Verify Privilege Server Suite 2024 Release Notes
Release Date: September 24, 2024
The IBM Security Verify Privilege Server Suite is an integrated family of directory-based authentication, privileged access, privileged elevation, and audit & monitoring solutions. It secures cross-platform environments and strengthens regulatory compliance initiatives.
Verify Privilege Server Suite includes the following components:
-
Authentication Service secures your platforms using the same authentication and Group Policy services deployed for your Windows environment.
-
Privilege Elevation Service centrally manages and enforces role-based entitlements for fine-grained control of user access and privileges on UNIX, Linux, and Windows systems.
-
Audit & Monitoring Service delivers auditing, logging, and real-time monitoring of user activity on Windows, UNIX, and Linux systems.
This integrated solution helps you improve IT efficiency, strengthen regulatory compliance initiatives, and centrally secure your heterogeneous computing environment.
These release notes cover information specifically regarding Authentication Service, Privilege Elevation Service, and Audit and Monitoring Service.
Delinea software is protected by U.S. Patents 7,591,005; 8,024,360; 8,321,523; 9,015,103; 9,112,846; 9,197,670; 9,378,391 and 9,442,962. (CS-44575)
Media
This release includes packages for Windows, UNIX, and Linux operating system environments.
The files for this release are organized onto two medias, each available ISO and zip form:
Verify Privilege Server Suite for 64-bit Windows
-
Main folder: This is the main folder in the download zip or ISO file that contains information pertinent to this release.
-
The
readme.txtfile provides a summary of where to find files in a plain text format. -
Copyright.txtandAcknowledgements.txtprovide copyright information and legal notices for third party and open-source software used in IBM Security Verify Privilege Server Suite. -
IBM-end-user-license-agreement.txtprovides the text of the license agreement displayed during installation. -
autorun.infcontrols the autorun program,autorun.exe, on Windows computers.
-
The following are sub-folders that are organized to provide you access to different software components in the IBM Security Verify Privilege Server Suite.
-
Agent folder: This folder contains the installer packages for installing Verify Privilege Server Suite Agent for Windows on Windows computers.
-
Common folder: This folder contains the installer packages for common components necessary for all IBM Security products on Windows computers.
-
DirectAudit folder: This folder contains the installer packages for IBM Security Audit & Monitoring Service on Windows computers.
-
DirectManage folder: This folder contains the installer packages for IBM Security Authentication Service and IBM Security Privilege Elevation Service on Windows computers.
-
LicensingService folder: This folder contains the installer packages for IBM Security Licensing Service utilities on Windows computers.
-
Resources folder: This folder contains resources for internal use for the media. It can be safely ignored.
Verify Privilege Server Suite Agents for UNIX/Linux
This image contains a zipped bundle of files for Verify Privilege Server Suite agent on each supported UNIX, or Linux platform and an adcheck utility for each supported platform.
You may find the appropriate bundle for an OS platform based on the following table:
| Bundle Name | Applicable OS Platforms in Specified Architecture |
|---|---|
| ibm-server-suite-<release number>-aix7.2-ppc.tgz | IBM AIX, IBM VIOS |
| ibm-server-suite-<release number>-cos-x86_64.tgz | Flatcar, RHCOS |
| ibm-server-suite-<release number>-deb9-arm64.tgz | Ubuntu |
| ibm-server-suite-<release number>-deb9-ppc64el.tgz | Ubuntu |
| ibm-server-suite-<release number>-deb9-x86_64.tgz | Debian, Ubuntu |
| ibm-server-suite-<release number>-hp11.31-ia64.tgz | HPUX |
| ibm-server-suite-<release number>-rhel6-ppc64.tgz | RHEL |
| ibm-server-suite-<release number>-rhel6-x86_64.tgz | Amazon Linux, CentOS, Fedora, Oracle Linux, RHEL, AlmaLinux, Rocky Linux |
| ibm-server-suite-<release number>-rhel8-aarch64.tgz | Amazon Linux, CentOS, Oracle Linux, RHEL |
| ibm-server-suite-<release number>-rhel7-ppc64le.tgz | RHEL |
| ibm-server-suite-<release number>-sol10-sparc.tgz | Oracle Solaris |
| ibm-server-suite-<release number>-sol10-x86.tgz | Oracle Solaris |
| ibm-server-suite-<release number>-sol11-i386.tgz | Oracle Solaris (IPS package) |
| ibm-server-suite-<release number>-sol11-sparc.tgz | Oracle Solaris (IPS package) |
| ibm-server-suite-<release number>-suse12-aarch64.tgz | SUSE |
| ibm-server-suite-<release number>-suse12-ppc64le.tgz | SUSE |
| ibm-server-suite-<release number>-suse12-x86_64.tgz | SUSE |
| ibm-server-suite-<release number>-rhel8-s390x.tgz | Applicable OS Platforms in Specified Architecture: S390 |
| ibm-server-suite-<release number>-suse12-s390x.tgz | Applicable OS Platforms in Specified Architecture: S390 |
Notes:
-
The OS version number specified in the bundle name indicates the minimum OS version that it supports.
-
You should also choose the appropriate bundle for the specific architecture as indicated in the bundle name.
-
Inside each bundle, it contains packages of associated products supported on that platform.
The naming convention follows the above bundle names except that the prefix of a package reflects the product it serves. The following are the possible package prefixes and the corresponding product names:
| Package Prefix | Product Name |
|---|---|
CentrifyDA
|
IBM Security DirectAudit package |
CentrifyDC
|
IBM Security DirectControl package |
CentrifyDC-cifsidmap
|
IBM Security for CIFS ID mapping package |
CentrifyDC-curl
|
Required component of IBM Security DirectControl package |
CentrifyDC-ldapproxy
|
IBM Security OpenLDAP Proxy package |
CentrifyDC-nis
|
IBM Security Network Information Service and IBM Security NIS Server package |
CentrifyDC-openldap
|
Required component of IBM Security DirectControl package |
CentrifyDC-openssh
|
IBM Security OpenSSH package |
CentrifyDC-openssl
|
Required component of IBM Security DirectControl package |
-
Before installation, please review the Upgrade and Compatibility Guide and run the
adcheckutility to make sure the environment is ready, especially if you are using native package manager to install.
Support Statement
Go to Supported Versions.
Supported Platforms
Newly Added Supported Platforms
-
AlmaLinux 8.9, 9.3
-
Alpine Linux 3.19
-
Debian 12.2, 12.5
-
Oracle Linux 8.9, 9.3
-
Fedora Linux 39
-
Rocky Linux 8.9, 9.3
-
Ubuntu Linux 23.10, 24.04
-
RHEL 8.10
Supported UNIX/Linux Platforms
| Supported Platforms | CPU | Express | DirectControl | DirectAudit | Remark |
|---|---|---|---|---|---|
| AlmaLinux 8.5-8.9, 9.0-9.3 | x86_64 | Yes | Yes | Yes | |
| Alpine Linux 3.15-3.19 | X86_64 | No | Yes | Yes | |
| Amazon Linux 2 LTS | aarch64 | No | Yes | Yes | |
| Amazon Linux 2 LTS | x86_64 | No | Yes | Yes | |
| CentOS 7.4-7.9 | aarch64 | No | Yes | Yes | |
| CentOS 7.0-7.9 | x86_64 | Yes | Yes | Yes | |
| Debian 9.0-9.13, 10.0-10.11, 11.0-11.7, 12.0-12.5 | x86_64 | Yes | Yes | Yes | |
| Flatcar | x86_64 | No | Yes | Yes | |
| HP-UX 11.31 (Trusted and Untrusted) | Itanium | No | Yes | Yes | |
| IBM AIX 7.2, 7.3 | ppc | No | Yes | Yes | Note 3 |
| IBM Virtual I/O Server 3.x | ppc | No | Yes | Yes | |
| Oracle Linux 7.4-7.9, 8.0-8.9, 9.0-9.3 | aarch64 | No | Yes | Yes | |
| Oracle Linux 6.0-6.10, 7.0-7.9, 8.0-8.9, 9.0-9.3 | x86_64 | Yes | Yes | Yes | |
| Oracle Solaris 10 u8+, 11.0-11.4 | SPARC | No | Yes | Yes | Note 2 |
| Oracle Solaris 10 u8+, 11.0-11.4 | x86_64 | No | Yes | Yes | Note 2 |
| Red Hat Enterprise Linux 8.0-8.10, 9.0-9.3 | aarch64 | No | Yes | Yes | |
| Red Hat Enterprise Linux 6.0-6.10, 7.0-7.9 | ppc64 | Yes | Yes | Yes | |
| Red Hat Enterprise Linux 7.1-7.9, 8.0-8.10, 9.0-9.3 | ppc64le | Yes | Yes | Yes | |
| Red Hat Enterprise Linux 8.0-8.10, 9.0-9.4 | S390 | No | Yes | Yes | |
| Red Hat Enterprise Linux 6.0-6.10, 7.0-7.9, 8.0-8.10, 9.0-9.3 | x86_64 | Yes | Yes | Yes | |
| Fedora Linux 37, 38, 39 | x86_64 | Yes | Yes | Yes | |
| Rocky Linux 8.5-8.9, 9.0-9.3 | x86_64 | Yes | Yes | Yes | |
| SUSE Linux Enterprise 12 SP3+, 15 | aarch64 | No | Yes | Yes | |
| SUSE Linux Enterprise 12 SP3+, 15 | ppc64le | Yes | Yes | Yes | |
| SUSE Linux Enterprise 12 SP4 | S390 | No | Yes | Yes | |
| SUSE Linux Enterprise 12 SP3+, 15 | x86_64 | Yes | Yes | Yes | |
| Ubuntu Linux 20.04, 22.04, 23.10, 24.04 | arm64 | No | Yes | Yes | |
| Ubuntu Linux 20.04, 22.04, 23.10, 24.04 | ppc64el | Yes | Yes | Yes | |
| Ubuntu Linux 20.04, 22.04, 23.10, 24.04 | x86_64 | Yes | Yes | Yes |
Note 1: Please refer to the Planning and Deployment Guide for features supported on this platform.
Note 2: Starting with Release 2020, we require the OS patch level update 8 or above on Solaris 10.
Note 3: Starting with Release 2021.1, we require the TL1 or above on AIX 7.1.
Note 4: Smart Card doesn’t work on Ubuntu Linux 24.04 with this release due to a GNOME bug (#7562).
Additional Information
You should follow the OS vendors' recommendation to update the necessary patches. Here are the minimum patch requirements for the specific UNIX platforms (Ref: CS-45562):
-
HPUX 11.31
- PHNE_40225 - Cumulative Console and BSD Pty Patch (it is required for DirectAudit package)
-
Solaris 10 x86_64
- 119255-66
- 127128-11
- 141445-09
- 142910-17
-
Solaris 10 SPARC
- 119254-66
- 120011-14
- 127127-11
- 142909-17
Supported Windows Platforms
The following 64-bit Windows platforms are supported on IBM Security Verify Privilege Server Suite (Ref: CS-49379):
- Windows 10 LTSB/LTSC (Note 1)
- Windows 11 LTSB/LTSC
- Windows Server 2016
- Windows Server 2019 LTSC
- Windows Server 2022 LTSC
Note:
-
We support Windows 10 Long Term Servicing Channel (LTSC), or previously called Long Term Servicing Branch (LTSB), editions based on Microsoft's lifecycle factsheet https://docs.microsoft.com/en-us/lifecycle/faq/windows and https://docs.microsoft.com/en-us/windows/release-health/release-information.
-
Only the Privilege Elevation Service component of Verify Privilege Server Suite Agent for Windows supports these platforms (Core and Minimum Server Interface).
Also note that Verify Privilege Server Suite requires specific versions of .NET to work. Please refer to the following table for the requirement. (Ref: CS-49381)
| Release | Release Date | Minimum .NET Version | Installation Media Version |
|---|---|---|---|
| Verify Privilege Server Suite 2024 | June 2024 | 4.8 | --* |
| Verify Privilege Server Suite 2023.1 | Nov 2023 | 4.8 | --* |
| Verify Privilege Server Suite 2023 | March 2023 | 4.8 | --* |
| Verify Privilege Server Suite 2022.1 | August 2022 | 4.8 | --* |
| Verify Privilege Server Suite 2022 | April 2022 | 4.8 | --* |
| Verify Privilege Server Suite 2021.1 | December 2021 | 4.8 | --* |
| Verify Privilege Server Suite 2021 | July 2021 | 4.8 | --* |
| Infrastructure Services 2020.1 | December 2020 | 4.6.2 | --* |
| Infrastructure Services 2020 | September 2020 | 4.6.2 | --* |
| Infrastructure Services 19.9 | December 2019 | 4.6.2 | --* |
| Infrastructure Services 19.6 | August 2019 | 4.6.2 | --* |
| Infrastructure Services 18.11 | December 2018 | 4.6.2 | 4.6.2 |
| Infrastructure Services 18.8 | August 2018 | 4.6.2 | 4.6.2 |
| Infrastructure Services 2018 | April 2018 | 4.6.2 | 4.6.2 |
We no longer bundle .NET in our installation media any more starting with Release 19.6. (Ref: CS-47940)
Notice of Termination of Support
This is the last release to support the following operating system platforms:
-
Oracle Solaris 11, 11.1 and 11.2
- Alpine Linux 3.15.x, 3.16.x
- Debian 9.x
- Oracle Linux 6.x
- RHEL 6.x
- Red Hat Fedora Linux 37, 38
-
Going forward, we will be changing our agent versions in future releases. For example, small updates between the 2024 release and the 2024.1 release would be version 2024.0.1.
Verify Privilege Server Suite Product Component Version Table
Release Notes for Verify Privilege Server Suite Components
-
For Access Manager, DirectControl agent and IBM Security OpenSSH, see the Authentication Service and Privilege Elevation Service Release Notes.
-
For Audit Manager and DirectAudit agent, see the Audit & Monitoring Service Release Notes.
-
For Agent for Windows, see the Agent for Windows Release Notes.
Also, see Product Lifecycle Versions for product versions.
Download Center
You can get all the supported releases from the download center in IBM Security support web site.
Bugs Fixed
Component specific bug fixes in this release can be found in the corresponding component release notes files. Please refer to Release Notes for Verify Privilege Server Suite Components for a description of individual release notes.
Known Issues
-
After applying the February 14, 2023, Microsoft Update (KB5022842 (OS Build 20348.1547)) on a Virtualized Windows Server 2022 with Secure Boot Enabled server will become unusable.
This issue is reproducible without any IBM Security products installed on the Windows Server 2022 system.
The issue arises on the second reboot after installing Microsoft update KB5022842 on Windows Server 2022 that is running on VMWare vSphere ESXi 6.7 U2/U3 or vSphere ESXi 7.0.x. IBM Security recommends as a best practice to create system restore points prior to doing any upgrades, patches or system change.
Component specific known issues/limitations can be found in the corresponding component release notes files. Please refer to Release Notes for Verify Privilege Server Suite Components for a description of individual release notes.
Additional Information and Support
If you have questions about products, sales, and support about IBM Security Verify Privilege products, please contact IBM Support.