ADManager Plus fixes and enhancements for builds 7010 to 7053
7053 (March 2020)
Fix:
This release includes fixes to ensure ADManager Plus is immune to unauthenticated remote code execution vulnerability.
7052 (March 2020)
Enhancements:
- If the OU name provided during creation of bulk AD objects using CSV does not exist, then a new OU of the specified name will be created and the desired AD objects will be created under it.
Fixes
The following issues have been fixed in this release:
- The selected report window was blank for some customers.
- While modifying users, with CSV, when the value for removeMemberOf attribute is empty, the user modification action failed.
- During computer modification, even if the sAMAccountName was only 15 characters long followed by $ symbol, an error message for exceeding character limit was shown.
- While scheduling custom reports, if the OUs selected during custom report configuration and creation of automation schedule are different, the scheduled custom report will contain results from the OUs chosen during custom report configuration.
- When configuring additional email address during single group modification for mail enabled group, when the additional email address added is already in use for a different mail enabled group, error message failed to show up.
7051 (February 2020)
Enhancements:
- Support for Microsoft's upcoming security update for fixing LDAP channel binding and LDAP signing settings.
- Any LDAP attribute can be used to locate the desired AD users using the search user Rest API.
- Request ID macro has been added to the list of macros supported in the notification template in workflow.
- In automation, while using custom scripts to perform any user management action, it is now possible to use data from external databases like Oracle and MS SQL as the input.
- Office phone number can be added while creating Office 365 contacts.
Fixes
The following issues have been fixed:
- The unlock Locked-out users option on the dashboard was not visible for help desk technician after upgrades to recent builds.
- Some Office 365 reports were not available for help desk technicians even with Super Administrator privileges, after update to recent builds.
- Permissions for folders report displayed SAMAccount name in the Display name column.
- The user accounts modified with custom modification templates showed incorrect values for year in the Account expiry attribute.
- SQL server did not support column encryption for versions 2014 and older.
The Office 365 Inactive users report generated in the automation module showed incorrect results.
In automation, the successive tasks had to be manually triggered in certain instances.
7050 (January 2020)
Enhancements:
- Custom reports can be auto-generated and emailed via report scheduler.
- Closed workflow requests will be added to the archived audit report.
- Ability to view multiple archived audit reports.
- Capability to view the Distinguished Name of the deleted OUs in the audit report.
- Ability to modify contact's container attribute using contact modification template.
- Option to select custom report as input while configuring an automation.
- Option to view the Employee Number in the Employee Search option.
- Capability to hide or display Office 365 groups from address lists.
Fixes:
The following issues have been fixed in this release:
- While integrating with external databases, if the primary key is not added to the Data Source - LDAP Attribute Mapping section in the configuration, the tool was not be able to uniquely identify the user records stored in the database.
- Unable to use remote Windows Authentication to integrate with external SQL database server with JDBC driver version 7.0.0.
- Error in performing the delete user operation initiated from ServiceDesk Plus if the export user mailbox to a PST file was configured in the delete policy in ADManager Plus.
- Email notifications are triggered multiple times every time a workflow request is raised.
7041 (December 2019)
Fixes
This release includes fixes for the following issues:
- When the AccountExpires attribute is modified using the Single User Modification feature, the change is not updated.
- Not being able to modify an existing automation if automation policy is used in it.
- Help desk technicians not being able to locate users through the AD Search option, even if the users' OUs are delegated to the technicians.
7040 (November 2019)
Enhancements
- The existing GUI has been replaced by the much-awaited flat and sleek one, for all active users.
- Office 365 Management and reporting:
- Group-based user license management: Bulk assign, modify, replace or revoke the licenses of users who are members of specific groups.
- 45 new reports on Office 365 Users, passwords, and Exchange mailboxes.
- REST APIs to modify AD user accounts, add/remove users from groups, and create workflow requests.
- The Users with Change Password at Next Logon and Users Not in Groups reports have been added to the list of reports supported in Automation; Offers greater flexibility in selecting the user accounts to be managed via Automation.
- Integration with PAM360, ManageEngine's privileged access security solution, to dynamically manage PAM360 technicians' privileges.
- Active Directory users' logon hours will also be included in the Help desk Audit report data when it is exported.
Fixes
The following issues have been fixed in this release:
- Custom script not being executed after user creation, if the Office 365 user creation option alone is selected while creating users.
- When Password Expired Users report is generated with the Exclude Disabled Users filter enabled, the data includes disabled AD users also.
- All Computers report not being generated when used in Computer Automation tasks if Member Of filter is used.
- When modifying an OU using the Modify Single OU feature, Protect from Accidental Deletion option is not enabled in the product, even when it is enabled in AD.
- Unable to add additional domains in the logon name field of user creation templates, while creating a new template or modifying an existing one.
- Not being able to move to other tabs after clicking the Office 365 tab in user creation templates.
- Users Not in Groups report data not being displayed when the Show Users Not in Any of the Groups filter is selected.
7030 (October 2019)
New Features
- Over 10 new management operations including Add or Remove Office 365 Group Owners, Modify Calendar Permissions, and more.
- Over 4 new Office 365 mailbox-based reports.
- A flat, sleek and intuitive UI for enhanced performance and user experience.
Enhancements
- Option to select templates during bulk group and computer creation.
- Ability to display the number of available licenses during Office 365 license management.
- Option to view which technician has imported which CSV file or exported which report using the Data Administration option in the Audit Reports if Data Privacy is enabled.
- Option to add Custom Reports as quick links to the custom dashboard.
- Option to add an image URL to the logo displayed in the product.
- Option to fine-tune AD search according to the domain or object type.
- Option to exclude child OUs and view custom attributes of users in the Employee Search option in the product login page.
- Ability to notify administrators whenever the product is down.
- Option to perform Search and Export As operations in AD Explorer.
- Ability to display the details of all the groups specified in a CSV file, whenever the Reports from CSV report is generated.
- Option to view all the permissions of a specific folder within the Permissions for Folders report.
- Option to encode the data to be sent via SMS by configuring the SMS gateway settings.
Fixes
This release include fixes for the following issues:
7020 (September 2019)
New Feature
Technician Logon Report: View logon related information such as login time, logoff time, session duration, authentication method used, and more, for all help desk technicians.
Enhancements
- Option to delegate shared folders management to technicians by configuring the product database.
- Capability to enable administrators and technicians to directly land on the SAML identity provider via the product URL, by configuring the product database.
- Ability to migrate ADManager Plus database to an existing Microsoft SQL or PostgreSQL database.
Option to specify the database server instance while migrating the product from one database to another.
Option to update the modified password of Microsoft SQL database, in the product, by executing a batch file.
- Ability to specify sAMAccountName, UserPrincipalName, distinguishedName, or email attributes as search criteria for user objects in REST API requests.
- Supports integration with SSL-enabled Microsoft SQL Server.
Fixes
The following issues have been fixed:
Identification of ADMX files while editing GPO settings using the Manage GPOs option.
- If a technician attempts to logon to ADManager Plus via SSO, and the logon attempt is unsuccessful due to the technician account being disabled or not configured as a technician in ADManager Plus, the technician account is not logged out of the IdP.
- A technician will be able to view all the OUs in the Select Domain/OU/Site drop-down of the Manage GPO Links operation, even if those OUs are not delegated.
- Unable to logon to ADManager Plus via NTLM Single Sign-On using machines that do not exist within the domain.
- Not being able to execute the other instant tasks specified in the automation policy, if one of the instant tasks is Remove Office 365 License.
The Successfully modified message is displayed to technicians trying to deselect the Protect object from accidental deletion during single or bulk OU modification, despite the change not being reflected in AD.
Issue in adding or removing Office 365 licenses.
- Scheduled reports sent via emails can be accessed by users who do not have the necessary privileges.
- The Backup Settings option in the Backup tab does not display the domains configured in the product.
7011 (July 2019)
Enhancements:
- Exchange Server 2019 support: ADManager Plus extends the scope of its Exchange management and reporting capabilities to Exchange Server 2019.
SAML-specific additions:
- Force SAML-based authentication: Allow access to ADManager Plus only through SAML single sign-on (SSO).
- Custom ACS URL: Option to use a customized ACS URL to process SAML-based SSO requests.
- SAML Logout support: Logging out from ADManager Plus will also logout the users from the SAML SSO provider. This option can be enabled from the product database.
- Captcha Support: Option to enable Captcha, for enhanced security during ADManager Plus logons, from the product database.
- Custom script wait time: Specify the time for which the product must wait, before proceeding with the appropriate operations, whenever custom scripts are triggered from the product.
- Granularity in configuring permissions on the product's installation folder: Configure access to ADManager Plus' installation folder only to the desired users, along with the relevant permissions or level of access.
Fixes:
- Issues in backing up AD objects have been fixed.
7010 (June 2019)
New Features:
Active Directory backup and recovery:
- Incremental or full backup of Active Directory objects.
- Granular or complete restoration of AD objects.
- View the current and previous values of modified object attributes and compare them.
Enhancements:
- Capability to exclusively delegate the Clear All Group Memberships rights to technicians for bulk user management.
- REST API for single OU creation.
- Increase in the number of AD users that can be created by technicians using the REST API.
- Office 365 support for users for whom proxy server settings are enabled.
- Capability to automatically revoke group memberships of users after a specific duration using the Business Workflow.
- Option to use automation in Microsoft SQL Servers, Oracle databases, Zoho People and Workday integrations for routines such as enabling/disabling a user, adding/removing users from groups, and modifying users using a template.
- Option to export users' mailbox content as a PST file automatically, through the disable policy, whenever user accounts are disabled.
Fixes:
The following issues have been fixed in this release:
- Not being able to export user mailboxes if the Exchange Server and the mailbox users are located in different domains of the same forest.
- Unable to display the names of users who belong to other domains but are members of a global/universal group.
- Issue in updating a user's profile image using the Manage User Photos option.
- Unable to export a user's mailbox to a PST file, if the home folders are also selected for deletion in the delete policy.
- Issue in fetching all the users while performing Office 365 management actions even when all relevant permissions are assigned to that technician.
- Issue in disabling users' mailboxes.
- Issue in sending email notifications to new mailboxes.
- Issue in creating Skype for Business server accounts while creating AD user accounts.
New to ADSelfService Plus?