Access Rights Manager 2022.2 Release Notes
Release date: April 2022 (major release)
This document was last updated on: April 19, 2022
Download a translated PDF: ARM 2022.2 Release Notes (Versionshinweise, deutsch)
These release notes describe the new features, improvements, and fixed issues in Access Rights Manager 2022.2. They also provide information about upgrades and describe known issues.
If you are looking for previous release notes for Access Rights Manager, see Previous Version documentation.
New features and improvements in ARM
Support for Exchange Online for ARM notification emails
With version 2022.2 ARM now supports the direct use of Exchange Online. It is no longer necessary to set up an email relay. The configuration is done via the graphical interface of the ARM configuration application.
Recertification improvements
As an ARM administrator, it is now possible to see and delete all (and not only your own) ongoing and completed recertifications in the statistics.
Enhancement of SharePoint Online configuration
Access to SharePoint Online can now optionally be done via an application (Application ID and Client Secret). This makes it possible to replace the previous authentication method if company policies require it.
To do this, you must register the app in Azure, as described in the following Microsoft instructions: Granting access using SharePoint App-Only (© 2022 Microsoft, https://docs.microsoft.com/en-us/sharepoint/dev/solution-guidance/security-apponly-azureacs, obtained April 5, 2022).
You then use the Application ID created in this way as the username and the Client Secret as the password for the scan account. It is also possible to use these credentials in the SharePoint change configuration.
Default configuration of SharePoint scans
The default for the advanced properties of a SharePoint scan changes as follows: hidden lists are no longer scanned by default. This only affects newly created SharePoint scan configurations. Updating to the current version does not change existing configurations.
New customer installation
ARM and Orion Platform products must be installed on separate servers. Note that ARM is not an Orion Platform product.
For information about installing Access Rights Manager see the "ARM Installation Guide" from the Success Center.
How to upgrade
If you are upgrading from a previous version, please refer to the chapter "Perform an update installation" from the Success Center.
As of version 2020.2, the ARM server has been renamed from pnServer.exe to armServer.exe. Please note this if you have set up appropriate firewall rules.
Fixed issues
ARM 2022.2
| Case Number | Description |
|---|---|
| 939487 | Fixed a problem with persistent saving of the distributed DFS scan configuration in the Configuration Wizard. |
| 983866 | A problem with the search in the GrantMA ordering portal has been fixed. |
| 911905 | Fixed an issue where under certain conditions not all existing permissions were displayed in the recertification. |
| 1026329 | Fixed an issue where script execution stopped working after an alert. |
| 1022178 | Fixed a problem with the diagnostic tool. |
| 954371 | An additional check has been built into the installer. If the Windows feature Microsoft-Windows-GroupPolicy-ServerAdminTools-Update is not enabled, a warning is displayed and the installation cannot be continued. In previous versions, the installation could hang in an infinite loop if the feature was missing. |
| 1003366, 1013866 | Fixed an issue with the display of icons in Analyze scenarios in the web client. |
| 914006, 933559 | Fixed an issue with the GrantMA ordering process where ordered items were stuck in the shopping cart. |
| 941433 | An issue with long loading times for the logbook, which occurred when there were a lot of events, has been solved. |
| 890679 | An issue with displaying and resolving SharePoint items has been fixed. |
| - |
A problem with displaying the certificate for ARM Web Windows Authentication has been fixed. |
| 942498, 941117 | Fixed an issue with FS Logga where in cluster environments and under certain conditions communication with distributed collectors caused errors. |
| 924027 | Fixed an issue with scanning the structure of a DFS. |
| 862867 | An issue that could lead to unstable behavior under certain conditions has been fixed. |
| 911905 | Fixed an issue where, in connection with sublicensing, not all existing permissions of a file system folder were displayed during recertification. |
Known issues
| User-defined templates |
|---|
| Issue: When using user-defined templates, AccountSearchTextField does not work for manager assignment. |
| Resolution/Work-around: Use a standard input field or, if possible, a drop-down menu. |
| Updating FS Logga components on Windows file servers |
|---|
| Issue: In some cases, automatic or manual updating of FS-Logga components on Windows file servers may fail. |
| Resolution/Work-around: Start the setup on the Windows file server and select the Repair option. The repair function removes the installation and reinstalls the components. |
| Active Directory accounts not resolved |
|---|
| Issue: In some cases, new installations may experience Active Directory scanning issues when scanning through a collector or ARM server installed on a domain controller (DC). This can result in AD accounts not resolving correctly under these conditions. Existing installations are not affected. |
| Resolution/Work-around: Install the ARM server or collector service on a different server, not on DCs. |
| Configure multiple Microsoft 365 resources in Configuration Wizard in one go |
|---|
| Issue: Adding multiple Microsoft 365 resources in one go in Configuration Wizard will lead to a problem in completing the wizard. |
| Resolution/Work-around: Select only one Microsoft 365 resource per pass. |
| Configure file server monitoring in Configuration Wizard |
|---|
| Issue: After adding file server monitoring using the configuration wizard, monitoring should be enabled by default. This is sporadically not the case. |
| Resolution/Work-around: Use the old configuration application to enable file server monitoring, if necessary. |
| CVE-ID | Vulnerability title | Description | Severity | Credit |
|---|---|---|---|---|
| Insecure Web Configuration for RabbitMQ Management Plugin. | The HTTP interface was enabled for RabbitMQ Management Plugin in ARM 2020.2.6 and earlier. The ability to configure HTTPS was not available. | Medium | Chris Townsend |
End of life
With the release of ARM version 2022.2, the following versions of ARM are no longer supported:
-
ARM 2019.4
See the End of Life Policy for information about SolarWinds product lifecycle phases. For supported versions and EoL announcements for all SolarWinds products, see Currently supported software versions.
End of support
This version of Access Rights Manager no longer supports the following platforms and features.
| Typ | Details |
|---|---|
| Operating system |
Windows 8x |
| Operating system | Windows Server 2012/2012 R2 |
| Microsoft application |
SQL Server 2012 |
| Microsoft application | SQL Server 2014 |
Deprecation notices
This version of Access Rights Manager deprecates the following platforms and features.
Deprecated platforms and features are still supported in the current release. However, they will be unsupported in a future release. Plan on upgrading deprecated platforms, and avoid using deprecated features. Customizations applied to a deprecated feature might not be migrated if a new feature replaces the deprecated one.
| Type | Deprecation |
|---|---|
|
NetApp 7mode |
The NetApp 7mode is considered deprecated for the ARM applications as of this version. Although you can still use ARM with NetApp 7mode, this operating system version is outdated and will not be supported in future versions of ARM. It is possible that problems caused by the deprecated operating system version may not be resolved by SolarWinds. SolarWinds strongly recommends that you upgrade your operating systems at your earliest convenience. |
Legal notices
© 2022 SolarWinds Worldwide, LLC. All rights reserved.
This document may not be reproduced by any means nor modified, decompiled, disassembled, published or distributed, in whole or in part, or translated to any electronic medium or other means without the prior written consent of SolarWinds. All right, title, and interest in and to the software, services, and documentation are and shall remain the exclusive property of SolarWinds, its affiliates, and/or its respective licensors.
SOLARWINDS DISCLAIMS ALL WARRANTIES, CONDITIONS, OR OTHER TERMS, EXPRESS OR IMPLIED, STATUTORY OR OTHERWISE, ON THE DOCUMENTATION, INCLUDING WITHOUT LIMITATION NONINFRINGEMENT, ACCURACY, COMPLETENESS, OR USEFULNESS OF ANY INFORMATION CONTAINED HEREIN. IN NO EVENT SHALL SOLARWINDS, ITS SUPPLIERS, NOR ITS LICENSORS BE LIABLE FOR ANY DAMAGES, WHETHER ARISING IN TORT, CONTRACT OR ANY OTHER LEGAL THEORY, EVEN IF SOLARWINDS HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
The SolarWinds, SolarWinds & Design, Orion, and THWACK trademarks are the exclusive property of SolarWinds Worldwide, LLC or its affiliates, are registered with the U.S. Patent and Trademark Office, and may be registered or pending registration in other countries. All other SolarWinds trademarks, service marks, and logos may be common law marks or are registered or pending registration. All other trademarks mentioned herein are used for identification purposes only and are trademarks of (and may be registered trademarks) of their respective companies.