7.4.4 Release Notes

Zentera CoIP Access Platform Release Notes

Release 7.4.4 (07522a)

zLink and CoIP Launcher Versions

* Servers with zLink version lower than the minimum required will be upgraded automatically while connecting 7.1.1 or newer zCenter

** Existing Xvnc sessions will be terminated if zasa-dep is upgraded on Linux servers.

*** CoIP Launcher 2.0 and its dependency package will be downloaded and upgraded automatically if the bundled version is newer than the user's.

Link to the Upgrade Package

https://apacservice.zentera.net/pub/zgw/zgw-7.4.4-071522a.tar.gz

New Features and Enhancements

• Integrated secure terminal (ssh) blocking insecure file transfers and ssh tunneling
• Added support for custom VNC geometries
• Upgraded TigerVNC client to 1.12
• Created an option for users to select the VNC viewer they prefer to use
• Enabled support for the "+" character in usernames and email fields
• Improved console performance for deployments with large numbers of users
• Improved Learn function with assisted policy creation
• Added the capability for Address Objects to support wildcard FQDN (e.g. match *.example.com) [requires zLink 7.4.1-1 or later]
• New feature enabling zLink agent logs to be downloaded directly from zCenter
• Changed the default SSL cipher suites to remove known weak ciphers [only affects new installations; cipher suites for existing zCenters must be manually edited]
• Added Server Name Indication (SNI) in CoIP TLS negotiation
• Added service monitoring for zLink processes running on Linux and Windows machines
• Added Data Access Segmentation Policy feature for automatic mounting of folders based on admin-defined policies

Bug Fixes

• Fixed a bug in the search function that prevented certain searches with whitespaces from working properly
• Fixed a problem that prevented zLink upgrades on Debian
• Various fixes for fields in the admin console that auto-filled improperly in Chrome
• Fixed a bug that prevented user role deletion
• Fixed a bug that caused zLink insulation to fail on Amazon Linux if RedHat LSB Core was also installed
• Fixed a bug that prevented CoIP Launcher dependency package download if the user account contained non-ASCII characters
• Fixed a bug in chamber policy distribution that affected very long chamber policies
• Fixed a problem in the Learn function that prevented the Clean Up Learned Rules feature from working properly
• Adjusted zLink installation package scripts to support RHEL 5

Known Issues

• The bundled ZPFilter driver for Windows 7/8 and Windows Server 2008/2012 must be updated with a more recent signed driver
• Chamber enforcement is currently not supported on MacOS CoIPLauncher
• In FTM, when specifying a file with the length of its absolute path greater than 260, Windows OS API will fail to access the size of the file
• In FTM, the uploaded folder cannot be moved when it's been opened and in the meantime the approver approves or rejects the approval mail
• In LDAP/Active Directory service configuration, certain special characters are not accepted in LDAP Search Account Password. Allowed characters are alphanumeric and any of *@-_+./
• In LDAP/Active Directory service configuration, a configuration must be saved before it can be tested

Browser Versions Used in Validation

CoIP Launcher in this release was validated on the following browsers/platforms: