Product
Hosting Environment
Operating System
Capability
Task Type
Draft Beta
Close

PingAccess release notes

Updated 94

Add to MyDocs | Hide Show Table of Contents

Table of Contents

Known issues and limitations

Known issues

  • Use of TLSv1.0 has been maintained for use by legacy versions of Internet Explorer. Since continued use of TLSv1.0 is not recommended for security reasons, users should upgrade to the latest version of Internet Explorer to make use of the more secure TLSv1.1 or TLSv1.2.
  • Reverse DNS lookup on localhost fails when making back-channel calls to PingFederate.
  • Engines and admin replicas do not connect to admin console if a combination of IP addresses and DNS names are used.
  • The token processor can't connect to a JWKS endpoint via SSL when an IP is used rather than a hostname. To workaround this issue, add the hostname as the subject alt name on the key pair.
  • In some cases, a session may not be invalidated when the WebSessionManagement issuer is changed.
  • When using Internet Explorer 11, you may not be able to view the full application or resource policy because the scroll bar is missing.
  • The Linux installer does not accept a configuration zip file with a space in the file name. To work around this issue, remove the space from the file name.
  • Log files may contain excessive warnings issued by Hibernate during startup.

Known limitations

  • Internet Explorer and Firefox do not correctly support the HTML5 time tag. When using the Time Range rule, enter time in 24-hour format.
  • When installing PingAccess as a Windows service using Windows PowerShell and Java 8, the error message "Could not find or load main class" can be safely ignored.
  • Request Preservation is not supported with Safari Private Browsing.
  • When using IE 11 to access the PingAccess admin console remotely, a fully qualified domain name or IP address must be specified. For example, https://console.site.com:9000 and https://172.17.8.252:9000 will work, while specifying only the host name, https://console:9000, will not.
  • Incorrect handling for IPv6 literals in Host header. Note that IPv6 is not currently supported.