---
title: PingAccess Agent for Apache (RHEL) Release Notes
description: The following release notes summarize the changes in current and previous PingAccess agent for Apache (RHEL) updates. Updated April 18, 2025.
component: pingaccess
version: 9.0
page_id: pingaccess:agents_and_integrations:pa_apache_rhel_rn
canonical_url: https://docs.pingidentity.com/pingaccess/9.0/agents_and_integrations/pa_apache_rhel_rn.html
revdate: August 19, 2025
section_ids:
  pingaccess-agent-for-apache-rhel-3-0-april-2025: PingAccess Agent for Apache (RHEL) 3.0 (April 2025)
  agent-sdk-for-c-compatibility: Agent SDK for C compatibility
  authenticate-the-pingaccess-agent-for-apache-rhel-with-a-bearer-token: Authenticate the PingAccess agent for Apache (RHEL) with a bearer token
  pingaccess-agent-for-apache-rhel-1-6-july-2024: PingAccess Agent for Apache (RHEL) 1.6 (July 2024)
  agent-sdk-for-c-compatibility-2: Agent SDK for C compatibility
  cache-multiple-token-types-for-web-api-applications: Cache multiple token-types for Web + API applications
  block-bad-characters-in-apache-and-iis-agent-deployments: Block bad characters in Apache and IIS agent deployments
  pingaccess-agent-for-apache-rhel-1-5-2-september-2021: PingAccess Agent for Apache (RHEL) 1.5.2 (September 2021)
  agent-sdk-for-c-version-compatibility: Agent SDK for C version compatibility
  override-default-x-forwarded-host-header: Override default X-Forwarded-Host header
  pingaccess-agent-for-apache-rhel-1-5-1-april-2021: PingAccess Agent for Apache (RHEL) 1.5.1 (April 2021)
  agent-sdk-for-c-compatibility-3: Agent SDK for C compatibility
  fixed-post-preservation-corruption: Fixed POST preservation corruption
  pingaccess-agent-for-apache-rhel-1-5-june-2020: PingAccess Agent for Apache (RHEL) 1.5 (June 2020)
  agent-sdk-for-c-compatibility-4: Agent SDK for C compatibility
  removed-support-for-rhel-6: Removed support for RHEL 6
  added-support-for-rhel-8: Added support for RHEL 8
  added-ability-to-send-agent-inventory-information-to-pingaccess: Added ability to send agent inventory information to PingAccess
  pingaccess-agent-for-apache-rhel-1-4-1-february-2020: PingAccess Agent for Apache (RHEL) 1.4.1 (February 2020)
  agent-sdk-for-c-compatibility-5: Agent SDK for C compatibility
  fixed-a-potential-security-issue: Fixed a potential security issue
  pingaccess-agent-for-apache-rhel-1-4-june-2019: PingAccess Agent for Apache (RHEL) 1.4 (June 2019)
  agent-sdk-for-c-compatibility-6: Agent SDK for C compatibility
  use-paa-enabled-inside-a-directory-or-location-container: Use PAA Enabled inside a directory or location container
  set-the-policy-caching-mechanism-in-agent-properties: Set the policy caching mechanism in agent.properties
  manage-agent-processing-for-a-request-based-on-the-note-field: Manage agent processing for a request based on the note field
  fixed-a-potential-security-issue-2: Fixed a potential security issue
  pingaccess-agent-for-apache-rhel-1-3-2-november-2018: PingAccess Agent for Apache (RHEL) 1.3.2 (November 2018)
  fixed-a-potential-security-issue-3: Fixed a potential security issue
  pingaccess-agent-for-apache-rhel-1-3-february-2017: PingAccess Agent for Apache (RHEL) 1.3 (February 2017)
  added-rhel-6-support: Added RHEL 6 support
  disable-the-agent-for-specific-hosts: Disable the agent for specific hosts
  pingaccess-agent-for-apache-rhel-1-2-may-2016: PingAccess Agent for Apache (RHEL) 1.2 (May 2016)
  added-support-for-ibm-http-server: Added support for IBM HTTP Server
  pingaccess-agent-for-apache-rhel-1-1-december-2014: PingAccess Agent for Apache (RHEL) 1.1 (December 2014)
  added-rhel-7-support: Added RHEL 7 support
  fixed-a-potential-security-issue-4: Fixed a potential security issue
  pingaccess-agent-for-apache-rhel-1-0-july-2014: PingAccess Agent for Apache (RHEL) 1.0 (July 2014)
  initial-release: Initial release
---

# PingAccess Agent for Apache (RHEL) Release Notes

The following release notes summarize the changes in current and previous PingAccess agent for Apache (RHEL) updates. Updated April 18, 2025.

|   |                         |
| - | ----------------------- |
|   | Removed RHEL 7 support. |

## PingAccess Agent for Apache (RHEL) 3.0 (April 2025)

### Agent SDK for C compatibility

Info

Compatible with the Agent SDK for C version 3.0.

### Authenticate the PingAccess agent for Apache (RHEL) with a bearer token

New PASDKC-198

Authenticate PingAccess agents to the engine nodes with a stronger authentication method.

|   |                                                                                                                           |
| - | ------------------------------------------------------------------------------------------------------------------------- |
|   | To use this feature, you must upgrade to PingAccess 8.2 or later and the PingAccess agent for Apache (RHEL) 3.0 or later. |

Learn more in the [PingAccess 8.2 release notes](https://docs.pingidentity.com/pingaccess/8.3/release_notes/pa_release_notes.html#configure-pingaccess-to-allow-agents-to-authenticate-with-a-bearer-token). You can find setup instructions in [Configuring PingAccess agents to use bearer token authentication](../pingaccess_user_interface_reference_guide/pa_configuring_pa_agents_to_use_bearer_token_authn.html) and [Agent SDK for C 3.0 (April 2025)](pa_sdk_for_c_rn.html#sdk-for-c-30).

## PingAccess Agent for Apache (RHEL) 1.6 (July 2024)

### Agent SDK for C compatibility

Info

Compatible with the Agent SDK for C version 1.4.

### Cache multiple token-types for **Web + API** applications

New PA-15516

If you use a **Web + API** application, the `vnd-pi-resource-cache` PingAccess agent protocol (PAAP) header now contains an additional path so **Web + API** applications can cache both cookie and authorization header token-types. For more information, see the **Cache multiple token-types for Web + API applications** entry in the PingAccess 8.1 release notes, and the `agent.cache.defaultTokenType` property on the RHEL agent configuration page.

|   |                                                                                                                                                                                                                                                                                                               |
| - | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
|   | Existing agent environments ignore the new `vnd-pi-token-cache-oauth-ttl` header and additional paths in the `vnd-pi-resource-cache` header.To see the performance boost, upgrade to PingAccess 8.1 and upgrade to the latest version of the RHEL agent. Otherwise, continue to use an earlier agent version. |

### Block bad characters in Apache and IIS agent deployments

New PAA-251

Configure a PingAccess Apache agent or the PingAccess agent for IIS to block requests that contain bad characters in the URI, query parameters, form parameters, or request body without having to reach out to PingAccess for a decision.

Added eight new properties to each agent:

1. `agent.request.block.xss.characters`

2. `agent.request.block.uri.characters`

3. `agent.request.block.query.characters`

4. `agent.request.block.form.characters`

5. `agent.request.block.xss.http.status`

6. `agent.request.block.uri.http.status`

7. `agent.request.block.query.http.status`

8. `agent.request.block.form.http.status`

Learn more in the configuration page for your agent:

* [RHEL agent configuration](pa_apache_rhel_configuration.html)

* [SLES agent configuration](pa_apache_sles_configuration.html)

* [Windows agent configuration](pa_apache_windows_configuration.html)

* [IIS agent configuration](pa_iis_configuration.html)

|   |                                                                                                                                 |
| - | ------------------------------------------------------------------------------------------------------------------------------- |
|   | For large scale or more complex blocking decisions, it's best practice for the agent to reach out to PingAccess for a decision. |

## PingAccess Agent for Apache (RHEL) 1.5.2 (September 2021)

### Agent SDK for C version compatibility

Info

Compatible with Agent SDK for C version 1.3.

### Override default `X-Forwarded-Host` header

New PAA-255

Added an option to override the default `X-Forwarded-Host` header with a specified header.

## PingAccess Agent for Apache (RHEL) 1.5.1 (April 2021)

### Agent SDK for C compatibility

Info

Compatible with Agent SDK for C version 1.3.

### Fixed POST preservation corruption

Fixed PAA-220

Fixed an issue that caused large bodies sent through POST preservation in an agent deployment to be corrupted.

## PingAccess Agent for Apache (RHEL) 1.5 (June 2020)

### Agent SDK for C compatibility

Info

Compatible with Agent SDK for C version 1.3.

### Removed support for RHEL 6

Info

Removed support for RHEL 6.

### Added support for RHEL 8

New

Added support for RHEL 8.

### Added ability to send agent inventory information to PingAccess

New PAA-178

Added agent inventory callback API.

## PingAccess Agent for Apache (RHEL) 1.4.1 (February 2020)

### Agent SDK for C compatibility

Info

Compatible with Agent SDK for C version 1.2.1.

### Fixed a potential security issue

Security

Fixed a potential security issue.

## PingAccess Agent for Apache (RHEL) 1.4 (June 2019)

### Agent SDK for C compatibility

Info

Compatible with Agent SDK for C version 1.2.0.

### Use `PAA Enabled` inside a directory or location container

Improved PAA-57

You can now use the `PAA Enabled` directive inside a directory or location container.

### Set the policy caching mechanism in `agent.properties`

New PAA-75

Added ability to set policy caching mechanism using a property in the `agent.properties` file.

### Manage agent processing for a request based on the note field

New PAA-90

Added ability to enable or disable agent processing for a request based on a note field.

### Fixed a potential security issue

Security

Fixed a potential security issue.

## PingAccess Agent for Apache (RHEL) 1.3.2 (November 2018)

### Fixed a potential security issue

Security

Fixed a potential security issue.

## PingAccess Agent for Apache (RHEL) 1.3 (February 2017)

### Added RHEL 6 support

New

Added support for Apache 2.4 on RHEL 6.

### Disable the agent for specific hosts

New

The agent can be disabled for specific hosts using the new configuration option: `PaaEnabled`.

## PingAccess Agent for Apache (RHEL) 1.2 (May 2016)

### Added support for IBM HTTP Server

New

Added support for IBM HTTP Server.

## PingAccess Agent for Apache (RHEL) 1.1 (December 2014)

### Added RHEL 7 support

New

Added Support for Apache 2.4 on Red Hat Enterprise Linux 7.

### Fixed a potential security issue

Security

Corrected a potential security issue related to caching, SECBL007. This security bulletin is available in the [Ping Identity Support Portal](https://support.pingidentity.com/s/).

## PingAccess Agent for Apache (RHEL) 1.0 (July 2014)

### Initial release

Info

Initial release of the PingAccess Agent for Apache (RHEL).