Reflection PKI Services Manager - Release Notes

Reflection PKI Services Manager 1.3 SP2 includes the following features (in addition to the 1.3 SP1 features described in Technical Note 2762):

Reflection PKI Services Manager has been updated to use a new cryptographic module for providing certificate validation services for many Micro Focus products.

The previous third-party cryptographic module provider for PKI Services Manager announced the end of support for their cryptographic module, which is the reason for this change.

Micro Focus strongly recommends upgrading to Reflection PKI Services Manager 1.3 SP2 at the earliest opportunity. Failing to upgrade to this version could put you out of compliance with regulatory requirements, such as PCI-DSS, which require that critical security libraries be up to date and supported. Failing to upgrade could also put you at risk if a new security vulnerability is announced because security patches are not expected to be available for the older cryptographic modules used in previous versions of the products.

All future security updates related to cryptography will be addressed by Micro Focus in PKI Services Manager 1.3 SP2 release and its successors.

Pki-client.jar was also upgraded.

When PKI Services Manager 1.3 SP2 tries to test a certificate from the PKI Services Manager Console using a Certificate Revocation List (CRL) file in the Local Store, it fails to load the CRL file, and then displays a “CRL not found” error.

This issue only occurs in the PKI Services Manager Console UI and does not prevent PKI Services Manager from properly performing revocation checking.

Workaround: Certificates can be tested using the pki-client Command Line Utility by running:

java –jar pki-client.jar validate <options>

or

winpki validate <certificate>

PKI Services Manager installs its own Java Runtime Environment (JRE) and uses this installed JRE by default. It is also possible to configure PKI Services Manager to use a different JRE. Beginning with version 1.3 SP2, the JRE must be Java version 8 (1.8.0).

PKI Services Manager 1.3 SP2 supports

For more information, see Technical Note 2427.

Security Updates: https://support2.microfocus.com/security/?prod=PKID

Technical Resources, including documentation and technical notes: https://support2.microfocus.com/product/?prod=PKID

Product Overview: https://support2.microfocus.com/techdocs/2425.html.

Related Technical Notes:

For information about legal notices, trademarks, disclaimers, warranties, export and other use restrictions, U.S. Government rights, patent policy, and FIPS compliance, see https://www.microfocus.com/about/legal/.

Copyright © 2017 Micro Focus company. All rights reserved.

The only warranties for this product and any associated updates or services are those that may be described in express warranty statements accompanying the product or in an applicable license agreement you have entered into. Nothing in this document should be construed as creating any warranty for a product, updates, or services. The information contained in this document is subject to change without notice and is provided “AS IS” without any express or implied warranties or conditions. Micro Focus shall not be liable for any technical or other errors or omissions in this document. Please see the product’s applicable end user license agreement for details regarding the license terms and conditions, warranties, and limitations of liability.

Any links to third-party websites take you outside Micro Focus websites, and Micro Focus has no control over and is not responsible for information on third party sites.