Micro Focus Contributor
Micro Focus Contributor
645 views

UNIX Agent 7.4 patch is released for Sentinel users


Security Agent for UNIX (“UNIX Agent”) 7.4 hotfix 7017336 is now
available. This hotfix addresses communication issues between the UNIX
Agent and Sentinel 7.3.1 and later (Bug 953990). This patch does not
contain any fixes intended for Secure Configuration Manager or Change
Guardian users.

To find this hotfix, search for Sentinel hotfixes at
https://dl.netiq.com/patch/finder/. The release notes are bundled in the
zip file.


--
CeeDubbVA
------------------------------------------------------------------------
CeeDubbVA's Profile: https://forums.netiq.com/member.php?userid=4538
View this thread: https://forums.netiq.com/showthread.php?t=55627


Cheryl Witt Project Manager Micro Focus Engineering
0 Likes
3 Replies
tfechner Absent Member.
Absent Member.

Re: UNIX Agent 7.4 patch is released for Sentinel users


nice to read - but unfortunatelly I need the different way: a patch for
Sentinel 7.4X to support the old protocoll as I cannot update the Agent
as this means a double downtime in our Oracle DB cluster on AIX.


--
tfechner
------------------------------------------------------------------------
tfechner's Profile: https://forums.netiq.com/member.php?userid=8929
View this thread: https://forums.netiq.com/showthread.php?t=55627

0 Likes
Micro Focus Contributor
Micro Focus Contributor

Re: UNIX Agent 7.4 patch is released for Sentinel users


tfechner;266519 Wrote:
> nice to read - but unfortunatelly I need the different way: a patch for
> Sentinel 7.4X to support the old protocoll as I cannot update the Agent
> as this means a double downtime in our Oracle DB cluster on AIX.


My understanding is that it's not possible for Sentinel 7.4 to support
the old protocol because the embedded version of Java in Sentinel 7.4
blocks the old protocol (specifically, a set of RC4 ciphers with known
vulnerabilities) for security reasons. Older versions of Sentinel used
older versions of Java that didn't block these ciphers, so perhaps a
short-term alternative could be to install an older version of Sentinel,
change the configuration file to allow the vulnerable ciphers, and use
that to collect data from your older UNIX Agents. You might be able to
do distributed search from your Sentinel 7.4, but I'm not sure - maybe
the RC4 incompatibility would block that. Customer Care (technical
support) could say for sure.

Obviously, in the long term you'll want both your UNIX Agent and your
Sentinel to be as secure as possible. FYI for planning purposes: There
are more significant security updates coming in the UNIX Agent 7.5
release, currently planned for late summer.

Disclaimer: I'm a project manager, not an engineer or customer care
representative, so if you open a ticket on this issue, you may get a
different response.


--
CeeDubbVA
------------------------------------------------------------------------
CeeDubbVA's Profile: https://forums.netiq.com/member.php?userid=4538
View this thread: https://forums.netiq.com/showthread.php?t=55627


Cheryl Witt Project Manager Micro Focus Engineering
0 Likes
tfechner Absent Member.
Absent Member.

Re: UNIX Agent 7.4 patch is released for Sentinel users

I patched the agent and it works.
Is there a new tgz-file for AIX to be delivered to the admins so that they can install on a new machine the whole agent in one step?
we now use "UnixAgent74AIX.tgz" but without the patch.
Would be fine to have something like agent.741aix.tgz...

Torsten
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.