As part of ongoing support, we are releasing two service patches against SSO 9.2 and SSO 9.3. Found within both of these patches are several corrections against SAML authentication-related issues. The SAML authentication issue has existed for a number of years, but was uncovered with improvements to SSO cacheing performed in SSO 9.2. Specifically, the Microsoft service SignIn with SAML, has permitted non-uniqued entityIDs to exist. Our improvement to caching uncovered this potential minor configuration issue, which is fully corrected in the patches.
Additionally, for SSO 9.2.1, we have included the recent update of OpenLDAP 2.5.16, which includes OpenSSL v3 libraries. For any customers using LDAPS, we encourage you to install one of these latest service patchs.
Please find the SSO 9.2.3 and SSO 9.3.1 patches at: https://downloads.ubisecure.com/
As with all software, Ubisecure would like to encourage you to upgrade your Identity Platform in a timely manner. Please contact your Integration Partner or Ubisecure Account Representative with any questions. Ubisecure encourages all customers to review and schedule service upgrade to this latest release. Bringing system flexibility, security, and new features to ensure the best user experience possible for your businesses is our goal.
About The Author: John Jellema
As VP Product Management, John is responsible for ensuring Ubisecure’s ongoing development of its Identity Platform, optimising the feature development while driving generational change across the IAM delivery platform. Since joining Ubisecure in 2017, John has refocused the cloud and on-premises delivered services to fulfil customer expectations across the Nordics.
Prior to joining Ubisecure, John worked for Verizon as a Global Security Product Manager, developing and managing its DDoS platform around the world. With more than 20 years experience in global product management, John is passionate about seamless technology integration. Standing on the shoulders of giants permits us to achieve greatness today and into the future.
More posts by John Jellema