Access Rights Manager 2022.2 Release Notes
Release date: April 2022 (major release)
Latest service release: February 2022, 2021.4.2
These release notes were last updated on April 19, 2022.
These release notes describe the new features, improvements, and fixed issues in Access Rights Manager 2022.2. They also provide information about upgrades and describe known issues.
If you are looking for previous release notes for Access Rights Manager, see Previous Version documentation.
Download a translated PDF: ARM 2022.2 Release Notes (Versionshinweise, deutsch)
New features and improvements in ARM
Support for Exchange Online for ARM notification emails
ARM 2022.2 now supports the direct use of Exchange Online. Setting up an email relay is no longer required. The email configuration is completed using the graphical interface in the ARM Configuration application.
Recertification improvements
As an ARM administrator, you can now view and delete all (and not only your own) ongoing and completed recertifications in the statistics.
Enhancement of SharePoint Online configuration
You can now access SharePoint Online through an application (Application ID and Client Secret). This enhancement allows you to replace the previous authentication method when required by your corporate policies.
To access, register the app in Azure as described in Granting access using SharePoint App-Only located on the Microsoft Learn website (© 2022 Microsoft, https://docs.microsoft.com/en-us/sharepoint/dev/solution-guidance/security-apponly-azureacs, obtained April 5, 2022).
You then use the Application ID created in this way, as the username and the Client Secret as the password for the scan account. You can also use these credentials in the SharePoint change configuration.
Default configuration of SharePoint scans
The default for the advanced properties of a SharePoint scan changes as follows: hidden lists are no longer scanned by default. This only affects new SharePoint scan configurations. Updating ARM to the current version will not change your existing configurations.
New customer installation
ARM and Orion Platform products must be installed on separate servers. Note that ARM is not an Orion Platform product.
For information about installing Access Rights Manager see the ARM Installation Guide.
How to upgrade
If you are upgrading from a previous version, see Perform an update installation located in the ARM Installation Guide for instructions.
Beginning in version 2020.2, the ARM server is renamed from pnServer.exe to armServer.exe. Please note this change if you set up the appropriate firewall rules.
Fixed issues
| Case Number | Description |
|---|---|
| 939487 | Fixed a problem with persistent saving of the distributed DFS scan configuration in the Configuration Wizard. |
| 983866 | A problem with the search in the GrantMA ordering portal is resolved. |
| 911905 | Fixed an issue where under certain conditions not all existing permissions were displayed in the recertification. |
| 1026329 | Fixed an issue where script execution stopped working after an alert. |
| 1022178 | Fixed a problem with the diagnostic tool. |
| 954371 | An additional check was built into the installer. If the Windows feature Microsoft-Windows-GroupPolicy-ServerAdminTools-Update is not enabled, a warning is displayed and the installation cannot be continued. In previous versions, the installation could hang in an infinite loop if the feature was missing. |
| 1003366, 1013866 | Fixed an issue with the display of icons in Analyze scenarios in the web client. |
| 914006, 933559 | Fixed an issue with the GrantMA ordering process where ordered items were stuck in the shopping cart. |
| 941433 | An issue with long loading times for the logbook, which occurred when there were a lot of events, has been solved. |
| 890679 | An issue with displaying and resolving SharePoint items has been fixed. |
| - |
A problem with displaying the certificate for ARM Web Windows Authentication has been fixed. |
| 942498, 941117 | Fixed an issue with FS Logga where in cluster environments and under certain conditions, communication with distributed collectors caused errors. |
| 924027 | Fixed an issue with scanning the structure of a DFS. |
| 862867 | An issue that could lead to unstable behavior under certain conditions is resolved. |
| 911905 | Fixed an issue where, in connection with sublicensing, not all existing permissions of a file system folder were displayed during recertification. |
Known issues
| User-defined templates |
|---|
| Issue: When using user-defined templates, AccountSearchTextField does not work for manager assignment. |
| Resolution/Work-around: Use a standard input field or, if possible, a drop-down menu. |
| Updating FS Logga components on Windows file servers |
|---|
| Issue: In some cases, automatic or manual updating of FS-Logga components on Windows file servers may fail. |
| Resolution/Work-around: Start the setup on the Windows file server and select the Repair option. The repair function removes the installation and reinstalls the components. |
| Active Directory accounts not resolved |
|---|
| Issue: In some cases, new installations may experience Active Directory scanning issues when scanning through a collector or ARM server installed on a domain controller (DC). This can result in AD accounts not resolving correctly under these conditions. Existing installations are not affected. |
| Resolution/Work-around: Install the ARM server or collector service on a different server, not on DCs. |
| Configure multiple Microsoft 365 resources in Configuration Wizard in one go |
|---|
| Issue: Adding multiple Microsoft 365 resources in one go in Configuration Wizard will lead to a problem in completing the wizard. |
| Resolution/Work-around: Select only one Microsoft 365 resource per pass. |
| Configure file server monitoring in Configuration Wizard |
|---|
| Issue: After adding file server monitoring using the configuration wizard, monitoring should be enabled by default. This is sporadically not the case. |
| Resolution/Work-around: Use the old configuration application to enable file server monitoring, if necessary. |
CVEs
SolarWinds would like to thank our Security Researchers below for reporting on the issue in a responsible manner and working with our security, product, and engineering teams to fix the vulnerability.
| CVE-ID | Vulnerability title | Description | Severity | Credit |
|---|---|---|---|---|
| Insecure Web Configuration for RabbitMQ Management Plugin. | The HTTP interface was enabled for RabbitMQ Management Plugin in ARM 2020.2.6 and earlier. The ability to configure HTTPS was not available. | Medium | Chris Townsend |
End of life
With the release of ARM version 2022.2, the following ARM versions are no longer supported:
-
ARM 2019.4
See End of Life Policy for information about SolarWinds product lifecycle phases. For supported versions and EoL announcements for all SolarWinds products, see Currently supported software versions.
End of support
This version of Access Rights Manager no longer supports the following platforms and features.
| Typ | Details |
|---|---|
| Operating system |
Windows 8x |
| Operating system | Windows Server 2012/2012 R2 |
| Microsoft application |
SQL Server 2012 |
| Microsoft application | SQL Server 2014 |
Deprecation notices
This version of Access Rights Manager deprecates the following platforms and features.
Deprecated platforms and features are still supported in the current release. However, they will be unsupported in a future release. Plan on upgrading deprecated platforms, and avoid using deprecated features. Customizations applied to a deprecated feature might not be migrated if a new feature replaces the deprecated one.
| Type | Deprecation |
|---|---|
|
NetApp 7mode |
The NetApp 7mode is considered deprecated for the ARM applications as of this version. Although you can still use ARM with NetApp 7mode, this operating system version is outdated and will not be supported in future versions of ARM. It is possible that problems caused by the deprecated operating system version may not be resolved by SolarWinds. SolarWinds strongly recommends that you upgrade your operating systems at your earliest convenience. |
Legal notices
© 2022 SolarWinds Worldwide, LLC. All rights reserved.
This document may not be reproduced by any means nor modified, decompiled, disassembled, published or distributed, in whole or in part, or translated to any electronic medium or other means without the prior written consent of SolarWinds. All right, title, and interest in and to the software, services, and documentation are and shall remain the exclusive property of SolarWinds, its affiliates, and/or its respective licensors.
SOLARWINDS DISCLAIMS ALL WARRANTIES, CONDITIONS, OR OTHER TERMS, EXPRESS OR IMPLIED, STATUTORY OR OTHERWISE, ON THE DOCUMENTATION, INCLUDING WITHOUT LIMITATION NONINFRINGEMENT, ACCURACY, COMPLETENESS, OR USEFULNESS OF ANY INFORMATION CONTAINED HEREIN. IN NO EVENT SHALL SOLARWINDS, ITS SUPPLIERS, NOR ITS LICENSORS BE LIABLE FOR ANY DAMAGES, WHETHER ARISING IN TORT, CONTRACT OR ANY OTHER LEGAL THEORY, EVEN IF SOLARWINDS HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
The SolarWinds, SolarWinds & Design, Orion, and THWACK trademarks are the exclusive property of SolarWinds Worldwide, LLC or its affiliates, are registered with the U.S. Patent and Trademark Office, and may be registered or pending registration in other countries. All other SolarWinds trademarks, service marks, and logos may be common law marks or are registered or pending registration. All other trademarks mentioned herein are used for identification purposes only and are trademarks of (and may be registered trademarks) of their respective companies.