DocumentationRelease Notes
Release Notes
Back to All

AD Bridge 24.2.2 release notes

April 1st, 2025

April 1, 2025

Supported upgrades: 23.1, 23.2, 23.3, 24.1, 24.2

New features

Can now ignore modules on upgrades

Building on the addition of the domainjoin.cfg file introduced in 24.2.0, this file will be read during upgrades to make sure the previous states are respected after the upgrade.

📘

While this does allow convenient options like ignoring the pam module configurations during the upgrade, it introduces issues if the upgrade was to fail while pam_lsass is still in the stack. Users should be aware of this risk.

Rocky 9 Supported with SELinux enabled

Rocky 9 support will be added to the supported platform docs.

New license container creation script

New script is located under resources\scripts\createADBLicenseContainer.ps1

This is a tool to assist when there are limitations to using the BMC to create a license container.

Enhancements

Improved the Network Manager interfaces

  • Support for wifi and bonded interfaces.
  • /etc/hosts file updates improved to update additional lines with hostname.
    • Already configured hosts files will not change.
  • Skip ignored interfaces.

Logging improvements

  • Additional logging on machine password update loop.
  • Surface error code description for error codes returned in domainjoin-cli.

Domain leave changes

  • Removing pam/nsswitch configurations on all platforms.
  • Setting GSSAPIAuthentication to no rather then commenting it out.

For product consistency, we have identified systems that will still have nsswitch or pam configured on a domain leave and corrected it.

On a domain leave we were commenting out GSSAPIAuthentication which would then rely on the default (no). This change makes this more explicit to the end users.

Remove mention of nohost and ignore-pam in domainjoin-cli

Both options have been replaced with --ignore MODULE and should no longer be used. They are not listed in the domainjoin-cli usage but functionality is still in place. Warnings will occur if used.

New config option SchemaConnectorApplication and OAuthProvisionMode

New options in place for our next major release. At this point it can be ignored.

Issues resolved

  • Samba-interop-install failing with undefined symbols.
  • Apache integration failing with undefined symbols.
  • Collector status page now works with custom SQL Server ports.
  • Improve Kerberos pac check on deb systems.
  • Original ssh configurations backups are now getting restored on a purge.
  • AD-Cache/AD Authentication was broken after an offline upgrade.

©2003-2025 BeyondTrust Corporation. All Rights Reserved. Other trademarks identified on this page are owned by their respective owners. BeyondTrust is not a chartered bank or trust company, or depository institution. It is not authorized to accept deposits or trust accounts and is not licensed or regulated by any state or federal banking authority.