What's new in version 5.6.1
New connectors and protocol support
New connectors and protocol support have been added in version 5.6.1, including:
-
AS4 protocol (Server and client)
-
Kafka connector
- AMQP connector
Refer to the Info tab, located in the content pane when you select a connector host, in your Cleo Harmony system for information on using these new connectors. For information on the AS4 protocol, see the AS4 section of the Cleo Harmony User's Guide.
Framework enhancements
There have been several enhancements to the framework of the VersaLex product family in version 5.6.1, including security and performance enhancements. For instance, the Transfers and Event Logs pages now have server-side filtering to pre-filter data before it reaches your system. See Fixed issues in version 5.6.1 for more information about framework enhancements.
Future-proofing your Cleo Harmony program
Deprecating features
The following features are being deprecated in future releases. You can future-proof your program by using newer features instead of the deprecating ones. A warning message has been added to each of the deprecated features' panels with a suggestion of a newer feature to use instead:
-
Win Unix/File System > CIFS Directories – use SMB hosts instead
-
Router – use Router hosts instead
-
VLPortal – use Portal instead
-
Options > LDAP / User Management > LDAP Settings – use LDAP hosts instead
-
Local FTP Users – use Users hosts instead
-
Local SSH FTP Users – use Users hosts instead
Upgrading to version 5.6.1
When upgrading to Cleo Harmony version 5.6.1, Cleo recommends the following:
-
Back up your configuration using the Export functionality. In the web UI, go to Administration > System > Export. In the native UI, go to File > Export. Performing an Export will save your data in a format that you can import using the Cleo Harmony Import functionality should the need arise.
-
Make sure your system meets the system requirements for Cleo Harmony version 5.6.1, as it requires greater resources than earlier versions. 64-bit operating systems are strongly recommended. 32-bit operating systems are supported only for existing customers. All new installs must be 64-bit. Visit http://www.cleo.com/supportportal and click the System Requirements link for your product.
-
AIX is no longer supported in versions 5.6.1 and later.
-
Run the Cleo Harmony 5.6.1 installer to perform an in-place upgrade. Your data and configuration remain intact from the previous version of the Cleo Harmony software.
Update history
The following sections contain descriptions of issues fixed in Version 5.6.1 and subsequent patch releases:
Fixed issues in version 5.6.1
Major Enhancements – AS4
-
Cleo Harmony only: Added server support for the AS4 protocol. Current offering includes support for eDelivery AS4 Common Profile (version 1.13) and PEPPOL AS4 Profile (version 1.0).
- Cleo Harmony only: Added client support for the AS4 protocol. Current offering includes support for eDelivery AS4 Common Profile (version 1.13) and PEPPOL AS4 Profile (version 1.0).
Enhancements – Framework
-
Cleo Harmony only: Added AMQP (Advanced Messaging Queue Protocol) connector host.
-
Cleo Harmony only: Added Kafka connector host.
-
Added permissions to Cleo VLNavigator for SYSTEM and SCRIPT commands to allow administrators to restrict users' ability to edit or run these commands.
-
Added the ability to turn off HTTP basic access authentication for REST API requests.
-
Added the ability to blacklist IP addresses for REST API requests.
-
Added ability to select the preferred cipher, digest and compression algorithms when exporting OpenPGP public keys or OpenPGP Public/Private key pairs.
-
Added server-side filtering to Transfers and Event Logs pages. Document DB queries have been optimized to improve server-side performance. Transfer and Event Log queries have been limited to returning a maximum 250,000 results.
Note: Local Listener and System events require additional data in the records to be properly displayed. As a result, only Local Listener and System events generated after you install or upgrade to the 5.6.1.0 release are displayed using the server-side filtering.
-
On the new host tree, scheduled actions are now represented with a unique icon: the action icon with a clock on it.
- Updated the instances of the Apache common-fileupload.jar currently installed in the VersaLex products to version 1.3.3 to address reported security vulnerabilities.
-
Cleo Harmony and Cleo VLTrader only: Added setting, Require password reset before first use, to the Password Rules for Users hosts. This new setting requires users to change their password before gaining access to the system. This affects FTP, SFTP, and Portal users.
-
Cleo Harmony and Cleo VLTrader only: Email address is no longer required for users if the group they belong to does not have HTTP protocol enabled.
-
The SSL/TLS client handshake now includes the Server Name Indication extension described in RFC 4366 and RFC 6066. The server name sent during the handshake is derived from the host name of the server to which a connection is being established. If this extension is not supported by the SSL/TLS server to which you are connecting, the RFCs require the extension be ignored and the handshake to proceed anyway. If this extension causes handshake errors with any of your trading partner servers, you can set the cleo.ssl.disableservernameindication system property to True to disable this extension in all your SSL/TLS client connections.
-
Cleo Harmony and Cleo VLTrader only: Added the ability to override the default number of messages returned from the /api/actions/{actionId}/run REST API call using a new ?messagesCount=#### parameter.
Enhancements – AS2/AS3
- AS2 only: Fixed an issue where, when incoming messages fail with an InsufficientSecurityException, the Email On Fail alert was being sent to the system-wide email address configured in the System > Advanced panel instead of the email address configured for the receiving host.
Enhancements – ebMS
- Added the ability to include additional Content-Type parameters when sending ebXML payload. See the User's Guide for further information.
Enhancements – Portal
-
Added external.ip.address.http.port and external.ip.address.https.port properties to the extended.properties file so that administrators can customize the port for URLs in Portal emails.
- Portal users will now be redirected to a password reset page after their initial successful login attempt when the Require password reset before first use property is set.
Enhancements – Connector
-
Added the ability for the Router to move incorrectly formed EDI documents to the error destination.
-
Cleo Harmony and Cleo VLTrader only: In the Clarify connector host, support for future Clarify functionality was added to allow use of the filename passed from Clarify as part of the VersaLex filename. Therefore, PUT commands using the Clarify connector host can be used to selectively send specific file types coming from Clarify. Check your Clarify documentation for availability. Note: Requires use of the SendMessageToHarmonyWithMetadata task in Cleo Clarify.
-
Cleo Harmony and Cleo VLTrader only: Added support for recursion option on DIR, MKDIR, and RMDIR connector commands in general. However, this means the File connector MKDIR no longer recursively makes parent directories without the -REC option, and the SMB connector RMDIR no longer recursively removes child directories and files without the -REC option. Also note that -REC is also supported on GET * and that this will replicate the directory structure from the source to the destination.
- Cleo Harmony and Cleo VLTrader only: Added transparent encryption support to the HDFS connector.
Enhancements – AS2/FTP/SSHFTP
- Cleo Harmony and Cleo VLTrader only: All properties are now supported for AS2, FTP, and SSHFTP via the /connections REST endpoints. However, responses from /connections endpoints will not include properties when the values for those properties match their default value. This can be overridden by adding the ? includeDefaults=true query parameter to the request. See developer.cleo.com for more details.
Bug Fixes – Framework
-
Fixed an issue where it was possible that duplicate UIDs could be generated for different resources. Now, if an existing resource is found to have a duplicate UID, it is given a new one.
-
Fixed an issue where scheduling an empty action for event triggers would cause a null pointer exception and prevent triggering other actions. All actions are now triggered appropriately even when an empty action is scheduled.
-
Fixed an issue where cloning a host from the native UI would result in the cloned host throwing an error when used until the service is restarted.
-
Fixed an issue where VLMailc would return a 0 exit code if invalid parameters are specified. Specifying invalid parameters now returns a 255 error code as expected.
-
Cleo Harmony and Cleo VLTrader only: Fixed an issue where LDAP users in a Users host were incorrectly counted against the mailbox license count when the Home Directory was disabled for those users.
-
Fixed an issue where password rules were being set incorrectly via the /authenticators endpoint.
-
Fixed an issue where some non-OpenPGP files would cause a PGPIOException to occur instead of processing the file when the Allow Non-OpenPGP setting was enabled within Local and Partner Packaging.
-
Cleo Harmony and Cleo VLTrader only: Fixed an issue where, when LDAP local users were defined, REST API calls were causing LDAP lookups for every request.
-
Cleo Harmony and Cleo VLTrader only: Fixed an issue where importing an existing host using the command line would cause a null in ComputerName of the VLOpAuditTrail table, which would cause an error to be logged.
-
Fixed an issue where scheduling a monthly action with a timezone different than the local one caused the action to run twice.
-
Fixed an issue where the Autosend Retry Attempts property (Administration > System > Other) was not being honored (causing failed transfers to run continually) and would never stop for the Autosend Restart period.
-
Fixed an issue where certificates stored in the certs directory could not be exported through the Export User Files export window on Linux.
-
Cleo Harmony and Cleo VLTrader only: Fixed an issue where an inbound transfer for an LDAP user, configured for incoming database payload, would be marked as 'Interim Success' instead of 'Success'.
-
Cleo Harmony and Cleo VLTrader only: Fixed an issue where exporting an action from the new host tree right-click menu would export the mailbox instead.
-
Fixed an issue where, if you had a host with multiple mailboxes and two contained an action with the same name, attempting to export one of the actions would not actually export the action.
-
Cleo Harmony and Cleo VLTrader only: Fixed an issue on the web admin UI Transfers page where a transferred file without a file size could not be viewed.
-
Fixed an issue where applying a permanent license from the web admin UI would require a restart for the license to take effect. The license now takes effect immediately.
- Fixed an issue where the Email Profile and Wizard right-click menu dialogs were not being displayed in the web UI.
Bug Fixes – FTP
- Fixed an issue for specific FTP servers where FTP/s implicit would not send correct SSL commands.
Bug Fixes – AS2/AS3
-
Fixed an issue where AS2 compressed messages would not be processed if the smime-type had quotes around 'compressed-data'.
- Fixed an issue where a NullPointerException would be logged while processing the signature of a partner's MDN that did not include a signature algorithm or digest algorithm.
Bug Fixes – SSH FTP
-
Fixed an issue where, when multiple simultaneous calls were being made to get the preferred cipher algorithms list, a ConcurrentModificationException was being thrown.
- Fixed an issue where SSH FTP extended file attribute responses would not be read correctly.
Bug Fixes – WS
- Fixed an issue where the configured forward proxy was not used to load the WSDL from the configured WSDL location URL.
Bug Fixes – Connector
-
Cleo Harmony and Cleo VLTrader only: Fixed an issue where, when a connector was being used to stream data from a directory containing a large number of files and the action that was using it was interrupted, the connector would continue to list the files in the background.
-
Cleo Harmony only: The Azure Blob Connector now returns the full path to a directory on a DIR command instead of a relative path.
-
Cleo Harmony only: Fixed an issue with the S3 connector where not setting the region caused an exception. Not setting the region now uses the default region as expected.
-
Cleo Harmony and Cleo VLTrader only: Leading or trailing spaces included in configured EEI connector trading partners and their related IFS folders will now be ignored. With this update, 'tpname' and 'tpname ' will be considered the same and will cause duplicate trading partner detection in enabled hosts.
- Cleo Harmony and Cleo VLTrader only: Fixed an issue where the Home connector would always throw an Unauthorized Path error if it resolved to another connector with Authorized Roots enabled.
Security – Framework
-
Cleo Harmony and Cleo VLTrader only: Fixed an issue where a connector that an administrative user does not have access to could be used as a directory for a User group.
- Expired trusted CA certificates will not be installed for new Cleo VersaLex software installs. The expired certificates will remain intact for Cleo VersaLex software upgrades. Additional trusted CA certificates have been added.
Security – Portal
-
Cleo Harmony and Cleo VLTrader only: Sharing permissions are now required to obtain anonymous download links for files and folders in Portal.
-
Cleo Harmony and Cleo VLTrader only: Fixed an issue where personal information was displayed in the developer console when logging into Portal.
Known issues in version 5.6.1
The following are known issues in Cleo Harmony 5.6.1:
-
Due to ever-changing security requirements, you might encounter system protection on Windows that refuses to run the installer. Click Run anyway to dismiss the notification and continue the installation process.
-
In Firefox, after downloading a file in Portal, the loading spinner remains on the screen and prevents any elements on the page from being clicked. Refreshing the page removes the loading spinner and allows the user to continue to use Portal.
Comments
0 comments
Please sign in to leave a comment.