<discontinued> Release notes up to version 10.0.13.1

Installing the update

Application update 10.0.13.1

Included Software Catalog

This release includes Software Catalog version 10.0.13.1 with capability to discover 110+new software versions including but not limited software manufacturers, such as Microsoft, GitHub & Cisco Systems Inc.

New template signatures included in this release:

Template signature is a method of discovery where the version of a component is detected automatically, and a specific version is dynamically added to the catalog. Such template signatures include all component versions. They are used when the software is frequently updated, and the deployment method has not changed. One template covers 10+ software versions.

Publisher name	Component name	Platform
DBSofts	ESF Database Migration Toolkit - Pro	Windows
Elprotronic	FET-Pro-430-LITE	Windows
ETH Zurich	Safe Exam Browser	Windows
GitHub	GitHub Desktop	Windows
Microsoft	Test Runner (Azure Test Plans)	Windows
TortoiseGit	TortoiseGit	Windows
TortoiseSVN	TortoiseSVN	Windows
Ipswitch Inc	MOVEit Transfer	Windows
Cisco Systems Inc.	Cisco AnyConnect Secure Mobility Client	Windows

Note: Changes made to the software component definition in catalog (for example, modification of component name, version, or publisher) may cause creation of new definition of the component and removal of previous one. This leads to loss of Tagging, Classification and custom EOS information.

Additionally, when discovery is based on a signature evaluated on an endpoint, previous discovery results temporarily disappear until the next software scan and related data import. New catalog must be propagated to the endpoints before the scan execution.

Updated discovery mechanism for specific software with this behavior includes specific notes (for details refer to the list of enhancements and list of defects).

For more information, refer to Catalog Release Notes and Catalog Change List.

Modified content

The version number of the fixlet is 10.0.13.1. The Update Software Catalog fixlet was updated and should be run to install the latest versions of the specific components.

Enhancements and important changes

The following table lists enhancements and changes that are introduced in this update.

ID	Description	Available since
Add discovery for MOVEit transfer	Added template signature for MOVEit transfer for windows platform	10.0.13.1
Discovery method was replaced with template signature	Replaced discovery method with template signature for improved discovery of the following components: TortoiseGit TortoiseSVN Note: For TortoiseGit and TortoiseSVN, old discovery records will be closed, and new ones will be opened.	10.0.13.1
Added new publishers	Added 6 new publishers: DBSofts Elprotronic ETH Zurich GitHub TortoiseGit TortoiseSVN	10.0.13.1

Ideas implemented

The following table lists BigFix Inventory Catalog Ideas that are implemented in this update.

ID	Symptoms	Behavior after you install the update	Available since
BFINV-I-304	Discovery of Microsoft BizTalk Server 2020	Added discovery for following Microsoft BizTalk Server 2020 Editions: Standard Enterprise Branch Developer	10.0.13.1
BFINV-I-296	Usage tracking for WinZip	Updated existing template signature of WinZip to allow usage tracking	10.0.13.1
BFINV-I-303	Discovery for Skype for Business Server 2019	Added discovery for Skype for Business server 2019	10.0.13.1
BFINV-I-81	Discovery for Cisco AnyConnect Secure Mobility Client for Window	Added a template signature for Cisco AnyConnect Secure Mobility Client for Windows platform	10.0.13.1

Defect fixes

For the list of known defects please refer to HCL Knowledge Base.

The following table lists BigFix Inventory Catalog APARs and other defects that are fixed in this update.

ID	Symptoms	Behavior after you install the update	Available since
KB0104553	Publishers named ACRO SOFTWARE and Acro Software Inc. existed in catalog. Also, Publishers named Symantec, Symantec Corporation, Eikon Systems Inc. (see Symantec), Symantec (PowerQuest), Symantec (Quarterdeck), Whitewater Group (see Symantec Corp.) existed in catalog.	Only one publisher named Acro Software exists in catalog. Also, Symantec and Symantec Corporation exist in catalog.	10.0.13.1
KB0105106	False Positive Discovery for Symantec Enterprise Vault	Symantec Enterprise Vault 10.0 CIT signature for windows is deleted to avoid false discoveries with other versions.	10.0.13.1

Application update 10.0.13

Allowed upgrade path

Starting from 10.0.10.0 release, to ensure smooth upgrade process, support is provided for direct upgrade from the last 8 server releases. The minimal version for direct upgrade path is increased with every release.

Depending on the version number, one or more update steps are necessary. The minimal version for direct upgrade path is 10.0.5.0. For versions up to 10.0.1.0 (inclusive), upgrade first to 10.0.2.0 then upgrade to 10.0.10.0 using Upgrade to interim version fixlets.

Tip: It is recommended to upgrade BigFix Inventory frequently to make the new features and security fixes available. At least one upgrade per year is important.

Support for Microsoft SQL Server 2022

Starting from BigFix Inventory v10.0.13.0, Microsoft SQL Server 2022 is supported by BigFix Inventory server on Windows system.

Support for Windows Server 2022

Starting from BigFix Inventory v10.0.13.0, Windows Server 2022 is supported by BigFix Inventory server.

Enhanced Package Data reporting

This release responds to the top voted idea [BFINV-I-193] and it offers information about software installation dates for Linux endpoints. The installation date information is based on exact system data collected from endpoints in comparison to Computer: First Seen and Software Classification: Discovery Start that are related to BigFix Inventory data import time.

Package Data report is extended with installation date [BFINV-I-193] and installation path [BFINV-I-43] for Linux (Rpm-type and Deb-type) entries. The actual installation date helps in ensuring license compliance, while package installation path improves software discovery verification.

The new information is based on the system registry data as provided by the package vendor, and installation path is provided for applications.

This feature is complementary to the same extension of package reporting introduced for Windows endpoints in BigFix Inventory 10.0.12.0.

Note: This feature requires both upgrading BigFix Inventory server and restarting Initiate Software Scan fixlet (or upgrading Windows disconnected scanners). To ensure that new data is processed in the shortest time it is recommended to upgrade the server first and then restart the fixlet.

Advanced security

BigFix Inventory 10.0.13.0 brings support for TLS 1.3 protocol for incoming HTTPS communication. By default, it supports both TLS 1.2 and TLS 1.3 as allowed protocols. The usage of TLS 1.3 protocol is available for configuration with FIPS disabled.

It is now possible to configure SSL encryption for connections to BigFix databases. Database server certificates will be validated and must be stored in a local truststore. Multiple Data Sources with different certificates are allowed.

Included Software Catalog

This release includes Software Catalog version 10.0.13.0 with capability to discover 400+ new software versions including but not limited to the following software manufacturers: AutoDesk, Cisco, Citrix, Dell, Microsoft, McAfee, NVIDIA, Oracle, Intel and VMware.

Changes made to the software component definition in catalog (for example, modification of component name, version, or publisher) may cause creation of new definition of the component and removal of previous one. This leads to loss of Tagging, Classification and custom EOS information.

Additionally, when discovery is based on a signature evaluated on an endpoint, previous discovery results temporarily disappear until the next software scan and related data import. New catalog must be propagated to the endpoints before the scan execution.

Updated discovery mechanism for specific software with this behavior includes specific notes (for details refer to the list of enhancements and list of defects).

For more information, refer to the Catalog Release Notes and Catalog Change List.

Modified content

The version number of the fixlet is: 10.0.13.0

The following fixlets were updated and should be run to install the latest versions of the specific components: 

• Upgrade to the latest version of BigFix Inventory
• Update VM Manager Tool to version
• Update SAP Metric Data Collector
• Install VM Manager Tool
• Install SAP Metric Data Collector
• Install Additional VM Manager Tool
• Download the Disconnected Scanner Package for IBM i
• Download the Disconnected Scanner Package
• Download the BigFix Inventory Container Solution Packages
• Download BigFix Inventory
• Install or Upgrade Scanner in private mode on Windows
• Install or Upgrade Scanner
• Software Catalog Update (if BigFix Inventory is not upgraded) 
• Download PVU table (if BigFix Inventory is not upgraded)

The following fixlets were updated and require that actions created by their previous versions are stopped and then started by using the updated fixlets. Restarting actions is necessary to ensure that new features work properly:

• Initiate Software Scan on Shared Disks
• Initiate Software Scan
• Upload Software Scan Results – no updates, but recommended to be refreshed to match Initiate Software Scan

The following fixlets were updated or added:

• Get Oracle Features
• Get Oracle Concurrent Sessions Number
• Collect Logs from Endpoints
• Test CIT Signature
• Uninstall Scanner

Enhancements and important changes

For complete list of enhancements, refer to the What's New.

Defect fixes

For the list of known defects please refer to HCL Knowledge Base.

The following table lists BigFix Inventory Server APARs and other defects that are fixed in this update.

ID	Symptoms	Behavior after you install the update	Available since
KB0105998	After Upgrading to BigFix Inventory version 10.0.13.0, connection to BigFix database does not work for MS SQL if non-default port is used.	Connection to BigFix database works properly for non-default ports.	10.0.13.0
KB0101955	Data import fails because of the locked table in the database and no information in the log is provided about what table is locked and who is locking it.	After the fix, when import fails because of the locked table in the database, in the log there will be provided all details about active locks on that table	10.0.13.0
KB0101118	The sam/vmmanagers REST API does not return the same information about existing VM Managers as the VM Managers panel.	After the fix, the sam/vmmanagers REST API uses the same filtering criteria as the VM Managers panel	10.0.13.0
KB0102550	Scanner’s non-SUA exploiters can potentially cause problems with scanner deinstallation.	After the fix, the Uninstall Scanner fixlet removes all exploiters	10.0.13.0
KB0103906	Checkboxes that are in the User Account panel in the Management section have an incorrect clickable area.	The issue is fixed.	10.0.13.0
BI-15884	When BigFix Inventory is reinstalled, there is an error in tema.log related to the existence of Full Database Index Reorganization job.	If the database index reorganization job already exists, a warning is written to tema.log. The documentation is updated with information about removal of the job when uninstalling BigFix Inventory.	10.0.13.0
BI-15399	When submitting configure View with an empty drop-down field (for example metric), the field shows an error. Once the drop-down values are chosen, the field is still returning the error, even though the field is submittable.	After the fix, when a drop-down value is chosen, the error will disappear.	10.0.13.0
BI-15401	Long values from the drop-down list are not fully visible when filtering by in set in Configure View.	After the fix, long values are fully visible	10.0.13.0
BI-12786	After clicking a link in the Saved Reports or VM Managers panel, the Edit panel is loaded.	The issue is fixed.	10.0.13.0
BI-11849	Number Input brackets accept '-' in Chrome and Edge but not in Firefox.	After the library upgrade, the component works as expected.	10.0.13.0
IJ45254	Computers that run on Solaris have the No Scan Data status, because LPAR capacity that is smaller than 0.01 processor core is not properly handled.	After the fix, data for Solaris computers is displayed properly as 0.01 for capacity values smaller than 0.01 but greater than 0.	10.0.13.0
IJ45003	Statuses of VM managers are not updated in the user interface and the following SQL error can be found in the import logs at the step of importing data from the VM Manager Tool: Cannot insert the value NULL into column 'login', table 'temadb.sam.vm_managers_persistent'; column does not allow nulls. UPDATE fails.	After the fix, VM manager statuses are updated properly.	10.0.13.0
BI-17261	/api/sam/raw_package_facts API endpoint in a new BFI 10.0.12 installation always returns value 0of is_suppressedproperty for windows packages with path or install date present.	The issue is fixed.	10.0.13.0
KB0103961	Heavy load on AD/Domain Controller may occur due to relevance clause evaluation of Clear Corrupted Scanner Installation fixlet.	Fixlet Clear Corrupted Scanner Installation is removed from the BigFix Inventory fixlet site.	10.0.13.0
BI-16742	The message displayed in the dashboard when bundling information is not in catalog is confusing.	The message is changed to clarify that it is required to upgrade BigFix Inventory server in order to update IBM catalog.	10.0.13.0
KB0104583	Slow step ProductInventoryBO.processPathUpdates of InventoryBuilder.	Optimized the query by changing the involved columns to the ones already available in existing indexes.	10.0.13.0
KB0103984	Error appearing when removing or updating signature in Catalog Customization panel.	The issue is fixed.	10.0.13.0
KB0103984	Signature tree disappears when Searching in Catalog Customization panel.	The search issue will be fixed after data import following the upgrade of BigFix Inventory.	10.0.13.0
KB0104082	Upgrade might fail due to migration of database tables.	The issue is fixed.	10.0.13.0
KB0104577	Application startup is taking too long.	The issue is fixed via additional indexes.	10.0.13.0
KB0104759	Missing documentation for upgrade fixlet failure.	The document is updated with instructions on how to proceed in case of upgrade failure.	10.0.13.0
KB0104252	BigFix Inventory does not work on Korean Windows.	The issue is fixed.	10.0.13.0
KB0104163	Usage reset to zero in multiple scenarios.	The issue is fixed.	10.0.13.0
BI-17215	Export to CSV/PDF functionality does not work in the Cluster State Computer’s report.	The issue is fixed.	10.0.13.0
KB0104524	Partition Virtual Processors column in the Hardware Inventory report shows values for Linux.	The column shows values only for AIX.	10.0.13.0
BI-17271	BigFix Inventory server does not start after upgrade when FIPS is enabled, because FIPS settings in java.security file are lost.	BigFix Inventory server starts up normally and FIPS settings are preserved.	10.0.13.0
KB0104645	BigFix Inventory pages and images not loading in a browser.	IBM Java Runtime Environment was upgraded to fix an issue related to IBMJCEPLUS security provider, which was causing the browser to fail loading BFI content.	10.0.13.0
KB0105315	Self-signed server certificate is changed after page refresh. Applies to the Management > Server Settings panel.	The certificate is generated only once.	10.0.13.0
BI-15862	Incorrect capacity scan import statistics after failure.	The import log file contains corrected information about failures related to processing capacity scans.	10.0.13.0
KB0105312	Software discovery based on package data and template signatures is interrupted when a package version contains unsupported value. Remaining package data is skipped causing incomplete software discovery.	Package data with incorrect version does not prevent other package data from software discovery evaluation.	10.0.13.0

The following table lists BigFix Inventory Catalog APARs and other defects that are fixed in this update.

ID	Symptoms	Behavior after you install the update	Available since
KB0104081	Incorrect version for SAS/IML signatures.	SAS/IML signatures are updated for windows and Unix platform to detect the right version.	10.0.13.0
KB0105245	Apache HTTP Server signature on windows causes false discovery.	Apache HTTP Server template signature for windows is deleted to avoid false discoveries with other software.	10.0.13.0
KB0105104	Git template signature does not work for new versions.	Git Template Signature has been modified to discover both old and new versions.	10.0.13.0
KB0105319	Missing default product bundling for a few Microsoft components.	Components are matched with products now. On Software Classification panel, the components are assigned to products. Fix is implemented for the following components: Microsoft SQL Server 2008 R2 Native Client Microsoft SQL Server 2012 Native Client Microsoft SQL Server 2014 ADOMD.NET Microsoft SQL Server 2014 Management Objects Microsoft SQL Server 2016 LocalDB Note: Old discovery records will be closed, and new records will be opened.	10.0.13.0

The following table lists BigFix Inventory Scanner APARs and other defects that are fixed in this update.

ID	Symptoms	Behavior after you install the update	Available since
BI-12108	The CIT scanner produces too many laconic logs from CIT plugins.	Adjusted log levels reduced the number of CIT logs. Also improved description of log entries.	10.0.13.0

The following table lists BigFix Inventory tools APARs and other defects that are fixed in this update. It covers VM Manager, SAP Data Collector, Image Scanner, Scanner Service, Cloud Adapter.

ID	Symptoms	Behavior after you install the update	Available since
KB0104525	VM Manager Tool scan crashing when encounters computer with duplicated UUID and "%2f" in its hostname.	VM Manager Tool scan will no longer crash when “%2f” string is encountered in hostname.	10.0.13.0
KB0101056	VMMan pool_limit causes "Invalid Credentials - attempting" status for many Hyper-V connections.	The VMMan tool will no longer lock connections for many Hyper-V connections defined.	10.0.13.0

The following table lists BigFix Inventory Fixlets APARs and other defects that are fixed in this update.

ID	Symptoms	Behavior after you install the update	Available since
KB0103653	Logcollector archives accumulate, when the computer id changes leading to increased disk usage and possible upload issues due to MaxArchiveSize being exceeded.	All Log Collectors are deleted before creating new one.	10.0.13.0
KB0104228	Get Oracle Features fixlet is failing on AIX system with exit code 30.	The issue is fixed.	10.0.13.0
BI-16539	Test CIT Signature fixlet is failing with Relevance substitution failed message.	The issue is fixed.	10.0.13.0
KB0105628	Initiate Software Scan fixlet timeouts on Windows package scan.	The issue is fixed.	10.0.13.0

VM Manager Tool version and changes

The VM Manager Tool version that is used with this update is 10.0.13.0.

Scanner version and changes

The scanner version that is used with this update is 9.2.31.1000 for Windows and 9.2.31.0000 for other platforms. The disconnected scanner version that is used with this update is 10.0.13.0 and 9.2.31.0 for IBM I.

Application update 10.0.12.2

Included Software Catalog

This release includes Software Catalog version 10.0.12.2 with capability to discover more than 500 new software versions including but not limited to software manufacturers, such as Oracle, Citrix, Microsoft, Google Inc., Red Hat, VMware, Micro Focus, SAP, Symantec, Palo Alto, Hewlett-Packard, Intel, and Dell.

New template signatures included in this release:

Publisher name	Component name	Platform
Box Inc	Box Tools	Windows
Brave San Francisco	Brave	Windows
CyberArk	CyberArk AIMWebService	Windows
CyberArk	CyberArk Application Access Manager	Windows
CyberArk	CyberArk Application Identity Manager	Windows
CyberArk	CyberArk Digital Vault	Windows
CyberArk	CyberArk Identity Connector	Windows
CyberArk	CyberArk Privileged Session Manager	Windows
CyberArk	CyberArk SafeShare	Windows
CyberArk	CyberArk Vault Disaster Recovery	Windows
Docker	Docker Desktop	Windows
Emurasoft	Emurasoft EmEditor	Windows
FileZilla.org	FileZilla Server	Windows
Hewlett-Packard	HP OpenView Performance Access	Windows, Linux
Micro Focus	Silk Performer	Windows
Micro Focus	Silk TrueLog Explorer	Windows
Microsoft	Microsoft Azure Storage Explorer	Windows
PTC	PTC Creo View	Windows
Schneider Electric	Floating License Manager	Windows
TIBCO	TIBCO Spotfire Analyst	Windows
Y. Hirata/T. Teranishi	Tera Term	Windows
Codec Guide	Codec Tweak Tool	Windows
IDEMIA	MorphoManager Client	Windows
Mendix	Mendix Studio Pro	Windows
MPC-HC Team	Media Player Classic - Home Cinema	Windows
CPlusSharp	GraphStudioNext	Windows

Note: Changes made to the software component definition in catalog (for example, modification of component name, version, or publisher) may cause creation of new definition of the component and removal of previous one. This leads to loss of Tagging, Classification and custom EOS information. Also, when discovery is based on a signature evaluated on an endpoint, previous discovery results temporarily disappear until the next software scan and related data import. New catalog must be propagated to the endpoints before the scan execution.

Updated discovery mechanism for specific software with this behavior includes specific notes. For details refer to the list of enhancements and list of defects. For more information, refer to the Catalog Release Notes and Catalog Change List.

Modified content

The version number of the fixlet is 10.0.12.2.

The Update Software Catalog fixlet was updated and should be run to install the latest versions of the specific components.

Enhancements and important changes

The following table lists enhancements and changes that are introduced in this update:

Abstract	Description	Available since
Unused duplicated publishers deleted from the catalog	Deleted 10 unused duplicated publishers from the catalog: Apache.org The MathWork Inc SuSE Linux Altair Engineering Inc. IrfanSkiljan PostgreSQL Inc. FUJI/XEROX Yukihiro Matsumoto LIGHTNING UK PRISYMID	10.0.12.2
Added new publishers	Added 6 new publishers: Y. Hirata/T. Teranishi Codec Guide IDEMIA Mendix MPC-HC Team CPlusSharp	10.0.12.2
Discovery method was replaced with template signature	Replaced discovery method with template signature for improved discovery of the following components: Tera Term Codec Tweak Tool MorphoManager Client Media Player Classic - Home Cinema Old discovery records will be closed, and new ones will be opened.	10.0.12.2
New Discovery for Mendi Studio Pro	New discovery for Mendix Studio Pro is added as a template signature for Windows platform.	10.0.12.2
New Discovery for CPlusSharp Graph Studio Next	New discovery for Graph Studio next is added as a template signature for Windows platform.	10.0.12.2

Ideas implemented

The following table lists BigFix Inventory Catalog Ideas that are implemented in this update.

ID	Idea	Description	Available since
BFINV-I-137	Add discovery of Red Hat Enterprise Linux Server	Added discovery of Red Hat Enterprise Linux Server for version 8.7 and 9.1	10.0.12.2
BFINV-I-278	Add discovery for CrushFTP	Added discovery for CrushFTP for version 8, 9 & 10. Discovery is added for Windowsand LINUX platform. Limitations User must run the CrushFTP application at least once to make the discovery possible. After upgrading the application, the version does not update automatically in the configuration file. User should update CrushFTP configuration file manually to get proper version discovery.	10.0.12.2

Defect fixes

For the list of known defects please refer to HCL Knowledge Base.

The following table lists BigFix Inventory Catalog APARs and other defects that are fixed in this update:

ID	Symptoms	Behavior after you install the update	Available since
KB0104564	False positive for AppDynamics - Machine Agent	Faulty signatures were deleted. New CIT Signatures are added to improve discovery for versions 4,20,21,22 & 23 Note: Old discovery records will be closed, and new ones will be opened.	10.0.12.2
BI-17385	Inconsistent Component version for SAS Enterprise Guide	Updated SAS Enterprise Guide from version 8.3 to version 9. This update aligns SAS Enterprise Guide with the other components in the SAS 9.4 family. Note: Old discovery records will be closed, and new ones will be opened.	10.0.12.2

Application update 10.0.12.1

Included Software Catalog

This release includes Software Catalog version 10.0.12.1 with capability to discover 110+new software versions including but not limited to the following software manufacturers: Cisco, Google, McAfee, Micro Focus, VMware, SAP, Symantec, NVIDIA, Palo Alto, Microsoft, Dell, and SAS.

New template signatures included in this release:

Template signature is a method of discovery where the version of a component is detected automatically, and a specific version is dynamically added to the catalog. Such template signatures include all component versions. They are used when the software is frequently updated, and the deployment method has not changed. One template covers 10+ software versions.

Publisher name	Component name	Platform
CyberArk	CyberArk Central Policy Manager	Windows

Note: Changes made to the software component definition in catalog (for example, modification of component name, version, or publisher) may cause creation of new definition of the component and removal of previous one. This leads to loss of Tagging, Classification and custom EOS information. When discovery is based on a signature evaluated on an endpoint, previous discovery results temporarily disappear until the next software scan and related data import. New catalog must be propagated to the endpoints before the scan execution.

Updated discovery mechanism for specific software with this behavior includes specific notes. For details refer to the list of enhancements and list of defects below.

For more information, refer to the Catalog Release Notes and Catalog Change List.

Modified content

The version number of the fixlet is 10.0.12.1.

The Update Software Catalog fixlets were updated and should be run to install the latest versions of the specific components. 

Enhancements and important changes

The following table lists enhancements and changes that are introduced in this update:

Abstract	Description	Available since
Added discovery for SAS Enterprise Guide	Added discovery for SAS Enterprise Guide for version 8.3. Discovery is added for Windowsplatform.	10.0.12.1

Defect fixes

For the list of known defects please refer to HCL Knowledge Base.

The following table lists BigFix Inventory Catalog APARs and other defects that are fixed in this update:

ID	Symptoms	Behavior after you install the update	Available since
KB0103102	Incorrect discovery of CyberArk Endpoint Privilege Manager Agent	Signature is updated for CyberArk Endpoint Privilege Manager Agent to improve discovery and regular signatures of CyberArk Central Policy Manager is deleted and replaced by template signature. Note: Old discovery records will be closed, and new ones will be opened.	10.0.12.1

Application update 10.0.12

Allowed upgrade path

Starting from BigFix Inventory version 10.0.10.0, to ensure smooth upgrade process, direct upgrade is supported from the last 8 server versions. The minimal version for direct upgrade path increases with every release.

Depending on version number, one or more upgrade steps are necessary. The minimal version for direct upgrade path is 10.0.3.0. For versions up to 10.0.1.0 (inclusive), upgrade first to 10.0.2.0 then upgrade to 10.0.10.0 using Upgrade to interim version fixlets.

Tip: It is recommended to upgrade BigFix Inventory frequently to make the new features and security fixes available. At least one upgrade per year is important.

Changes to supported systems

Added support for the following platforms and systems as managed devices:

• CentOS Stream 9
• Oracle Enterprise Linux 9
• KDDI Cloud for Windows

For more information about supported systems, refer to the Detailed System requirements.

Enhancement to Microsoft software reporting

• Microsoft Licensing update

  This release offers several changes for Microsoft software inventory and license reporting.

  The following metrics have been added to BigFix Inventory to reflect the recent Microsoft Licensing changes.

  • Microsoft Windows Server Physical Processor Core
  • Microsoft Windows Server Virtual Processor Core
  • Microsoft Windows Server Standard Physical Processor Core
  • Microsoft SQL Server Virtual Processor Core

  Along with previously delivered Microsoft SQL Server Physical Processor Core.

  After carefully reviewing the current Microsoft licensing requirements, we advise migrating to the new metrics. In order to facilitate the migration, we have made changes in the configuration of Bundling Assistant - the newly discovered Microsoft products (SQL Server and Windows Server) will be classified to the new metrics. In the future, the old metrics will be deprecated.

  Note: The new Microsoft metrics are calculated only when there is an existing contract created with these metrics. The Metric value is not visible from the All Metrics panel.

  Along with new Microsoft Metrics, ready to use Microsoft Reports were adjusted by:

  • License compliance reports, for Microsoft SQL Server and Windows Server are based on All Contracts instead of All Metrics.
  • • New inventory reports, for Microsoft SQL Server and Windows Server are based on Software Classification panel with adjusted set of visible columns to help with Microsoft license optimization.

• Updated discovery for Microsoft SQL Server and its components

  For information on this, refer to the What's New.

• Refreshed End of Support for Microsoft Products

  For information on this, refer to the What's New.

• Contract management changes

  The All Contracts panel has been enriched with Publisher and Software Product filtering capability which lets users to easily narrow down the scope of their work and define custom contract reports for particular Publisher or Software Product.

  The enhanced new recalculate button enables a simple ‘what if’ analysis as users no longer have to wait for recalculation until the next data import.

  Note: Recalculation is narrowed down to computer groups assigned to users. For example, if a user has the access to only one department, then only this department with be calculated upon clicking the button. This approach can be useful when distributing work to different Software Asset Managers.

For the complete list of changes see What's New.

Enhancement to Package Data reporting

Top voted idea BFINV-I-193 is addressed. Package Data report is extended with installation date and path for Windows-type entries. The actual installation date of software is helpful in ensuring license compliance, while package installation path improves software discovery reporting.

The new information is based on system registry data provided by the package vendor, and Microsoft Installer (MSI) packages are supported. Moreover, the installation date and path are collected for Windows operating system packages.

Note: this feature requires both upgrading BigFix Inventory server and restarting Initiate Software Scan fixlet (or upgrading Windows disconnected scanners). In order to ensure the new data is processed in the most efficient way it is recommended to upgrade the server first and then restart the fixlet.

Included Software Catalog

This release includes Software Catalog version 10.0.12.0 with capability to discover 170+ new software versions including but not limited to the following software manufacturers: Adobe, Autodesk, Cisco, Citrix, McAfee, Microsoft, Oracle, RED HAT, and VMware.

New template signatures included in this release:

Template signature is a method of discovery where the version of a component is detected automatically, and specific version added to the catalog on fly. Such template signatures include all component versions. They are used when the software is frequently updated and the deployment method is not changed. One template covers 10+ software versions.

Publisher name	Component name	Platform
Tenable Network Security Inc.	Nessus Agent	Windows, Linux

Note: Changes made to the software component definition in catalog (for example, modification of component name, version, or publisher) may cause creation of new definition of the component and removal of previous one. This leads to loss of Tagging, Classification and custom EOS information.

Additionally, when discovery is based on a signature evaluated on an endpoint, previous discovery results temporarily disappear until the next software scan and related data import. New catalog must be propagated to the endpoints before the scan execution.

Updated discovery mechanism for specific software with this behavior includes specific notes (for details refer to the list of enhancements and list of defects).

For more information, refer to Catalog Release Notes and Catalog Change List.

Modified content

The version number of the fixlet is: 10.0.12.0.

The following fixlets were updated and should be run to install the latest versions of the specific components:

• Upgrade to the latest version of BigFix Inventory
• Update VM Manager Tool to version
• Install VM Manager Tool
• Install Additional VM Manager Tool
• Install SAP Metric Data Collector
• Update SAP Metric Data Collector
• Download the Disconnected Scanner Package for IBM i
• Download the Disconnected Scanner Package
• Download the BigFix Inventory Container Solution Packages
• Download BigFix Inventory
• Install or Upgrade Scanner in private mode on Windows
• Install or Upgrade Scanner
• Software Catalog Update (if BigFix Inventory is not upgraded) 

The following fixlets were updated and require that actions created by their previous versions are stopped and then started by using the updated fixlets. Restarting actions is necessary to ensure that new features work properly:

• Run Capacity Scan and Upload Results
• Initiate Software Scan on Shared Disks
• Initiate Software Scan

The following fixlets were updated or added:

• Get Oracle Features
• Get Oracle Concurrent Sessions Number

Enhancements and important changes

For complete list of enhancements, refer to the What's New.

Defect fixes

For the list of known defects please refer to HCL Knowledge Base.

Table 6. The following table lists BigFix Inventory Server APARs and other defects that are fixed in this update.

ID	Symptoms	Behavior after you install the update	Available since
KB0103184	BigFix Inventory long startup time due to initialization of Computer System API	The issue is fixed.	10.0.12.0
KB0102192	Database schema update to BigFix Inventory 10.0.11 fails on 1663767482_template_signature_defs_create_products.rb migration script.	The issue is fixed.	10.0.12.0
BI-14930	An error message appears after opening a Product Name link in the Product Metrics per Contract and Product Metrics per Group panels when the web browser local date is different than UTC date.	The issue is fixed.	10.0.12.0
BI-15132	'Is Incomplete' information on All Contracts/Product Metrics per Contract panels is not calculated for metrics other than Microsoft SQL Server Physical Processor Cores	If there are no software instances under the contract, the value is ‘No’. Otherwise, the information is calculated based on hardware inventory status for the following metrics: Oracle Processor Core, Microsoft Physical Core with SA, Microsoft Single Physical Processor, Microsoft Dual Physical Processor (as on All Metrics panel).	10.0.12.0
BI-14185	Mac Software is by default classified to Unknown metrics instead ofInstall Seats	The issue is fixed	10.0.12.0
BI-15144	Blue code library defect	IJ44202 9.2.30 Partition cores are limited by the maximum capacity value on uncapped PowerPC Linux LPARs although they should not be limited. The problem does not occur. Because partition cores are no longer limited (which is the correct behavior), license metric utilization for products that are installed on the affected machines might be higher after you upgrade to application update 9.2.30. IJ42751 9.2.30 Information from the VM Manager Tool is not merged with information from the scanner in case of KVM hosts. As a result, the machine might appear as two separate entities on the PVU reports when software is installed both on the KVM host and on the VM. The problem does not occur.	10.0.12.0
BI-15070	Recalculation triggered from All Contracts does not remove the 'Recalculation Needed' icon.	The ‘Recalculation Needed’ icon disappears properly after recalculation is completed.	10.0.12.0
BI-15065	‘Recalculation needed’ icon is sometimes not displayed on Contracts panel for PVU / RVU MAPC metrics	Recalculation icon is properly displayed.	10.0.12.0
BI-14772	User-assigned default metrics are re-assigned during data or catalog import.	The issue is fixed.	10.0.12.0
BI-16092	It is not possible to create a contract from BFI UI for important products	Improved searching of Software Product on add/edit contract window. After change results will be first queried by the product name. Should query not retrieve any results, it will fall back to previous behavior.	10.0.12.0
BI-14940	A Product Name link in the Product Metrics per Contract and Product Metrics per Group panels doesn't redirect to proper Software Classification report for Microsoft metrics and the Oracle Processor Core metric.	A Product Name link in the Product Metrics per Contract and Product Metrics per Group panels now redirects to Software Classification report with proper set of filters and columns. The Product Name link for products with any of Microsoft metrics redirects to Software Classification report with the same set of columns as on predefined Microsoft SQL Server Inventory and Microsoft Windows Server Inventory reports. The Product Name link for products with Oracle Processor Core metric redirects to Software Classification report with the same set of columns as on predefined Oracle Database Inventory report.	10.0.12.0
KB0101675	SAP Metric Data Collector failing with error 21	The issue is fixed.	10.0.12.0

Table 7. The following table lists BigFix Inventory Catalog APARs and other defects that are fixed in this update:

ID	Symptoms	Behavior after you install the update	Available since
KB0102567	SSH Tectia Server detailed version was not reported due to the presence of regular signatures along with template signatures.	SSH Tectia signatures were removed and now template signatures report the detailed version. Note: Old discovery records will be closed, and new records will be opened.	10.0.12.0
KB0102546	Nessus Agent is incorrectly discovered	Deleted incorrect signatures of Nessus Agent and added a template signature for both Windows and Linux platform. Note: Old discovery records will be closed, and new records will be opened.	10.0.12.0
BI-15668	Version typo issue in SentinelOne Agent Signature	Typo error has been corrected in Signature tags for Sentinel one Agent Signature Note: Old discovery records will be closed, and new records will be opened.	10.0.12.0

Table 8. The following table lists BigFix Inventory tools APARs and other defects that are fixed in this update. It covers VM Manager, SAP Data Collector, Image Scanner, Scanner Service, Cloud Adapter:

ID	Symptoms	Behavior after you install the update	Available since
KB0101168	VM Manager 10.0.10 contains incorrectly named DLL file which causes problems with removal functionality	Incorrect file name "vcrunt~1.dll" has been corrected to "vcruntime140.dll".	10.0.12.0
BI-15049	When a cache file was accidentally deleted from a given computer, VM Manager was showing an incorrect message about invalid credentials.	Previous message with “After {0} {0,choice,0# attempt|1< attempts}, the server suspended contacting the host {1} so as not to block the account. Correct the VM manager parameters to resume the operation.” Corrected to: After a maximum number of attempts, the server suspended contacting the host {1} so as not to block the account. Correct the VM manager parameters to resume the operation.	10.0.12.0
KB0101675	SAP Metric Data Collector failing with error 21	The issue is fixed.	10.0.12.0

Table 9. The following table lists BigFix Inventory Scanner APARs and other defects that are fixed in this update:

ID	Symptoms	Behavior after you install the update	Available since
KB0101390	Created files by user on endpoint side ends up on BigFix server and break BFI import due to special characters in the capacity scan file names.	Prevention added to endpoint side for the files and Server will no longer break the import if some Capacity Scan files will fail.	10.0.12.0
KB0103188	Detailed Hardware Scan corrupted results when UTF-8 character is incorrect in local character set.	There is enforced to use UTF-8 to read the file by analysis.	10.0.12.0
KB0103232	Multiple instances of Software Scan able to run simultaneously and cause 100% CPU usage	Fixlet checks for active scanner processes once again, before starting them	10.0.12.0

Table 10. The following table lists BigFix Inventory Fixlets APARs and other defects that are fixed in this update.:

ID	Symptoms	Behavior after you install the update	Available since
KB0101440	"Get Oracle Features" creates incorrect detailed version in Oracle DB swidtag	Improved collection of the correct detailed version from Oracle Database updates. Before the change version reported was 19.0.0.0.0, now 19.17.0.0.221018.	10.0.12.0
BI-14226	Extended application usage is not collected when amount of usage data to process exceeds 1 MB.	Extended application usage collection is by default disabled for all processes except Java. The data collection for all processes can be enabled with a new "Collect extended application usage statistics" option in the "Initiate Software Scan" fixlet.	10.0.12.0

Table 11. The following table lists user documentation APARs and other defects that are fixed in this update:

ID	Symptoms	Behavior after you install the update	Available since
BI-15939	Missing information about interim upgrade on Upgrading to BigFix Inventory site	Updated the information about interim server upgrade in the document. Doc link: Upgrading BigFix Inventory	10.0.12.0
KB0102706	BFI Catalog download failing with BigFix 10.0.8.0 / Certificate validation on	Added new topics to provide solution on regenerating self-signed certificates and structuring private keys and certificates. Doc link: Structuring and formatting private keys and certificates Regenerating self-signed certificates	10.0.12.0
BI-15740	Extend Nutanix documentation	Added information about supported Nutanix version (Nutanix Prism Element) and the required user role to perform access the connection in the document.	10.0.12.0

VM Manager Tool version and changes

The VM Manager Tool version that is used with this update is 10.0.12.0.

Scanner version and changes

The scanner version that is used with this update is 9.2.30.1000 for Windows and 9.2.30.0000 for other platforms. The disconnected scanner version that is used with this update is 10.0.12.0 and 9.2.30.0 for IBM I.

Application update 10.0.11.2

Included Software Catalog

This release includes Software Catalog version 10.0.11.2 with capability to discover more than 530 new software versions including but not limited to software manufacturers, such as Oracle, Microsoft, Dell, and SAS.

For more information, refer to the Catalog Release Notes and Catalog Change List.

Table 13. New template signatures included in this release:Template signature is a discovery method to automatically detect the version of a component and a specific version is dynamically added to the catalog. Such template signatures include all component versions. They are used when the software is frequently updated, and the deployment method has not changed. One template covers more than 10 software versions.

Publisher Name	Component Name	Platform
FinalWire	AIDA64 Extreme	Windows
Lizard Labs	Log Parser Lizard	Windows
Loftware	LLMWIN32	Windows
NetWrix Corporation	PPE Configuration	Windows
OutSystems	OutSystems Integration Studio	Windows
Perforce	Helix ALM Client	Windows
SolarWinds.Net	FireDaemon Service Manager	Windows

Modified content

The version number of the fixlet is 10.0.11.2. The Update Software Catalog fixlet was updated and should be run to install the latest versions of the specific components.

Enhancements and important changes

The following table lists enhancements and changes that are introduced in this update:

Abstract	Description	Available since
Enhancement of Oracle Java Detection	Enhanced discovery of existing Java signature for versions 9, 10,11, 12, 13, 14 ,15,16 and 17 to cover non-standard installations.	10.0.11.2

Ideas implemented

The following table lists BigFix Inventory Catalog Ideas that are implemented in this update.

ID	Idea	Description	Available since
BFINV-I-259	Add discovery of Kafka of Confluent publisher	New signature for Kafka of Confluent publisher was added in the catalog.	10.0.11.2

Defect fixes

For the list of known defects please refer to HCL Knowledge Base.

The following table lists BigFix Inventory Catalog APARs and other defects that are fixed in this update

ID	Symptoms	Behavior after you install the update	Available since
KB0102548	False positive for Cisco AMP for Endpoints Connector	Existing signatures for Cisco AMP for endpoints were replaced to avoid false discovery. Note: Old discovery records will be closed, and new ones will be opened.	10.0.11.2

Application update 10.0.11.1

Application update 10.0.11

Allowed upgrade path

Starting from BigFix Inventory version 10.0.10.0, to ensure smooth upgrade process, direct upgrade is supported from the last 8 server versions. The minimal version for direct upgrade path increases with every release.

Depending on version number, one or more upgrade steps are necessary. The minimal version for direct upgrade path is 10.0.3.0. For versions up to 10.0.1.0 (inclusive), upgrade first to 10.0.2.0 then upgrade to 10.0.10.0 using Upgrade to interim version fixlets.

Tip: It is recommended to upgrade BigFix Inventory frequently to make the new features and security fixes available. At least one upgrade per year is important.

Changes to supported systems

Added support for the following platforms and systems as managed devices:

• AIX 7.3
• Red Hat Enterprise Linux 9
• Ubuntu 22.04
• KDDI Cloud for Linux
• Solaris 10

Note: Solaris 10 is supported by BigFix Inventory with the use of BigFix Platform Agent 9.5 on both BigFix Platform 9.5 and 10. IBM has discontinued Solaris 10 as IBM sub capacity eligible platform. Use actions like “Initiate Software Scan” from this release as it includes improved support for handling Solaris package manager combinations.

For more information about supported systems, refer to Detailed System requirements.

Changes to contracts management

This release offers additional enhancements for contracts management.

• A new Product Metrics per Contract report is available using the dropdown option from Products column.
• A recalculation option is available in the All Contracts panel to quickly recalculate metric value in case of changes in contract definition. For contracts that require recalculation a special icon is added. 
• Support for a new metric Microsoft SQL Server Physical Processor Cores in line with the latest Microsoft product terms. The new metric is calculated once contract is defined to give SAM full control for what specific contract and group it is needed. Enabling license usage calculation on computer group definition to calculate this metric is no longer required. This new metric is managed through contract definition and due to this reason its value is not presented in All metrics panel.
  Note: The current metric value for this particular metric is calculated based on recent data. In case of All metrics, calculation is available by default for 90 days period (depending on computer group definition). Newly supported metrics and selected existing metrics will use this new mechanism in future releases. 
• Quick link to All Contracts is available from All Metrics originated reports.
• Hands-on tutorial is available in product documentation under Contract Management.

For the complete list of changes see What's new.

Note:

• The option for contract management with support of All Metrics panel and its custom fields definition will be deprecated in the future.
• IBM Flexpoint bundles, IBM Cloud Paks are not supported by contracts management function.
• Product Metrics per Group report is still available from main menu to allow for reporting of high-water mark metrics with split per computer group.

Extended Oracle Database Features Discovery

Reporting covers Oracle pluggable databases and additional licensable options including Tuning Pack, Oracle Database Lifecycle Management Pack, Data Masking and Subsetting Pack.

Improved support for Oracle Database 11, old versions of UNIX devices (Solaris & AIX) and extended list of return codes for troubleshooting.

Included Software Catalog

This release includes Software Catalog version 10.0.11.0 with capability to discover 170+ new software versions including but not limited to the software manufacturers, such as Adobe, Autodesk, Cisco, Citrix, McAfee, Microsoft, and VMware.

For more information, refer to the Catalog Release Notes and Catalog Change List.

Modified content

The version number of the fixlet is: 10.0.11.0

The following fixlets were updated and should be run to install the latest versions of the specific components:

• Upgrade to the latest version of BigFix Inventory
• Update VM Manager Tool to version
• Update SAP Metric Data Collector
• Install VM Manager Tool
• Install SAP Metric Data Collector
• Install Additional VM Manager Tool
• Download the Disconnected Scanner Package for IBM I
• Download the Disconnected Scanner Package
• Download the BigFix Inventory Container Solution Packages
• Download BigFix Inventory
• Install or Upgrade Scanner in private mode on Windows
• Install or Upgrade Scanner
• Software Catalog Update (if BigFix Inventory is not upgraded) 
• Download PVU table (if BigFix Inventory is not upgraded)
• Upgrade to the interim version 10.0.2.0 of BigFix Inventory (translation correction)
• Upgrade to the interim version 10.0.10.0 of BigFix Inventory (adjusted applicability to follow minimal version for direct upgrade to current version)

The following fixlets were updated and require that actions created by their previous versions are stopped and then started by using the updated fixlets. Restarting actions is necessary to ensure that new features work properly: 

• Run Capacity Scan and Upload Results
• Initiate Software Scan on Shared Disks
• Initiate Software Scan

• Upload Software Scan Results – no updates, but recommended to be refreshed to match Initiate

The following fixlets were updated or added:

• Get Oracle Features
• Get Oracle Concurrent Sessions Number
• Identify Computers on Public Clouds
• Analyze the Relevance of a Fixlet or Task
• Force Reupload of Software Scan Results

Enhancements and important changes

For complete list of enhancements, refer to the What's new.

Defect fixes

For the list of known defects please refer to HCL Knowledge Base.

The following table lists BigFix Inventory Server APARs and other defects that are fixed in this update.

ID	Symptoms	Behavior after you install the update	Available since
KB0101057	Update Schema runs for days when environment contains Mac OS devices	Migration script has been re-engineered to reduce duration to minutes.	10.0.11.0
BI-11517	All Metrics reports shows only 500 records instead of the correct number of the records	The issue is fixed.	10.0.11.0
KB0101000	Arithmetic overflow error in Data Import log files on DB2	Import step “Processing of bundling tags” completes successfully. Affected only DB2 deployments.	10.0.11.0
KB0101628	BFI Import fails - sam.instance_hash - SQL Arithmetic Overflow on MS SQL	Import step “InventoryBuilder” completes successfully. Affected only MS SQL deployments.	10.0.11.0
BI-13844	Empty publisher on HCL Inventory report	HCL Inventory report is regenerated during upgrade so that the filter criteria are fixed. Limitation: Any report subscriptions or default report settings related to this report will be deleted during upgrade.	10.0.11.
KB0100847	Package Summary report failing to calculate	The issue is fixed.	10.0.11.0

The following table lists BigFix Inventory Scanner APARs and other defects that are fixed in this update.

ID	Symptoms	Behavior after you install the update	Available since
KB0099621	Data encrypted on share disk using Guardium/Vormetric solution is recognized as local filesystem and, is therefore, scanned by default on every endpoint when such volume is mounted and decrypted. Scan of the remote disk multiple times from many endpoints might lead to unnecessary overload of such share disk.	Data encrypted on share disk using Guardium/Vormetric solution is recognized as shared drive	10.0.11.0

The following table lists BigFix Inventory tool APARs and other defects that are fixed in this update. It includes VM Manager, SAP Data Collector, Image Scanner, Scanner Service, and Cloud Adapter.

ID	Symptoms	Behavior after you install the update	Available since
BI-11147	Hyper-V VMs with the same UUID and located on the same host are not detected as duplicates and only one of them is returned by the scan.	Hyper-V VMs with the same UUID and located on the same host are excluded from scan results and the VM Manager status is set to “OK - duplicated UUIDs discarded”.	10.0.11.0

The following table lists BigFix Inventory Catalog APARs and other defects that are fixed in this update.

ID	Symptoms	Behavior after you install the update	Available since
KB0101234	The software ‘Snagit’ was not being discovered due to incorrect package and file rules	Snagit template signature updated to improve discovery. Also deleted the regular signatures of SnagIt to avoid double discovery. Note: Old discovery records will be closed, and new ones will be opened.	10.0.11.0
KB0101283	Lack of discovery for Red Hat JBoss Enterprise Application Platform	Discovery is added for Red Hat JBoss Enterprise Application Platform,6.4 to cover non-standard installations	10.0.11.0
BI-13474	Enhancement of Microsoft SQL Server Management Studio and Citrix XenDesktop detection	Changed the way of detecting signature for Microsoft SQL Server Management Studio and Citrix XenDesktop and added new detection for Microsoft SQL Server Management Studio for version 18.12 Note: Old discovery records will be closed, and new ones will be opened.	10.0.11.0
KB0101314	Adobe Acrobat components did not provide usage monitoring.	Discovery now provides usage monitoring for Adobe Acrobat components.	10.0.11.0
KB0101687	False positive discovery of SiteMinder Web Agent v6.0	To provide better discovery moved the existing ‘CA SiteMinder Web Agent’ v6.0, v12.0 and v12.5 GAM signature to server-side signature Note: Old discovery records will be closed, and new ones will be opened.	10.0.11.0

The following table lists BigFix Inventory Fixlets APARs and other defects that are fixed in this update.

ID	Symptoms	Behavior after you install the update	Available since
BI-14163	The property ‘Application Usage by Path’ in ‘Application Usage Statistics’ analysis is not updated on Windows after running the Software Scan	The issue is fixed.	10.0.11.0
KB0100567	Scan related fixlets not relevant on SunOS endpoints with no Image Packaging System (IPS)	Fixlets relevancy is correctly evaluated.	10.0.11.0
KB0101246	Client setting _BESRelay_UploadManager_CleanupHours value resetting after executing some fixlets	The issue is fixed.	10.0.11.0

The following table lists user documentations APARs and other defects that are fixed in this update.

ID	Symptoms	Behavior after you install the update	Available since
BI-13122	Integrate Contracts business document into BFI official documentation	Added a section to include the hands-on tutorial for contract management. Doc link: Contract Management	10.0.11.0

VM Manager Tool version and changes

The VM Manager Tool version that is used with this update is 10.0.11.0.

Scanner version and changes

The scanner version that is used with this update is 9.2.29.1000 for Windows and 9.2.29.0000 for other platforms. The disconnected scanner version that is used with this update is 10.0.11.0 and 9.2.29.0 for IBM I.

Application update 10.0.10.1

Included Software Catalog

The release includes Software Catalog version 10.0.10.1 with capability to discover 460+ new software versions that includes Adobe, BMC Software, Cisco Systems Inc., Citrix, Hewlett-Packard, Microsoft, RED HAT, SUSE, and VMware using standard or template signatures. One template signature covers 10+ software versions.

Added discovery for the following SAS software:

• SAS/GRAPH (Windows, Unix)
• SAS/ACCESS Interface to PC Files (Windows, Unix)
• SAS/ACCESS Interface to Hadoop (Unix)

New template signatures included in this release:

Refer to the below links to see the new added template signatures:

• Catalog Release Notes
• Catalog Change List

Modified content

The version number of the fixlet is 10.0.10.1.

The Update Software Catalog  fixlet was updated and should be run to install the latest versions of the specific components.

Enhancements and important changes

The following table lists enhancements and changes that are introduced in this update:

Abstract	Description	Available since
Enhancement of Oracle Java Detection	Enhanced discovery of existing Java signature for versions 7, 8, 9, 10, 12, 13, 14 and 15 to cover non-standard installations.	10.0.10.1
Added discovery for SAS/ACCESS Interface to Hadoop	Added discovery for SAS/ACCESS Interface to Hadoop version 9 for Linux platform.	10.0.10.1
Added discovery for SAS/ACCESS Interface to PC Files	Added discovery for SAS/ACCESS Interface to PC Files for version 9. Discovery is added for Windows and UNIX platforms.	10.0.10.1
Added discovery for SAS/GRAPH	Added discovery for SAS/GRAPH version 9. Discovery is added for Windows and UNIX platforms. Deleted detection for SAS/GRAPH for AIX platform.	10.0.10.1
Added discovery for Microsoft Project 365	Added discovery for Microsoft Project 365 for Windows platform.	10.0.10.1
Added discovery for Adobe ColdFusion	Added discovery for Adobe ColdFusion for versions 2018.0 and 2021.0 for Windows and Unix platform.	10.0.10.1
Microfocus publisher name update	Updated the publisher name from Microfocus to Micro Focus. Note: Previously discovered records will be closed, and new ones will be available.	10.0.10.1
Changed definition source of selected Microsoft components	For several Microsoft components, the definition source has been updated to HCL. Microsoft SQL Server Management Studio – 17.9, 18.0, 18.1, 18.2, 18.3, 18.5, 18.6, 18.9 Microsoft Host Integration Server - 2016.0 Machine Learning Server – 9.2, 9.3, 9.4	10.0.10.1

Defect fixes

For the list of known defects please refer to HCL Knowledge Base.

The following table lists BigFix Inventory Catalog APARs and other defects that are fixed in this update:

ID	Symptoms	Behavior after you install the update	Available since
KB0100409	NetBackup signatures from two different sources leading to double discovery	Signatures from one of the sources were deleted to avoid double discovery.	10.0.10.1
KB0100717	Incorrect Vendor for SUSE Linux Enterprise Server for SAP Applications	The publisher was changed to SUSE as SUSE is no longer part of Micro Focus.	10.0.10.1
KB0100631	Wrong identification of Oracle Java software component	Oracle Java 11 Signatures were improved for accurate discovery.	10.0.10.1

Application update 10.0.10

Allowed upgrade path

It is recommended to upgrade BigFix Inventory frequently to benefit from new features and security fixes. Please plan at least one upgrade per year.

Starting from 10.0.10 release to ensure smooth upgrade process there will be kept support for direct update from last 8 server releases. The minimal version for direct upgrade path will be increased with every release.

There will be preserved every 8th release to allow upgrade from past releases any time. Currently available release is 10.0.2. Release 10.0.10 is the next planned version to be preserved.

Minimal version recommended for direct upgrade path:

For versions up to 10.0.1 (inclusive), upgrade first to 10.0.2 using already available interim fixlet.

Version 10.0.2 is the oldest version supporting direct upgrade to 10.0.10. Update to the next version of BigFix Inventory will require to be at least at 10.0.3 release or upgrade to the 10.0.10 first.

Q: I’m on version 10.0.5 and would like to install 10.0.10 release.

A: Upgrade directly to the 10.0.10 release.

Q: I’m on version 9.2.17 and would like to install 10.0.10 release.

A: Update first to the 10.0.2 and then to the 10.0.10 release.

Q: I’m on version 10.0.2, but plan to do the upgrade in January 2023 to the most recent release.

A: It would be version 10.0.11. You will have to upgrade first to the 10.0.10 and then to the 10.0.11, as 10.0.11 will support upgrade from version 10.0.3 or higher.

Q: I’m on version 9.2.13 and would like to upgrade in April 2023 to the most recent release.

A: At that time version 10.0.12 should be available. You will need to upgrade first to the 10.0.2 and then to the 10.0.10.

Changes to supported systems

IBM DB2 10.5 is no longer supported as a database for BigFix Inventory Server in line with supported database list for BigFix platform. IBM withdrew support for DB2 10.5 in April 2020.

Microsoft Internet Explorer web browser is no longer supported.

Added support for the following platforms and systems as managed devices:

• IBM Cloud LinuxONE VS
• NTT IaaS Powered by VMware
• IBM i 7.5
• Debian 11 x64
• Red Hat Enterprise Linux 9 by using the disconnected scanner
• Ubuntu 22.04 on x86 by using the disconnected scanner
• Azure VMware Solution with use of VM Manager Tool

The following systems are withdrawn:

• VM Managers: Oracle VM Manager
• IBM i 7.1
• RHEL 5 on Power

For more information about supported systems, refer to Platform detailed system requirements.

Extended upgrade time for environments with Mac OS

Due to rework of Mac OS package discovery, during the application upgrade whole catalog and discoveries coming from Mac OS machines will be removed. This removed data will be replaced by data from new software scan during Data Import.

Due to removal process, application upgrade may take longer than usual when there is Mac software and machines in the environment. Time, in minutes, required for application upgrade can be estimated using the following query:

select count(*) / 20 from sam.software_components c 
join sam.publishers p on c.publisher_id = p.id 
where p.name = 'Unclassified Mac Software'

Changes to software discovery on Mac OS devices

This release includes improved automated catalog-less software discovery on Mac OS devices. Now Vendor information is populated for both Package Data and software inventory reports, such as Software Classification. Catalog definitions for MAC software include normalized Vendor information for key Vendors and one Product definition compared to previous structure. Inventory reports cover detailed discovery of software classified as applications. Complete Package Data with category classification is available with the option to promote selected components to inventory as needed. With improved discovery, a bigger number of MAC software offers usage information.

IBM Policy update for subcapacity reporting requirements for VPC license metric

Effective May 10, 2022, IBM requires all Virtual Processor Core (VPC) software licenses that use subcapacity licensing to deploy IBM License Metric Tool or any other tool approved by IBM like HCL BigFix Inventory. Manual capacity counting is no longer permitted. Container Licensing terms are not included in this policy change.

Details of the change are available and documented on the main IBM subcapacity licensing page.

Changes to End of Support definitions in catalog

The end of support information in catalog is automatically populated for Adobe, Oracle, Red Hat and VMware software. No change to End of support information for IBM and Microsoft software. Upgrade BigFix Inventory server to version 10.0.10.0 to see the changes.

Definition of End of Support dates for Software Components is part of Software Catalog distributed with BigFix Inventory Server component. Only upgrading the BigFix Inventory Server updates them.

Listing of state of End of Support dates for Software Components included in BigFix Inventory Server update:

Publisher Name	Additional Comment	Last Update	Updated in this Release
IBM		10.0.9
IBM i 7.1		10.0.9
RHEL 5 on Power		10.0.9
VM Managers: Oracle VM Manager IBM i 7.1 RHEL 5 on Power

Deleted old software signatures to optimize standard catalog processing

This release includes improvement for catalog processing which is done by removing old software signatures from BigFix Inventory main catalog which results in better performance overall (Mentioned in BigFix Inventory Release Notes for version 10.0.9.1). Deleted signatures refer to software and versions with very low probability of being active or deployed.

Deleted signatures are still available as custom catalog content for customers who request specific titles and versions through the standard support channel.

Included Software Catalog

This release includes Software Catalog version 10.0.10.0 with capability to discover 330+ new software versions including but not limited to the following software manufacturers: Adobe, Autodesk, Cisco, Citrix, McAfee, Microsoft, Samsung, VMware

New template signatures included in this release:

Template signature is a method of discovery where the version of a component is detected automatically, and specific version added to the catalog on fly. Such template signatures include all component versions. They are used when the software is frequently updated and deployment method is not changed.

Publisher Name	Component Name	Platform
Red Hat	Red Hat Enterprise Linux	Linux
Apache Software Foundation	Apache HTTP Server	Windows
CrowdStrike Inc.	CrowdStrike Falcon Sensor	Linux
Siemens	Siemens PLM License Server	Windows & UNIX

For more information, refer to Catalog release notes and Catalog change list.

Modified content

The version number of the fixlet is: 10.0.10.0  

The following fixlets were updated and should be run to install the latest versions of the specific components:  

• Upgrade to the latest version of BigFix Inventory 

• Upgrade to the interim version 10.0.2 of BigFix Inventory if version older than 10.0.2 
• Software Catalog Update (if BFI not upgraded) 
• Install or Upgrade Scanner   
• Install or Upgrade Scanner in private mode on Windows  
• Install SAP Metric Data Collector

• Update SAP Metric Data Collector 
• Install VM Manager Tool  
• Update VM Manager Tool 
• Install Additional VM Manager Tool (OPTIONAL)  
• Download the Disconnected Scanner Package for IBM I   

• Download the Disconnected Scanner Package 
• Download BigFix Inventory
• Download the BigFix Inventory Container Solution Packages

The following fixlets were updated and require that actions created by their previous versions are stopped and then started by using the updated fixlets. Restarting actions is necessary to ensure that new features work properly:   

• Initiate Software Scan
• Upload Software Scan Results – no updates, but recommended to be refreshed to match Initiate
• Run Capacity Scan and Upload Results

The following fixlets were updated or added:

• Clear Data Collected by Software Data Harvesting Tool
• Get Oracle Features

• Get Oracle Concurrent Sessions Number
• Identify Computers on Public Clouds

Enhancements and important changes

The following table lists enhancements and changes that are introduced in this update.

Abstract
Mac OS discovery improvements	Added vendor information, introduced package categories to filter-out non-applications from Inventory, improved usage detection. For list of all improvements see the documentation section: MAC OS discovery.	10.0.10.0
Normalized vendors for Mac OS discovery	Vendors from detected software are in line with publishers from software catalog.	10.0.10.0
End of support information added for Adobe	Added end of support dates to 64 Adobe products.	10.0.10.0
End of Support information added for Oracle	Added end of support dates to 118 Oracle products.	10.0.10.0
End of Support information added for Red Hat	Added end of support dates to 15 Red Hat products.	10.0.10.0
End of Support information added for VMware	Added end of support dates to 41 VMware products.	10.0.10.0
Catalog clean-up – deletion of obsolete signatures	Deleted 14850 obsolete signatures from more than 11400 releases to improve the performance of Software Scan	10.0.10.0
Removal of unused tags created for software components or instances	Added a possibility to automatically remove tags not assigned to any software component or instance (during data import). To turn this feature on, switch on ‘delete_unused_tags_automatically’ advanced server setting (it is disabled by default). If this clean-up action is needed only once, then disable this option after the import.	10.0.10.0
Computer First Seen column	Added the ‘Computer First Seen' column to license metric utilization CSV reports which are part of the Audit Snapshot. The column shows the time when the computer was first detected by BigFix Inventory server.	10.0.10.0
Optimized data transferred for software usage monitoring	The amount of software usage data stored in BigFix database is optimized resulting in less data to transfer and store.	10.0.10.0
New fixlet to clear collected harvester data	Added a ‘Clear Data Collected by Software Data Harvesting Tool’ fixlet which removes the data collected by Software Data Harvesting Tool from endpoints and the BigFix server.	10.0.10.0
Updated component version for Oracle Database Client 19	Updated component version for Oracle Database Client from 19 to 19.3.	10.0.10.0
Enhancement of Oracle Java Signatures	Enhanced discovery of existing Java signature for version 8.0 to account for non-standard installations.	10.0.10.0
IBM Virtualization Capacity reporting equivalent	BigFix Inventory 10.0.10.0 is equivalent to IBM License Metric Tool (ILMT) 9.2.28 for IBM Virtualization Capacity reporting. The update covers IBM sub-capacity calculation, IBM Catalog, PVU and Scanner parity. For status of IBM validated releases see following BFI FAQ Document.	10.0.10.0
Updated PVU table	Updated Processor Value Unit table to version 06/07/2022.	10.0.10.0
Updated ‘Apple Computer Corporation’ publisher name to ‘Apple’	Adjusted publisher name.	10.0.10.0
Added discovery for Red Hat Enterprise Linux	Added a new CIT signature for Red Hat Enterprise Linux 9.	10.0.10.0
Added discovery for Team Quest Analyzer	Added a new CIT signature for Team Quest Analyzer version 11 on UNIX.	10.0.10.0
Added discovery for CrowdStrike Falcon Sensor on Linux platform	Added template signature for CrowdStrike Falcon Sensor on Linux platform. Now, Template signature exists for both Windows and Linux platform. Existing regular signatures were deleted for Windows platform.	10.0.10.0
Discovery improvements for Adobe Captivate	Added discovery by File Name and Package Name. Changed definition source to HCL. Updated the component version for Adobe Captivate from 2015 to 2015.0 and 2017 to 2017.0.	10.0.10.0
Removed discovery of Adobe Download Manager	Removed the discovery of Adobe Download Manager.	10.0.10.0
Removed discovery of Adobe Acrobat Distiller	Removed discovery of Adobe Acrobat Distiller since it cannot be licensed, downloaded, and/or installed as a separate product.	10.0.10.0

Defect fixes

For the list of known defects please refer to HCL Knowledge Base.

The following table lists BigFix Inventory Server APARs and other defects that are fixed in this update.

ID	Symptoms	Behavior after you install the updatee	Available since
KB0098499	Poor data import performance after enabling Group Aggregation in Computer Groups Management.	Data Import performance is correct.	10.0.10.0
KB0098905	Clusters API returns outdated data, also showing duplicated entries from old and new data source (VM Manager Tool).	Clusters API returns only current data.	10.0.10.0
KB0099323	Wrong database is reported in the log message when connection error occurs (always BFI database).	Correct database is reported in error message.	10.0.10.0
KB0099152	Mismatch of count in dashboard fields and number of endpoints in reports.	Dashboard fields show correct numbers of endpoints.	10.0.10.0
BI-13117	Software from Mac OS 11.5.1 or later does not appear on Software Classification panel. It is present only on Package Data panel.	Software from Mac OS is reported properly.	10.0.10.0
BI-12646	No information about used threads during import for the Capacity / VM Manager Data.	Added additional log entries to Data Import log with the actual number of threads used during Data Import of the Capacity / VM Manager Data Import.	10.0.10.0
BI-13397	Input error messages in the Edit Contract dialog are located on the right side of the inputs.	Input field error messages are located below the input fields.	10.0.10.0
BI-11848	Contract custom fields for decimal number input will now be restricted either to comma or period as a decimal separator depending on the user’s language settings.	Decimal separator is aligned with a chosen language.	10.0.10.0
BI-11803	Details of deleted signatures in Catalog Audit not available after a certain amount of time.	Link to details panel is not shown in case no details are available.	10.0.10.0
BI-12133	Grid row count value is incorrect in the Advanced Server Settings panel after filtering and sorting by the Name column.	The count value is correct.	10.0.10.0
BI-11837	Custom fields in the Edit Contract dialog are missing length and range validation.	Validation is added.	10.0.10.0

The following table lists BigFix Inventory Scanner APARs and other defects that are fixed in this update.

ID	Symptoms	Behavior after you install the update	Available since
	The same exclude directory ending with a slash sign included in both catalog (wscansw) and file system (wscanfs) scan configurations cause physical scan of the file system and cache recreation when wscanfs is run right after wscansw.	All exclude and include directories are converted to a 'canonical' form. So all the following 3 example paths effectively meaning the same: /abc /abc/* /abc/ /abc are converted to one form: After the changes md5 hash of the scan configuration is the same and as a result the physical scan of the file system is not performed by wscanfs. Instead the data is read from the cache, which was created by wscansw before.	10.0.10.0

The following table lists BigFix Inventory tools APARs and other defects that are fixed in this update. It covers VM Manager, SAP Data Collector, Image Scanner, Scanner Service, Cloud Adapter.

ID	Symptoms	Behavior after you install the update	Available since
KB0099902	Status ‘Invalid Credentials’ returning for VM Manager Hyper-V configurations using WinRM and authenticating with MD4 algorithm.	VM Manager Tool can authenticate with MD4 algorithm to Hyper-V hosts via WinRM.	10.0.10.0

The following table lists BigFix Inventory CatalogAPARs and other defects that are fixed in this update.

ID	Symptoms	Behavior after you install the update	Available since
KB0100119	Autodesk Composite discovered incorrectly.	Autodesk Composite signatures are updated to report the correct version and also avoid false discovery.	10.0.10.0
KB0099763	Apache HTTP Server lost discovery for 2.4 version.	Deleted existing signatures for Windows platform and added template signature for Apache HTTP Server for Windows platform. Now, template sign exists for both Windows and Linux platform.	10.0.10.0
KB0099831	Siemens PLM License Server 8.2 Version is incorrectly discovered.	Deleted existing signature for Siemens PLM License Server and replaced it with template signature for Windows and UNIX Platforms for accurate discovery.	10.0.10.0

The following table lists BigFix Inventory FixletsAPARs and other defects that are fixed in this update.

ID	Symptoms	Behavior after you install the update	Available since

The following table lists user documentation APARs and other defects that are fixed in this update.

ID	Symptoms	Behavior after you install the update	Available since
KB0073035	Db2 temp tablespace can grow in an uncontrolled way on DB2 when statement heap is exhausted.	Documentation will contain additional section under “Tuning DB2 application database” describing how to change statement heap setting in case of issues with disk space used by queries.	10.0.10.0
BI-13572	Internet Explorer is no longer supported as a browser by BigFix server.	References to Internet Browser has been removed from the document.	10.0.10.0

VM Manager Tool version and changes

The VM Manager Tool version that is used with this update is 10.0.10.0.

Scanner version and changes

The scanner version that is used with this update is 9.2.28.1000 for Windows and 9.2.28.0000 for other platforms. The disconnected scanner version that is used with this update is 10.0.10.0 and 9.2.28.0 for IBM I.

Application update 10.0.9.1

Included Software Catalog

This release includes Software Catalog version 10.0.9.1 and is capable to discover more than 880 new software versions including but not limited to software manufacturers, such as Adobe, Amazon.com, Citrix, Dell Computers, General Electric, Hewlett-Packard, Intel, Kodak, Microsoft, Logitech Inc, Nvidia, Red Hat, and Schneider Electric.

New template signatures included in this release:

Template signature is a method of discovery where the version of a component is detected automatically, and a specific version is randomly added to the catalog. Template signatures include all component versions. They are used when the software is frequently updated and deployment method is not changed. One template covers more than 10 software versions.

Publisher Name	Component Name	Platform
SentinelOne	SentinelOne Agent	Windows, UNIX

Note: Changes made to the software component definition in catalog, for example modification of component name, version, or publisher may cause creation of new definition of the component and removal of previous one. This leads to loss of Tagging, Classification and custom end-of-support information.

In addition to the above, when discovery is based on a signature evaluated on an endpoint, previous discovery results temporarily disappear until the next software scan and related data import. A new catalog must be propagated to the endpoints before the scan execution.

Updated discovery mechanism for specific software with this behavior includes specific notes (for details refer to the list of enhancements and list of defects).

Planned improvement for catalog processing

Efficiency improvement is planned for the next release of BigFix Inventory version 10.0.10. Old software signatures are planned to be removed from BigFix Inventory main catalog which will result in better overall performance. Deleted signatures refer to software and versions with very low probability of being active or deployed. Deleted signatures will be still available as custom catalog content for customers who request specific titles and versions through the standard support channel. For list of signatures to be deleted, check the link.

For more information, refer to the Catalog release notes and Catalog change list.

Modified content

Fixlet version number: 10.0.9.1

Fixlet names: The Update Software Catalog fixlet was updated and should be run to install the latest version of the catalog. The Run Software Data Harvesting Tool fixlet was updated.

Enhancements and important changes

Abstract	Description	Available since
Software Data Harvesting Fixlet: Changed content of uninstall packages.	The MSI Install location property of package information was enhanced to prefer regular paths over system paths.	10.0.9.1
Change of the definition source for catalog definitions which use executable and package information.	Definition source information was changed on product, version, release, component and signature view to HCL or IBM Internal Development for those entries in Catalog which uses executable and package information. This change is for improved serviceability and does not impact the discovery results.	10.0.9.1
SentinelOne Endpoint Protection Agent discovery	Created a new template signature for SentinelOne Endpoint Protection Agent for Unix & Windows platform.	10.0.9.1
Adoptium discovery	Added discovery for: Eclipse Temurin JDK - Versions:8.0, 11.0, 16.0, 17.0, and 18.0 Eclipse Temurin JRE - Versions: 8.0, 11.0, 17.0 and 18.0 Windows and Unix platform.	10.0.9.1
Red Hat Fuse discovery	Added discovery for: Red Hat Fuse to include versions 7.0, 7.1, 7.2, 7.3, 7.4, 7.5, 7.6, 7.7, 7.8, 7.9, and 7.10. Windows and Unix platform	10.0.9.1
Oracle Instant Client discovery	Improved discovery for Oracle Instant Client. Discovery for missing version was added for Windows and UNIX versions, 19.14, 19.3, 19.6, 19.8. Added new package signatures for Linux versions 10.1, 10.2, 11.1, 11.2, 12.1, 12.2, 18.3, 18.4, 18.5,19.1, 19.12, 19.13, 19.14, 19.3, 19.5, 19.6, 19.8, 19.9, and 21. Note: Discovery will disappear until the next scan and data import for version 21. Catalog propagation to endpoints is required. Old discovery records will be closed, and new ones will be opened for version 21.	10.0.9.1
BFI Cloud Adapter: minimal Kubernetes permissions documented	In order to manage security of BigFix Inventory Cloud Adapter deployment refer to “BigFix Inventory 10. Software Discovery in Containers” for minimal permissions required.	10.0.9.1

Defect fixes

For the list of known defects please refer to HCL Knowledge Base.

The following table lists BigFix Inventory Catalog APARs and other defects that are fixed in this update.

ID	Symptoms	Behavior after you install the update	Available since
KB0098806	Citrix XenDesktop, XenApp, and StoreFront signatures cause false discovery.	Template signatures for Citrix XenDesktop, XenApp and StoreFront are improved to not detect other modules. Regular signatures are removed and replaced by template coverage which also reports detailed version. XenDesktop Controller signatures are removed as they were often providing false discovery, and XenDesktop signature is providing proper detection for this component. Note: Old discovery records will be closed, and new ones will be opened.	10.0.9.1
BI-11162	TIBCO Businessworks version 6.3 was leading to duplicated software titles.	The component name of TIBCO Businessworks for version 6.3 was corrected. Note: Discovery disappears until the next scan and data import. Catalog propagation to endpoints is required. Old discovery records will be closed, and new ones is opened.	10.0.9.1
KB0099659	Microsoft Edge template signature previously based on MicrosoftEdge.exe was reporting incorrect version.	Improved template signatures show correct version. Also, the component name is updated to “Microsoft Edge” from “Edge”. Note: Old discovery records will be closed, and new ones will be opened.	10.0.9.1
KB0099546	Oracle products, such as Oracle Adapter, Oracle Mediator were incorrectly discovered.	Discovery of the following Oracle products were corrected/added to detect proper version: Oracle Adapter Oracle BPEL Process Manager Oracle Business Process Management Suite Oracle Business Rules Oracle Human Workflow Oracle Mediator Oracle SOA Suite Note: Discovery for Oracle SOA Suite 11.1 disappears until the next scan and data import. Catalog propagation to endpoints is required.	10.0.9.1
KB0099462	UltraEdit signatures duplicated discovery	Duplicate signatures for UltraEdit were deleted for versions: 8.0,10.0,13.2,14.0,14.10,14.20, and15.0.	10.0.9.1

Application update 10.0.9

Allowed upgrade path

Minimal version recommended for direct upgrade path is 9.2.16.

For versions older than 9.2.16, first upgrade to version 10.0.2 using an already available fixlet.

BigFix Inventory Scanner Service 10.0.8.0 (previous version) is not compatible with BigFix Inventory Server 10.0.9 due to a change of success response code from 200 to 204. BigFix Inventory Server 10.0.9.0 supports BigFix Inventory Scanner Service version 10.0.9.0 only.

After upgrading BigFix Inventory server with FIPS function enabled ensure that java.security files contain RSAPSS, RSASSA-PSS listed in jdk.tls.disabledAlgorithms. For more information, see Configuring the server to achieve FIPS compliance.

DB2 10.5 End of Support by BigFix Inventory starting from future release

BigFix Inventory v10.0.9.0 is the last release with support for DB2 10.5. Future releases of BigFix Inventory will no longer support DB2 10.5.

IBM withdrew support for DB2 10.5 in April 2020. For more information, see: Software lifecycle.

Microsoft Internet Explorer 11 support will be removed starting from future release

BigFix Inventory version 10.0.9.0 is the last release with support for Microsoft Internet Explorer 11. Future releases of BigFix Inventory will no longer support Microsoft Internet Explorer 11.

Microsoft withdrew support for Internet Explorer on certain versions of Windows 10 on June 15, 2022. For more information, see, Microsoft Announcement.

Changes to Software Discovery in Containers

This feature is licensed under Active Container SKU/unit of measure.

Image Scanning solution now supports use of Podman in addition to Docker (r) as the runtime for executing scans. Image scanner was verified against Podman versions: 1.9.x, 3.2.x.

Note: Podman version 2.0.x is not supported due to a known issue, https://github.com/containers/podman/issues/7515.

BigFix Inventory Server 10.0.9.0 supports BigFix Inventory Scanner Service v 10.0.9.0 only due status code change for successful data upload.

Changes to UI Components in New Contracts

UI components were updated to the latest version to resolve a few usability issues and limitations. With this change there is one new limitation: it's not possible to type "-" in Number text fields of Edit/New Contract dialog in Firefox web browser. Users can use mouse wheel or arrow keys to get negative numbers.

Included software catalog

This release includes Software Catalog version 10.0.9.0 with capability to discover 470+new software versions including but not limited to the following software manufacturers: Adobe, AutoDesk, Cisco Systems, HCL, Hewlett-Packard, Microfocus, Microsoft, Oracle.

New template signatures included in this release cover 50+ new software versions:

Template signature is a method of discovery where the version of a component is detected automatically, and specific version added to the catalog on fly. Such template signatures include all component versions. They are used when the software is frequently updated and deployment method is not changed. One template covers 10+ software versions.

Publisher Name	Component Name	Platform	Release
Tripwire, Inc.	Tripwire Axon Agent	Windows, UNIX	10.0.9.0
Tripwire, Inc	Tripwire Enterprise Console	Windows	10.0.9.0
Microfocus	eDirectory	Windows, UNIX	10.0.9.0
Microfocus	Access Manager	UNIX	10.0.9.0
OpenSSL Project	OpenSSL	UNIX	10.0.9.0

Note: Changes made to the software component definition in catalog (for example, modification of component name, version, or publisher) may cause creation of new definition of the component and removal of previous one. This will lead to loss of Tagging, Bundling and custom EOS dates.

When changes are made to a signature evaluated on an endpoint, previous discovery results temporarily disappear until the next software scan and related data import. (Catalog with changed signatures has to be propagated to the endpoints).

Updated discovery mechanism for specific software with this behavior includes specific notes (for details refer to the list of enhancements and list of defects).

For more information, refer to the Catalog Release Notes and Catalog Change List.

Modified content

The version number of the fixlet is: 10.0.9.0  

The following fixlets were updated and should be run to install the latest versions of the specific components:

• Upgrade to the latest version of BigFix Inventory
• Software Catalog Update (if BigFix Inventory is not upgraded)
• Install or Upgrade Scanner
• Install or Upgrade Scanner in private mode on Windows
• Install SAP Metric Data Collector
• Update SAP Metric Data Collector
• Install VM Manager Tool
• Update VM Manager Tool
• Install Additional VM Manager Tool (OPTIONAL)
• Download the Disconnected Scanner Package for IBM I
• Download the Disconnected Scanner Package
• Download BigFix Inventory
• Download the BigFix Inventory Container Solution Packages

The following fixlets were updated and require that actions created by their previous versions are stopped and then started by using the updated fixlets. Restarting actions is necessary to ensure that new features work properly:

• Initiate Software Scan
• Initiate Software Scan on Shared Disks
• Run Capacity Scans and Upload Results
• Get Oracle Features
• Get Oracle Concurrent Sessions Number

The following fixlets were updated or added:

• Configure Scan Cache
• Uninstall Scanner
• Test CIT Signature
• Run Software Data Harvesting Tool
• Clear cache to force rescan Docker containers during next Software Scan (this task refers to the old functionality, ISO tagged software scan on Docker containers)
• Force Re-upload of Software Scan Results
• Upgrade to the interim version 10.0.2 of BigFix Inventory if version older than 9.2.14 (no changes in 10.0.9)
• Update the Log4j library in VM Manager Tool to version 2.17.1 (no changes in 10.0.9)

Enhancements and important changes

For a list of enhancements introduce in this release, see What's new.

Defect fixes

For the list of known defects please refer to HCL Knowledge Base.

The following table lists BigFix Inventory Server APARs and other defects that are fixed in this update.

ID	Symptoms	Behavior after you install the update	Available since
BI-9838	Import fails after update from 9.2.16 when detected ISO tag signature has changed in software catalog. Error in logs:Java::ComIbmDb2JccAm::SqlException: An error occurred in a triggered SQL statement in trigger "SAM.SOFTWARE_COMPONENTS_TRIGG".	Issue is fixed.	10.0.9.0
BI-10180	Generated error message on Server Settings panel contains punctuation errors.	Error messages displayed on UI have been corrected.	10.0.9.0
BI-9857	Catalog customization allows to rename a product to a name which is already used by the same publisher.	An error message is displayed that the product name is already used.	10.0.9.0
KB0097450	There is a red ‘X’ mark next to signature discovery explanation for positive past CIT detection.	There is a yellow ‘!’ mark showing a potential scan issue with explanation on next steps.	10.0.9.0
KB0097416	Warning in IsotagRule step of Data Import - ‘Could not save ActiveModel’	Improved handling of ISO files with empty publisher. Clear messages are displayed.	10.0.9.0
KB0072863	Incorrect interpretation of template signatures by BigFix Inventory server may lead to multiple product discovery.	Complex template signatures are correctly handled.	10.0.9.0
BI-10321	Drill down to the Software Classification is not adjusted to reporting period for Install Seats metric in All Metrics and Product Metrics per Group reports.	Reporting period of the Software Classification report is the same as in the All Metrics and Product Metrics per Group reports.	10.0.9.0
BI-9984	Mac OS signatures always display “Has Usage” set to “Yes” even if signature couldn’t provide such information	Usage information is corrected.	10.0.9.0
BI-10260	The Package Summary report shows computers for which a user has no permission to access.	Fixed by listing only the computers which the user has access to.	10.0.9.0
KB0098523	Contract reporting does not take into account different computer group aggregation periods	Every Data Import refresh of view sam.current_metric_values uses proper aggregation period for computer group.	10.0.9.0
BI-10875	Import from BigFix 9.5.4 fails when the BigFix was not available during previous import	BigFix DataSource version is not cached in case of issue with accessing datasource.	10.0.9.0
KB0098658	When BFI server is being started when its database is not available, BFI may not be available	BigFix Inventory Server initialization waits indefinitely until database is available.	10.0.9.0
BI-10655	SLM tags for template component can cause failure of InsertForNewSlmTags import step	SLM tags for template component do not cause import failure anymore.	10.0.9.0
KB0095262	Cannot delete SSO configuration	Skipping deletion of <samlWebSso20> tag no longer causes an error when deleting SAML SSO configuration.	10.0.9.0
KB0098526	Unable to remove computer property even if not used	The issue is fixed.	10.0.9.0
BI-10997	1. Enabling debug logs for tema was enabling debug logs for import as well 2. Only commented -DTEMA_LOG_DEBUG parameter in jvm.options was making debug logs for tema disabled. Any other value of the parameter either if it was 'false' or anything else was making debug logs for tema enabled 3. Description of a setting "Enable debug level logging during data imports" in Advanced Server Settings wasn't describing what "default logging level" is	Enabling debug logs for tema does not enable debug logs for import anymore. DTEMA_LOG_DEBUG parameter accepts only 2 values - ‘true’ and ‘false’. Any other value will be rejected. Commenting the parameter works as a false. Description of what "default logging level" means in imports has been added under the setting.	10.0.9.0
KB0098382	Old scan file data not removed leading false-positive discoveries	The issue is fixed.	10.0.9.0
KB0098905	Clusters API /api/sam/clusters returns both deleted and inactive VM Managers with no information which are active, creating confusion.	Data from deleted VM Managers is not shown. Added ability to filter by and display VM Manager status.	10.0.9.0
KB0098416	Data import failing with message "The update count value is out of range."	Added a new hidden/opt-in feature for regular pruning of historical data. In advanced server settings, the maximum_data_lifetime parameter is set by default to 0 (disabled). With enabled feature historical entries closed before defined number of days are removed completely from the BigFix Inventory. This improves the overall performance of future data imports.	10.0.9.0
KB0098413	Modification of product’s default metric assignment reverts after import.	The issue is fixed.	10.0.9.0
BI-8457	React-UI Patronus Defect Fixes	Ctrl + A selection shortcut works in number inputs in Edit Contract dialog box. Date Selector allows to translate "Select Month" and "Select Year" labels. Date Selector – Correct month shown after selecting a month with less days than currently selected day of a month.	10.0.9.0
BI-10871	Custom rules are not applied in some cases	Import now applies custom rules also for discoveries found in current import, not only previous successful import process.	10.0.9.0
KB0098863	BFI Server Installer. Keystore file "key_bfi_db.jks" is not converted during upgrade	Keystore for the Database certificate is preserved and converted when needed during upgrade.	10.0.9.0
KB0098383	The upgrade to BFI 10.0.8.0 fails because of additional SSL tags in server.xml: Exception:Unexpected number of the <ssl> tags in server.xml.	All found SSLs are processed during the upgrade of the BFI server.	10.0.9.0

The following table lists BigFix Inventory Scanner APARs and other defects that are fixed in this update:

ID	Symptoms	Behavior after you install the update	Available since
KB0093801	Missing UUID for Solaris 11 VMs on VMWARE	Improved reading SMBIOS data on this setup.	10.0.9.0
-	Using CIT 9.2.25 import of HW scan fails because physical Hyper-V boxes are treated as VMs., Physical Hyper-V boxes are incorrectly recognized as VirtualMachineGuest group is being included in the HW scan output.	Introduced regression. Physical Hyper-V boxes are correctly recognized.	10.0.9.0

The following table lists BigFix Inventory tools APARs and other defects that are fixed in this update. It covers VM Manager, SAP Data Collector, Image Scanner, Scanner Service, Cloud Adapter.

ID	Symptoms	Behavior after you install the update	Available since
BI-11155	VM Manager Tool produces misleading logs	When VM Manager Tool connects to a Hyper-V instance, logs on INFO level will be more readable, explaining that different protocols are checked. Logs on DEBUG level will contain details when a protocol does not work.	10.0.9.0

The following table lists BigFix Inventory Catalog APARs and other defects that are fixed in this update:

ID	Symptoms	Behavior after you install the update	Available since
BI-10414	There were 3 duplicate Micro Focus publishers. (Micro Focus Ltd., Micro Focus (NetManage) and Micro Focus International Limited)	Duplicate publishers were deleted and products assigned to them were moved to correct Micro Focus publishers. Note: Old discovery records will be closed, and new ones will be opened.	10.0.9.0
KB0098728	The "LMTOOLS Utility" component was wrongly discovered with Adobe as publisher.	“LMTOOLS Utility” is embedded software it is not detected. The discovery was removed.	10.0.9.0
BI-11643	Oracle Database and Oracle Database Client 18, 19 and 21 components had version number with “.0” added but shouldn’t because they report release in the detailed version.	Version numbers were corrected. Note: Old discovery records will be closed, and new records will be created.	10.0.9.0
KB0099114	Microsoft Visio and Project versions 2019 and 2021 had no usage capability after change of the discovery mechanism.	Enhanced capability to discover the following 9 components: Microsoft Project Professional 2019 Microsoft Project Professional 2021 Microsoft Project Standard 2019 Microsoft Project Standard 2021 Microsoft Visio for Microsoft 365 Microsoft Visio Professional 2019 Microsoft Visio Professional 2021 Microsoft Visio Standard 2019 Microsoft Visio Standard 2021 Microsoft Visio for Microsoft 365 Note: Discovery will disappear until the next scan and data import. Catalog propagation to endpoints is required. Note: Old discovery records will be closed, and new ones will be opened.	10.0.9.0

The following table lists BigFix Inventory Fixlets APARs and other defects that are fixed in this update:

ID	Symptoms	Behavior after the update	Available since
KB0098299	Get Oracle features fixlet failing to read ORACLE home and SID	Issue is fixed.	10.0.9.0
KB0098415	Run Capacity Scan and Upload Results fails with exit code 0	The issue is fixed. The setting capacityNewFile is assigned only once.	10.0.9.0
KB0097418	Filtering of App Usage from endpoint is insufficient. After deleting an executable file of a running application, the process name in collected usage data has unwanted “(deleted)” suffix.	Applications with deleted executable files are excluded from usage collection.	10.0.9.0
BI-11130	Clear Scanner Installation fixlet was failing when cit.ini was empty or unreadable	Issue is fixed.	10.0.9.0
KB0098714	Initiate Software Scan fails on Sun OS v5.10 client due to failing relevance	Issue is fixed.	10.0.9.0
KB0098639	Issue with docker scan cache cleaner fixlet: BigFix Inventory Scanners do not seem to clean-up after themselves with regards to Docker container discoveries	Created a new fixlet: ‘Clear cache to force rescan of Docker containers during next Software Scan’.	10.0.9.0
KB0099155	CPU spikes during capacity scan	Created KB0099155 about controlling CPU usage by BigFix Client and BigFix Inventory scans. Improved Client Properties setting and enforcing lower process priority on non-Windows endpoints in Run Capacity Scan and Upload Results fixlet.	10.0.9.0

The following table lists user documentation APARs and other defects that are fixed in this update:

ID	Symptoms	Behavior after the update	Available since
KB0097891	Mistake in docs regarding key generation	Updated the command with “-aes256 2048” in the private key. Doc link: Creating private keys and certificates	10.0.9.0
KB0099289	No information about computer_group_id filter limitation in Retrieval of hardware inventory (v2)	Removed the parameter, computer_group_id from the document as this is an internally used column. Doc link: Retrieval of hardware inventory (v2) Retrieval of software inventory (v2)	10.0.9.0
KB0098857	Contract documentation incorrect and confusing	Added precise information about CSV file encoding and content requirements in contracts import page. Doc link: Importing contracts using CSV files	10.0.9.0

BigFix Inventory Server API changes

• Historical API /api/sam/software_instances is now based on new software installations instead of the deprecated ones. The meaning of columns deleted, ID, software_fact_id and underlying data model is changed. It is recommended to use the new API api/sam/v2/software_instances (no changes in it).
• Disconnected scanner upload API (/api/upload_scan REST API) reports in case of success HTTP code 204 instead of 200.
• The api/sam/v2/license_usage is extended with information about ratio that is applied to convert product license metrics to license metrics of the Cloud Pak or FlexPoint Bundle to which the product is assigned. New columns available are; product_bundle_ratio_divider and product_bundle_ratio_factor.
• The computer_hardware association is extended with information about the hardware architecture. New column available: platform
• KB0098905: Clusters API /api/sam/clusters: data from deleted VM Managers is not shown. Added ability to filter by and display VM Manager status.

Removed Data Import steps

As part of “Removal of deprecated features and panels” the following Data Import steps were removed:

• SAM::ContractFact.before_snapshot
• SAM::Contract
• SAM::SoftwareFact
• SAM::SoftwareFactHierarchy
• SAM::SoftwareFactHierarchyPivot
• SAM::ComputerGroupCatalogHierarchy
• SAM::ContractDimension
• SAM::ContractFact
• SAM::ComputerGroupDiscoverableRollup
• SAM::ComputerGroupCatalogHierarchyRollup
• SAM::ComputerGroupUnmatchedFile

After upgrade these steps no longer contributes to data import duration resulting in shorter Data Import time. Sum of the execution time of the above steps gives the import time improvement after upgrade.

VM Manager Tool version and changes

The VM Manager Tool version that is used with this update is 10.0.9.0.

Scanner version and changes

The scanner version that is used with this update is 9.2.27.1000 for Windows and 9.2.27.0000 for other platforms. The disconnected scanner version that is used with this update is 10.0.9.0 and 9.2.27.0 for IBM I.

Application update 10.0.8.1

Included Software Catalog

This release includes Software Catalog version 10.0.8.1 with capability to discover more than 100 new software versions, such as Adobe, Canonical, Dell Computer Corporation, Microsoft, Red Hat, SAP, SAS, Tripwire Inc., Veritas, and VMware.

Table 21. New template signatures included in this release: Template signature is a method of discovery where the version of a component is detected automatically and specific version is randomly added to the catalog. The template signatures cover all component versions. They are used when the software is frequently updated and deployment method is unchanged.

Publisher Name	Component Name	Platform
Dell Computer Corporation	Quest Web Parts for SharePoint	Windows
HelpSystems LLC	TeamQuest Manager	Windows
ImageMagick Studio	ImageMagick	Windows
Microsoft	Microsoft Visual Studio Test Professional	Windows
Oracle	Oracle Insurance Compliance Tracker	Windows
Red Hat	Red Hat Satellite Capsule Server	Linux
Red Hat	Red Hat Satellite Server	Linux
SAP	SAP Crystal Reports for Enterprise	Windows
SAS	SAS IML Studio	Windows
SAS	SAS Personal Login Manager	Windows
Tripwire, Inc.	Tripwire Enterprise Agent	Windows, Linux
VMware	Salt Master	Unix
VMware	Salt Minion	Unix
VMware	Salt SSH	Unix
VMware	VMware Tools	Windows, Linux

For more information, refer to Catalog release notes and Catalog change list.

Enhancements and important changes

The following enhancements and changes are introduced in this update:

Abstract	Description	Available since
Clean-up of SAP Crystal Reports for Enterprise.	Discovery is improved by replacing existing signatures for new template signature for SAP Crystal Reports for Enterprise.	10.0.8.1
New discovery for Veritas NetBackup Client, Master Server, Media Server.	Added discovery for versions 9.0 and 9.1. The name of component Veritas NetBackup Server has been updated to Veritas NetBackup Master Server for versions above 5.0.	10.0.8.1
New Discovery for Microsoft Visual Studio 2022.	Discovery based on file and package for 5 different editions: Microsoft Visual Studio 2022 Community Edition Microsoft Visual Studio 2022 Professional Edition Microsoft Visual Studio 2022 Enterprise Edition Microsoft Visual Studio 2022 Professional LTSC Edition Microsoft Visual Studio 2022 Enterprise LTSC Edition	10.0.8.1
Signature for TeamQuest Manager.	Deleted existing signature and created a new template signature to identify all versions.	10.0.8.1
Modify signatures for Quest Web Parts for SharePoint.	Discovery is improved by replacing existing signatures to new template signature for SAP Crystal Reports for Enterprise.	10.0.8.1
Modify signatures for Remotely Anywhere and Remotely Anywhere for IBM.	Removed detection for version 12.4 and by template signature. Added new signature that reports the version 12 and all its releases under 'Detailed Version'.	10.0.8.1
Modify signatures for Tripwire Enterprise Agent.	All existing discoveries of TRIPWIRE ENETRPRISE AGENT have been replaced with template signatures, one each for Windows and Unix platforms. Publisher name changed from “Tripwire Inc.” to “Tripwire, Inc.”	10.0.8.1
Definition source changed to HCL for Microsoft Office, SQL Server, MS Operating systems.	Definition source was corrected on product, version, release, component and signature view to HCL or IBM Internal Development for the following Microsoft products: Windows Windows Server Storage Server SQL Server Office	10.0.8.1
Improved discovery for Adobe Acrobat Pro and Standard. New discovery for Adobe Acrobat Reader.	Improved discovery for Pro and Standard to distinguish 2 categories: Classic (versions: 2015, 2017, 2020) Continuous (versions: 2015, 2017, 2018, 2019, 2020, 2021, and 2022) Added discovery for Reader for both categories.	10.0.8.1
Improved discovery for MongoDB Community Server and MongoDB Enterprise Server.	Improved discovery for MongoDB Community Server and MongoDB Enterprise Server.	10.0.8.1
Software Data Harvesting Tool: Improved collection of installation location	Software Data Harvesting Tool uses MSI data from package information to determine installation path	10.0.8.1
Software Data Harvesting Tool: Improved collection of shortcuts	The range of shortcuts collection was increased in Software Data Harvesting Tool.	10.0.8.1
Software Data Harvesting Tool: Improved collection of 64 bits application	Collection of uninstall packages belonging to 64 bits applications was improved.	10.0.8.1
Software Data Harvesting Tool: Does not store username mapping file on the endpoint.	The storing of the username mapping file is configurable now. Default behavior being not creating the file.	10.0.8.1

Defect fixes

For the list of known defects please refer to HCL Knowledge Base.

The following table lists BigFix Inventory Catalog APARs and other defects that are fixed in this update.

ID	Symptoms	Behavior after you install the update	Available since
BI-8989	Ubuntu Server discovery does not work properly.	Issue is fixed. Improved discovery by adding detailed version of the software.	10.0.8.1
KB0097361	Lost discovery for Oracle SOA in some cases.	Issue is fixed. Discovery supports bigger file sizes.	10.0.8.1
KB0097668	Discovery for ImageMagick was based on executable. Vendor stopped updating the version of the file which was causing false detection.	Discovery is improved. Added template signature for this product.	10.0.8.1
KB0097979	Discovery of Salt products (Salt and Salt minion) reported wrong version information due to an incorrect package rule.	Current discovery has been removed and replaced by a template for Salt Minion, Master and SSH. The names were not distinguishable previously. Updated publisher to 'VMware'.	10.0.8.1
KB0098000	Discovery for Tripwire Enterprise was based on executable which exists in different product (Tripwire Enterprise Agent)	Deleted Tripwire Enterprise signatures after investigation. No product, name as Tripwire Enterprise existed.	10.0.8.1
KB0098232	Oracle Insurance Compliance Tracker detection caused false-positive discovery.	Faulty detection for Oracle Insurance Compliance Tracker has been changed to a new template signature.	10.0.8.1
BI-10860	Wrong product name for Windows, Windows Server 2008, 2012, 2016	Windows, Windows Server 2008, 2012, 2016 had component name previously changed, "Microsoft" was removed from component name, but product name still contained “Microsoft”. Product names were corrected.	10.0.8.1
KB0097998	False-positive discovery of Microsoft Visual Studio Test Professional	Faulty detection for Microsoft Visual Studio Test Professional was changed to a new template signature. Note: Discovery may disappear until the next scan and data import.	10.0.8.1
KB0098554	Fixlet "Update VM Manager Tool to version 10.0.8" fails due to hash mismatch.	The incorrect hash is fixed and the fixlet works correctly.	10.0.8.1

Application update 10.0.8

Application update 10.0.7.1

For more information, refer to Catalog release notes and Catalog change list.

Enhancements and important changes

The following enhancements and changes are introduced in this update:

Abstract	Description	Available since
Windows 11 detection and Operating System version reported in Software Classification	Windows 11 is now detected after updating the Initiate Software Scan fixlet. Operating System detailed version is also added for all of the Windows systems. Note: It requires an update of Initiate Software Scan fixlet.	10.0.7.1
Discovery for Oracle Weblogic Server, Oracle Weblogic Server Enterprise Edition, Weblogic Suite	Discovery for version 14.1 (both Windows and Unix) is added.	10.0.7.1
Improved discovery for Oracle Tuxedo Server, Oracle Tuxedo Jolt, Tuxedo System and Application Monitor Plus (TSAM Plus), Services Architecture Leveraging Tuxedo (SALT)	Discovery for versions 12.1 and 12.2 for both Windows and Unix are improved. The discovery now provides information about detailed version.	10.0.7.1
Improved discovery for Oracle Database 12c	Discovery for versions 12.1 and 12.2 for both Windows and Unix are improved. The discovery now provides information about detailed version.	10.0.7.1
Improved discovery for PostgreSQL	Added discovery capability for PostgreSQL on Linux platform.	10.0.7.1
Improvement of discovery for BMC Control-M Agent	Improved discovery for BMC Control-M Agent for Windows platform. Versions include 6.0, 6.1, 6.3, 7.0, 8.0, 9.0 the discovery returns a detailed version now.	10.0.7.1
Discovery for Microsoft Office 2021	Discovery for Microsoft Office 2021 added for Windows.	10.0.7.1
Improved discovery for Oracle Java Runtime Environment, JDK/SDK and OpenJDK.	Java Runtime Environment 7.0, JDK/SDK 7.0 and OpenJDK 7.0, 8.0 return detailed version on Windows and Unix platforms.	10.0.7.1
Improved discovery for Red Hat Jboss Data Grid 6.0 - 6.6 and added new discovery for Red Hat Data Grid 7.0-7.3, 8.0-8.2.	Discovery for releases 6.0-6.6 was improved to have better performance and to return the detailed version. Discovery for releases 7.0-7.3 and 8.0-8.2 was added for Windows and Unix platforms.	10.0.7.1
Improved naming convention of Linux OS	Changed naming for 3 Linux operating systems: Canonical Ubuntu Server → Ubuntu Server Fedora Project Fedora → Fedora Centos Linux → CentOS	10.0.7.1
Improved discovery for TOAD	Improved discovery of TOAD on Windows platform with template signatures: Toad for IBM DB2 Toad for MySQL Toad for SAP Solutions Toad Edge Preview Toad Data Point Toad for SQL Server	10.0.7.1
Unified naming convention of Java	Java is merged into 2 components; JDK/SDK and Java Runtime Environment: Java Developers Kit → JDK/SDK Sun Java Development Kit → JDK/SDK Java 2 Runtime Environment Standard Edition → Java Runtime Environment Java 2 Platform Standard Edition 5.0 Update x → Java Runtime Environment Note: Detection can disappear, but it will appear once again when customers propagate a new catalog to the endpoints. It will happen because this type of signature is validated on the endpoint side.	10.0.7.1
Unified name convention of SAP Crystal Reports	All components were moved to SAP publisher, deleted multiple signatures for one version and merged into one signature. Components that were modified: SAP Crystal Reports SAP Crystal Reports for Enterprise SAP Crystal Reports Server SAP Crystal Reports Viewer	10.0.7.1
Discovery for Zimbra Collaboration	New discovery added to the catalog for versions 8.8 and 9.0. Added signatures are for Linux platform.	10.0.7.1
Discovery for SAP Crystal Reports	A new Windows template signature was added for SAP Crystal Reports which will assure discovery of versions starting from 14.0 onwards.	10.0.7.1

Defect fixes

For the list of known defects please refer to HCL Knowledge Base.

The following table lists APARs and other defects that are fixed in this update.

ID	Symptoms	Behavior after you install the update	Available since
Catalog updates
KB0094682	Discovery for Gzip 1.5, 1.6 returned faulty Install Path to "gzip" when "bash completion" function was installed on endpoint.	This defect has been fixed.	10.0.7.1
BI-8765	The Microsoft Office Language Pack 2016 and 2019 are faulty and both are detecting same version	Deleted detection for both versions.	10.0.7.1
BI-8550	Discovery for VisualSVN Server caused false positives, after further investigation the issue could also happen in other SVN/Subversion products	We replaced the old discovery of TortoiseSVN, SlikSVN. SmartSVN, VisualSVN Server, CollabNet Subversion with discovery by a template signature. The new discovery fixes the false-positive issue and provides discovery for previously missing versions	10.0.7.1
KB0096090	Trend Micro Apex One Security Agent improperly discovered	Discovery was fixed and improved by replacing method of detection with template signatures for Trend Micro OfficeScan Agent, Trend Micro Apex One Security Agent, Trend Micro Worry-Free Business Security Agent, Trend Micro Security Agent.	10.0.7.1
KB0095764	Red Hat Cygwin wrong version reported	Discovery for version 2.9 was fixed (no longer discovers other versions and reports them as 2.9). Discovery for newer missing versions was also provided (3.0-3.3). Note: Detection can disappear, but it will appear once again when customers propagate a new catalog to the endpoints.	10.0.7.1
BI-8752	McAfee Agent discovery was faulty	This defect has been fixed.	10.0.7.1
KB0095523	Microsoft OneDrive duplicated discovery	There was a duplicated discovery of Microsoft OneDrive (due to a template signature on top of non-template and they both reported the same version differently, for ex, 19.42 and 19.423). Non-template signatures were removed.	10.0.7.1
Documentation updates
BI-8978	Incorrect SQL database requirements for BFI 9.2.16	Updated the information about MS SQL 2008 and 2008 R2 server edition in BigFix Inventory version 9.2.16 document. Doc link: Software requirements	10.0.7.1
KB0094013	Lack of clearly documented process for license counting of BigFix Inventory and related products	Created a documentation page with step-by-step guidance for the license counting. Doc link: Using BigFix Inventory to calculate license for BigFix products	10.0.7.1
Fixlet updates
KB0095723	Update VM Manager Tool to version (10.x) fixlet fails	Updated the code so the fixlet no longer fails.	10.0.7.1

Application update 10.0.7

For more information, refer to the Catalog Release Notes and Catalog Change List.

Enhancements and important changes

For a list of enhancements introduce in this release, see: What's New.

Defect fixes and enhancements

For the list of known defects please refer to HCL Knowledge Base.

The following table lists APARs and other defects that are fixed in this update.

ID	Symptoms	Behavior after you install the update	Available since
Server updates
KB0093673	Unable to access Contracts after first data import post BFI 10.0.5 upgrade	All Contracts panel works correctly after the first successful import after upgrade. BigFix Inventory restart after the import may be required.	10.0.7.0
KB0093969	Contracts API and CSV import return errors on DB2	The issue affected BigFix Inventory which in past was in version before 10.0.0 and is migrated to 10.0.6. In version 10.0.7, the problem is fixed.	10.0.7.0
KB0093647	Too many filters in new custom rule cause SQL error	Adding many filters in "Software Classification" cause error on BFI 10.0.6 and down versions. The reason of the error is DB Column size exceed for the related column. After the implementation, DBs migrated and incorrect data was removed with migration and maximized the column size.	10.0.7.0
KB0094205	Unsuccessful OS matching for Mac OS 11. Application could not identify Mac OS 11 machines as Mac OS, because the operating system is reported in a different way. This causes that package data is not reported for such machine.	Mac OS 11 is recognized properly, and package data is displayed.	10.0.7.0
KB0094388	Hundreds of open connections to BigFix database. BigFix database may stop accepting new connections. BigFix Inventory may stop working properly and be able to run Data Imports.	The issue is fixed. There was provided 10.0.6.0.1 hotfix.	10.0.7.0
KB0093835	Software not displayed on Software Classification despite signature matching. This can happen if a custom metric was assigned to the product.	The issue is fixed.	10.0.7.0
KB0092682	WAS Liberty PVU option found	The issue is fixed. WAS Liberty SWID ISO tags were removed from BigFix Inventory Server 10.0.7.0 installation package	10.0.7.0
KB0095168	In some scenarios an import process is failing on Unix package facts step, due to improper parsing of long strings with special characters, which is breaking the import process	The issue is fixed.	10.0.7.0
KB0094017	Unix packages on Ubuntu operating system are empty if RPM Package Manager is installed. The sua_package_data file in the client's CIT folder is empty. There is no proper discovery on the endpoint where RPM Package Manager is installed; thus, BigFix Inventory does not report installed software for Linux Ubuntu clients.	The issue is fixed.	10.0.7.0
KB0093628	During import, while processing file facts SQL query fails due to too big difference between 2 dates	The issue is fixed, and corresponding validation has been added to catch issue early and not stop import process	10.0.7.0
KB0091998	Additional CIT Signatures in Endpoint Catalog that does not result in discovery of the software: ILMT core processing the ILMT catalog created some additional CIT rules and then signatures, which were propagated to the endpoints. There were matches, but not resulting in the software discovery during the import on BFI.	The issue is fixed in ILMT 9.2.25 adopted by BFI	10.0.7.0
BI-7645	Cross-site Request Forgery vulnerability in Login Form	After the changes attacker will get “Token has expired or is invalid. Refresh page to login.” error and login from cross origin will be blocked.	10.0.7.0
BI-6318	Inconsistency between UI and CSV/PDF in "Connection Test Status" column for distributed VM Managers: UI - always "Not Applicable" value CSV/PDF – adequate connection test status	"Connection Test Status" for distributed VM Managers will always have "Not Applicable" value in UI and CSV/PDF reports.	10.0.7.0
BI-7185	Contracts REST API validates required string custom fields	Validation of required string custom fields in PUT REST API is introduced.	10.0.7.0
BI-7324	Contracts REST API accepts non-string custom fields	Custom field values of types: integer, float, boolean are accepted also without quotation marks.	10.0.7.0
BI-7365	Contracts REST API and contracts UI support software having non-ASCII characters in names or publisher names	Software which contains non-ASCII characters is accepted in contracts REST API, as well as in the search field on UI. These issues occurred only in BigFix Inventory using SQL server database.	10.0.7.0
BI-7354	Contracts REST API supports non-ASCII characters	Contract fields like contract name in REST API can contain non-ASCII characters.	10.0.7.0
BI-7168	Improved error reporting for contracts CSV import	Error reporting for CSV import is improved for the cases when type id, computer group id or purchase order quantity is empty but it is expected to have a value.	10.0.7.0
BI-7207	Part of texts is translated according to Web browser's lang setting instead of user profile lang setting	Contracts CSV import logic was using language header instead of user language from profile. Which was leading to mismatch in language on errors inside modal window and outside of it.	10.0.7.0
BI-7318	Windows 2019 Exploit Protection feature can break SAML without exclusions in place for Java	On Windows 2019 Standard the default setting for Exploit Protection is "on". No BFI malfunctions were observed when launching the application in SSO mode when switching Exploit Protection on and off, restarting the server, etc.	10.0.7.0
Scanner updates
IJ34778	VMware VMs with Hyper-V feature enabled are treated as physical machines.	The problem does not occur.	10.0.7.0
199533	Due to Kernel Lockdown feature CIT generates a lot of Operating System warnings during '/dev/mem' access.	No Kernel Lockdown warnings in dmesg output.	10.0.7.0
199463	The existing 'dumpsmbios' method doesn't allow to dump 'raw' smbios memory area. If _SM_ & _DMI_ anchor-strings are not discovered '--dumpsmbios' switch doesn't work at all.	'--dumpsmbios' switch allows to dump the whole smbios memory area.	10.0.7.0
199380 / IJ33747 (199413)	On machines with SeaBIOS '_DMI_' anchor string used to discover the SMBIOS Entry Point is being stated twice. The first entry points to some invalid memory address.	SMBIOS data can be correctly collected by CIT and returned in the hardware scan output.	10.0.7.0
199432	SQLite API have a problem with accessing its own Database file when path contains some character outside of ASCII character set.	'provider_cache3' can be used with UTF character set.	10.0.7.0
199481	The existing 'Nested Virtualization' discovery method is not reliable and provide ambiguities. Furthermore, some Nested Virtualization scenarios like running VM inside the VM of the same vendor are not being discovered at all.	'Nested Virtualization' check has been removed.	10.0.7.0
199338 (199110) / IJ33481	SharedPoolCapacityInCores and LparCapacityInCores fields are reported as -1 on local zone with pset assigned.	When local zone is assigned processor pool (pset), then we cannot report the totals of the LPAR capacity as based on the comment from the code, we: "invalidate because we don't know how many packages the system has beside what's in the pool". The fix is to changing the capacity scan in such a way that it reports the pool resources as the LPAR capacity (so potentially ignoring the additional packages not coming from the pool mentioned by the comment).	10.0.7.0
199307 / RFE 199191	CIT wscanvpd scanner hangs on a system with a corrupted rpm registry due to hanging rpm command.	rpm command execution is now done with a 300 seconds (5 minutes) timeout. After the timeout expires the rpm process is finished and the CIT scanner command exits. Note: wscanvpd will return empty results on Linux in such case (if rpm is the only software registry scanned) and will exit with no error (return code 0). The current behavior is that wscanvpd does not return any error in case a given provider of software registry returns empty results. Nevertheless CIT logs will contain the following error messages (MIN level): Unable to execute rpm command, error code=-1. No output has been returned. Unable to preload packages ( err = -1 ) Unable to get result from expression RpmProductList ( err = -13111) (Error -13111 is a RegPlugin error meaning REG_PLUGIN_ERROR_UNABLE_TO_GET_PROGRAM_LIST	10.0.7.0
199540	The timestamp prefix of each cpuid log line (from 'cpuid -d' command) contains garbage or incomplete timestamp instead of a full correct timestamp. The problem was returning a locally defined variables, which were lost on a function exit.	The timestamp string is correctly returned, and the proper value is displayed in the cpuid log.	10.0.7.0
Catalog updates
KB0094222	Wrong discovery for SQL Server Management Studio.	Package information is used to determine version. Discovery for all existing releases 16.5 - 18.10 was added.	10.0.7.0
KB0094717	Wrong information about installed VisualSVN instances	Package information is used to determine version. Discovery for all existing releases 1.0 - 5.6 was added.	10.0.7.0
KB0094947	False discovery of HP Device Manager 4.7	Old way of discovery got removed. Template signature was added for HP Device Manager Configuration Center instead.	10.0.7.0
KB0095067	SAP Open Client 16.0 was detected as version 15	Old components for versions 15 were replaced by the new ones which provide better discovery with the detailed version returned. Additionally, detection of version 16.0 was added.	10.0.7.0
BI-8516	There was the duplicated Java SE Development Kit discovery for version 8 (Oracle).	Java SE Development Kit discovery for version 8 was removed.	10.0.7.0
Document updates
KB0094774	No data (previously Insufficient rights) VM status	Updated the document for “VM Manager – No data status (previously insufficient rights). Document link: VM manager statuses	10.0.7
BI-7532	Connection to BigFix database using TLS fails when MS SQL Server does not support TLS 1.2.	Added information about minimum fixpack level for MS SQL Server database having TLS 1.2 support.	10.0.7
KB0094774	No data (previously Insufficient rights) VM status	Updated the document for “VM Manager – No data status (previously insufficient rights). Document link: VM manager statuses	10.0.7
KB0093658	IBM i Disconnected scanner package no longer matches our documentation	Updated the disconnected scanner topics to keep it up to date. Document link: Preparing installation files for disconnected scans for IBM i Installing the scanner and gathering initial data on IBM i systems	10.0.7
BI-7532	Connection to BigFix database using TLS fails when MS SQL Server does not support TLS 1.2.	Added information about minimum fixpack level for MS SQL Server database having TLS 1.2 support.	10.0.7.0
BI-6668	Rework of Detailed System requirements section Detailed System requirements	Dedicated pages have been created to list systems that are managed by BigFix Inventory and requirements for systems to host BigFix Inventory Server. Earlier, the information was on a single page.	10.0.7.0
VM Manager Tool / SAP Tool
KB0095486	Log4j vulnerability in BigFix products	Updated Log4j to version 2.15.0 due to CVE-2021-44228.	10.0.7.0

Security enhancements

To maintain security, the following selected components and libraries were updated:

• Axios to version 0.21.4 - CVE-2021-3749
• Log4j to version 2.15.0 in VM Manager Tool and SAP Tool - CVE-2021-44228. BigFix Inventory is not affected by CVE-2021-45046.

BigFix Inventory is shipped with TLS 1.2 with enabled algorithms as included in each Java / WebSphere version. It is possible to restrict the algorithms with an entry in customization.xml file, which is extending server.xml definition.

Currently available algorithm list:

Algorithm considered as safe:

• TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
• TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
• TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256

• TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

Algorithm considered as weak, but accepted by scanning tools:

• TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
• TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
• TLS_DHE_RSA_WITH_AES_128_CBC_SHA256

• TLS_DHE_RSA_WITH_AES_256_CBC_SHA256

Algorithm considered as weak but still included in standard setup:

• TLS_RSA_WITH_AES_128_CBC_SHA
• TLS_DHE_RSA_WITH_AES_128_CBC_SHA

• TLS_RSA_WITH_AES_256_CBC_SHA
• TLS_DHE_RSA_WITH_AES_256_CBC_SHA
• TLS_RSA_WITH_AES_128_CBC_SHA256
• TLS_RSA_WITH_AES_256_CBC_SHA256
• TLS_RSA_WITH_AES_128_GCM_SHA256

• TLS_RSA_WITH_AES_256_GCM_SHA384
• TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
• TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA

Web Browsers used by users to connect to BigFix Inventory must support at least one of shortlisted algorithm in case of adjusting this list further.

VM Manager Tool version and changes

The VM Manager Tool version that is used with this update is 10.0.7.0.

Scanner version and changes

The scanner version that is used with this update is 9.2.25.1000 for Windows and 9.2.25.0000 for other platforms. The disconnected scanner version that is used with this update is 10.0.7.0 and 9.2.25.0 for IBM I.

Application update 10.0.6.1

Included Software Catalog

• New discovery capabilities for:
  • Adobe
  • BMC
  • CA Technologies
  • Cisco Systems Inc
  • Citrix
  • Dell Computer Corporation
  • Hewlett-Packard
  • Intel
  • Microsoft
  • Oracle
  • Red Hat

• Several defects fixed.

• This release includes Software Catalog version 10.0.6.1 with capability to discover more than 320 new software versions. For more information, please refer to the Catalog Release Notes and the Catalog Change List.

Modified content

The version number of the fixlet is: 10.0.6.1

The following fixlets were updated and should be run to install latest versions of the specific components: 

• Update Software Catalog

Enhancements and important changes

The following table lists enhancements and changes that are introduced in this update:

Abstract	Description	Available since
Oracle Database Client on Linux	Discovery for version 11.2, 12.1, 12.2, 18, 19, 21 on Linux platform was made.	10.0.6.1
Red Hat Enterprise Application Platform version 4.3 and 7.4	Discovery for version 4.3 and 7.4 was made, older discovery got improved and returns a detailed version.	10.0.6.1
New discovery for Oracle Database Client on Linux	Discovery for version 11.2, 12.1, 12.2, 18, 19, 21 on Linux platform.	10.0.6.1
New discovery for Red Hat Enterprise Application Platform version 4.3 and 7.4	Discovery for version 4.3 and 7.4 was added, older discovery got improved and returns a detailed version.	10.0.6.1
RED HAT High Availability Add-On vendor name change	Discovery is now based on the “Red Hat, Inc.” package.	10.0.6.1
New discovery for RED HAT AMQ Streams	New signatures for RED HAT AMQ Streams for 1.0 - 1.8 versions for LINUX platform.	10.0.6.1
New discovery for Red Hat AMQ Interconnect	New discovery for Red Hat AMQ Interconnect for Linux, versions: 1.5, 1.6, 1.7, 1.8, 1.9, 1.10.	10.0.6.1
Improvement of discovery for BMC Control-M Agent	Improvement of discovery for BMC Control-M Agent for versions: 6.0, 6.1, 6.3, 7.0, 8.0, 9.0.	10.0.6.1
New discovery capability for Adobe CC 2022	New discovery based on executables and packages for Adobe CC 2022: After Effects, Animate, Dreamweaver, Illustrator, InDesign, PhotoShop, Premiere Pro	10.0.6.1
New discovery capability based on template signatures for Linux and Windows for Vormetric 6	New discovery capability based template signatures for Linux and Windows	10.0.6.1

Defect fixes

For the list of known defects please refer to HCL Knowledge Base.

The following table lists APARs and other defects that are fixed in this update:

ID	Symptoms	Behavior after you install the update	Available since
BI-6247	Discovery for Microsoft Visio Professional and Standard 2019 were based on package. After the Visio update package name was changed and discovery didn't work properly.	Discovery now is based on the registry key, what prevent lack of detection.	10.0.6.1
BI-6838	There were two Sophos Endpoint Defense signatures in the catalog that should be under Sophos Endpoint component and not under Sophos Endpoint Defense.	Now there is no signature with the name of the Sophos Endpoint Defense component.	10.0.6.1
BI-7293	Discovery of SAS Data Integration Studio was based on checking if distudio.exe file exists. Problem occurs when new update is installed and software manufacture is not updating installation path.	Discovery is based on different file which contains proper version of SAS Data Integration Studio.	10.0.6.1
KB0094183	TOAD for Oracle catalog mismatches caused by template signature taking version from the package instead of the executable	Discovery was fixed by taking version from the executable instead of the package. Also some components were deleted to improve detection provided by the template component.	10.0.6.1
BI-7812	Detection of the BMC Control-M Server 9.0 was based on the folder name which can be changed and lead to false positives or lack of detection.	Now discovery is based on installed-versions.txt file which contains version information.
BI-6415	Wrong platforms for two components caused warnings in the logs.	Platforms were corrected.	10.0.6.1
BI-6247	Discovery for Microsoft Visio Professional and Standard 2019 were based on package. After the Visio update package name was changed and discovery didn't work properly.	Signatures were updated to use Visio configuration data.	10.0.6.1
BI-6838	There were two Sophos Endpoint Defense signatures in the catalog that should be under Sophos Endpoint component and not under Sophos Endpoint Defense.	Now there is no signature with the name of the Sophos Endpoint Defence component.	10.0.6.1
BI-7293	Discovery of SAS Data Integration Studio was based on checking if distudio.exe file exists. Problem occurs when new update is installed, and software manufacture is not updating installation path.	Discovery is based on different file which contains proper version of SAS Data Integration Studio.	10.0.6.1
KB0094183	TOAD for Oracle catalog mismatches caused by template signature taking version from the package instead of the executable	Discovery was fixed by taking version from the executable instead of the package. Also, some components were deleted to improve detection provided by the template component.	10.0.6.1
BI-7812	Detection of the BMC Control-M Server 9.0 was based on the folder name which can be changed and lead to false positives or lack of detection.	Now discovery is based on installed-versions.txt file which contains version information.	10.0.6.1
BI-6415	Too wide operating system designation in two signatures caused warnings in Common Inventory Toolkit logs on some BigFix endpoints.	Operating system designation in signatures were corrected.	10.0.6.1
KB0094212	HP Insight Diagnostics Online Edition for Windows discovery was based on a certain registry key that was found in different software on customer environment causing false discovery	HP Insight Diagnostics Online Edition for Windows and HP Insight Diagnostics discovery was improved.	10.0.6.1

Application update 10.0.6

Allowed upgrade path

Minimal version recommended for direct upgrade path: 9.2.16

For version older than 9.2.16 upgrade first to 10.0.2 through available fixlet.

Changes to contract management

We continue bringing better contract management experience to our clients. In this release there are several improvements implemented as well as some defects fixed. Including adding ability to create or update contract through Rest API and through CSV file import. There is also a new feature allowing to migrate old contracts to new improved contract management and support for ELA (Enterprise License Agreement). The old contract management has been disabled starting this release.

Changes to shared disks scan configuration

We continue bringing better contract management experience to our clients. In this release there are several improvements implemented as well as some defects fixed. Including adding ability to create or update contract through Rest API and through CSV file import. There is also a new feature allowing to migrate old contracts to new improved contract management and support for ELA (Enterprise License Agreement). The old contract management has been disabled starting this release.

Changes to shared disks scan configuration

A mechanism has been added to prevent the misuse of Initiate Software Scan on Shared Disk using the Console.

BigFix Inventory since 9.2.12 version provides automation to manage the status of computers and scans. It is recommended to use this capability where Initiate Software Scan on Shared Disk is managed by BigFix Inventory.

Furthermore, ‘.snapshot’ directory has been added to the default exclusion list for new installations. This directory is special directory on some share disks that should be not scanned as contains time-based copies of the disk.

Included Software Catalog

This release includes Software Catalog version 10.0.6.0 with capability to discover around 500 new software versions.

For more information, please refer to:

• Catalog Release Notes: Release Notes for BFI Catalog Content
• Catalog Change List: BFI_catalog_changelist_2021_09

Modified content

The version number of the fixlet is: 10.0.6.0

The following fixlets were updated and should be run to install latest versions of the specific components:

• Upgrade to the latest version of BigFix Inventory
• Upgrade to the interim version 10.0.2 of BigFix Inventory if version older than 9.2.14
• Software Catalog Update  (if BFI not upgraded)
• Install or Upgrade Scanner
• Install or Upgrade Scanner in private mode on Windows
• Install SAP Metric Data Collector
• Update SAP Metric Data Collector
• Install VM Manager Tool
• Update VM Manager Tool
• Install Additional VM Manager Tool (OPTIONAL)
• Download the Disconnected Scanner Package for IBM I
• Download the Disconnected Scanner Package
• Download BigFix Inventory (10.0.6.0)

The following fixlets were updated and require that actions created by their previous versions are stopped and then started by using the updated fixlets. Restarting actions is necessary to ensure that new features work properly:

• Initiate Software Scan on Shared Disks
• Collect Detailed Hardware Information
• Get Microsoft Exchange Edition
• Initiate Collection of SAP Metric Data
• Initiate Software Scan
• Run Capacity Scan and Upload Results
• Upload Software Scan Results
• Get Oracle Concurrent Sessions Number
• Get Oracle Features

The following fixlets were added or updated but it does not require any additional action:

• Identify Computers on Public Clouds
• Interrupt BigFix Inventory Software Scans

Enhancements and important changes

For a list of enhancements introduce in this release, see: What's New.

Defect fixes and enhancements

For the list of known defects please refer to HCL Knowledge Base.

The following table lists APARs and other defects that are fixed in this update.

ID	Symptoms	Behavior after you install the update	Available since
Server updates
KB0091385	There is no translation in the Connection Test Status column when exporting table from Management -> VM Managers to CSV or PDF.	The issue is fixed.	10.0.6.0
KB0092554	Upgrade to BigFix Inventory 10.0.5 fails if the "All Computers" group has license usage calculations disabled	The issue is fixed. Moreover, the case when license usage calculations are disabled after upgrade is also correctly handled.	10.0.6.0
KB0092588	Truststore location and password parameters requirements are wrongly displayed (in case JavaScript disabled) in Internet Explorer but not in Chrome on database creation and configuration phase.	The issue is caused by disabled JavaScript, no-script error message displayed. JavaScript must be enabled on IE settings as a workaround of the defect.	10.0.6.0
KB0092812	Data Pruning - all records are erased at once instead of done in chunks. This is causing huge transaction logs and long execution time.	Data Pruning is split and committed in chunks.	10.0.6.0
IJ31178	SLM tag files might be reported as correct files by data import despite containing issues preventing their successful processing.	Reporting was corrected.	10.0.6.0
KB0092546	Some details of Extended Hardware REST API are not working	Conditions on which REST API endpoints data are prepared were updated. Now they are looser and are prepared in proper place in application initialization.	10.0.6.0
KB0093047	False detection on duplicated UUID on AIX	Duplicated UUIDs detection is corrected after the first import after upgrade.	10.0.6.0
BI-6875	Upgrade failing when MS SQL database user have no privileged to manage MS SQL Agent Jobs	There is possible to upgrade when current permission of database user is not allowing to create / update MS SQL Agent jobs.	10.0.6.0
BI-7106	EOS Import hit predefined in past dates restriction - 2001 is already 20 years ago	There was constraint during EOS dates import relative to current date. This leads to rejecting EOS more then 20 years ago (WARN: End of support date out of scope: ). Now the allow dates are fixed to range in years from 1990 to 2100	10.0.6.0
BI-6283	In some time zones after selecting a date in New/Edit Contract dialog the date changes to one day before the selected date.	The issue is fixed.	10.0.6.0
BI-6946	Cannot show a list of contracts in All Contracts panel when any contract is assigned to a computer group which was created after last successful data import.	The issue is fixed.	10.0.6.0
BI-6797	Cannot determine hierarchy of deeply nested computer groups in Add/Edit Contract dialog because long and deeply nested computer group names are trimmed.	The issue is fixed. A horizontal scroll bar appears when there is any long or deeply nested computer group in the computer group dropdown.	10.0.6.0
BI-6790	Software picker in Add/Edit Contract dialog trims long software names in the search result list without possibility to see whole software name.	The issue is fixed. A horizontal scroll bar appears when a software name exceeds width of the software search result list.	10.0.6.0
BI-6793	User cannot unset the metric on edit contract modal dialog. The only option is to set different one.	This issue is fixed. Now when metric is already chosen new option is shown in metric dropdown, <not set> which allows to clear/unset metric selection.	10.0.6.0
BI-6794	Cannot set negative number in a custom field on edit contract modal dialog.	This issue is fixed. User can type minus in front of number on integer and float custom fields.	10.0.6.0
BI-5883	0 values in CSV and PDF Usage per Computer reports when there is no usage	The issue is fixed by displaying empty value instead of 0.	10.0.6.0
BI-6499	All Contracts/Purchase Orders - 'Delete' button doesn't get enabled as expected	The issue has fixed by activating JQuery elements on React state change	10.0.6.0
BI-5903	Cannot assign a component instance to a product via public API	The issue is fixed.	10.0.6.0
BI-6350	Re-import stuck for hours in ILMT Core 'IBMAggregationHandler' in 'PreInventoryMoveDataStep'	The issue is fixed	10.0.6.0
BI-5905	BigFix Inventory: Create a fixlet that would search for and terminate all running scan actions	Added Troubleshooting fixlet 114 Interrupt BigFix Inventory Software Scans to interrupt scans (background parts)	10.0.6.0
BI-5906	Add warning pop up to share drive scan fixlet if possible	Protection against unintentional scanning of all mounted share disks	10.0.6.0
KB0092644	Multicloud support blocks the Central VM Manager capabilities	The issue is fixed	10.0.6.0
KB0093108	Installation fails at "Changing default keystore password"	Achieved via Java upgrade to 8.0.6.35	10.0.6.0
Scanner updates
IJ32101	Some Intel Hexa-core CPUs, such as i5-8600T, i5-8500, and i7-8850H are assigned 100 PVUs, despite all i3, i5, i7 CPUs being worth 70 PVUs.	The problem does not occur.	10.0.6.0
IJ31903	Not enough information is provided in case when the scanner does not have sufficient rights to collect all required hardware information from the Solaris systems.	An appropriate warning is added in the scanner and the server data import log.	10.0.6.0
199195	The scanner discovers only 4 cores per chip on SPARC T5-2.	The problem does not occur.	10.0.6.0
199011	Installation of the disconnected scanner fails on Windows with following error. Initial hardware scan failed with error -1073740940	The problem does not occur.	10.0.6.0
Content updates
KB0093463	Software Catalog Update fixlet breaks freshly upgraded BFI instance leading to database corruption	Software Catalog Updates not longer conduct additional cleanup actions, only place the new catalog.	10.0.6.0
Catalog updates
KB0092760	The Citrix Storefront 1811.0 signature inaccurately matches to the configurationzipmanager.exe file. There are duplicate components for the Citrix StoreFront.	Duplicated components for Citrix StoreFront with worse quality were deleted. Components which provide better discovery were left in the Catalog.	10.0.6.0
KB0092323	The BEA WebLogic Server discovery was catching false positives due to incorrect filter.	BEA WebLogic Server discoveries (from 8.1 up to 10.0) were improved. The filter doesn’t use * anymore but more exact wording so only the correct software gets discovered.	10.0.6.0
BI-6619	Discovery of Oracle WebLogic Server only detect standard installations	Oracle WebLogic Server discoveries (12.1.* and 12.2.*) were improved and they currently distinguish between different installation media	10.0.6.0
BI-6329	Oracle WebLogic Server Enterprise Edition discoveries caused an error in customer citlog.xml file	Discovery of the Oracle WebLogic Server Enterprise Edition for versions 10.3, 12.1, 12.2 was improved and doesn’t cause any errors in the citlog.xml file.	10.0.6.0
BI-6693	Component for Magic ISO Maker 5.3. had platform set to "ANY" instead of "Windows" which caused warnings in the logs.	Platform for the component was set to “Windows”.	10.0.6.0
KB0093614	Detection of the BMC Control-M Agent 9.0 was based on the folder name which can be changed and lead to false positives or lack of detection.	Now discovery is based on CONFIG.dat file which contains version information.	10.0.6.0
KB0093294	Discovery for Oracle Database 19c doesn't work correctly	Fixed discovery capability of Oracle Database 18c , 19c and 21c to support both software with updates installed and without them.	10.0.6.0
Document updates
BI-5922	Updated the document about support for Hyper-V, Red Hat Virtualization, Citrix Hypervisor 8.x, VMware vSphere Hypervisor ESXi , and Fujitsu.	What's New System Requirements	10.0.6.0
BI-7050	Added a duplicate link Duplicate UUIDs problem along with the existing link, Duplicate UUIDs problem so that users can access both, the application and their bookmark (if they have done so).	Duplicate UUID	10.0.6.0
BI-6715	Added information about BFI reindexing job to be running for version below 10.0.4. Also, added links to configure and start SQL Server Agents for reference.	Database index rebuilding	10.0.6.0
BI-5977	Updated the document for: Add information for analysis and warnings associated with the task when run sub-optimally Configure NAS shared drives through exclusion Remind the user to send in UTC or otherwise take into account the system clock on the endpoint when sending actions	Discovering software on shared disks	10.0.6.0
BI-7040	Removed an empty URL as the same was not required and was a repetition.	Coexistence of BigFix Inventory and License Metric Tool in the same infrastructure	10.0.6.0
KB0093153	Removed an empty URL as the same was not required and was a repetition.	Coexistence of BigFix Inventory and License Metric Tool in the same infrastructure	10.0.6.0
KB0091963	Replaced the incorrect IBM link with the correct one that includes a list of all products that deliver .slmtag files.	Other IBM metrics	10.0.6.0

VM Manager Tool version and changes

The VM Manager Tool version that is used with this update is 10.0.6.0.

Scanner version and changes

The scanner version that is used with this update is 9.2.24.1000 for Windows and 9.2.24.0000 for other platforms. The disconnected scanner version that is used with this update is 10.0.6.0 and 9.2.24.0 for IBM I.

Application update 10.0.5.1

Included software catalog

• New discovery capability for:
  • Adobe
  • Autodesk
  • Citrix
  • JetBrains
  • McAfee
  • Microsoft
  • MongoDB
  • Oracle
  • Veritas
  • VMware
• Defect fixes and client ideas implemented.
• Software Catalog version 10.0.5.1 with capability to discover more than 270 new software components.

For more information, refer to:

Catalog Release Notes: https://software.bigfix.com/download/tema/catalog/BFI_catalog_release_notes.pdf Catalog Change List: https://software.bigfix.com/download/tema/catalog/changelist/BFI_catalog_changelist_2021_08.pdf

Modified content

The version number of the fixlet is: 10.0.5.1

The following fixlets were updated and should be run to install latest versions of the specific components: 

• Update Software Catalog
• Initiate Software Scan

Enhancements and important changes

The following table lists enhancements and changes that are introduced in this update:

Abstract	Description	Available since
Improved signature discovery for Oracle Database and Oracle Database Client versions 18, 19 and 21	Signatures for Oracle Database and Oracle Database Client versions 18, 19 and 21 were improved and the product patch level will be available in BigFix Inventory as Detailed Version. Due to this change, after importing software catalog 10.0.5.1 the previous discovery of these products in versions 18 and above may disappear until a next software scan is completed on BigFix endpoints	10.0.5.1
Improved discovery of Oracle Clusterware	Added discovery for releases 11.2, 12.1 and 19.0	10.0.5.1
Improved discovery for Oracle Essebase	Signature for releases 11.1 w changed and signatures for versions 11.2, 19.3, 21.1, 21.2 were added for Windows and Linux platforms.	10.0.5.1
Improved discovery for Database Gateway for Microsoft SQL Server	Signatures for releases 11.1 and 12.1 were changed and additionally a signature for 12.2 was added.	10.0.5.1

Client ideas

The following client ideas were implemented:

ID	Description	Available since
BFINV-I-148	Expand and improve Discovery Support for MongoDB products: MongoDB Community Server, MongoDB Enterprise Server, MongoDB Compass, MongoDB Ops Manager, MongoDB Kafka Connector, MongoDB BI Connector	10.0.5.1
BI-5862	Added signatures for versions 16.4 and 16.7 for Linux and Windows.	10.0.5.1

Defect fixes and enhancements

For the list of known defects please refer to HCL Knowledge Base.

The following table lists APARs and other defects that are fixed in this update.

ID	Symptoms	Behavior after you install the update	Available since
Catalog updates
KB0092040	PostgreSQL discovery capability which uses File Version different from the component version need to be changed to use file size.	Changed signature components of discovery capability for versions: 10.0, 10.1, 10.3, 10.4, 10.5, 10.6, 10.9, 11.3, 12.1, 12.4 so they now use file size which solves this issue	10.0.5.1
KB0091156	NetBackup publisher for version 8.0 and above should be changed to Veritas.	NetBackup publisher was changed from “Symantec” to “Veritas” for components with version 8 and above.	10.0.5.1
KB0087826	Discovered Essbase Server version does not exist.	Signature for version 11.3 was deleted.	10.0.5.1
KB0091939	Signatures for Apache Web Server are delivering false discovery due to duplicated signatures with Apache HTTP Server.	Apache Web Server component was merged to Apache HTTP Server – one signature for version 2.0 on Windows was moved, the rest were deleted.	10.0.5.1
KB0091078	Lack of discovery for Oracle Database 18c	Fixed signature deliver correct discovery.	10.0.5.1
KB0091349	Oracle Database Client can be installed in a different folder than existing signatures.	Fixed signature is using different file for version extraction delivering correct discovery.	10.0.5.1
KB0092098	Oracle Database Gateway for Microsoft SQL Server 11.2 reports wrong version	Signatures for release 11.2 were changed.	10.0.5.1
KB0092650	Installshield Isscript signature v.11.5 should be remapped to InstallShield Scripting Engine v.11.50	Discovery capability was fixed for version 11.50 to show InstallShield Software Corporation publisher instead Roxio Inc.	10.0.5.1
BI-6584	Missing link to IBM limitations concerning BigFix Inventory	Added the link to IBM limitations at Limitations section in BigFix Inventory Documentation Link: Limitations	10.0.5.1
BI-6375	Incorrect SLM tag generated for Adobe Muse CC by Initiate Software Scan fixlet in version 10.0.5.0	Customers who use fixlet ‘Initiate Software Scan’ in version 10.0.5.0 may observe incorrect license calculation for Adobe Muse CC. In such case update fixlet to version 10.0.5.1 or above is required.	10.0.5.1

Application update 10.0.5

Changes to TLS support

After upgrading to version 10.0.5, TLS 1 and TLS 1.1 are disabled and do not work. Only TLS 1.2 is supported. Therefore, customers may notice connection issues to database and hypervisors from VM Tool.

To mitigate problem on MS SQL, please install appropriate Software Pack / Content Update for Microsoft SQL Server database (Software requirements).

To migrate problem on VMware ESXi upgrade to VMware ESXi 6.0 Update 3 (Detailed system requirements).

Changes to contract management

Contract can now be defined for product and any metric in new AllContracts report. This report is available from Reports menu and from new Contracts section in main dashboard. This upgrade includes the capability to define contracts manually. API for integration and automation will be available shortly.

Custom metrics management is available in both Products & Metrics and All Contracts reports. New custom metrics can be added, modified, assigned to products, used in new contracts definition, software bundling and as filtering option. Product Metric per Group is new report with supporting data for contracts but also offers more reporting capability. With new Product Metric per Group report, it is now possible to see product metric calculation per computer group in one view. For optimal performance in current version, this report supports by default up to 20 computer groups Even if more computer groups are defined, the additional reports are not listed.

All panels related to previous contract management functionality are marked as deprecated and will be hidden by default in the future BigFix Inventory release with option to enable them back.

For more information refer to user documentation.

Support for BigFix platform Server Based Computer Groups

BigFix 10.0.4 introduced Server Based Computer Groups which require dedicated support. If BigFix Inventory import was already run with previous version of BigFix Inventory (lower than 10.0.5) then there is a need to resynchronize computer group definition, for details please see documentation.

Included software catalog

This release includes Software Catalog version 10.0.5.0 with capability to discover around 360 new software versions.

For more information, please refer to:

• Catalog Release Notes: https://software.bigfix.com/download/tema/catalog/BFI_catalog_release_notes.pdf.
• Catalog Change List: https://software.bigfix.com/download/tema/catalog/changelist/BFI_catalog_changelist_2021_07.pdf .

Modified content

The version number of the fixlets is 10.0.5.0.

The following fixlets were updated and will no longer use zip/unzip in order to pack/unpack files, but 7zip on Windows:

• Scanner
  • Install or upgrade scanner
  • Install or upgrade scanner in private mode on Windows
  • Initiate software scan
  • Upload software scan results
  • Force re-uploading of software scan results
  • Run capacity scan and upload results
• VM Manager
  • Install VM Manager tool
  • Install additional VM Manager tool
  • Update VM Manager tool to version
  • Force VM Manager tool scan results upload
  • Schedule VM Manager tool scan results upload
• Troubleshooting
  • Collect logs from endpoints
  • Edit Scanner Trace Settings
• BigFix Inventory update
  • Upgrade to the latest version of BigFix Inventory
  • Upgrade to the interim version 10.0.2.0 of BigFix Inventory if version older than 9.2.14
  • Download the Disconnected Scanner Package
  • Download the Disconnected Scanner Package for IBM i
  • Software Catalog Update
• Other
  • Install SAP Metric Data Collector
  • Update SAP Metric Data Collector
  • Identify Computers on Public Clouds
  • Get Oracle Concurrent Sessions Number
  • Get Oracle Features
  • Test CIT signature

Enhancements and important changes

For a list of enhancements introduce in this release, see: What's new

Defect fixes and enhancements

For the list of known defects please refer to HCL Knowledge Base.

The following table lists APARs and other defects that are fixed in this update.

ID	Symptoms	Behavior after you install the update	Available since
Server updates
KB0088181	On Windows systems, when Scanner trace log level is set to MAX, wscansw.exe Catalog Based Scan step significantly increases it's duration also causing high CPU usage.	This has been resolved and duration or CPU usage do not occuroccur any moreanymore.	10.0.5.0
KB0089750	Shared Disk import fails with ERROR: LMT ETL step failed, Value is too long.	The issue is fixed.	10.0.5.0
KB0089733	BFI cannot connect to LDAP/LDAPS.	The issue is fixed. If the problem persists after upgrade, refer to documentation	10.0.5.0
KB0089710	Issue with the branches cause that Oracle discovery based on ISO is not reported.	The issue is fixed.	10.0.5.0
KB0091200	Schema update fails on dropping DBO.SAM_FILE_FACTS_SCD_SCAN_FILE_ID_INDEX	The issue is fixed, and schema update works properly.	10.0.5.0
KB0091029	OutOfMemory exception during File Facts import. Import is hanging.	The issue is fixed.	10.0.5.0
KB0090178	Performance fix on Inventory Builder: Discovered Software Details	Optimized algorithm to overcome bad execution plans on MS SQL	10.0.5.0
KB0089730	BigFix Inventory 10.0.4.0 schema update is failing	Defect fixed and the update is not failing	10.0.5.0
KB0090975	BigFix Inventory SQL temadb maintenance job is failing on MS SQL with SQL_Latin1_General_CP1_CS_AS collation is set on the MS SQL instance	Job definition has been adjusted to work on case sensitive environments. Jobs has been also split into two tasks: Check the BFI Import and Reorganize all indexes	10.0.5.0
KB0091207	"Has Usage" values in the in the Usage per Computer panel were set incorrectly to "No" in some cases. Moreover, CSV and PDF report files exported in the panel were missing usage details for records with the "Has Usage" value set to "No".	The issue is fixed for new and updated systems.	10.0.5.0
KB0091264	BFI server upgrade issue from V.9.2.11 to v10.0.2 when executing migration script 1526296744_jupiter_fix_prod_inv_apar_ij06399.rb	The fix is included in BigFix Inventory 10.0.5, however, HCL support should be contacted to get a hotfix for BigFix Inventory version 10.0.2.	10.0.5.0
KB0090734	Import fails with duplicate key error after upgrade to BFI v10.0.4	Adjusted population of the dictionary, as well as trimming the data after gathering. Server now supports versions with the trailing spaces.	10.0.5.0
KB0090014	Import fails with duplicate key error after upgrade to BFI v10.0.4	Adjusted the checksum calculation for the version text. The server will now calculate proper checksum for the ‘0.0’ version	10.0.5.0
KB0091465	Outdated VM Manager Status for non VM Manager managed endpoints	Incorrect condition for highlighting results as outdated adjusted to exclude physical/bare metal endpoint.	10.0.5.0
KB0091337	Solaris x86 Partition Cores not updated after upgrading to 10.0.2	Due to changes in underlying Solaris x86 processing, information shown on UI was not updated. Information is updated after first data import. PVU / RVU MAPC calculation was not affected.	10.0.5.0
KB0091089	Delete false end of support date for HCL products	End of supports dates set by IBM to 2019-07-01 for HCL products were deleted since support is continued by HCL now. In BigFix Inventory lower than v10.0.5 and IBM License Metric Tool those dates are still set. For details see Interpret EOS dates.	10.0.5.0
BI-3828	BFI is starting for a long time (30 minutes or more), nothing shown on UI. Occurs when application is not able to connect to database.	Database connection handling was improved. Proper messages appear when connection to database is lost. Re-connecting was also improved.	10.0.5.0
BI-5125	During Install Path update step of inventory builder (adding ISV paths) - instance and bundling tags updated improperly on shared instances, such as, shared instances have tags from original instances.	This issue is fixed, and tags are updated properly.	10.0.5.0
BI-5202	After adding a new metric to a product, Install Seats metric is removed from this product after the next data import.	The issue is fixed. When there is first import after BigFix Inventory upgrade, missing metrics will be restored.	10.0.5.0
BI-4601	Registered Users metric aggregation performance is very slow.	Performance of Registered Users and other metrics aggregation is improved. Aggregation calculation uses now all logical CPUs by default.	10.0.5.0
BI-4728	VMManager Upgrade was behaving different in non-windows when Copy folder was not present	VMManager action for non-windows is now in-line with windows.	10.0.5.0
BI-5168	When Upgrade was triggered, if there were no necessary permissions for the re-indexing job then there was an error without sufficient information	During upgrade, checks were added to validate DB owner and edition of DB and necessary warnings/ information is displayed.	10.0.5.0
IJ30106	When a new connection to Oracle VM Server is defined in License Metric Tool, status of all existing Hyper-V connections changes to Invalid Credentials.	The issue does not occur.	10.0.5.0
198690	An unexpected error might occur when SSO is configured without properly configured Webseal Reverse Proxy.	The issue does not occur.	10.0.5.0
198541	When FIPS compliance is enabled and server is upgraded, it is not possible to log in to UI.	The issue is fixed.	10.0.5.0
198507	The OutOfMemoryError exception is thrown by the application server.	Max heap size has been increased for default configuration.	10.0.5.0
198503	When the Docker scan is disabled, the /var/lib/docker folder is unnecessarily scanned.	Docker directory is excluded from scan when docker scan is disabled.	10.0.5.0
198769	When you run the vmman -retrievedebugdata command, the connection fails with the following status: Invalid Credentials - Cannot complete login due to an incorrect username or password. The problem occurs if the username or password that is specified for the VM manager contains the ampersand (&).	The issue is fixed.	10.0.5.0
Content updates
KB0089469	Run Capacity Scan on Virtualization Hosts is relevant even for endpoint not being hypervisor host	Updated relevance to check if system is capable to be a hypervisor: module kvm listed in /proc/modules processor got flag vmx or svm in /proc/cpuinfo. As a result, fixlet is no longer applicable for the endpoint not capable to host.	10.0.5.0
KB0091295	"Get Oracle Features" fixlet placing the file lmt_bfi_get_script.sh always in instance owner's folder	An option to use temporary folder instead of Oracle instance owner’s folder is added.	10.0.5.0
KB0090976	docker host's BESClient installation is discovered in docker containers when the host volume is visible on docker	The docker host’s BESClient installation is not discovered on docker	10.0.5.0
KB0087650	Software Scan returns with error code 1	Fixed and the behavior is no longer observed	10.0.5.0
KB0092316	Fixlet "Upgrade to the latest version of BigFix Inventory (10.0.5.0)" may fail during the execution.	The issue does not occur.
Catalog updates
KB0091403	Signature for Sybase Adaptive Server Enterprise v11.1 needs to be deleted due to false discovery with other products.	The signature was deleted.	10.0.5.0
KB0091154	NetBackup 3.0 signature is falsely discovering other software due to wrong CIT operator	The CIT operator was changed. The discovery is now valid.	10.0.5.0
KB0091415	Signatures for “Checkpoint SmartConsole” require deletion of file version. Only file size should be checked.	Two signatures with incorrect “1.0” version were modified – check for the version was deleted.	10.0.5.0
KB0091284	Signatures for “Microsoft .NET Core” v1.1 and v1.0 need to be deleted. Template signature with version restriction needs to be updated for version 1.x	Signatures for “Microsoft .NET Core” v1.1 and v1.0 were deleted. Template signature with version restriction was updated for version 1.x	10.0.5.0
KB0089612	Signature for component IBM Tivoli Enterprise Console 3.9 delivers false discovery.	The signature was deleted.	10.0.5.0
KB0089415	File confix.xml is used as main discovery point causing extensive file read (long scan time and CPU utilization).	Two signatures were deleted.	10.0.5.0
KB0091120	Discovery for Oracle Clusterware reports wrong component version.	Signature for version 10.2 was fixed. Next catalog will provide new way of discovery for this software.	10.0.5.0
BI-5659	Component name of “InstallShield” 11.0 and 11.5 should be changed to “InstallShield Scripting Engine”.	Product “InstallShield Scripting Engine” was added. Component name was changed for the version and two releases.	10.0.5.0
BI-5954	Signatures for the Adobe Acrobat Reader DC versions 2020, 2021, 2022 are missing.	Signatures for the Adobe Acrobat Reader DC versions 2020, 2021, 2022 were added.	10.0.5.0
Documentation updates
KB0089517	'Bundling assistant’ still not referred as ‘Automated bundling’ across the document.	Corrected the phrase ‘Bundling assistant’ across the document. After changing ‘Automatic Bundling’ feature name to ‘Bundling Assistant’ not all documentations pages were updated. Doc link: BFI_10.0 document	10.0.5.0
KB0090889	Document limitation on vulnerabilities found in BFI	Improved documentation about elements impacting accuracy of CVE reporting in BFI Doc link: Checking common vulnerabilities	10.0.5.0
KB0089359	Issue with VM manager central ID	Added a note in the VM Manager Installation requirement section about the BESRootServer. Doc link: VM Manager Tool installation requirements	10.0.5.0
KB0092166	BFI 10.0.3 import after upgrade from 10.0.1 taking over 500 hours	Updated the document about performance improvement of computers that involves using the maxAggregationThreads and maxReaggregationThreads variables to control the number of CPUs being used. Doc link: Advanced server settings	10.0.5.0
BI-5023	Update the document for UUID, Outdated VM Manager Data status and correct the information about WinRM command and Hyper_v URL.	Updated the document with information about: Troubleshooting No VM Manager data status Corrected the syntax of a WinRM command. Updated ‘Identifying computers in public clouds’ section. Corrected the ‘default port’ used in configuring WinRM. Doc links: Licensing rules Identifying computers in public cloud Configuring WinRM Adding VM managers in central mode	10.0.5.0
BI-5256	End Of Support Date is not correct for various Microsoft Products	Added the information that the End of Support date for Microsoft Component in Software Component shows the ‘extended support date’ and not the ‘end of support date’. The date can be manually updated. Doc link: Changing the EOS	10.0.5.0
BI-6025	Update software requirements and SPCR details	Updated ‘security enhancements’ in the what’s new, new requirements in the software requirements and system requirements. Doc links: What's new Software requirements System requirements	10.0.5.0

VM Manager Tool version and changes

The VM Manager Tool version that is used with this update is 10050. Logs per VM Manager are included in config files for better readability of logs.

Scanner version and changes

The scanner version that is used with this update is 9.2.23.1000 for Windows and 9.2.23.0000 for other platforms. The disconnected scanner version that is used with this update is 10.0.5.0 and 9.2.23.0 for IBM I.

Application update 10.0.4.1

Included software catalog

• New discovery capabilities for:
  • BMC
  • CA Technologies
  • Citrix
  • Oracle
  • Red Hat
  • Veritas
  • VMware
• Several defect fixes and customer Ideas
• This release includes Software Catalog version 10.0.4.1 with capability to discover more than 160 software versions.

For more information, refer to:

• Catalog Release Notes: https://software.bigfix.com/download/tema/catalog/BFI_catalog_release_notes.pdf
• Catalog Change List: https://software.bigfix.com/download/tema/catalog/changelist/BFI_catalog_changelist_2021_05.pdf

Modified content

• The version included in the fixlet names is: 10.0.4.1
• The software catalog was updated and the catalog fixlet must be run to install latest versions of the specific components.

Enhancements and important changes

Table 31. Enhancements

Abstract	Description	Available since
New Oracle Java 6 discovery	Added new signatures for Java 6 based on package data for UNIX and Windows platform.	10.0.4.1
Oracle SQL Developer 4.1. missing discovery for Unix	Implemented Oracle SQL Developer 4.1. signature for UNIX.	10.0.4.1
SolarWinds TFTP Server signatures using too generic executable name.	Added new template signature based on package.	10.0.4.1
McAfee agent signatures missing discovery for Unix.	Enhanced existing signature for UNIX discovery.	10.0.4.1