Professional Documents
Culture Documents
Release Notes
r12.1 CR05
This Documentation, which includes embedded help systems and electronically distributed materials, (hereinafter referred to
as the Documentation) is for your informational purposes only and is subject to change or withdrawal by CA at any time.
This Documentation may not be copied, transferred, reproduced, disclosed, modified or duplicated, in whole or in part, without
the prior written consent of CA. This Documentation is confidential and proprietary information of CA and may not be disclosed
by you or used for any purpose other than as may be permitted in (i) a separate agreement between you and CA governing
your use of the CA software to which the Documentation relates; or (ii) a separate confidentiality agreement between you and
CA.
Notwithstanding the foregoing, if you are a licensed user of the software product(s) addressed in the Documentation, you may
print or otherwise make available a reasonable number of copies of the Documentation for internal use by you and your
employees in connection with that software, provided that all CA copyright notices and legends are affixed to each reproduced
copy.
The right to print or otherwise make available copies of the Documentation is limited to the period during which the applicable
license for such software remains in full force and effect. Should the license terminate for any reason, it is your responsibility to
certify in writing to CA that all copies and partial copies of the Documentation have been returned to CA or destroyed.
TO THE EXTENT PERMITTED BY APPLICABLE LAW, CA PROVIDES THIS DOCUMENTATION AS IS WITHOUT WARRANTY OF ANY
KIND, INCLUDING WITHOUT LIMITATION, ANY IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR
PURPOSE, OR NONINFRINGEMENT. IN NO EVENT WILL CA BE LIABLE TO YOU OR ANY THIRD PARTY FOR ANY LOSS OR DAMAGE,
DIRECT OR INDIRECT, FROM THE USE OF THIS DOCUMENTATION, INCLUDING WITHOUT LIMITATION, LOST PROFITS, LOST
INVESTMENT, BUSINESS INTERRUPTION, GOODWILL, OR LOST DATA, EVEN IF CA IS EXPRESSLY ADVISED IN ADVANCE OF THE
POSSIBILITY OF SUCH LOSS OR DAMAGE.
The use of any software product referenced in the Documentation is governed by the applicable license agreement and such
license agreement is not modified in any way by the terms of this notice.
The manufacturer of this Documentation is CA.
Provided with Restricted Rights. Use, duplication or disclosure by the United States Government is subject to the restrictions
set forth in FAR Sections 12.212, 52.227-14, and 52.227-19(c)(1) - (2) and DFARS Section 252.227-7014(b)(3), as applicable, or
their successors.
Copyright 2011 CA. All rights reserved. All trademarks, trade names, service marks, and logos referenced herein belong to
their respective companies.
CA Product References
This document references the following CA products:
CA Access Control
CA ACF2
CA Audit
CA Directory
CA Top Secret
Contact CA
Contact CA Support
For your convenience, CA provides one site where you can access the information that
you need for your Home Office, Small Business, and Enterprise CA products. At
http://ca.com/support, you can access the following resources:
Online and telephone contact information for technical assistance and customer
services
Contents
Chapter 1: Welcome
11
13
21
29
33
35
Contents 5
37
39
43
51
6 Release Notes
55
59
Contents 7
73
75
89
91
93
8 Release Notes
Contents 9
Chapter 1: Welcome
Welcome to CA Single Sign-On (CA SSO). This document contains information about
installation, operating system support, new features, changes to existing features,
known issues, third-party acknowledgments, and about contacting CA Technical
Support.
Chapter 1: Welcome 11
Verifies if the number of concurrent sessions has reached the specified limit. If the
limit is not reached, a new session is created.
2.
If the specified limit is reached, the CA SSO Client verifies each of the existing
sessions starting from the oldest session for any active monitored applications. The
CA SSO Client will log off a session that has no active monitored applications. If all
the existing sessions have active monitored applications, the CA SSO Client does not
create a new session.
Note: Monitored applications are your preferred applications that are mentioned in
the MonitorAppExes in the Client.ini file.
The following entries in the [CredentialProvider] section of the Client.ini file controls this
CA SSO Client behavior.
MaxConcurrentSessions
LimitChoice
MonitorAppExes
Note: For more information about these entries, see the Client.ini file description in the
Administration Guide.
AutoCertSelection
FilterDLLPath
MappingMethod
ExpectedValue
ShowFilteredCertificates
FilteringPattern
Note: For description about these entries, see the Auth.ini file section in the
Administration Guide.
PasswordFieldLabel
VerifyPasswordFieldLabel
Note: For description about these entries, see the Client.ini file section in the
Administration Guide.
You can also set these password labels using the following keys added sso tcl extension
pwdbox:
pswd_label
vrfy_pswd_label
Note: For description about these keys, see the pwdbox extension description in the tcl
Scripting Reference Guide.
14 Release Notes
HidePinInputField
Note: For more information about the HidePinInput field, see Auth.ini section the
Administration Guide.
CreateUserAPPLCache
Note: For a description of this entry, see the psbgc.ini file section in the Administration
Guide.
To display a user attribute on the CA SSO GINA dialog, identify the attribute using
the DisplayName_USER@<datastore> property and also set the
DisplayCustomName attribute in the Client.ini file.
For more information about the DisplayCustomName attribute, see the Client.ini
file section of the Administration Guide.
2.
3.
Expand the User Resources folder, right-click User Attributes and select New.
The Create New USER_ATTR Resource - General dialog appears.
4.
5.
Click OK.
The user attribute is created.
16 Release Notes
Fixed OCSP and CRL revocation methods for multiple certificate authentication
agents
FIXED_OCSP_FALLBACK_TO_CRL
FIXED_OCSP_FALLBACK_TO_CRLDP
AIA_OCSP_FALLBACK_TO_CRL
AIA_OCSP_FALLBACK_TO_CRLDP
CRLDP_FALLBACK_TO_CRL
For the previously mentioned methods, the user certificate is initially verified using
first method (FIXED_OCSP or AIA_OCSP or CRLDP). If the OCSP/CRLDP methods are
unavailable, the certificate authentication agent uses the CRL/CRLDP methods. For
example, FIXED_OCSP_FALLBACK_TO_CRL first verifies the user certificate using
FIXED_OCSP and if OCSP is not available, then only it verifies with the CRL.
Support for multiple CAs
To support multiple values for FIXED_OCSP add different sections for OCSP in the
CA_certtga.ini as follows:
[OCSPresponder1]
OcspSignCert=
OcspSignCertPass=
OcspResponder=
TrustedPath=
TrustedNames=
[OCSPresponder2]
OcspSignCert=
OcspSignCertPass=
OcspResponder=
TrustedPath=
TrustedNames=
To support multiple CRLs, add different sections for CRL in the CA_certtga.ini as
follows:
[CRL1]
CrlFileName=
CrlIssuerCert=
[CRL2]
CrlFileName=
CrlIssuerCert=
18 Release Notes
2.
3.
Expand the Configuration Resources folder, and select Policy Server Settings.
The list of Policy Server settings opens in the right pane.
4.
5.
6.
icon to
Note: The default value of this property is set to Yes. If you set this property value
to No, the CA SSO Server does not enforce password policies during the learn mode.
7.
Click OK.
The CA SSO Server is configured to enforce password policies.
Problem
ID
Description
Resolution
1051
1050
This issue is fixed. If the web page does not have a window title,
the CA SSO interpreter fails to connect to the web page. So, the
Application Wizard cannot identify the controls on that web
page. This issue is fixed. If the web page does not have a
window title, the CA SSO interpreter uses the URL of the web
page to connect to it.
1049
Problem
ID
Description
Resolution
1048
1037
Note: For more information about the newly added option, see
the html_connect extension description in the tcl Scripting
Reference Guide.
Problem
ID
Description
Resolution
1066
1081
1075
1045
1077
When [PasswordDialogLabels]
section is empty in Client.ini,
change password option is not
working.
22 Release Notes
Problem
ID
Description
Resolution
1082
1083
Problem
ID
Description
Resolution
1075
On Windows 7, fast user switching This issue is fixed. Code is modified to send a log out notification
is delayed.
to the LogonUI.exe.
1093
When ssoLaunchbar.exe is
This issue is fixed. SSOEvents is modified to make it thread-safe.
launched, the system crashes with
a blue screen.
1094
1096
1098
1103
1105
Problem
ID
Description
Resolution
1107
1108
1117
1118
1119
Problem
ID
Description
Resolution
1107
1141
24 Release Notes
Problem
ID
Description
Resolution
1142
When Show Desktop is selected in This issue is fixed. The code is modified to handle show desktop
Windows, the SSO Status or
event. The toolbar now appears in docking state after selecting
Toolbar hides completely.
Show Desktop.
1143
1146
1147
1148
1149
1151
1152
1153
1156
1157
Problem
ID
Description
Resolution
1182
This issue is fixed. The CA SSO Server now uses CA LDAP x64
library to interact with all types of directories.
1183
1184
1185
This issue is fixed.CA SSO Client now uses well know SID
S-1-5-2 corresponding to account ("NT
AUTHORITY\NETWORK"). This SID is independent of the
location of the operating system.
LookupAccountName("NT
AUTHORITY\NETWORK") failed.
Error: 1332.
1186
1188
1189
1191
26 Release Notes
Problem
ID
Description
Resolution
1192
1193
1194
1195
1199
1205
Problem
ID
Description
Resolution
1209
28 Release Notes
EnableWindowWatcher
EnableCaseInsensitiveMatch
PollInterval
Note: For more information about the Client.ini file, see the Administration Guide.
30 Release Notes
You must identify a Java application in the first line of the TCL script before scripting
other functionality. Include the following line of code before writing any script for
Java applications:
set _Mode Java
32 Release Notes
Server SDK for servers on Windows, Linux, and Solaris, and clients on Windows
Enhancements to SSOLaunchBar
The CA SSO launch bar is enhanced to support the following new features when
HideOnMinimize parameter in the LaunchBar section is set to yes in the Clinet.ini:
AD Configuration Wizard
AD Configuration Wizard
The Active Directory configuration wizard takes you through the process of configuring
and creating the Active Directory as the user data store for CA SSO.
The Active Directory configuration wizard has the following limitations:
You cannot edit configurations of user data stores through the Active Directory
configuration wizard.
Enhancement to CAPKI
CA SSO has upgraded CAPKI to version 4.2.2 (Linux and Solaris) and 4.2.3 for all
components.
38 Release Notes
40 Release Notes
CA License Upgrade
CA SSO has been enhanced to to CA License version which has
vulnerabilities fixed
The following upgrades have been made:
42 Release Notes
CA SSO Server
CA SSO Server
CA SSO only supports server farms that have all CA SSO Servers installed on computers
with the same operating system. For example, you cannot have a server farm with one
CA SSO Server installed on Solaris, another installed on Windows, and a third installed
on HP-UX.
Note: The CA SSO Server runs in 32-bit mode on UNIX 64-bit platforms. The CA SSO
Server runs as a 64-bit application on a 64-bit Windows operating system.
Microsoft Windows (32-bit and 64-bit)
2003 Enterprise Edition and Standard Edition SP2 on VMWare ESX Server 3.5
2003 Enterprise Edition and Standard Edition R2 SP2 on VMWare ESX Server 3.5
2008 Enterprise Edition R2 on VMWare ESX Server 4.0 and VMWare ESX Server 4.1
Solaris (SPARC)
You can install the CA SSO Server on Solaris 10 in a global zone, a non global zone, or
both. Each installation is a separate instance of a CA SSO server. If you are not running a
standard Solaris 10 installation, verify that you have the following Sun packages installed
before you install the CA SSO Server:
44 Release Notes
SUNWbcp
SUNWscpr
SUNWscpu
SUNWscpux
SUNWsra
SUNWsrh
SUNWipc
CA SSO Client
SUNWcsu
SUNWnisu
Apart from the preceding requirements, the following additional requirements are
required to install the CA SSO Server in non global zones:
CA Access Control kernel module (SEOS_load) must be installed and loaded in the
global zone before installing CA SSO Server in a non global zone.
Use install_base script when installing CA Access Control in the global zone.
Note: If the CA SSO server is installed in both global and non global zone, the two
installations must be in a similar mode of operation--non-FIPS, FIPS, or mixed mode.
LINUX (x86 and X64)
CA SSO Client
The CA SSO Client is supported on the following operating systems:
Microsoft Windows (32-bit)
7 SP1
2008 Enterprise Edition SP1 and SP2 on VMware ESX Server 3.5
Vista SP2
Server 2003 Enterprise Edition and Standard Edition R2 SP2 on VMware ESX Server
3.5
Server 2003 Enterprise Edition and Standard Edition SP2 on VMware ESX Server 3.5
XP SP3
7 SP1
Vista SP2
ADS Listener
ADS Listener
The ADS Listener is supported on the following operating systems:
Microsoft Windows (32-bit)
2008 Enterprise Edition R2 on VMWare ESX Server 4.0 and VMWare ESX Server 4.1
Authentication Agents
Authentication Agents are supported on the following operating systems:
Note: The authentication agents run as 32-bit applications on 64-bit operating systems.
Certificate Agent
Microsoft Windows (32-bit and 64-bit)
2003 Enterprise Edition and Standard Edition SP2 on VMWare ESX Server 3.5
2003 Enterprise Edition and Standard Edition R2 SP2 on VMWare ESX Server
3.5
46 Release Notes
2008 Enterprise Edition R2 on VMWare ESX Server 4.0 and VMWare ESX Server
4.1
Authentication Agents
LDAP Agent
Microsoft Windows (32-bit and 64-bit)
2003 Enterprise Edition and Standard Edition SP2 on VMWare ESX Server 3.5
2003 Enterprise Edition and Standard Edition R2 SP2 on VMWare ESX Server
3.5
2008 Enterprise Edition R2 on VMWare ESX Server 4.0 and VMWare ESX Server
4.1
RSA Agent
Microsoft Windows (32-bit and 64-bit)
2003 Enterprise Edition and Standard Edition SP2 on VMWare ESX Server 3.5
2003 Enterprise Edition and Standard Edition R2 SP2 on VMWare ESX Server
3.5
2008 Enterprise Edition R2 on VMWare ESX Server 4.0 and VMWare ESX Server
4.1
SSO Agent
The SSO Auth Agent is part of the CA SSO Server. See the CA SSO Server supported
platforms in the previous topic.
Authentication Agents
Windows Agent
Microsoft Windows (32-bit and 64-bit)
2003 Enterprise Edition and Standard Edition SP2 on VMWare ESX Server 3.5
2003 Enterprise Edition and Standard Edition R2 SP2 on VMWare ESX Server
3.5
48 Release Notes
2008 Enterprise Edition R2 on VMWare ESX Server 4.0 and VMWare ESX Server
4.1
2003 Enterprise Edition and Standard Edition SP2 on VMWare ESX Server 3.5
2003 Enterprise Edition and Standard Edition R2 SP2 on VMWare ESX Server 3.5
2008 Enterprise Edition R2 on VMWare ESX Server 4.0 and VMWare ESX Server 4.1
Solaris (SPARC)
For CA SSO Server plug-in specifications, see the SSO Server (see page 44).
Application Wizard
The CA SSO Client is supported on the following operating systems:
Microsoft Windows (32-bit)
Vista SP2
XP SP3
Policy Manager
Policy Manager
The Policy Manager is supported on the following operating systems:
Note: The Policy Manager runs as a 32-bit application on 64-bit operating systems.
Microsoft Windows
2008 Enterprise Edition R2 on VMWare ESX Server 4.0 and VMWare ESX Server 4.1
(64-bit)
XP SP3 (32-bit)
Session Administrator
The Session Administrator is supported on the following operating systems:
Microsoft Windows (32-bit)
50 Release Notes
2008 Enterprise Edition R2 on VMWare ESX Server 4.0 and VMWare ESX Server 4.1
CA SSO Server
The following are the minimum requirements for the system that hosts the CA SSO
Server:
2 GB RAM or greater
TCP/IP
Note: Requirements vary depending on the number of users in your data store, and
other variables. CA recommends planning your architecture, which will help you to
determine the appropriate sizing and scaling requirements of your servers for your
environment.
CA SSO Client
CA SSO Client
The following are the minimum requirements for the system that hosts the CA SSO
Client:
TCP/IP
ADS Listener
The following are the minimum requirements for the system that hosts the ADS
Listener:
1 GB RAM or greater
TCP/IP
Authentication Agents
The following are the minimum requirements for the system that hosts the
Authentication Agents:
52 Release Notes
TCP/IP
TCP/IP
Policy Manager
The following are the minimum requirements for the system that hosts the Policy
Manager:
256 MB RAM
TCP/IP
Session Administrator
The following are the minimum requirements for the system that hosts the Session
Administrator:
256 MB RAM
TCP/IP
In previous releases of the CA SSO Client the IdentityFile and TrustFile entries pointed to
files in the following location:
<install_folder>\ca\etrust sso\client\cfg
When you upgrade from previous releases of CA SSO to r12.1 Client, the information in
*.ini files of previous releases is migrated to the *.ini files of CA SSO r12.1. So, the
entries for IdentityFile and TrustFile entries in CA SSO r12.1 after upgrade refer to the
configuration folder of previous releases. So, the client cannot connect to a Windows
authentication agent after an upgrade.
Post upgrade to r12.1, manually edit the IdentityFile and TrustFile entries in [Auth.Win]
section of Auth.ini file to reflect the path of the client configuration folder for r12.1.
56 Release Notes
CA SSO Server
The following are the CA SSO Server known issues.
Online Updates to the CA SSO Server Are Not Loaded after selang Updates
Symptom:
When updating large numbers of objects in the database from a batch selang script,
some of the online updates to the CA SSO Server might not get loaded.
Solution:
To work around this issue and ensure the new information is fully loaded into the CA
SSO Server, you must restart the server service after the selang updates complete.
CA SSO Server
CA Directory disables caching and may crash while trying to serve the next request.
Solution:
To resolve this problem, we recommend that you disable caching by setting the
following parameter in the PS DSA dxi file:
set lookup-cache=false
CA SSO Server Data Migration Tools Do Not Support Non-English Characters from
Pre-r12.1 Releases of CA SSO
The CA SSO Server data migration tools do not support the migration of data that
contains characters other than those of the English locale, from previous versions of CA
SSO to CA SSO r12.1.
60 Release Notes
CA SSO Server
If a user group has more than 1500 members in Active Directory running Windows
2003, the Policy Manager is not able to show all users that are members of this
group.
The psbgc utility does not calculate background application list cache files for all
users in a group if this group has more than 1500 members in Active Directory
running on Windows 2003.
If a user is a member of more than 1500 user groups in Active Directory running on
Windows 2003, not all of these groups are considered for authorization purposes.
As such, a user might have access denied to SSO applications (that is, these
applications do not appear on a user's application list) even if there are explicit
authorization rules granting some of the user groups which the user is a member of
access to these applications.
Note: This limitation is based on the Microsoft Active Directory limitation imposed by
the MaxPageSize setting. The MaxPageSize is noted in knowledge article 315071
http://support.microsoft.com/kb/315071.
Cannot Log into SSO Server from Policy Manager after Changing to Run in FIPS
Mode
Symptom:
After upgrading from an r8.1 CA SSO Server (at least CR6) to r12.1 and changing the
Server mode of operation to FIPS mode, you cannot log into the Policy Manager with
administrative accounts.
Solution:
Reset the admin password after upgrading.
Policy Manager
Policy Manager
The following are the CA SSO Policy Manager known issues.
English
Japanese
Simplified Chinese
Korean
However, only English must be used. Japanese, Simplified Chinese, and Korean are not
supported.
Authentication Agents
The following are the CA SSO Authentication Agents known issues.
62 Release Notes
Authentication Agents
Interpreter
Cert Auth Authentication Does Not Work if the CA SSO Client is in FIPS-only Mode
of Operation
Symptom:
Cert Auth authentication does not work if the CA SSO Client is in FIPS-only mode of
operation because the PKCS#12 certificate and PBE certificates being used for
authentication are not FIPS-compliant.
Solution:
If a Cert Auth agent must be used for authentication, the SSO Client must be installed in
non-FIPS or TLS mode of communication. In TLS mode of communication, PKCS
certificates, which are generated with the FIPS-Compliant algorithms, must be used for
proper authentication.
Interpreter
The following are the Interpreter known issues.
64 Release Notes
Session Administrator
Session Administrator
The following are the Session Administrator known issues.
Application Wizard
The following are the Application Wizard Known Issues.
66 Release Notes
SSO Client
Identify any punctuation characters in the window title that may be causing your
automation script to fail to find the window.
On the Automating windows dialog, replace any punctuation characters in the Title
or Text fields with '*' wildcard characters.
Identify any punctuation characters in the page title that may be causing your
automation script to fail to find the web page.
On the Automating forms dialog, in the Page Title field, use only an initial substring
of the page title that does not contain punctuation characters.
In the Unique Text field, use only alphanumeric and whitespace characters.
Do Not Use Non-Standard Control Types on the Window You Are Automating
Symptom:
The Application Wizard may not detect some controls on the window you are
automating if the Windows application uses non-standard control types or renders its
own GUI elements.
Solution:
If a control does not appear in the table of controls on the bottom of the Automating
window dialog:
Examine the table to see if the control has been listed as an unrecognized control
type and assign an action to it.
Note: You can only assign the Click, Click exact point, and Type other text actions to
these types of controls.
SSO Client
The following are the SSO Client known issues.
SSO Client
68 Release Notes
SSO Client
SSO Client
Solution:
The Content Redirection properties of the application published on the Citrix Server
have registered the extensions .vbs and .js. Hence, the .vbs and .js files on the Citrix
Client are executed with the application instead of the default or Windows Script Host
(wscript.exe).
Follow these steps:
70 Release Notes
1.
On the Citrix Server, modify the Content Redirection properties for each published
application by clearing the .vbs and .js file extensions.
2.
On the CA SSO Client, perform one of the following tasks to re register .vbs and .js
extensions with the windows script host.
Install the windows script engine from Microsoft. See Microsoft documentation
for more information.
Patch the registry to re register .vbs and .js to windows script host.
SSO Client
French
German
Italian
Spanish
Swedish
Note: If you run the product in a language environment not listed in the
above-mentioned list, you may experience problems.
The CA SSO r12.1 CR02 Client is localized into the following languages:
French
German
Italian
Spanish
Swedish
Product Enhancements
Product Enhancements
SSO Client offers accessibility enhancements in the following areas:
Display
Sound
Keyboard
Mouse
Support
Screen resolution
Lets you change the pixel count to enlarge objects on the screen.
Icon size
Lets you make icons larger for visibility or smaller for increased screen space.
Sound
Use sound as a visual alternative or to make computer sounds easier to hear or
distinguish by adjusting the following options:
Volume
Lets you turn the computer sound up or down.
76 Release Notes
Text-to-Speech
Product Enhancements
Warnings
Lets you display visual warnings.
Notices
Gives you aural or visual cues when accessibility features are turned on or off.
Schemes
Lets you associate computer sounds with specific system events.
Captions
Lets you display captions for speech and sounds.
Keyboard
You can make the following keyboard adjustments:
Repeat Rate
Lets you set how quickly a character repeats when a key is struck.
Tones
Lets you hear tones when pressing certain keys.
Sticky Keys
When a shortcut requires a key combination, lets you press a modifier key,
such as Shift, Ctrl, Alt, or the Windows Logo key, and have it remain active until
another key is pressed.
Mouse
You can use the following options to make your mouse faster and easier to use:
Click Speed
Lets you choose how fast to click the mouse button to make a selection.
Click Lock
Lets you highlight or drag without holding down the mouse button.
Reverse Action
Lets you reverse the functions controlled by the left and right mouse keys.
Blink Rate
Lets you choose how fast the cursor blinks or if it blinks at all.
Pointer Options
Let you do the following:
Keyboard Shortcuts
Support
You can use the following options to receive SSO support.
Phone Support
Lets you receive help if you have visual disabilities.
Keyboard Shortcuts
The following table lists the keyboard shortcuts that SSO supports:
78 Release Notes
Keyboard
Description
Ctrl+X
Cut
Ctrl+C
Copy
Ctrl+K
Find Next
Ctrl+F
Ctrl+V
Paste
Ctrl+S
Save
Ctrl+Shift+S
Save All
Ctrl+D
Delete Line
Ctrl+Right
Next Word
Ctrl+Down
End
Line End
Hot Keys
Hot Keys
Following are the SSO Dialogs and the hot keys that are available for the controls:
Set Login Information Dialog
Login Name
Alt+L
New Password
Alt+N
Verify Password
Alt+V
Advanced
Alt+A
Continue Login
Alt+O
Cancel Login
Alt+C
My Applications
Open
Alt+O
Change Password
Alt+P
Startup Group
Alt+G
Desktop
Alt+D
Refresh
Alt+F
Hot Keys
My Details
Print
Alt+P
System Info
Alt+I
Tech Support
Alt+S
Server Set
Alt+S
Auth. Method
Alt+A
Domain
Alt+D
Log on
Alt+L
80 Release Notes
Hot Keys
Logoff
Alt+O
Shutdown
Alt+U
Authentication - SSO
User Name
Alt+U
Password
Alt+P
Change
Alt+C
User Name
Alt+U
Old Password
Alt+O
New Password
Alt+N
Verify Password
Alt+V
Hot Keys
Existing User
Alt+E
New User
Alt+N
Username
Alt+U
PIN
Alt+P
Token Code
Alt+T
System generation
Alt+S
User generation
Alt+U
New PIN
Alt+N
Confirm PIN
Alt+C
82 Release Notes
Hot Keys
Token code
Alt+T
Authentication - LDAP
User Name
Alt+U
Password
Alt+P
Change
Alt+C
User Name
Alt+U
Old Password
Alt+O
New Password
Alt+N
Verify Password
Alt+V
Authentication - Certificate
PKCS#11 Token
Alt+T
PKCS#12 File
Alt+M
Change
Alt+C
Hot Keys
Certificate
Details
Alt+D
Authentication - WIN
User Name
Alt+U
Password
Alt+P
Change
Alt+C
User Name
Alt+U
Old Password
Alt+O
New Password
Alt+N
Verify Password
Alt+V
84 Release Notes
Hot Keys
Yes
Alt+Y
No
Alt+N
Retry
Alt+R
Details
Alt+D
Unlock Computer
User Name
Alt+U
Password
Alt+O
Domain
Alt+D
Log Off
Alt+L
No
Alt+N
Log On to Windows
User Name
Alt+U
Password
Alt+O
Domain
Alt+D
Shutdown
Alt+S
Hot Keys
Lock Computer
Alt+K
Log Off
Alt+L
Shut Down
Alt+S
Change Password
Alt+C
Task Manager
Alt+T
User Name
Alt+U
Domain
Alt+D
Old Password
Alt+O
New Password
Alt+N
Shutdown Computer
86 Release Notes
Hot Keys
The following are the context menu items and the hot keys that are available:
Log On
Alt+N
Log Off
Alt+F
Applications
Alt+A
Open LaunchBar
Alt+L
Lock Computer
Alt+C
About
Alt+B
Exit
Alt+E
Full text search across all guides with search terms highlighted in the content and
ranked search results
Administration Guide
Implementation Guide
Release Notes
Locate and open the documentation folder from the product installation folder.
2.
Open the Bookshelf.hta file if the bookshelf is on the local system and you are
using Internet Explorer.
Log4cplus 1.0.2
Tomcat 5.5.12
The Apache software is distributed in accordance with the following license agreement:
Apache License
Version 2.0, January 2004
http://www.apache.org/licenses/
TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
1. Definitions.
'License' shall mean the terms and conditions for use, reproduction,and distribution as
defined by Sections 1 through 9 of this document.
'Licensor' shall mean the copyright owner or entity authorized by the copyright owner
that is granting the License.
'Legal Entity' shall mean the union of the acting entity and all other entities that control,
are controlled by, or are under common control with that entity. For the purposes of
this definition, 'control' means (i) the power, direct or indirect, to cause the direction or
management of such entity, whether by contract or otherwise, or (ii) ownership of fifty
percent (50%) or more of the outstanding shares, or (iii) beneficial ownership of such
entity.
'You' (or 'Your') shall mean an individual or Legal Entity exercising permissions granted
by this License.
'Source' form shall mean the preferred form for making modifications, including but not
limited to software source code, documentation source, and configuration files.
'Object' form shall mean any form resulting from mechanical transformation or
translation of a Source form, including but not limited to compiled object code,
generated documentation, and versions to other media types.
'Work' shall mean the work of authorship, whether in Source or Object form, made
available under the License, as indicated by a copyright notice that is included in or
attached to the work(an example is provided in the Appendix below).
94 Release Notes
'Derivative Works' shall mean any work, whether in Source or Object form, that is based
on (or derived from) the Work and for which the editorial revisions, annotations,
elaborations, or other modifications represent, as a whole, an original work of
authorship. For the purposes of this License, Derivative Works shall not include works
that remain separable from, or merely link (or bind by name) to the interfaces of, the
Work and Derivative Works thereof.
'Contribution' shall mean any work of authorship, including the original version of the
Work and any modifications or additions to that Work or Derivative Works thereof, that
is intentionally submitted to Licensor for inclusion in the Work by the copyright owner
or by an individual or Legal Entity authorized to submit on behalf of the copyright
owner. For the purposes of this definition, 'submitted' means any form of electronic,
verbal, or written communication sent to the Licensor or its representatives, including
but not limited to communication on electronic mailing lists, source code control
systems, and issue tracking systems that are managed by, or on behalf of, the Licensor
for the purpose of discussing and improving the Work, but excluding communication
that is conspicuously marked or otherwise designated in writing by the copyright owner
as 'Not a Contribution.'
'Contributor' shall mean Licensor and any individual or Legal Entity on behalf of whom a
Contribution has been received by Licensor and subsequently incorporated within the
Work.
2. Grant of Copyright License. Subject to the terms and conditions of this License, each
Contributor hereby grants to You a perpetual, worldwide, non-exclusive, no-charge,
royalty-free, irrevocable copyright license to reproduce, prepare Derivative Works of,
publicly display, publicly perform, sublicense, and distribute the Work and such
Derivative Works in Source or Object form.
3. Grant of Patent License. Subject to the terms and conditions of this License, each
Contributor hereby grants to You a perpetual, worldwide, non-exclusive, no-charge,
royalty-free, irrevocable (except as stated in this section) patent license to make, have
made, use, offer to sell, sell, import, and otherwise transfer the Work, where such
license applies only to those patent claims licensable by such Contributor that are
necessarily infringed by their Contribution(s) alone or by combination of their
Contribution(s)with the Work to which such Contribution(s) was submitted. If You
institute patent litigation against any entity (including a cross-claim or counterclaim in a
lawsuit) alleging that the Work or a Contribution incorporated within the Work
constitutes direct or contributory patent infringement, then any patent licenses granted
to You under this License for that Work shall terminate as of the date such litigation is
filed.
4. Redistribution. You may reproduce and distribute copies of the Work or Derivative
Works thereof in any medium, with or without modifications, and in Source or Object
form, provided that You meet the following conditions:
(a) You must give any other recipients of the Work or Derivative Works a copy of this
License; and
(b) You must cause any modified files to carry prominent notices stating that You
changed the files; and
(c) You must retain, in the Source form of any Derivative Works that You distribute, all
copyright, patent, trademark, and attribution notices from the Source form of the Work,
excluding those notices that do not pertain to any part of the Derivative Works; and
(d) If the Work includes a 'NOTICE' text file as part of its distribution, then any Derivative
Works that You distribute must include a readable copy of the attribution notices
contained within such NOTICE file, excluding those notices that do not pertain to any
part of the Derivative Works, in at least one of the following places: within a NOTICE
text file distributed as part of the Derivative Works; within the Source form or
documentation, if provided along with the Derivative Works; or, within a display
generated by the Derivative Works, if and wherever such third-party notices normally
appear. The contents of the NOTICE file are for informational purposes only and do not
modify the License. You may add Your own attribution notices within Derivative Works
that You distribute, alongside or as an addendum to the NOTICE text from the Work,
provided that such additional attribution notices cannot be construed as modifying the
License.
You may add Your own copyright statement to Your modifications and may provide
additional or different license terms and conditions for use, reproduction, or distribution
of Your modifications, or for any such Derivative Works as a whole, provided Your use,
reproduction, and distribution of the Work otherwise complies with the conditions
stated in this License.
5. Submission of Contributions. Unless You explicitly state otherwise, any Contribution
intentionally submitted for inclusion in the Work by You to the Licensor shall be under
the terms and conditions of this License, without any additional terms or conditions.
Notwithstanding the above, nothing herein shall supersede or modify the terms of any
separate license agreement you may have executed with Licensor regarding such
Contributions.
6. Trademarks. This License does not grant permission to use the trade names,
trademarks, service marks, or product names of the Licensor, except as required for
reasonable and customary use in describing the origin of the Work and reproducing the
content of the NOTICE file.
7. Disclaimer of Warranty. Unless required by applicable law or agreed to in writing,
Licensor provides the Work (and each Contributor provides its Contributions) on an 'AS
IS' BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
implied, including, without limitation, any warranties or conditions of TITLE,
NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A PARTICULAR PURPOSE. You
are solely responsible for determining the appropriateness of using or redistributing the
Work and assume any risks associated with Your exercise of permissions under this
License.
96 Release Notes
Boost 1.40
Boost 1.40
Boost Software License - Version 1.0 - August 17th, 2003
This product includes software distributed under the following license agreement:
Permission is hereby granted, free of charge, to any person or organization obtaining a
copy of the software and accompanying documentation covered by this license (the
"Software") to use, reproduce, display, distribute, execute, and transmit the Software,
and to prepare derivative works of the Software, and to permit third-parties to whom
the Software is furnished to do so, all subject to the following:
The copyright notices in the Software and this entire statement, including the above
license grant, this restriction and the following disclaimer, must be included in all copies
of the Software, in whole or in part, and all derivative works of the Software, unless
such copies or derivative works are solely in the form of machine-executable object
code generated by a source language processor.
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
FITNESS FOR A PARTICULAR PURPOSE, TITLE AND NON-INFRINGEMENT. IN NO EVENT
SHALL THE COPYRIGHT HOLDERS OR ANYONE DISTRIBUTING THE SOFTWARE BE LIABLE
FOR ANY DAMAGES OR OTHER LIABILITY, WHETHER IN CONTRACT, TORT OR
OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE
USE OR OTHER DEALINGS IN THE SOFTWARE.
98 Release Notes
TCL 8.4.19
TCL 8.4.19
This product includes TCL 8.4.19 ,which is distributed in accordance with the following
terms:
This software is copyrighted by the Regents of the University of California, Sun
Microsystems, Inc., Scriptics Corporation, and other parties. The following terms apply
to all files associated with the software unless explicitly disclaimed in individual files.
The authors hereby grant permission to use, copy, modify, distribute, and license this
software and its documentation for any purpose, provided that existing copyright
notices are retained in all copies and that this notice is included verbatim in any
distributions. No written agreement, license, or royalty fee is required for any of the
authorized uses. Modifications to this software may be copyrighted by their authors and
need not follow the licensing terms described here, provided that the new terms are
clearly indicated on the first page of each file where they apply.
IN NO EVENT SHALL THE AUTHORS OR DISTRIBUTORS BE LIABLE TO ANY PARTY FOR
DIRECT, INDIRECT, SPECIAL, INCIDENTAL, OR CONSEQUENTIAL DAMAGES ARISING OUT
OF THE USE OF THIS SOFTWARE, ITS DOCUMENTATION, OR ANY DERIVATIVES THEREOF,
EVEN IF THE AUTHORS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. THE
AUTHORS AND DISTRIBUTORS SPECIFICALLY DISCLAIM ANY WARRANTIES, INCLUDING,
BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A
PARTICULAR PURPOSE, AND NON-INFRINGEMENT. THIS SOFTWARE IS PROVIDED ON AN
"AS IS" BASIS, AND THE AUTHORS AND DISTRIBUTORS HAVE NO OBLIGATION TO
PROVIDE MAINTENANCE, SUPPORT, UPDATES, ENHANCEMENTS, OR MODIFICATIONS.
GOVERNMENT USE: If you are acquiring this software on behalf of the U.S. government,
the Government shall have only "Restricted Rights" in the software and related
documentation as defined in the Federal Acquisition Regulations (FARs) in Clause
52.227.19 (c) (2). If you are acquiring the software on behalf of the Department of
Defense, the software shall be classified as "Commercial Computer Software" and the
Government shall have only "Restricted Rights" as defined in Clause 252.227-7013 (c) (1)
of DFARs. Notwithstanding the foregoing, the authors grant the U.S. Government and
others acting in its behalf permission to use and distribute the software in accordance
with the terms specified in this license.
A portion of tcl software was obtained under the following terms:
Copyright (c) 1988, 1989, 1993, 1994
The Regents of the University of California. All rights reserved. Redistribution and use in
source and binary forms, with or without modification, are permitted provided that the
following conditions are met:
1.
Redistributions of source code must retain the above copyright notice, this list of
conditions and the following disclaimer.
Tclxml 2.6
2.
Redistributions in binary form must reproduce the above copyright notice, this list
of conditions and the following disclaimer in the documentation and/or other
materials provided with the distribution.
3.
All advertising materials mentioning features or use of this software must display
the following acknowledgement: This product includes software developed by the
University of California, Berkeley and its contributors.
4.
Neither the name of the University nor the names of its contributors may be used
to endorse or promote products derived from this software without specific prior
written permission.
THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND ANY
EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE FOR ANY
DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
(INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS * OR
SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE
USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
Tclxml 2.6
Portions of this product include software developed by the Zveno Pty Ltd. The Tclxml
software is distributed in accordance with the following license agreement:
Copyright (c) 1998-2003 Zveno Pty Ltd http://www.zveno.com/ Zveno makes this
software available free of charge for any purpose. This software may be copied, and
distributed, with or without modifications; but this notice must be included on any copy.
The software was developed for research purposes only and Zveno does not warrant
that it is error free or fit for any purpose. Zveno disclaims any liability for all claims,
expenses, losses, damages and costs any user may incur as a result of using, copying or
modifying this software. Copyright (c) 1997 ANU and CSIRO on behalf of the participants
in the CRC for Advanced Computational Systems (|&&|ACSys|&&|). ACSys makes this
software and all associated data and documentation (|&&|Software|&&|) available
free of charge for any purpose. You may make copies of the Software but you must
include all of this notice on any copy. The Software was developed for research
purposes and ACSys does not warrant that it is error free or fit for any purpose. ACSys
disclaims any liability for all claims, expenses, losses, damages and costs any user may
incur as a result of using, copying or modifying the Software.
THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY EXPRESSED
OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR ITS CONTRIBUTORS BE
LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
POSSIBILITY OF SUCH DAMAGE.
This product includes cryptographic software written by Eric Young
(eay@cryptsoft.com). This product includes software written by Tim Hudson
(tjh@cryptsoft.com).
Original SSLeay License
This product includes software written by Eric Young (eay@cryptosoft.com). Terms and
Conditions for the Use of xmlsec-openssl:
Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) All rights reserved.
This package is an SSL implementation written by Eric Young (eay@cryptsoft.com). The
implementation was written so as to conform with Netscapes SSL.
This library is free for commercial and non-commercial use as long as the following
conditions are aheared to. The following conditions apply to all code found in this
distribution, be it the RC4, RSA, lhash, DES, etc., code; not just the SSL code. The SSL
documentation included with this distribution is covered by the same copyright terms
except that the holder is Tim Hudson (tjh@cryptsoft.com).
Copyright remains Eric Young's, and as such any Copyright notices in the code are not to
be removed. If this package is used in a product, Eric Young should be given attribution
as the author of the parts of the library used. This can be in the form of a textual
message at program startup or in documentation (online or textual) provided with the
package.
Zlib V1.2.3
Redistribution and use in source and binary forms, with or without modification, are
permitted provided that the following conditions are met: 1. Redistributions of source
code must retain the copyright notice, this list of conditions and the following
disclaimer. 2. Redistributions in binary form must reproduce the above copyright notice,
this list of conditions and the following disclaimer in the documentation and/or other
materials provided with the distribution. 3. All advertising materials mentioning features
or use of this software must display the following acknowledgement: "This product
includes cryptographic software written by Eric Young (eay@cryptsoft.com)" The word
'cryptographic' can be left out if the rouines from the library being used are not
cryptographic related :-). 4. If you include any Windows specific code (or a derivative
thereof) from the apps directory (application code) you must include an
acknowledgement: "This product includes software written by Tim Hudson
(tjh@cryptsoft.com)"
THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND ANY EXPRESS OR IMPLIED
WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO
EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT,
INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
The licence and distribution terms for any publically available version or derivative of
this code cannot be changed. i.e. this code cannot simply be copied and put under
another distribution licence [including the GNU Public Licence.]
Zlib V1.2.3
This product includes zlib developed by Jean-loup Gailly and Mark Adler.