1.5.7. Release 1.2.5-5

Release date: 20.03.2025

Welcome to the 1.2.5-5 OpenNAC Enterprise release.

1.5.7.1. OpenNAC improvements

All the changes in this release that affect OpenNAC are described below.

1.5.7.1.1. ON Core

These are the changes in this release that affect the ON Core component.

Functionalities

  • Align user refresh payload and full payload content

  • Improve CDN Download Script Temporary Directory Handling

  • Remove network renewal functionality

  • Purge old RPMs in version repo

  • OTP policies: the default policy should always be the last one

  • Configure default error code request parameter of WLC Extreme Networks

  • Medigate plugin modification

  • Show new specific authentication error messages

  • Add user_message field to Wireguard connection error response

  • Manage complete username in UDS, instead of separate user and domain

  • Add pipe to some OS queries where it is missing (full OS queries)

  • Add iOS agent to Captive and Admin Portal

  • Add new VPNGW objectCORE

  • Add filter by process type soluble

  • Update copyright of all platforms

  • Add IP field to AGENT_CONNECTION payload in mobile agent

  • Add usermsg field in elastic index

  • Serialize events from the same user device

Bugs fixed

  • Incorrect entry count in backup summary view in User Profiling

  • Search tag (copy to clipboard) field may be misplaced in User device profiling condition creation

  • Incorrect field grouping in server response visualization

  • Condition fields not highlighted in red when empty

  • The search box does not work as expected

  • Improve help message for DNS server behavior

  • Network name and network should be unique

  • Incorrect validation order when forcing errors

  • Locations view: filter not working

  • Reserved words in UDS filters cause errors

  • Business profile connection can’t be deleted if user has a comma or two dots

  • IPMAC poleval removes $ on userid 8021XHOST auth

  • Healthcheck: ignore .gitkeep in unprocessed payloads

  • Netbackup/Netconf log does not have contextual menu

  • Federation (SP metadata) section does not expand in SAML configuration

  • Database initialization from opennac.sql fails due to old pending deltas

  • Fix issue caused by the “Switch location tags” column

  • Logout redirection when accessing Wireguard configuration on NG portal

  • OTP policies: the default policy should not be deletable

  • OTP policies: the default policy should not be editable

  • API: data/utils and data/payloads-unprocessed not exist

  • Session data disappears after new event with new sessiondata

  • In policy summary, identify all possible filters combinations

  • Payload from Apple Mac breaks pooleval due to +15 execs in same poleval

  • Scheduled backups do not perform the compliance test

  • Poleval sync/async execution order causes missing data

  • VPNGW timeout error

  • Error building NextGen portal

  • Toggle port Allied Telesis

  • Error executing DDBB delta

  • Normalize hostname from payload

  • Maintain userid on 8021X during subevents

1.5.7.1.2. ON Agent

These are the changes in this release that affect the ON Agent component.

Functionalities

  • Align user refresh payload and full payload content

  • Remove network renewal functionality

  • Enable auto-connect with smart 2FA

  • Implement connection cancel on SAML/OAuth and improve error notifications

  • Support for new authentication error codes

  • Display new user_message from connect in error notifications

Bugs fixed

  • Service execution failure due to .NET Core dependencies not installed on macOS platform

  • Inconsistent connection status after auto-reconnect following macOS sleep

  • Server connection lost after timeouts with multiple servers

  • VPN agent only connects after reboot

  • Incorrect URL generated during the OAuth authentication process