What's New in 21.0.8

This section provides information about the new features and enhancements that have been implemented in Automic Automation 21.0.8.

Note: A German version of the updated documentation will be provided shortly after the original release date.

This page includes the following:

Automic Automation

This version includes the following new features and enhancements in Automic Automation:

Refresh TLS Gateway List

The TLS Gateway allows you to carry out File Transfers between TLS/SSL and non-TLS/SSL Agents. To do so, the system checks the list of TLS Gateways available and tries to establish the connection.

As of this version, if all entries of the TLS Gateway list have been processed but the Agent was not able to connect to a TLS Gateway for a File Transfer, you can use the FT_GATEWAY_RETRY_COUNT and FT_GATEWAY_RETRY_INTERVAL system settings to refresh the list and try to establish the connection to one of the instances of the refreshed list.

More information:

Supported OpenSSL Version

Our components have been updated to use OpenSSL library version 3.0.

Automic Web Interface

This version includes the following new features and enhancements in AWI:

AWI Connection to more than one JCP

With this version, AWI's previous behavior regarding the connection to more than one JCP has been restored. If you define more than one JCP for a connection, the system connects to any of the JCPs in the list, picking it randomly. If it fails, then the system tries the next one and so on, until it can connect successfully. For more information, see uc4config.xml - Configuring the Connection Between AWI and AE.

Security Enhancements for AWI Response Headers

As of this version, AWI provides new parameters that let you configure AWI headers to protect it from external attacks when sending responses to the Clients. You set them in AWI's configuration.properties file.

The new following parameters are available:

http.security.csp.enabled to prevent attacks such as Cross-Site Scripting and other code injections.

This parameter is the same as the already existing csp.enabled but with the http.security prefix to be consistent with the nomenclature of the new security settings introduced with this version.

If you are already using csp.enabled, this new parameter does not affect your configuration there.
http.security.csp.whitelist to whilelist the content of web pages.

This parameter is the same as the already existing csp.whitelist but with the http.security prefix to be consistent with the nomenclature of the new security settings introduced with this version.

If you are already using csp.whitelist, this new parameter does not affect your configuration there.
http.security.sts.enabled to enable Strict Transport Security, which enforces the use of https instead of http.
http.security.sts.maxage to configure the maximum time in seconds that the browser should remember that a site is only to be accessed using https.
http.security.xframe.options to prevent pages to be included in iframes.
http.security.xss.protection to change the Cross-Site Scripting filters of some browsers.
http.security.content.type.options to protect the content of the pages.

For more information, see configuration.properties - Configuring Your Local Setup.

Automic Automation Kubernetes Edition

This version includes the following new features and enhancements in AAKE:

Secure Connections to PostgreSQL DB

As of this version, it is possible to use TLS-secured connections to PostgreSQL databases.

Note: The ae-db Kubernetes service of type ExternalName is no longer created and used during the AAKE deployment, but, if it already exists, it is not deleted for compatibility reasons.