January 7, 2021

New features and enhancements:

• Implemented Low-Privilege UVM Services.
• Removed x-powered-by from AAR/reverse proxy headers when installed.
• Replaced SHA1CryptoServiceProvider.
• Removed PasswordSafe license requirement for High Availability.
• Updated DotNetZip library used by our application.
• Login page messaging improvements.
• Removed extra logging functions from Configuration Wizard.

Issues resolved:

• Resolved issue in which the server was inaccessible until Firewall service was cycled.
• Resolved issue in which BeyondTrust Appliance API Key Management service crasheed unexpectedly.
• Resolved issue in which Trigger Connections Test is disabled on API Key Maintenance page.
• Prevented restores on Appliances in High Availability.
• We now show update status as Skipped if all steps are skipped.
• Resolved issue in which the Appliance Software Version tile appeared empty.
• Resolved issue in which Swap Roles on a SQL-Free worked, but returned an Internal Server Error to the UI.
• Resolved issue with backup files and auth codes and special chars in names.
• Resolved issue in the UVM HA Monitoring Service in which the log file was creating error logs about depreciated service eEyeWebSvc.
• Resolved issue in which the user was able to click Schedule backup button multiple times.
• Resolved issue in which UVM50 appliances which have their DB split into multiple parts did not correctly display DB size on HA page.
• Resolved issue in which the list of notifications cuts off the top of the first one.
• Resolved issue in which the footer on notifications page does not stay at the bottom and has notifications that display over top.
• Resolved issue in which product versions did not display on the LCD panel.
• Resolved issue in which the Include Session Files in Backup option was unchecked after checking it for the schedule.
• Resolved issue in which the list of appliance software versions changed sort order. The Security Mgmt Appliance version was no longer on top.
• Resolved issue in which the EventServiceAppPool and PolicyServiceAppPool services were stopped and did not start after running configuration wizard on a Hyper-V image.
• Resolved issue in which the Login card did not indicate a reboot is required when there was a pending reboot.
• Resolved issue in which the complete text of a notification was unviewable.

Known issues:

• 2020-R1 and 2020-R2 images missing SQL Analysis Server permissions. This causes backups to fail when Analysis/Reporting roles turned on.
• UVM Self-signed certificate does not have subject alternate name (which does not support HSTS).
• UVM Management Appliance can complete and not indicate a reboot is required but the web login card does.
• When EVAL license is used ,an unnecessary call is made to GetRegInfo.
• When NTP and Auto Synchronization is set to NONE, the appliance is still setup to synchronize to the Internet at time.windows.com.
• A slider in General Settings is not retaining its value when page is reloaded.
• Selecting Use NTP server for time in General Settings results in an error.
• Password input boxes in Roles Editor and Maintenance do not clear the input box when submitted.
• An error returned from the WebSocketAuthTicket Service on the API key management page may display in the Description input box for registering an API key.
• Enabling Export Settings is not retained.

Notes:

• This update is available via the BeyondTrust Updater or as a manual installer from the download tool.
• Shipping on new Appliance Images in January 2021.
• This install is dependent on SUPI 3.0 being installed first (all UVM versions since 3.2.2 have this requirement).

November 24, 2020

New features and enhancements:

• Improved handling of older cumulative SUPI packages.
• Updated configuration so that SQL-free UVMs are not subscribed to SQL security updates.
• Improved handling of SUPI subscription IDs regarding case sensitivity.

Issues resolved:

• Resolved issue with SUPI package cleanup following install.

Known issues:

• SUPI Service API allows creating duplicate schedules, which breaks processing (not UI).

Notes:

• The desktop SUPI.EXE no longer has a user interface but can still be used at the command prompt to support scripting.
• SUPI 3.0.x is a prerequisite to installing UVM Software 3.2.2 and later.

November 3, 2020

New features and enhancements:

• Removed .NET Core 2.0 dependencies and components.
• Registry-based mitigation for Windows Speculative and Meltdown vulnerabilities.

Notes:

• This update is available via the BeyondTrust Updater or as a manual installer from the download tool.
• Shipping on new Appliance Images in November 2020.
• The Standalone Roles Editor Installer will remain at version 3.2.1 as there were no related changes in 3.2.4.
• This install is dependent on SUPI 3.0 being installed first (all UVM versions since 3.2.2 have this requirement).

October 15, 2020

Issues resolved:

• Resolved issue in which two non-cumulative packages failed to install together.

Known issues:

• SUPI Service API allows creating duplicate schedules, which breaks processing (not UI).

Notes:

• This release will not install to Server 2008 UVMs.
• When installed on a Server 2012 UVM, the following new Subscriptions are added with the install:
  • UVM Supporting Software
  • UVM Environment
  • Security patches for SQL 2014
• When installed on a Server 2016 UVM, the following new Subscriptions are added with the install:
  • UVM Supporting Software
  • UVM Environment
  • Security patches for SQL 2016
• The desktop SUPI.EXE no longer has a user interface but can still be used at the command prompt to support scripting.
• This installer is a prerequisite to installing UVM Software 3.2.2.

October 6, 2020

New features and enhancements:

• Resolved issue registering non-evaluation licenses after using Eval Mode on 2020R1 (Windows 2016) image.

• Resolved issue with Roles Editor error handling when API parameters outside expected values were used.

• Resolved issue with calls that were testing outbound connectivity against the licensing server.

• Resolved several escalation-related critical defects.

Notes:

• This update is available via the BeyondTrust Updater or as a manual installer from the download tool.
• Shipping on new Appliance Images in October 2020.
• The Standalone Roles Editor Installer will remain at version 3.2.1 as there were no related changes in 3.2.3.
• This install is dependent on SUPI 3.0 being installed first (all UVM versions since 3.2.2 have this requirement).

September 3, 2020

New features and enhancements:

• Improved the security update installation workflow with new screens.

• Added support for the new SUPI 3.0 Engine. Added screens for package details and history.

• You can now schedule the installation of SUPI packages.

• The PBW role now retains role settings set by the user and does not overwrite them with policy settings.

• Improved communication between BTUpdater and the UVM Software.

• Added support for BeyondInsight 7.0 database calls.

Known issues:

• Attempting UPLOAD CRYPTO KEY OPTIONS fails with ERROR: Could not find a part of the path.
• Product versions do not display on the LCD Panel.
• High Availability setup does not work if user has custom SSL certs in the UVM certificates store.
• When performing a backup with a remote BeyondInsight database and a local Auditing & Reporting database, there could be an invalid login attempt for SA user looking for BeyondInsightReporting on the remote db.
• When invalid dates are used to schedule a SUPI update, some of the pop-up messages returned are not in a user-friendly format.
• Warning card when not subscribed to SUPI subscriptions is not displayed in a warning banner.
• The Schedule Update card is displaying a radio button of an incorrect size and alignment.
• Odd highlighting can occur when UI items receive focus.
• A SUPI 3.0 radio button and accompanying text are not aligned properly in the GUI.
• A Date Time picker cannot be disabled in the GUI.
• When running a repair on UVM Software, an error is displayed: The specified account already exists.
• When uninstalling, UVM Software Services are not completely removed or not removed at all.
• On the SUPI Updates page, the second failed package is missing failed icon.
• On the SUPI Updates page, any error message past two lines is aligned incorrectly.
• Update Package Name is aligned incorrectly on the Update History page.
• UVM Time on the Schedule a Reboot page shows users the time but not the UVM time.

Notes:

• The Standalone Roles Editor Installer will remain at version 3.2.1 as there were no related changes in 3.2.2.

September 3, 2020

New features and enhancements:

• Added SUPX format packages, which distribute EZPatch packages to make UVM Appliance (environment) changes.

• Added MSUPI format packages, which can distribute Microsoft KB updates or third-party software.

• Converted SUPI Engine/EXE to a service that works the same as the EXE did on 2012-R2.

• Updated the SUPI Service on Server 2016 systems to install KBs without use of the offline scan cab file.

• Added feature to schedule installation of SUPI packages.

• Enhanced SUPI Service on W2016 to install EzPatch/SUPX packages to return installation progress updates.

• Added additional subscriptions to deliver the new update types.

• Supports Legacy SUPI Functionality.

Notes:

• This release will not install to Server 2008 UVMs.
• When installed on a Server 2012 UVM, the following new Subscriptions are added with the install:
  • UVM Supporting Software
  • UVM Environment
• When installed on a Server 2016 UVM, the following new Subscriptions are added with the install:
  • UVM Supporting Software
  • UVM Environment
  • Security patches for SQL 2016
• The desktop SUPI.EXE no longer has a user interface but can still be used at the command prompt to support scripting.
• This installer is a prerequisite to installing UVM Software 3.2.2.

March 12, 2020

New features and enhancements:

• The appliance now boots and is app-and-services ready faster by setting a service health handler.

• UVM Protection policy improvements (file name and service logic).

• As an Administrator, you can now view the UVM Protection Policy Name and creation date in Maintenance to help determine which policy is currently applied.

• The installer and services have been changed from DPAPI to ACL entries in the registry.

• Improved backups; refactored the UVMInterface Version class and added it to the ApplianceSystemDetails service.

• Ported the Rename Machine and IP Settings Functions to the SystemAccessService and the BIAPI Service.

• Improved authentication services code.

• Updated the backup service to run under Backup operators.

• The BeyondTrust EULA is now displayed in the Configuration Wizard.

• Backups are excluded from the transaction logs so that they do not take up space in the backup location; transaction logs are no longer restored.

• The timeouts for restore and data migration functions have been increased.

• Added a check for the Identity Service running state in LegacyDataMigrationJob.

• Added a global dependency check to backup/restore and make plugin dependency checks role-aware.

• If the Administrator account is locked, it is now unlocked when a new password is set.

Issues resolved:

• Resolved an issue in which notification events prior to configuration appeared in the user's notification dropdown.
• Resolved an issue in which an incorrect error was displayed on login pages when a login failure occurred.
• Resolved an issue in which a reboot pending call returned a 404 error on a Roles Editor's login page.
• Resolved an issue in which the Apply Updated Settings button did not appear when Diagnostics was viewed specifically in the Internet Explorer 11 browser.
• Resolved an issue in which the High Availability for Services Only option could not be set for the High Availability Role in the Roles Editor.
• Resolved an issue in which cell spacing for the blue product versions page in the configuration wizard results in unnecessary word wrap or text being displayed out of the cell area.
• Resolved a formatting issue that resulted when the version card was selected on final configuration wizard page.
• Resolved an issue in which pages were not loading properly if the user was on a page for an extended period of time, but not yet at the timeout limit.
• Resolved an issue that caused a double install when running the UVM Software Installer and the UVM was pending reboot.
• Resolved an issue that was preventing the update of a Central Policy password via the UVM UI.
• Resolved an issue with unexpected AM/PM selector behavior experienced when scheduling a backup.
• Resolved an issue during installation in which a delay in removing the Maintenance folder caused a retry prompt.
• Resolved an issue in which service alerts could not be toggled on and off without a page refresh.
• Resolved an issue in which sending a test email did not display a confirmation message in the UI; resized the email address display to fit longer addresses.
• Resolved an issue in which the diagnostics Analyzer tool failed to run a report.
• Resolved an issue in which Services does not restart when a user switches roles back in HA Service Only configuration.
• Resolved an issue in which the message Error finding SQL server path was returned when a 2019-R1 UVM Appliance was renamed.
• Resolved an issue in which BeyondInsight Database Access indicated that there was a local SQL server when the appliance did not actually have one.
• Resolved an issue in which multiple services in existing installs were set to Take No Action on failure.
• Resolved an issue in which the Retina plugin in backups did not include a path for RetinaSetup622.
• Resolved an issue in which passwords were visible in the log file and during processing during a restore.
• Resolved an issue in which a minimum version check broke the automated build pipeline.
• Resolved an issue in which a Check for Available Updates pop-up notification containing visible HTML code was displayed.
• Resolved an issue in which service encryption was impacted after sysprep.
• Resolved an issue that made the Maintenance and Diagnostics pages inaccessible after RADIUS Authentication was enabled but not added to the btadmin account.
• Resolved an issue in which the Roles Editor displayed pending changes after a restore when there were none.
• Resolved an issue that was causing the login page to break because initial access to pre-logon banner settings allowed for invalid settings.
• Resolved an issue in the High Availability application where the Set High Availability and Update Settings buttons were disabled after changing text values on the screen.
• Resolved an issue that caused restore from backup to fail on 2016 UVM.
• Resolved an issue in which backups run after an upgrade to 3.2 failed due to an incorrect database path when attempting to back up the BeyondInsight Analytics and Reporting database.
• Resolved an issue in which backups run after an upgrade to 3.2 failed due to an incorrect database connection when attempting to back up the BeyondInsight Analytics and Reporting database.
• Resolved an issue that caused backups to fail if the Windows UserName was changed.
• Resolved an issue in which BIUL backups were failing with the message Could not find a part of the path.
• Resolved an issue in which Invalid records could be added to a 3.2.0 backup database.
• Corrected the import logic for importing schedules in which it was not checking for an existing backup location.
• Corrected an issue in which backup locations could not be edited or deleted.
• Resolved an issue in which renaming the UVM's admin account without restarting the SQL service can cause backups to fail.
• Resolved an issue in which settings are not saved to the SQLite table if not using an existing location from the backups page.
• Resolved an issue in which existing backups are not detected as candidates when running a restore on a cold spare.
• Resolved an issue in which roles would not load if the SQL Server Service or the SQL Server agent was in a stopped state.
• Resolved an issue in which the login card authentication service was not running an error message.
• Resolved an issue in which failed services did not restart because a dependent service did not start.
• Resolved an issue in which schedule backup notifications were spawning at 12PM instead of 12 AM.
• Resolved an issue in which schedule backup and restore jobs were not getting deleted on scheduled update.
• Resolved an issue in which a Backup Service Account change caused a restore of 3.2.0 backups to fail on 3.2.1.
• Resolved an issue that was causing the backup service to consume a large amount of memory.

Known issues:

• NTP Server is displayed as Local CMOS Clock and reverts to default after setting NTP to none.
• Missing pre-logon banner message should be highlighted in red with warning message consistent with missing banner title.
• A VMWare Tools periodic time sync option is visible both on a physical UVM and Hyper-V UVM, but should not be.
• Button outline for Next button has a separate square outside of the typical click area.
• The Legacy Restore Tool is not signed.
• The Backup Extraction Tool is not signed.
• When Evaluation Mode is available, the serial numbers from the config file will not populate.
• The default SSL bindings cause an issue with World Wide Publishing Services and UVM Services when the customer has custom IP certificate binding.
• The login page comes up without displaying banner messages.
• Resolved an issue in which, because a user saved the Logon Banner settings without all the required fields filled out, loading the logon page would result in the username and password fields not being populated with their labels.
• The Configuration Wizard prerequisite page does not check for the License Processing Service.
• A reference to BT Security Mgmt Appliance application for 3.1.5 is not being removed from the list of installed programs.
• The Trigger Connections Test is disabled on the API Key Maintenance page.
• There is a typo on the Review screen when choosing Evaluation Mode.
• Snackbar notifications prevent clicking any items on either side of popup.
• The BeyondTrust logo on the login page is not displayed in the proper size.
• The top of the first notification is cut off in the notifications list.
• The list of appliance software versions has changed the sort order and the Security Management Appliance version is no longer at the top.
• The Appliance Logs page lists services which no longer exist and is missing some that do.
• Resolved an issue in which the BIUL Role in the Roles Editor would show a previously configured remote BIUL database to be local.
• On a hardware UVM, after applying changes to Service Alerts, the two Apply Changes buttons are disabled until the page has been refreshed.
• Schedule a Reboot items are misaligned at smaller browser sizes.
• The BeyondTrust Appliance API Key Management service crashes unexpectedly.
• The login card does not indicate a reboot is required when there is a pending reboot.
• The Include Session Files in Backup option is unchecked after checking it for the schedule.
• The confirmation message when discarding changes refers to undefined.
• Corrected a typo in a snack bar message that should have read The scheduled appliance reboot has been cleared successfully.
• The Windows license key displayed in Maintenance > Accounts & Licensing is not accurate on the 2016 UVM.
• UVM Interface Log file [INF] items should be [WRN] items.
• Taking a backup using a 3.2.1 build 49 fails on a 2008 R2\SQl 2008 R2 appliance.
• The authentication service doesn't have access to the BeyondInsight database it needs to fully do a RADIUS login.

Notes:

• With this release, there will also be a 3.2.1 Standalone Roles Editor Installer made available for Software Installs.
• This update is available via BeyondTrust Updater or as a manual installer from the download tool. Shipping on new Appliance Images in March 2020.

January 7, 2020

New features and enhancements:

• A plug-in based architecture is now in place for the Backup feature.

• UVM software is available in Evaluation Mode for a 30-day period.

• Rebranded PowerBroker Servers Management Console to BeyondInsight for Unix & Linux.

• A Backup & Restore Migration tool is available to upgrade deprecated UVM appliances.

• If you are running Windows 2008 R1 or R2, then a message is displayed when you log into the UVM software (all apps) indicating the OS has been deprecated and needs to be upgraded.

• The frontend for the web applications is updated to Angular 1.7.

• The Customer Portal option in Maintenance is no longer available as a way to activate serial numbers.

• The Customer Portal option on the Configuration wizard is no longer available as a way to activate serial numbers.

• When going through the Configuration wizard, the option to go to the Roles Editor is no longer available. You can go to the Roles Editor and change settings on roles after you finish the Configuration wizard.

• The option to configure High Availability (HA) is no longer available in the Configuration wizard.

Issues resolved:

• Resolved an issue where services were missing from Health/Services tracking.

Known issues:

• Unable to uninstall Configure Repository Product.
• Cannot update Central Policy password via UVM UI.
• Pre-logon banner has extra space in input field.
• Sometimes the Banner Page login and notification icons remain even when logged out.
• AM/PM selector strange behaviour when scheduling a backup.
• Some backups using a FQDN remain in a state of in progress forever. The log shows that the backup failed.
• Toasters remain after timeout or log out of the UI.

Notes:

• Update is available through BeyondTrust Updater or as a manual installation from the download tool.
• There is a 3.2 Standalone Roles Editor Installer available for Software Installs.

August 27, 2019

Issues resolved:

• Resolved an issue when attempting to perform an HA pair. Database restores longer than 100 seconds would generate a timeout error.

Known issues:

• Cell spacing for the Blue Product versions page in the configuration wizard results in unnecessary word wrap or text being displayed out of cell area.
• Formatting issues occur when the version card is selected on the final configuration wizard page.
• References to Retina have not been updated to BeyondTrust Security Scanner.
• SMTP values are not lined up properly in the configuration wizard.
• The Maintenance > General Settings > Date/time button does not function.
• The message "Patch Management: Service eEyeThirdPArtyPatchService2k12 was not found on computer" is received when changing Roles Templates.
• The Appliance Software Version tile appears empty.

Notes:

• Update is available through BeyondTrust Updater or as a manual installation from the download tool.
• The Standalone Roles Editor and UVMSQL installers have not been updated as the above issue does not impact those installs.