file (ClassNotFoundException / jasper.jar causing conflicts) Description of fix: Upgraded cdbrowser.war file with missing class added and removal of jasper.jar. -------------------------------------------- 6.2.0.0 iFix04 (Released 11/20/2020) 1. IT34725/MFT-11516/TS004361714 (2020-10-25) Description of issue: After ugrading from CCD 1.0.0.2 to 6.2.0.0 the engine fails to start with a java exception on the Name or Alias name too long. Description of fix: Made changes to ensure a CD server alias name is restricted to 25 characters and a unique hashed code is appended to a discovered server with duplicate name. 2. MFT-11541/TS004405705 (2020-10-29) Description of issue: Engine startup fails with a NullPoinerException (ServerGroupMgr.init failed) with the following error message: CCTR023E Start Service failed. Service: Agent:Name=CCEngineService,Type=0. This was caused by a service name entry placed in the wrong service startup list. Description of fix: Moved file entry "MetricsServices.xml" from monitorServicesList.txt to commonServicesList.txt. 3. CC-4035 (2020-11-02) Description of issue: When creating a role in the Control Center Director web UI, a server group of "ZZZZJAVA_CONSOLE_REDIRECT" is erroneously displayed in the "Select Server Groups" screen. Description of fix: Corrected logic to only populate the selection screen with valid server groups. 4. CC-4115/CC-4128 (2020-11-04) Description of issue: Unable to change SEAS persistent connection setting in Web UI. When changing Persistent Connection setting in the web UI, it sets incorrect XML tag persistenetConnection (instead of correct tag persistentConnection). The result is both tags present in XML, but the operative one remains unchanged. Description of fix: 5. IT34851/MFT-11555/TS004412991 (2020-11-07) Description of issue: The web UI is not loading, although port 58082 is up. HTTP 503 error. This was caused by an older JDBC driver erroneously remaining in a directory. The presence of both old and current drivers caused a conflict. The following error messages were dislayed in the web log (/web/ccbase/logs/ccweb_yyyy-mm-dd.log): Driver does not support get/set network timeout for connections. (java/sql/Connection.getNetworkTimeout()I) Failed to execute isValid() for connection, configure connection test query (java/sql/Connection.isValid(I)Z). Description of fix: Added logic in configCC to delete all JDBC drivers from /web/ccbase/lib/ext prior to installing the current user specified JDBC driver. 6. CC-4192 (2020-11-09) Description of issue: Getting invalid option in overflow menu for package in Control Center Director web UI. Description of fix: Corrected logic to not show any invalid overflow menu option. 7. IT34785/MFT-11564/TS004439237 (2020-11-10) Description of issue: configCC fails with error message: "ERROR DBConn - Not a valid MSSQL JDBC Driver" when specifying mssql-jdbc-8.4.1.jre8.jar Description of fix: Updated a list of all valid MSSQL JDBC drivers. 8. IT34934/MFT-11560/TS004416401 (2020-11-16) Description of issue: Cannot logon to the classic console getting either of the following error messages: "CSEC001E Either User Name or Password is invalid" or "ControlCenterMessages: extended authentication check failed". This occurs if a user attempts to logon using a secure connection and the keystore/truststore is invalid. This only occurs if the user logs into the web UI and then clicks on the hamburger menu and then clicks on the "Launch Classic Console" link. This error will not occur if the user logs onto the classic console navigating from the Control Center Launch Page by click the link on the web UI logon page. Description of fix: Set a system property to correct the problem. 9. IT34926/MFT-11574/TS004500628 (2020-11-16) Description of issue: The web server failed to initialize due to a mixed case column name definition. The following messages were found in /web/ccbase/logs/ccweb_yyyy-mm-dd.log: "SQL Error: 207, SQLState: S0001" and "Invalid column name: 'PROP_Value'". This error occured because the customer specified a collation setting of SQL_Latin1_General_CP850_BIN which is case sensitive. When a case sensitive collation setting is specified, both column name and value are treated as case sensitive in a SQL query. Description of fix: Changed a reference to a column name in the X_PROPERTY table from: "PROP_Value" to "PROP_VALUE". 10. LS-45 (2020-11-18) Description if issue: The following obsolete configCC console message is displayed during keystore/truststore configuration: "Warning: If you specified a new truststore file path, then you must reconfigure your Cognos HTTPS connection". Description of fix: Removed the warning message. -------------------------------------------- 6.2.0.0 iFix03 (Released 10/29/2020) 1. CC-3928 (2020-10-19) Description of issue: New CCM only install with Oracle DB throws exception in configCC: ERROR DeploymentJobMonitor - java.sql.SQLException: ORA-01003: no statement parsed. Description of fix: Added guard code to check for a null value to prevent the exception. 2. LS-40 (2020-10-19) Description of issue: Upgrade from CCM 613 shows CD servers with out address or port. Description of fix: Set hostname and port of CD server on upgrade. 3. CC-3971: (2020-10-19) Description of issue: Update Status count is not corrected on CCD dashboard. Description of fix: Corrected code to update status counts. 4. CCP-16878 (2020-10-20) Description of issue: When filtering based on Event Return Code under MQMFT FIle Transfer Report, it never comes with return codes as 40. We can see the return codes coming as 0,1,2 and 8 instead of standard MQ FTE return codes like 20,40, etc. Return code 40 means transfer fails and none of the files specified transferred. But in this report we show data of only successful transfer. So we won't be able to show return code 40 in the report. Description of fix: Removed return code filter from the MQMFT Report. 5. CC-4005 (2020-10-21) Description of issue: Enhancement to add source file to Connec:Direct Process Details report. Description of fix: Added new column "Source File Name" to the report. 6. CC-3800 (2020-10-21) Description of issue: NullPointerException in engine.log when CD Unix does nightly statistics archiving. Description of fix: Added guard code to check for a null value to prevent the exception. 7. CC-4043 (2020-10-22) Description of issue: User created on CCD 1.2 installation is not getting logged in after upgrading to 6.2 ifix01/02 Description of fix: Corrected logic to allow users login after upgrade. 8. CC-4040 (2020-10-22) Description of issue: Account lock message is not displayed when trying to reset password from CCD user details page for user having account locked. Description of fix: Corrected logic to display error message: "AUTH005E: Account is locked" 9. CC-4072 (2020-10-22) Description of issue: C:D server node name should be limited to a length of 16 on the "Overrides for Individual Servers" screen. Description of fix: Corrected "Node Name" input field edit check to allow a max length of 16. 10. IT34725/MFT-11516/TS004361714 (2020-10-25) Description of issue: Control Center Director Engine Startup failed after CCD was upgraded from 1.0.0.2 to the latest 6.2. The engine fails to start with a java exception due to the C:D server Name or Alias name too long (i.e. length greater than 16). Description of fix: Made changes to prevent installed CD server node names chosen by ICC from being too long. 11. CC-4075 (2020-10-25) Description of issue: On servers's create form (i.e. Add C:D Server >> Server Name / Alias Name), limit length of name field to 25 characters. Description of fix: Changed input max length check to 25. 12. CC-4022/CC-4065 (2020-10-27) Description of issue: CCD-New CD Win install package - DB password is specified but says that password is required with error meesage: "NWIN004E: Database password is mandatory for Windows OS". Description of fix: Corrected input field edit for "DB Password". 13. CC-4067 (2020-10-27) Description of issue: CCD Server list view - "Node name" column is incorrect. It should be changed to "Server Alias/Name". Description of fix: Changed column name. -------------------------------------------- 6.2.0.0 iFix02 (Released 10/16/2020) 1. CC-4031 (2020-10-16) Description of issue: [CCD] License information is not displayed for Connect:Direct z/OS servers in the "License" tab. Description of fix: Corrected logic which retrieves the license information for display. 2. CC-3985 (2020-10-16) Description of issue: [CCD] Multi-select delete does not delete all the archived packages. Description of fix: Made modifications to disable overflow menus when one or more rows are selected on listng pages. 3. CC-4059 (2020-10-16) Description of issue: Cold start flag is erroneously set in runEngine.sh script, causing loss of data at engine start (i.e. runEngine.sh behaves same as runEngineCold.sh). Description of fix: Removed property -DCOLD_START=true from runEngine.sh. This issue/fix applies to AIX/Linux/zLinux installations. Windows is not affected by this. -------------------------------------------- 6.2.0.0 iFix01 (Released 10/15/2020) 1. CC3505 (2020-09-18) Description of issue: Jetty webserver version is returned in response headers. This information might help an attacker gain a greater understanding of the systems in use and potentially develop further attacks targeted at the specific version of Jetty. Description of fix: Setting property jetty.httpConfig.sendServerVersion=false in start.ini for hiding server the version. 2. IT34297/MFT-11373/TS004107066 (2020-09-22) Description of issue: Getting out of memory error on all but the CEP when adding multiple servers via batch creation utility. Also found that when initiating startHtmlAdaptor on command line, control is not returned, and CTRL-C doesn't break out of the command. Description of fix: As servers are added, the built in server groups are also updated appropriately. When 1000s of servers already exist, and 100s more are added quickly, the previous logic would keep the before and after server groups as servers are added, for each server added, in memory. With this fix, only one, before and after server group will be in memory at a time now. Also, for the startHtmlAdaptor problem, a System.exit() was added to the logic, and control is now returned when it completes. 3. CC-3729 (2020-09-22) Description of issue: Inconsistent password restrictions between config.bat/sh rules and Web UI change password rules. Description of fix: Set the same the same restrictions in config as are defaulted to in the Web UI. 4. CC-3896 (2020-09-22) Description of issue: SynchObject time for CD Configobjects has value "never" but NodeConfigService logic only accepts "NEVER". The system was creating a bunch of jobs to run to refresh servers for monitored C:D servers despite the fact that the synch time was set to "never". The engine.log display the following: "Unable to calculate delay before next SynchOjbectsTask" Description of fix: Changed the comparison to be case insensitive (i.e. NEVER, never, NevEr, etc, are all treated the same). 5. CC-3832 (2020-09-23) Description of issue: Server Inventory report from swing connect to different EPs, it only shows certain data for Servers that are monitored by that EP. otherwise data is blank or defaults to a value. Server Type, Node Name, Monitor, Configure, License Push and perhaps other fields are affected. Description of fix: Made changes to obtain the missing data for servers monitored by all EPs. 6. CC-3624 (2020-09-23) Description of issue: In the Swing UI, Functional Auth properties, the Admin field selection is not set. Since there is no explicit field name 'admin' in CD Windows, this field should not be displayed for CD Windows functional authorities. Whether the user selects any option or not, it still works. Description of fix: Disabled the Admin radio button on the Windows Functional Authority Properties. 7. CC-3781 (2020-09-24) Description of issue: Saved report listing in Web UI should be sorted by name, same as in the classic console. Description of fix: Corrected the web UI saved reports sort order. 8. CC-3860 (2020-09-25) Description of issue: Not able to run engine after enabling user key. Description of fix: Corrected userkey logic. 9. CC-3783 (2020-09-28) Description of issue: Blank row displaying at the end of Monthly File report which does not contain any data Description of fix: Removed erroneous blank row. 10. CC-3861 (2020-09-28) Description of issue: Error in partitioning of AUDIT_LOG with DB2 if DB2 database is 1 date ahead of current system database Description of fix: Corrected AUDIT_LOG partition logic which calclates the minimum partition date. 11. CC-3882 (2020-09-28) Description of issue: Error running config.sh when upgrading from 6.1.3 with DB2 10.x database. The resulting SQL error in ccinstall.log follows: Error code : InstallErrorCodeList.4008 / Error : DB2 SQL Error: SQLCODE=-440, SQLSTATE=42884, SQLERRMC=CHARACTER_LENGTH;FUNCTION, DRIVER=4.19.49 Description of fix: Made a SQL statement correction to upgrade script cc6020000_configCC_db2_changes.sql 12. IT34057/MFT-11393/TS004094974 (2020-09-28) Description of issue: Automated and scheduled reports do not run after upgrade to 6130. The following error message is written to the engine.log: "dd yyyy hh:mm:ss,nnn nnnnnnnnn [DefaultQuartzScheduler_Worker-10] WARN CCObject - File /rep.xml must be available and writable. Error message is: /rep.xml (Read-only file system)." Where: = home directory of the user who executed runEngine.bat|sh. Control Center writes temp file rep.xml to user.home when automated/scheduled reports are run. In this particular case, the customer had a requirement that the user's home directory (user.home) be read-only. Description of fix: Created a new optional property in /conf/InstallationInfo.properties to change user.home to a different (writeable) location: CCENTER_USER_HOME=. Example: CCENTER_USER_HOME=/data/control-center/user-home 13. CC-3881 (2020-09-29) Description of issue: Automated report in PDF format is truncated when there is a lot of data. Description of fix: Corrected report by allowing long rows to wrap instead of being truncated. 14. CC-3623 (2020-10-01) Description of issue: EP detail view in WEB UI shows a Cognos entry for report recovery time. Description of fix: Remove display of Cognos entry. 15. CCP-14679 (2020-10-01) Description of issue: Support for CDU initparm instance.id. Description of fix: Update tables for new initparm. 16. CC-3631 (2020-10-08) Description of issue: Alert count does not match alerts displayed. Description of fix: Include SLC generated alerts and update tab to show alert count is active plus handled. 17. CC-4021 (2020-10-09) Description of issue: There are two issues fixed for this defect. The CEP doesn't always cancel temporary server reassignments at startup, leaving servers temporarily reassigned away from the CEP even though they should not be, AND under certain circumstances monitored servers may be errouneously deleted when the CEP sees an EP starting that was previously down. If the database contains two servers with the same name, one logically deleted, and one not, and the server that was logically deleted was assigned to the EP just starting, the CEP errouneously reassigns the deleted server back to its EP, and that EP will attempt to delete it (again), causing the monitored server with that same name to be deleted from the system instead. Description of fix: For the first problem, fixed the logic at startup to ensure the CEP knows it is the CEP at startup, so temporarly server reassignments are always cancelled. For the second problem, fixed the queries used to ascertain servers to be reassigned to exclude logically deleted servers. 18. CC-3987 (2020-10-09) Description of issue: Bootstrap Certificate Validity field allows to specify the value up to 600 even though it is limited to 90 days (in CCD Server Default Settings), Description of fix: Corrected the validation logic to allow the max of 90 days. 19. CC-4025 (2020-10-09) Description if issue: Selected Data Visibility Group Count mismatch Description of fix: Corrected DVG count. 20. CC-4017 (2020-10-09) ???? maybe removed this from fix list ???? Description of issue: Packages filter height issue for diff resloution css fix Description of fix: 21. CC-4029 (2020-10-10) Description of issue: Swing console node tree not updated when servers are created or deleted. A problem was introduced with the fix for MFT-11373 ICC EP stopped monitoring the servers on CEP. The issue was caused by a change to the ServerGroupMgr updateServerGroup. Whenever this update is driven by a cluster event, an NPE occurs, causing, among other things, the update to the server group event to not be broadcast to Swing consoles. Description of fix: Corrected logic to perform the update for non-cluster events only. 22. LS-34 (2020-10-11) Description of issue: “Server Inventory Report” returns no servers even though many servers are defined. Description of fix: Corrected the filtering logic to properly display servers based on filter values. 23. LS-26 (2020-10-12) Description of issue: Not all messsage ID's are shown when creating a rule in Rule in the "IBM Control Center Message Lookup" screen. The last two lines displayed in the truncated list are "CXML009E" and "Environment". Description of fix: Corrected rule create logic to properly display all rule messages in the selection list.