Resolved Issues

The following table describes the issues resolved.

Problem Report Description

Release 22.7R1.5

1431458

The issue with certificate renewal for ZTA Gateways using Controller is now resolved.

1447143

The issue with the active users information not shown in the nSA license subscription page is now resolved.

 

Release 22.7R1.4

1375681

Application logo will be blank when trying to install the Ivanti Secure Access Client from the web browser flow just before it starts downloading the Client.

Release 22.7R1.3

1350330

Consolidated overview data for all ZTA gateways is not reflecting. No data on Neurons for ZTA > Insights > Overview page.

1341772

Sankey chart does not show the exact path for application being accessed with respect to usergroup.

1375846

Unable to Acknowledge all active anomalies under Overview Page.

1378162

Overview Page should display all the Gateways registered with the controller.

Release 22.7R1.2-HF2

1350400

Observing slowness when navigating to Secure Access Policy creation and applications pages.

1350442

Gateway Configuration tasks from controller are stuck in pending state.

1350471

Auto-Delete of users failing in ZTA Controller after 30 days of inactivity.

1350376

Configuration sync not working with SNMP configuration.

1349527

Unable to create multiple User Groups when mapped with same rules.

Release 22.7R1.2

 

PZT-37411

CEF browser is restricted by domain/group policies, you need external browser support for SAML based Enrollment and authentication.

PZT-43982

Error in adding SSO URL with ":" while creating SAML Auth server.

Release 22.7R1

PZT-42710

If a user group has a SAML attribute user rule mapped to it, changing SAML auth to local auth in the user policy should alert with a warning.

PZT-42721

Analytics dashboard shows the MDM device attribute failure if there is a hybrid device policy(Location, HC, MDM) enforced on Secure Access Policy wherein the non-compliance is actually due to HC/Location failures.

PZT-41958

ZTA Gateway shows upgrade failed and shows a different version on the Secure Access Gateways dashboard when upgraded to latest version but the console of the gateway is successfully upgraded.

PZT-41821

Gateway UI will not validate IP address /subnet and subnet Gateway info while creating ZTA Gateway under Manage Gateways.

PZT-43953

If the vendor name field is left blank in a Windows Firewall device rule, it will result in the AAA journal version being decremented to -1.

Release 22.6R1.2

PZT-41502 Add/Delete Gateway in the Gateway Group is not working.

PZT-42203

While editing an existing FQDN app policy with App Discovery enabled to a URL based policy, App Discovery checkbox gets greyed out and not editable.

PZT-41797

Upgrade/Downgrade of ESAP might cause bad config state, if configured product not present in old release.

Release 22.6R1

PZT-41452

Fixed wildcard with unsupported FQDN format.

PZT- 41443

ZTA Gateway Upgrade issue with VMware ESX.

PZT- 41414

Error when loading end user login or any other sign-in policy page.

PZT-38904

New GW deployment loses the interface configuration and controller registration details upon reboot from GCP Instance options.

PZT-41401

Unauthorized error 401 is displayed when trying to login as readonly/cxo/netadmin to the controller not having any Gateways registered.

PZT-41264

Page not found when trying to login with the pre-canned Network admin role configured under System >Admin Roles

PZT-40857

Non-compliance policy failure reason is empty on the drill down log view dashboard when non-compliance is reported while accessing RDP/Ipv4 application type.

PZT-40518

Endpoint connection to the controller will fail and show the status as 'Failed' when Rule requirement >custom expression is configured under Secure Access > Manage Devices >Device Policies due to AAA journal version failure.

PZT-38858

After upgrading MOD AAA to latest build, assigned roles are missing in cache and admin login might fail.

PZT-38428

Location Device rule does not save properly when denying access from a specific city but allowing access from the same country.

PZT-38625

Controller UI should show error while creating Gateway Group if one of the Gateway in the Gateway Group is mapped with a known network tag in Gateway Selector configuration.

PZT-36750

Lockdown enable/disable done on tenant, taking 3-9 minutes to reflect in client connstore.dat file.

PZT-36813

Risk Sense evaluation for Windows 10 22H2 endpoints is returning as 'Not Available'.

Release 22.5R1.3

PZT-41314

The connection status is shown as Connecting and some users are not able to establish the connection.

PZT-41403

Data is not loading on Insights > Overview page.

Release 22.5R1.2

PZT-40843

Fixed log swap issue between the gateway and timestamp fields.

PZT-41180

Page not found error while clicking on Administration > Admin Management > Admin Roles with read-only admin (pre-canned role) logging in.

Release 22.5R1

PZT-39870

Multiple SAP policies having Device policy configured with AV rule results in incorrect cache on AAA.

PZT-37841

Report format CSV/JSON has the epoch timestamp instead of human readable

Release 22.4R3

PZT-38599

When device rule is edited, corresponding sign-in policy does not get updated with new policy.

PZT-39103

Issue in downloading logs from nSA is now resolved.

PZT-39050

New gateway deployed in GCP looses it's configuration upon first reboot from GCP Instance options.

PZT-39351

Application details with Kerberos/LDAP/NTP not detecting when migrating from ICS to ZTA.

PZT-29634

After upgrade or rollback Gateway certificate is shown wrongly in gateway group.

Release 22.4R1

PZT-37223

ZTA connection fails with Invalid Client Certificate error.

PZT-38173 User name not displayed properly in tenant access logs.

PZT-38101

If 22.2R1 or below version of gateways are present and OGS feature is configured, older Gateways may not go to ready state.

PZT-35144

Admin rules cannot be deleted when attached to an admin group.

Release 22.3R4
PZT-36792 If a SAP is created with stand-alone non-ready gateways then that can trigger skipping of all the applications that have OGS.
PZT-37610 When Admin navigates to SAP page and expands two App groups, same Apps are shown for both App groups.
PZT-37611 When Admin navigates to SAP page, performing App group expansion and changing records per page leads to disappearance of expand option in SAP policy groups.
Release 22.3R2
PZT-37228 Error while loading the Secure Access Policies page.
Release 22.3R1
PZT-26902 Dynamic tunnel IP: NAT rules are not seen on Gateways when a newly added Gateway is added to a Gateway Group.
PZT-29624 The MSP admin portal UI is throwing an error when kept idle, and then not redirecting to the login page.
PZT-31679 An unregistered Gateway's status should show as Offline in the "Gateway By Status" chart drill-down view when log grouping is applied, and also on the Landing page gateway detailed view.
PZT-32217 Search API triggered multiple times with different payload due to which the logs are not getting filtered intermittently when navigating from Insight Logs to Gateway Logs and vice-versa.
PZT-33284 If SAML user authentication is configured before enabling a custom domain, the SAML policy remains configured with the standard domain URL.
PZT-35770 :Invalid Client Certificate Error 1147 is seen during user connection.
PZT-36790 No alert generated for Policy configured on Enrollment URLs.
PRS-412051 The user is prompted multiple times to switch to the new UI when upgrading .
Release 22.2R1
PZT-15594 Client configuration: Disable Splash screen option is not working.
PZT-22198 Mac Intune Client is not launching automatically after the client installation.
PZT-23470 CEF EUP on mac: With system local auth, some SSO apps are not launching with Safari as the default system browser, with a certificate prompt appearing twice.
PZT-24993 Linux Windows multi sign-in: Changing the user sign-in URL from one URL to another is not prompting for fresh credentials.
PZT-26431 Certificate rotation on macOS: When the device certificate expires and the end-user attempts to connect, "Error 1151" is not prompting properly.
PZT-27640 Summary ribbon tile charts are not aligned properly.
PZT-28838 Gateways Overview: An L4 dashboard should display only the chart and table data based on the drop-down selected on the originating L2 dashboard chart. For example, selecting to view "Major Errors" should not show other error severity levels in the L4 view.
PZT-28841 Logs in the Gateways Overview L4 dashboard for the "Gateway Stats" chart shows only the current state (active view) logs despite the parent L2 dashboard page having a non-active view time period set.
PZT-28844 Unable to use the group-by feature with all the keys on the Gateways Overview L4 dashboards of "Top 10 gateways by Errors", "Access Trend" and "Gateway Stats".
PZT-29143 Unable to filter and search with "Gateway Status" set to "offline" and "Gateway Version" set to "pre-22.1" on the Gateways Overview L4 dashboard of "Gateway Stats".
PZT-29281 Gateways Overview "Top 10 Gateways by Health" chart displays the gateway statistics only for pre-22.1 s for "Previous Day" and "Previous Week" historic views.
PZT-29811 Log Export might fail if the number of logs to be exported is more than 400K.
PZT-32742 Gateways older than the version provided with 22.2R1 are entering a bad state due to the inability to apply journal updates. After 15 minutes, the Gateway will do a full config pull and recover.
Release 22.1R1
PZT-21416 EUP: Accessing RDP and SSH application links does not pick the default application installed on the device.
PZT-21813 Regression - Bookmarks API Response is fluctuating between 200 success and 500 error HTTP response codes under certain scenario.
PZT-24098 Global Device Preferences - the client is not honoring "Allow Delete Connection".
PZT-24546 Multi sign-in URLs: Login behavior is different for with standard login and non-standard multiple sign-in login URLs when no Secure Access Policy (SAP) is configured on the Controller.
PZT-27300 In a location device rule, it is not possible to update the City field by just typing locations rather than selecting them from the drop-down list fields.
PZT-27538 Date-picker is popping out of the main dashboard on the Connected Clients chart L4 detailed logs page, as the title of the chart is long.
PZT-27546 Policy Failure page summary strip is populated by data for the previous day when the weekly historic view is selected.
PZT-27593 Configuring a SAML auth server using the manual method while leaving "IDP Slo Service" field empty can cause a 500 status code error.
PZT-27743 Due to low network bandwidth availability, upgrading a Gateway to the 21.12R1-95 build fails (the event logs shows "HTTP error 409 after PUT" messages continuously).
PZT-27999 CA rotation breaks leaf renewal for 21.9.3 12679.
Release 21.12R1
PZT-26604 Sessions are not timing out on the Controller even when there is no corresponding user session on a client device.
PZT-27416 Handle the Policy Failure by Locations chart visibility on Policy failures page.
Release 21.6R1
PZT-20309 Error while installing the client.
Release 21.1R1
PZT-15937 "dsunitytaskd" process failed in ESXI 189 gateway while upgrading to 131.
Release 20.12R1
PZT-15533 Client Configuration - Save User credentials option does not work.
Release 20.10R1
PZT-10907 Configuring single user rule to match multiple values is not supported.
Release 20.9R1
PZT-11677 SAML Authentication fails if the azure metadata is uploaded for first time.