Login
    Contents x
    Version 3.22 (October 2021)
    • 30 Sep 2024
    • 1 Minute to read
    • Dark
      Light
    • PDF
    Contents

    Version 3.22 (October 2021)

    • Updated on 30 Sep 2024
    • 1 Minute to read
    • Dark
      Light
    • PDF
    Article summary

    New features and enhancements

    Authenticator is moved along with user

    (OAS-4880, OAS‑1541, support cases CS0032978, CS0033132, CS0041046, CS0046178)

    If a user has been moved to another organizational unit in the LDAP data store, LDAP Synchronization Tool will now move the user and all assigned authenticators to the new organizational unit in the OneSpan Authentication Server data store. This feature replaces the behavior in previous product versions, where moved users were deleted and re-created in OneSpan Authentication Server, and any assigned authenticators were unassigned.

    Please note the following to make the most of this new feature:

    • Because one additional SOAP command is executed per user, the first synchronization with LDAP Synchronization Tool 3.22 may take longer by approximately 25 per cent.

    • Before the first synchronization, it is recommended that you select the following profile options in the LDAP Synchronization Tool Configuration Utility:

      • Create users

      • Delete users

      • Update users – All

      • Enable created users

      • Include LDAP children

      • Mirror organizational unit structure

      • (OPTIONAL) Create missing organizational units

      • Return Digipass to OAS synchronization root on delete

    The SyncTest and SyncNow command-line utilities will test/synchronize only enabled profiles if no <profile_list> parameter is provided.

    Support for fully qualified domain names (FQDN)

    LDAP Synchronization Tool now supports fully qualified domain names (FQDN) to specify the server location of LDAP servers and OneSpan Authentication Server instances. This allows you to specify the same FQDN that is set in TLS/SSL certificates used for server verification.

    Fixes and other updates

    Issue OAS‑10065 (Support case CS0064700): Special characters not escaped in JSON output

    Description: LDAP Synchronization Tool includes several command-line utilities that can be used to test synchronization results, validate profiles, and trigger synchronization. The utilities do not properly escape special characters in their JSON output.

    Affects: LDAP Synchronization Tool 3.20–3.21

    Status: This issue has been fixed.

    Deprecated components and features

    Supported platforms and third-party products

    LDAP Synchronization Tool no longer supports the following products:

    LDAP data stores

    • NetIQ eDirectory 8.8 SP8

    Future platform support changes

    This section summarizes upcoming changes of supported platforms and other third-party products that will become effective in future versions. You are highly encouraged to plan and modify your deployments accordingly to allow future upgrades.

    Version 3.23

    LDAP Synchronization Tool 3.23 will no longer support the following products:

    Operating systems

    • Ubuntu Server 16.04 LTS, 64-bit

    • Red Hat Enterprise Linux line 6

    • CentOS line 6

    • No support is planned for CentOS line 8/Stream 8.

    Was this article helpful?
    What's Next
    Change password!
    Changing your password will log you out immediately. Use the new password to log back in.
    Change profile
    Success!
    First name must have atleast 2 characters. Numbers and special characters are not allowed.
    Last name must have atleast 1 characters. Numbers and special characters are not allowed.
    Enter a valid email
    Enter a valid password
    Your profile has been successfully updated.
    Logout
    ESC

    Ozzy, our interactive help assistant