browse
On Monday August 20, 2018 Cisco Umbrella will release version 1.2.1 of the Active Directory Connector (the Windows Service component) to the stage track.
On Tuesday September 4, 2018, Cisco Umbrella will release version 1.2.1 of the Active Directory Connector (the Windows Service component) for all customers on the first wave of the production track.
On Tuesday September 11, 2018, Cisco Umbrella will release version 1.2.1 of the Active Directory Connector (the Windows Service component) for all customers on the second and third wave of the production track.
On Tuesday September 18, 2018, Cisco Umbrella will release version 1.2.1 of the Active Directory Connector (the Windows Service component) for all customers on the final wave of the production track.
CHANGE SUMMARY (1.1.24 to 1.2.1)
- Support for password rotation of the connector account
- Support for syncing only a specific set of AD groups to Umbrella instead of the entire AD tree
- Optimization for roaming client only deployments—the AD Connector does not subscribe to WMI events from the Domain Controller if no VA is deployed.
- Display of sAMAccountName in addition to User Display Name for AD users
CHANGE SUMMARY (1.1.22 to 1.2.1)
- AD Connector now supports automatic rollback to the earlier version in case of any issues in upgrading to a new version.
- Use of .NET calls instead of ldifde.exe to fetch the Active Directory tree structure for enhanced security
- The AD Connector will now attempt to communicate to the Domain Controller using LDAPS. If this is not successful, the connector will attempt communication over Kerberos, failing which it will fall back to using the NTLM protocol.
- Support for password rotation of the connector account
- Support for syncing only a specific set of AD groups to Umbrella instead of the entire AD tree
- Optimization for roaming client only deployments—the AD Connector does not subscribe to WMI events from the Domain Controller if no VA is deployed.
- Display of sAMAccountName in addition to User Display Name(CN) for AD users
KNOWN ISSUES
- Roaming Client-only Deployments
The AD Connector communicates with only a single domain controller for roaming client-only deployments. If your deployment does not include VAs and you have previously registered multiple domain controllers (AD Servers), some of them will appear in an error state on the Umbrella dashboard because the connector does not communicate with them. This will not impact the functioning of the connector. It is safe to delete all except one of these domain controllers from the dashboard.
- Non-English characters in AD User names may not be displayed correctly on the dashboard and in reports. This is a display issue only, and will not affect policy enforcement for any of these users.
PREVIOUS RELEASE NOTES