JavaScript is required to for searching.
Skip Navigation Links
Exit Print View
Oracle OpenSSO 8.0 Update 2 Release Notes

Document Information

Preface

1.  About OpenSSO 8.0 Update 2

What's New in OpenSSO 8.0 Update 2

Security Token Service Enhancements

Fedlet Enhancements

Bugs Fixed in This Release

Hardware and Software Requirements For OpenSSO 8.0 Update 2

OpenSSO 8.0 Update 2 Issues and Workarounds

General Security Advisory

CR 6959610: OpenSSO 8.0 Update 2 samples should be removed in production environment

CRs 6944573, 6964648: New Java security permissions are required for WebLogic Server 10.3.3

CR 6939443: Certificate authentication with LDAP checking or OCSP checking fails on WebLogic Server 10.3.x

CR 6960514: Cannot access authentication certificates

To Configure JDBC Authentication with Oracle Database

To Manually Configure NSS on OpenSSO

CR 6967026: Configurator cannot connect to LDAPS-enabled directory server

CR 6948937: Activating OpenSSO 8.0 Update 2 in WebLogic Server 10.3.3 admin console causes exceptions

CR 6956461:SecurID authentication fails on IBM WebSphere Application Server

CR 6959373: Web container requires a restart after running updateschema script

CR 6961419: Running updateschema.bat script requires a password file

CR 6970859: Browser scroll feature does not work

Deploying OpenSSO 8.0 Update 2 on JBoss 5.0

To Deploy OpenSSO on JBoss 5.0

CR 6971437 : OpenSSO 8.0 Update 2 loses configuration after restart of JBoss Application Server 5.0.0.0

CR 6972593: Java Oracle OpenSSO Fedlet single sign-on (SSO) fails on JBoss AS 5.0.x

SR 72335286 and CR 6929674: LDAP Referrals Do Not Work as Expected

OpenSSO 8.0 Update 2 Documentation

Documentation Issues

CR 6958580: Console online Help documents unsupported Discovery Agents

CR 6967006 Console online Help does not document OAMAuth and WSSAuth authentication modules

CR 6953582: Fedlet Java API reference should be public

CR 6953579: OpenSSO Fedlet README file should document single logout feature

CR 6960630: Information for patching a specialized OpenSSO WAR should be revised

Additional Information and Resources

Deprecation Notifications and Announcements

How to Report Problems and Provide Feedback

Accessibility Features for People With Disabilities

Related Third-Party Web Sites

2.  OpenSSO 8.0 Update 2 Patch Releases

3.  Installing OpenSSO 8.0 Update 2

4.  Using the Security Token Service

5.  Using the Oracle OpenSSO Fedlet

6.  Integrating the OpenSSO 8.0 Update 2 with Oracle Access Manager

What's New in OpenSSO 8.0 Update 2

OpenSSO 8.0 Update 2 includes enhancements to the Security Token Service and the OpenSSO Fedlet. This update also includes new web container support for WebLogic 10.3.3 and fixes to many bugs.

Security Token Service Enhancements

The Security Token Service now includes the following new features:

For more information, see Chapter 4, Using the Security Token Service.

Fedlet Enhancements

The Fedlet now includes the following new features:

For more information, see Chapter 5, Using the Oracle OpenSSO Fedlet.

Bugs Fixed in This Release

The table lists issues that have been resolved in OpenSSO 8.0 Update 2.

Table 1-1 Bugs Fixed in This Release

Change Request Identifier
Description
6422249
SAML assertions using excessive memory.
6659356
New bug with the interaction process in a load-balanced scenario.
6802207
Policy agent "gateway servelet" function yields "Your authentication module is denied."
6894077
In Cookie hijacking mode, logout request hangs.
6931544
Javadoc comments missing for public API AMLoginModule:isSessionQuotaReached.
6918266
/opensso/realm/IDRepoEdit delete Session service configuration in realm.
6923660
Inheritance setting in agent profile does not work as expected.
6924534
ssoadm --version did not return the right value after patching 141655-03.
6926203
goto URL not validated on distributed authentication.
6928480, 6934888
Distributed authentication UI: In log files IP recorded is DAUI IP, not client IP.
6931012
Access Manager console becomes unresponsive after adding a new config property.
6931476
Incorrect exceptions thrown in the logs for misconfigured SAML/IDP's service URLs on the Service Provider side.
6933168
Password reset page is not localized when locale parameter is given in the URL.
6933268
"Auth module instance" condition with "application timeout properties" set drops session after login.
6937698
OpenSSO8.0: Console Invalid Characters check is not performed
6937700
OpenSSO allows to create username with special characters, but complains during login.
6939038
Security Token Service client samples are failing for IBM Websphere Application Server 6.1.
6940455
Security Token Service "ssoadm set-site-sec-urls" throws an NPE on the console.
6942485, 6942813
OpenSSO does not escape "\" in uid correctly, and 2 different uid values are stored in Directory Server entry.
6945286
Distributed Authentication login: uid with special characters results in error.
6947033
“URL not found” exception errors in SAML.
6949778
iplanet-am-auth-locale value of realm is not taken in consideration in the evaluation process.
6947068
goto is missing after session timeout.
6958448
LDAPv3Repo.setAttributes method fetches the schema multiple times even for a single modification.