UCMS 4.9/UP 2.4 Release Notes (March 2023)

Last Updated: November 1, 2023

Product Versions Included in this Release:

• UCMS: 4.9.x
• Unified Portal: 2.4

UCMS

New Features

Support for IDEMIA Cosmo PIV/CIV v8.2

UCMS 4.9 introduces support for the latest evolution of the IDEMIA Cosmo PIV/CIV smart card. 

New Configuration Parameters

• AD to AD Migration terminate devices
  A new configuration parameter, AD to AD Migration terminate devices, can be set in the Configuration > Parameter Management page. It enforces the termination of all active devices for a user who is moved from one directory to another.
  When set to Y, this parameter terminates a user's existing devices when that user is moved from one AD directory to another.
  • In UCMS 4.9.7.1 and earlier, user status was updated via the User Status synchronization job, when the user was issued a device in the Unified Portal, or when an Operator searched for users in the Operator Portal.
  • In UCMS 4.9.9.1, user status is only updated via the User Status synchronization job.
• KeyRecovery From All Workflows
  A new configuration parameter, KeyRecovery From All Workflows, can be set in the Configuration > Parameter Management page to allow for the recovery of escrowed encryption certificates from all workflows that are mapped to a user. Set this parameter to Y to allow the recovery of escrowed encryption certificates from all workflows that are mapped to a user.

  

Unified Portal 2.4

New Features

Mobile OTP

Users can now enroll an OTP for any third-party website that is compliant with OATH.

Temporary Password

Help Desk Operators can now enable a temporary password for End UÅÍsers. This temporary password can be used for emergency access and account recovery.

Certificate Download

End Users and Operators can download any public certificate stored in an authenticator.

Enhancements

Fail Counter Management

Operators can now reset the fail counter of a device from the Unified Portal Help Desk page.

Bug Fixes

Unified Portal 2.4.7

• For disabled tokens not assigned to any users, both the Enable and Revoke options display as expected. (PM-1758)

Unified Portal 2.4.5

• The Emergency Access section is now only visible when the user is registered to see it. (PM-823)
• When searching for different users in the Help Desk pages, your saved Column display preferences now save for each view, as expected. (PM-1364, PM-1153)
• Temporary passwords now generate with a valid start date (PM-1092).

Unified Portal 2.4.3

• The fail counter for an OTP token is now color-coded to reflect the device status (PM-995):
  • Green = no failure
  • Orange = some failure
  • Red = reached the maximum failures authorized

Unified Portal 2.4

• The default PIN policy in the Unified Portal now matches the PIN policy in UCMS, as expected. (PM-4741)

API

New Features

New keyHistoryCredentials Field in the GET /api/v2/devices/{type}/{device-uid} Response

A new keyHistoryCredentials field returns key history credential IDs that are fit in a device.

New PEM Header and Footer in the GET /api/v2/credentials/{type}/{credential-uid} Response

A new PEM header and footer has been added to the value field in the GET /api/v2/credentials/{type}/{credential-uid} response. If you consume the value field to display certificate information, update your application to support this latest format.

Enhancements

Status Field Processing in the GET /api/v2/users/{uid} API Response

We changed the way the Status field is processed in the GET /api/v2/users/{uid} response.

• In 4.9.7.1 and earlier, users listed in the User Cache table but not in the UCMS User table return a value of NA.
• In 4.9.9.1, users listed in the User Cache table but not in the UCMS User table return the value listed in the User Cache table.
• It will now return the value found in the User Cache table.

Now, the API returns the actual status value instead the description: