Release Notes
Host Access for the Cloud version 2.7.1 released January 2022. These release notes list the features, notable changes, and known issues in this release. Host Access for the Cloud provides terminal emulation for 3270, 5250, VT, ALC, UTS, and T27 host types, while requiring only an HTML 5-capable browser.
Management and Security Server
Host Access for the Cloud 2.7.1 released with Management and Security Server version 12.8.1
Note
The End User License Agreement (EULA) is available in English, Spanish, French, Italian, and German in the <install location>\licenses
directory.
What’s New
All releases are cumulative and contain the features introduced in earlier releases. For previous versions, see HACloud Documentation.
Features and fixes include
-
Users can now double-click to select a word in the Web Client terminal. (2.7.1)
-
Log4j library has been upgraded to version 2.17.1 to mitigate multiple CVEs. (2.7.1)
-
Information on how to run HACloud as a dedicated, non-administrative, user (2.7.1)
-
Windows Authentication via Kerberos is now available for end users launching sessions via the session server (2.7)
-
Management and Security Server (MSS) has been made more secure by moving to HTTPS only. (2.7)
-
You can now easily reset the password to the metering service if forgotten. (2.7)
-
Communication from the Security Proxy to MSS when exporting settings has been upgraded to HTTPS. (2.7)
-
You now have the ability to add Subject Alternative Names to certificates while installing HACloud and MSS. (2.7)
-
A wait.forHostSettle method has been added to the Web Client macro API, Windows Connector API and the JavaScript API. (2.6.1, 2.7.0)
Changes in Behavior
-
Due to Microsoft continuing to retire Internet Explorer 11, our ability to resolve IE 11 browser specific issues will be limited after June 2022. We will continue to support IE 11 on versions of HACloud that currently support it, based on the Product Support Lifecycle, but will be removing support for IE 11 in HACloud 3 and greater. (2.7.1)
-
To help prevent cross-site request forgery attacks, the default SameSite attribute on the session server cookie has been updated from None to Lax. This change may affect the JavaScript SDK and SAML authentication behind a load balancer. You can edit this attribute if needed. See Setting the SameSite Attribute.
-
MSS has moved to use HTTPS exclusively to increase security. HTTP has been disabled on all endpoints. In upgrades, where session servers had been configured to access MSS, Metering or the Terminal ID Manager (TIDM) over HTTP they will need to be updated to use the HTTPS port in container.properties. (2.7)
-
TLS 1.0, TLS 1.1 have been removed. Both TLS 1.3 and TLS 1.2 are now available. HACloud Sessions that were previous configured for "TLS 1.2 - TLS 1.0" (in Connection Settings) will be updated to "TLS 1.2" the next time they are updated by an administrator (2.7)
-
When launching an HACloud session from the Assigned Sessions List, a new session is now opened each time a session is selected, even if a session by that name is already open. (2.7)
Known Issues
Micro Focus Technical Support is always available to help you with any issues you may encounter in Host Access for the Cloud.
- NTLM - Customers using Single Sign-on through Windows to authenticate to Host Access Management and Security Server (MSS) are subject to the Netlogon Elevation of Privilege Vulnerability (CVE 2020-1472). See the MSS Release Notes for more information. With the addition of Kerberos support, NTLMv2 support will be removed in an upcoming release.
Unresolved issues from previous releases are listed in Technical References.
Release Tracks
Host Access of the Cloud provides the following release tracks for you to choose from depending on your needs.
Long-Term Support Release
-
Recommended for all customers.
-
Only receives critical security updates. No new features.
-
Release cadence is approximately once per year.
-
Version numbering example: 2.7
Incremental Release
-
Recommended for customers interested in the latest features.
-
Contains major changes - new features and bug fixes.
-
No patches / updates will be provided.
-
Security updates are obtained by upgrading to the next Incremental or Long-Term Support Release.
-
Release cadence is approximately four to six times per year.
-
Each Incremental Release is a step toward the next Long-Term Support Release.
-
Version numbering example: 2.7.1
Contacting Micro Focus
For specific product issues, contact Micro Focus Support.
Additional technical information or advice is available from several sources:
-
Product documentation, Knowledge Base articles and videos - see Support for Host Access for the Cloud.
-
The Micro Focus Community pages – see Micro Focus Communities.
Legal Notice
For information about legal notices, trademarks, disclaimers, warranties, export and other use restrictions, U.S. Government rights, patent policy, and FIPS compliance, see https://www.microfocus.com/legal.
© Copyright 2022 Micro Focus or one of its affiliates
The only warranties for this product and any associated updates or services are those that may be described in express warranty statements accompanying the product or in an applicable license agreement you have entered into. Nothing in this document should be construed as creating any warranty for a product, updates, or services. The information contained in this document is subject to change without notice and is provided “AS IS” without any express or implied warranties or conditions. Micro Focus shall not be liable for any technical or other errors or omissions in this document. Please see the product’s applicable end user license agreement for details regarding the license terms and conditions, warranties, and limitations of liability.
Any links to third-party websites take you outside Micro Focus websites, and Micro Focus has no control over and is not responsible for information on third party sites.