Documentation forAccess Rights Manager

Access Rights Manager 2022.2 release notes

Release date: April 2022 (major release)

Latest service release: February 2022, 2021.4.2

These release notes were last updated on April 19, 2022.

These release notes describe the new features, improvements, and fixed issues in Access Rights Manager 2022.2. They also provide information about upgrades and describe known issues.

If you are looking for previous release notes for Access Rights Manager, see Previous Version documentation.

Download a translated PDF: ARM 2022.2 Release Notes (Versionshinweise, deutsch)

New features and improvements in ARM

Support for Exchange Online for ARM notification emails

ARM 2022.2 now supports the direct use of Exchange Online. Setting up an email relay is no longer required. The email configuration is completed using the graphical interface in the ARM Configuration application.

Recertification improvements

As an ARM administrator, you can now view and delete all (and not only your own) ongoing and completed recertifications in the statistics.

Enhancement of SharePoint Online configuration

You can now access SharePoint Online through an application (Application ID and Client Secret). This enhancement allows you to replace the previous authentication method when required by your corporate policies.

To access, register the app in Azure as described in Granting access using SharePoint App-Only located on the Microsoft Learn website (© 2022 Microsoft, https://docs.microsoft.com/en-us/sharepoint/dev/solution-guidance/security-apponly-azureacs, obtained April 5, 2022).

You then use the Application ID created in this way, as the username and the Client Secret as the password for the scan account. You can also use these credentials in the SharePoint change configuration.

Default configuration of SharePoint scans

The default for the advanced properties of a SharePoint scan changes as follows: hidden lists are no longer scanned by default. This only affects new SharePoint scan configurations. Updating ARM to the current version will not change your existing configurations.

Return to top


New customer installation

ARM and Orion Platform products must be installed on separate servers. Note that ARM is not an Orion Platform product.

For information about installing Access Rights Manager see the ARM Installation Guide.

How to upgrade

If you are upgrading from a previous version, see Perform an update installation located in the ARM Installation Guide for instructions.

Beginning in version 2020.2, the ARM server is renamed from pnServer.exe to armServer.exe. Please note this change if you set up the appropriate firewall rules.

Return to top


Fixed issues

Case Number Description
939487 Fixed a problem with persistent saving of the distributed DFS scan configuration in the Configuration Wizard.
983866 A problem with the search in the GrantMA ordering portal is resolved.
911905 Fixed an issue where under certain conditions not all existing permissions were displayed in the recertification.
1026329 Fixed an issue where script execution stopped working after an alert.
1022178 Fixed a problem with the diagnostic tool.
954371 An additional check was built into the installer. If the Windows feature Microsoft-Windows-GroupPolicy-ServerAdminTools-Update is not enabled, a warning is displayed and the installation cannot be continued. In previous versions, the installation could hang in an infinite loop if the feature was missing.
1003366, 1013866 Fixed an issue with the display of icons in Analyze scenarios in the web client.
914006, 933559 Fixed an issue with the GrantMA ordering process where ordered items were stuck in the shopping cart.
941433 An issue with long loading times for the logbook, which occurred when there were a lot of events, has been solved.
890679 An issue with displaying and resolving SharePoint items has been fixed.
-

A problem with displaying the certificate for ARM Web Windows Authentication has been fixed.

942498, 941117 Fixed an issue with FS Logga where in cluster environments and under certain conditions, communication with distributed collectors caused errors.
924027 Fixed an issue with scanning the structure of a DFS.
862867 An issue that could lead to unstable behavior under certain conditions is resolved.
911905 Fixed an issue where, in connection with sublicensing, not all existing permissions of a file system folder were displayed during recertification.

Return to top


Known issues

User-defined templates
Issue: When using user-defined templates, AccountSearchTextField does not work for manager assignment.
Resolution/Work-around: Use a standard input field or, if possible, a drop-down menu.

 

Updating FS Logga components on Windows file servers
Issue: In some cases, automatic or manual updating of FS-Logga components on Windows file servers may fail.
Resolution/Work-around: Start the setup on the Windows file server and select the Repair option. The repair function removes the installation and reinstalls the components.

 

Active Directory accounts not resolved
Issue: In some cases, new installations may experience Active Directory scanning issues when scanning through a collector or ARM server installed on a domain controller (DC). This can result in AD accounts not resolving correctly under these conditions. Existing installations are not affected.
Resolution/Work-around: Install the ARM server or collector service on a different server, not on DCs.

 

 

Configure multiple Microsoft 365 resources in Configuration Wizard in one go
Issue: Adding multiple Microsoft 365 resources in one go in Configuration Wizard will lead to a problem in completing the wizard.
Resolution/Work-around: Select only one Microsoft 365 resource per pass.

 

Configure file server monitoring in Configuration Wizard
Issue: After adding file server monitoring using the configuration wizard, monitoring should be enabled by default. This is sporadically not the case.
Resolution/Work-around: Use the old configuration application to enable file server monitoring, if necessary.

Return to top


CVEs

SolarWinds would like to thank our Security Researchers below for reporting on the issue in a responsible manner and working with our security, product, and engineering teams to fix the vulnerability.

CVE-ID Vulnerability title Description Severity Credit
Insecure Web Configuration for RabbitMQ Management Plugin. The HTTP interface was enabled for RabbitMQ Management Plugin in ARM 2020.2.6 and earlier. The ability to configure HTTPS was not available. Medium Chris Townsend

Return to top


End of life

With the release of ARM version 2022.2, the following ARM versions are no longer supported:

  • ARM 2019.4

See the End of Life Policy for information about SolarWinds product life cycle phases. To see EoL dates for earlier ARM versions, see ARM release history.

Return to top


End of support

This version of Access Rights Manager no longer supports the following platforms and features.

Typ Details
Operating system

Windows 8x

Operating system Windows Server 2012/2012 R2
Microsoft application

SQL Server 2012

Microsoft application SQL Server 2014

Return to top


Deprecation notices

This version of Access Rights Manager deprecates the following platforms and features.

Deprecated platforms and features are still supported in the current release. However, they will be unsupported in a future release. Plan on upgrading deprecated platforms, and avoid using deprecated features. Customizations applied to a deprecated feature might not be migrated if a new feature replaces the deprecated one.

Type Deprecation

NetApp 7mode

The NetApp 7mode is considered deprecated for the ARM applications as of this version. Although you can still use ARM with NetApp 7mode, this operating system version is outdated and will not be supported in future versions of ARM. It is possible that problems caused by the deprecated operating system version may not be resolved by SolarWinds. SolarWinds strongly recommends that you upgrade your operating systems at your earliest convenience.

Return to top


Legal notices

© 2022 SolarWinds Worldwide, LLC. All rights reserved.

This document may not be reproduced by any means nor modified, decompiled, disassembled, published or distributed, in whole or in part, or translated to any electronic medium or other means without the prior written consent of SolarWinds. All right, title, and interest in and to the software, services, and documentation are and shall remain the exclusive property of SolarWinds, its affiliates, and/or its respective licensors.

SOLARWINDS DISCLAIMS ALL WARRANTIES, CONDITIONS, OR OTHER TERMS, EXPRESS OR IMPLIED, STATUTORY OR OTHERWISE, ON THE DOCUMENTATION, INCLUDING WITHOUT LIMITATION NONINFRINGEMENT, ACCURACY, COMPLETENESS, OR USEFULNESS OF ANY INFORMATION CONTAINED HEREIN. IN NO EVENT SHALL SOLARWINDS, ITS SUPPLIERS, NOR ITS LICENSORS BE LIABLE FOR ANY DAMAGES, WHETHER ARISING IN TORT, CONTRACT OR ANY OTHER LEGAL THEORY, EVEN IF SOLARWINDS HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.

The SolarWinds, SolarWinds & Design, Orion, and THWACK trademarks are the exclusive property of SolarWinds Worldwide, LLC or its affiliates, are registered with the U.S. Patent and Trademark Office, and may be registered or pending registration in other countries. All other SolarWinds trademarks, service marks, and logos may be common law marks or are registered or pending registration. All other trademarks mentioned herein are used for identification purposes only and are trademarks of (and may be registered trademarks) of their respective companies.