DA-100

Added ability to search user groups

Added ability to search user groups instead of having dropdown at multiple places so that groups can be searched and added even if there are more than 1000 AD groups.

DA-141

Local users can be added as delegated administrator

Added ability to add local users as delegated administrator under Delegated Management. This works both for Digital Access Admin and XPIs.

DA-143

Ericom client has been removed

Removed EricomClient / Access now references from Digital Access Admin under Resources. This will only be removed from the default standard resources and not the ones specifically added by users. Resources added by users will have to be manually removed.

DA-164

Upgraded to Guacamole version 1.3.0

Added option to url encode for guacamole web resource.

DA-166

Added support for TLS version 1.3.0

Added support for TLS version 1.3.0. Removed the support for SSL v2 and v3. Removed weak ciphers for TLS v1.0, 1.1. Disabled weak ciphers by default for TLS v1.2.

Known issue: User certificate authentication method no longer works when TLS1.3 is enabled. The workaround is to disable TLS1.3. See Known limitations in Digital Access for more details.

DA-397

Added Docker Swarm orchestration

Added Docker Swarm orchestration for Digital Access deployment in virtual appliance. Read more here: Deploy Digital Access component. From version 6.0.5 onward, there will be only the command line way to upgrade Digital Access versions (both Online and Offline upgrade). Removed the v-apps and admin GUI upgrade options. More details can be found in the upgrade instructions document for different setups, see here Upgrade Digital Access component.

Also, upgrade to 6.0.5 and above will remove the existing orchestrator and replace it with industry adopted standard docker-swarm.

DA-130

Signatures over Web service API produced orphan sessions.

DA-132

Added ‘cacheDuration’ attribute of value 15 minutes in SAML metadata when Digital Access acts as an IDP.

DA-144

While importing server certificate, encrypted private key with newer encryption algorithm like PBE-SHA1-3DES works now. All PKCS#5 v1.5 and PKCS#12 algorithms are supported now.

DA-145

Improved performance when many SAML attributes are added by reducing the unneeded repetitive storage calls.

DA-148

Update the default NPS URL to ‘nps.go.nexusgroup.com’

DA-154

Improved on the Docker health check logging to monitor the Docker health at service level to avoid log cluttering.

DA-176

WS federation stops working after an upgrade to 6.0.x, this has been fixed.

DA-188

If we Use Organization ID service for Freja authentication, then the registration level set in the Force authentication dropdown does not have any effect on the authentication. Hence disabled force authentication control if Use Org ID service is checked.

DA-213

Oauth2 Discovery returns 202 Accepted when according to spec it should be 200 OK, this has been fixed.

DA-320

Failing to delete profile connected to Smart ID Mobile App through XPI services, this has been fixed.

DA-327

Upgraded openSSL version to 1.1.1k to fix the CVE-2021-3449 vulnerability.