Release Notes 24.1

This topic provides information about the new features and enhancements, bug fixes, and database changes that have been implemented in Automation Analytics & Intelligence 24.1 and higher:

Feature Highlights

The following feature highlights were introduced to AAI with v24.1.0.

More for Data Insights

The following enhancements were made to provide extended functionality for data insights:

  • Ability to get and embed URLs that lead to specific data insights

    Added a new action to data insights to allow you to get a URL or iframe code so that you can embed a link directly to the data insight in AAI from any of your external dashboards or applications. This enables you to make the rich workload performance information on AAI data insights accessible to people across your automation organization, including key stakeholders right where they need it.

  • Additional job properties for job-based data insights

    The addition of two job attributes, exitCode and (runtime) duration, under the Automation Analytics & Intelligence category to all advanced job search, also makes them available to be added as columns on the Job Completion and Job Status data insights where you can view them and print them on PDF and CSV reports, as you could in the previous Termination Status report.

    Associated ticket: DE156589

Usability on the Gantt View

Several enhancements were made to improve the usability of the Gantt view when monitoring even very large jobstream runs and to support modifying jobstream definitions directly from the Gantt chart. These include the following:

  • Switch to different runs of a jobstream

    Enhanced the Gantt view to allow switching to different runs of the same jobstream with either the option to switch to previous and next consecutive runs or to choose specific dates, as well as specific runs within a day.

  • Select multiple jobs for start jobs or trim points

    Enhanced the Gantt view to enable selecting multiple jobs on the Jobstream Tree to add as start jobs or trim points for the jobstream run in one action.

  • Improved usability of the Jobs Table

    Enhanced the Jobs Table on the Gantt view to enable viewing as many as 1000 rows at a time, which allows you to quickly scroll through job run details for even extremely large jobstream runs without clicking to the next or previous page of job run data. You can also use a grab bar on the splitter between the Gantt chart and the Jobs table to click and drag it to show more or less of the table, and continue to scroll through the rows within that space.

    Associated tickets: DE156268 and DE156263

Extended CA7 Scheduler Support

Several enhancements were made to support working with CA7 jobstreams on the Gantt view in AAI. These include the following:

  • Start jobs for CA7 jobstreams

    Adding Start Jobs is now available for CA7 jobstreams.

  • Surfacing information about CA7 datasets

    Enhanced the Gantt view for CA7 jobstreams to be able to depict datasets within the process flow on the Gantt as well as provide the Event Details and Dataset Properties for each dataset create or update event.

  • Root cause analysis for of CA7-to-AutoSys cross-scheduler processes
    Enhanced the Gantt view of CA7-to-AutoSys cross-scheduler jobstream runs in an NPTF status to provide the root cause analysis with corresponding details on the Jobs Table.

Technical Highlights

The following highlights of changes to the AAI platform and its supporting technologies were introduced to AAI with v24.1:

  • Support of PostgreSQL for the AAI database

    You can now use PostgreSQL as the database management system for the AAI database on a fresh installation. If you want to migrate your current SQL Server or Oracle database to PostgreSQL, contact the Broadcom Support team.

  • Upgrade to JBoss 7.4

    The JBoss application server that AAI and its components run on was upgraded from version 7.0.9 to version 7.4. This upgrade will dramatically reduce the number of security vulnerabilities that AAI and its components are exposed to. This major upgrade also better positions the application server for easier future upgrades and opens up other platform options for AAI.

  • Upgrade to OpenAPI 3.0 for the REST API

    The AAI REST API has been upgraded from Swagger 2.0 to OpenAPI 3.0 to take advantage of the additional features and enhancements it offers when creating REST API calls.

  • Fully Python-based CLI supporting REST API calls

    The previous Jython-based (Java-Python hybrid) CLI for command-line or scripted updates to the AAI database has been replaced by a fully Python-based implementation. This reduces AAI's dependence on EJB calls and replaces them with REST API calls.

AAI 24.1.0

This release of AAI includes enhancements for both end users and administrators, as well as a number of bug fixes.

Enhancements for Users

For operators, jobstream administrators, and business process owner the following features and enhancements were added with this release:

  • Improved the simulation feature to set the status of a simulated jobstream run to NPTF with a  root cause of "On Hold," as expected when a simulated upstream job is put into an on-hold status.

    Associated ticket: DE560000

  • Added three columns, Start Day,End Day, and SLA Day, to all the views of the Run Details tab of a jobstream to show the day of the week on which the runs started and ended.

    Associated ticket: DE156698

  • Updated the job action menu on the Jobstream Tree of the Gantt view to include Remove Trim Point for jobs at trim points.

    Associated ticket: DE157294

  • Enhanced the re-sizing of table columns on data insights and dashboards to reduce unnecessary white space and show more data on the UI. Now, with a few exceptions, you can reduce the column width to the size of the column header. Truncated values are marked with an ellipsis and you can see the full value in a tooltip when you mouse over the table cell.

    Associated ticket: DE156701

  • Improved the usability of all pages with exportable table data to show the Export button that produces a CSV of the table data in the toolbar directly above the table so that what would be exported is clear and unambiguous. Previously, the Export button was always at the top of the page even when the table was in the bottom of the page.

    Associated tickets: DE156268 and DE156263

Enhancements for AAI Administrators

For AAI administrators the following features and enhancements are included with this release:

  • Added the idleLoginCleanupInterval parameter in the AAI Configuration Tool to change the global timeout interval after which an idle user session in AAI will be automatically logged out. (Default: 30 minutes)

    Associated ticket: DE156470

  • Updated the System page so that if adding a new scheduler connection fails in the process, the failed scheduler still appears on the System page so that it is visible for deletion.

  • The default retention period for jobstream runs was increased to 396 to adequately provide more than the 12 months of data for the Business Area Monthly Performance Data Insight.

    Please note that if your retention period is less than that and you change it to 396 (see Configuration Tool - Maintenance Tab) you will have to wait for the monthly run data to accumulate over time to fill all 12 months..

Bug Fixes

Important known issue!

For Windows: Please note that after you download the installation or upgrade package, the standard WinZip tool fails to reliably extract all the files from the ZIP file for AAI. The recommended approach is to use another ZIP extractor tool such as 7-Zip.

This AAI version includes the bug fixes listed below.

Bug fixes in the area of jobstreams

  • Fixed a problem with the Trim Point job search to find all matching jobs even those with predecessor levels in excess of the default of 100 levels.

    Associated ticket: DE156237

  • Fixed incorrect duration values in the tooltip that appears on mouseover on the SLA Graph view of a jobstream's Run Details tab.

    Associated ticket: DE156236

  • Fixed an issue on the Jobstream Runs Timeline view to update the Data fetched at timestamp after a manual refresh.

    Associated ticket: DE157297

  • Fixed the browser back button navigation on the Jobstream Runs Grid view to take you back to the place in the pagination of the list of runs that you previously viewed.

  • Fixed an issue with the Business Area filter on the Jobstream Runs Grid View and Jobstream Runs data insight pages so that when a business area is selected, the jobstreams from all its child business areas are also selected, as expected.

    Associated tickets: DE161737 and DE166055

  • Fixed the handling of jobstream creation to support navigating among the tabs in the Add New Jobstream dialog and adding specifications for the new jobstream so that when clicking Create to save the definition, the original jobstream name is retained and recognized as belonging to the new jobstream definition.

  • Fixed an issue to ensure that deleted jobstream runs do not appear on the UI, and any links to the most recent run ignore deleted runs to show the most recent run that is still in the database. The previous error created this message on the UI:

    The jobstream run you are looking at has become invalid because the jobstream definition has been modified. Please click a link below to navigate to another page JobStreams.

    Associated ticket: DE157151

  • Fixed a bug that caused unexpected page navigation when using the browser back button after deleting a jobstream definition.

  • Fixed an issue that caused the same jobstream run to be listed more than once on pages that list jobstream runs.

    Associated ticket: DE129930

Bug fix in job details

  • Fixed an issue with the job details page where all relevant jobstreams were not listed on the Part of Jobstreams table on the Related Jobs and Jobstreams tab, especially new jobstreams that the job was in.

Bug fix in the Gantt view

  • Fixed the faulty Copy Job Name action on the action menu on the Jobstream Tree of the Gantt chart to copy to the clipboard as expected.

    Associated ticket: DE156258

Bug fixes in the area of data insights

  • Fixed an issue so that Description text of data insights are never truncated in downloaded CSV files, regardless of how long they are.

    Associated ticket: DE160368

  • Fixed an issue on downloaded CSV files of the data from an Audit History data insight so that the downloads include the entirety of even very long strings in all data columns, such as the Type column.

    Associated ticket: DE160934

  • Fixed an issue where AAI was not removing audit history data for deleted schedulers and this data was being included in Audit History data insight.

    Associated ticket: DE165751

  • Fixed issue causing report export on the Jobstream Runs data insight to show empty columns with only column headers when data was available on the database.

    Associated ticket: DE166912

  • Fixed the sort functionality of tables on job-based data insights to allow sorting the In Jobstreams column as expected.

    Associated ticket: DE157306

  • Fixed data insight report heading handling so that exported and printed report column names match the column names on the UI.

    Associated ticket: DE165469

Bug fixes for the eEM domain

  • Fixed an issue so that only eEM users with the appropriate permissions on the SimulationStatus policy can run or clear a simulation.

    Associated ticket: DE129110

  • Fixed an issue that prevented eEM users from using the Custom Action feature in the WebUI and therefore were unable to view, create, update, or delete custom actions there.

    Associated ticket: DE155659

Bug fixes for technical issues and administration

  • The Data Inconsistencies Resolver script for the database inconsistency remediation command was updated to address the ObjectNotFoundException caused by a JawsJob that referenced a baseJobId which was missing from the AAI database. This caused a failure to initialize the AAI Server.

    Associated ticket: DE153768

  • Updated AAI DB maintenance to purge unused entries, such as events for jobs that are not in the AAI database, from the UnresolvedJobRunCausedBy table sooner and therefore keeping it at a manageable size.

    Associated ticket: DE156594

Resolved security vulnerabilities

The upgrade from version 7.0.9 to 7.4.20 of the JBoss application server that AAI runs on resolved a large number of security vulnerabilities with the components it uses. For the complete list, see AAI 24.1.0 and Upgrade to JBoss 7.4 — Resolved Security Vulnerabilities.

Database Schema Upgrade Summary from 24.0

With this release, no tables were added or modified; however the following property value has been modified:

Table Name Change Type Property Name

Value

JawProperties

 Update

dbMaintenance.jobStream.retentionDaysDefaultLimit

 369

Airflow Connector 24.1.0

Bug Fixes

The following component upgrade was made to resolve Airflow connector security vulnerabilities:

  • Upgraded Apache Tomcat package (including tomcat-embed-core, tomcat-embed-el, tomcat-embed-websocket) from version 9.0.97 to 9.0.98 to resolve the following vulnerabilities:

    • BDSA-2024-9762

    • BDSA-2024-9795

Control-M Connector 24.1.0

The Control-M Connector contains the following bug fixes.

Bug Fixes

The following component upgrades were made to resolve Control-M Connector security vulnerabilities:

  • Upgraded the Apache Tomcat version from 9.0.97 to 9.0.98 to resolve the following security vulnerabilities:

    • BDSA-2024-9762

    • BDSA-2024-9919

    • BDSA-2024-9795

AAI 24.1.0 and Upgrade to JBoss 7.4 — Resolved Security Vulnerabilities

The upgrade from version 7.0.9 to 7.4.20 of the JBoss application server that AAI runs on resolved a large number of security vulnerabilities from the components it uses, as follows.

Note:

Some components are no longer used by the upgraded JBoss and with their removal, the security vulnerabilities they posed are no longer relevant to AAI.

  • Upgraded Apache Avro from 1.7.6 to 1.11.4, which resolved the following security vulnerabilities:

    • BDSA-2024-6954

    • CVE-2021-43045 (BDSA-2022-0025)

    • CVE-2023-39410 (BDSA-2023-2603)

  • Upgraded Apache Commons IO from 2.4.0 to 2.10.0, which resolved the following security vulnerabilities:

    • CVE-2021-29425 (BDSA-2021-0922)

  • Upgraded Apache CXF from 3.1.10 to 3.5.8, which resolved the following security vulnerabilities:

    • BDSA-2024-7190

    • BDSA-2025-0392

    • CVE-2017-12624 (BDSA-2017-1954)

    • CVE-2017-5653 (BDSA-2017-0109)

    • CVE-2017-5656 (BDSA-2017-0110)

    • CVE-2018-8039 (BDSA-2018-2053)

    • CVE-2019-12406 (BDSA-2019-3417)

    • CVE-2019-12419 (BDSA-2019-3418)

    • CVE-2019-12423 (BDSA-2019-4199)

    • CVE-2019-17573 (BDSA-2019-4192)

    • CVE-2020-13954 (BDSA-2020-3328)

    • CVE-2020-1954 (BDSA-2020-0615)

    • CVE-2021-22696 (BDSA-2021-0853)

    • CVE-2021-30468 (BDSA-2021-1813)

    • CVE-2022-46363 (BDSA-2022-3589)

    • CVE-2022-46364 (BDSA-2022-3590)

  • Upgraded Apache HttpClient from 4.5.0 to 4.5.14, which resolved the following security vulnerabilities:

    • CVE-2020-13956 (BDSA-2020-2701)

  • Upgraded Apache Santuario (Java) from 2.0.8 to 2.3.4, which resolved the following security vulnerabilities:

    • CVE-2019-12400 (BDSA-2019-2723)

    • CVE-2021-40690 (BDSA-2021-2815)

    • CVE-2023-44483 (BDSA-2023-2874)

  • Upgraded Apache Velocity from 1.7 to 2.3.0, which resolved the following security vulnerabilities:

    • CVE-2020-13936 (BDSA-2021-0710)

  • Upgraded Bouncy Castle from 1.62 to 1.78, which resolved the following security vulnerabilities:

    • BDSA-2018-5235

    • BDSA-2023-3876

    • BDSA-2024-1960

    • BDSA-2024-1961

    • BDSA-2024-2378

    • CVE-2020-15522 (BDSA-2021-1516)

    • CVE-2023-33201 (BDSA-2023-1625)

    • CVE-2023-33202 (BDSA-2023-3254)

  • Upgraded google-guava from 18 to 32.1.1, which resolved the following security vulnerabilities:

    • CVE-2018-10237 (BDSA-2018-1358)

    • CVE-2020-8908 (BDSA-2020-3736)

    • CVE-2023-2976 (BDSA-2016-1748)

  • And upgraded google-guava from v31.0.1 to 32.1.1, which resolved the following security vulnerabilities:

    • CVE-2020-8908 (BDSA-2020-3736)

    • CVE-2023-2976 (BDSA-2016-1748)

  • Upgraded H2 Database Engine from 1.3.173 to 2.2.224, which resolved the following security vulnerabilities:

    • BDSA-2018-2507

  • Upgraded Hibernate ORM from 5.0.16 to 5.3.36, which resolved the following security vulnerabilities:

    • CVE-2019-14900 (BDSA-2019-4479)

    • CVE-2020-25638 (BDSA-2020-3410)

  • Upgraded Hibernate Validator from 5.2.5 to 6.0.23.SP1, which resolved the following security vulnerabilities:

    • BDSA-2024-5399

    • CVE-2019-10219 (BDSA-2019-3481)

    • CVE-2020-10693 (BDSA-2020-1019)

  • Upgraded Infinispan from 8.1.8 to 11.0.19.Final-redhat-00001, which resolved the following security vulnerabilities:

    • BDSA-2018-2208

    • BDSA-2023-2433

    • BDSA-2025-0723

    • CVE-2016-0750 (BDSA-2016-1131)

    • CVE-2017-15089 (BDSA-2018-0326)

    • CVE-2017-2638 (BDSA-2017-2981)

    • CVE-2019-10174 (BDSA-2019-3683)

    • CVE-2023-5384 (BDSA-2023-3495)

  • Upgraded JavaServer Faces from 2.2.12 to 2.3.14.SP09, which resolved the following security vulnerabilities:

    • BDSA-2019-3013

  • Upgraded Jettison - Json Stax implementation from 1.3.3 to 1.5.4, which resolved the following security vulnerabilities:

    • CVE-2022-40149 (BDSA-2022-3277)

    • CVE-2022-40150 (BDSA-2022-3278)

    • CVE-2022-45685 (BDSA-2022-3714)

    • CVE-2022-45693 (BDSA-2022-3715)

    • CVE-2023-1436 (BDSA-2023-0994)

  • Upgraded JSON-java from 20230227 to 20231013, which resolved the following security vulnerabilities:

    • CVE-2023-5072 (BDSA-2023-2760)

  • Upgraded jsoup from 1.8.3 to 1.15.4, which resolved the following security vulnerabilities:

    • CVE-2021-37714 (BDSA-2021-2510)

    • CVE-2022-36033 (BDSA-2022-2382)

  • Upgraded Netty Project from 4.0.32 to 4.1.108, which resolved the following security vulnerabilities:

    • BDSA-2017-4133

    • BDSA-2019-2610

    • BDSA-2019-2642

    • BDSA-2019-2643

    • BDSA-2019-2649

    • BDSA-2020-0130

    • BDSA-2020-0666

    • BDSA-2020-4899

    • CVE-2016-4970

    • CVE-2019-16869 (BDSA-2019-3119)

    • CVE-2019-20444 (BDSA-2019-4231)

    • CVE-2019-20445 (BDSA-2019-4230)

    • CVE-2021-21290 (BDSA-2021-0311)

    • CVE-2021-21295 (BDSA-2021-0589)

    • CVE-2021-21409 (BDSA-2021-0828)

    • CVE-2021-37137 (BDSA-2021-2831)

    • CVE-2021-43797 (BDSA-2021-3741)

    • CVE-2022-41881 (BDSA-2022-3559)

    • CVE-2023-34462 (BDSA-2023-1556)

  • Upgraded PathJson from 2.2.0 to 2.9.0, which resolved the following security vulnerabilities:

    • BDSA-2023-3682

  • Upgraded RESTEasy from 3.0.19.SP5 to 3.15.10.Final-redhat-00001, which resolved the following security vulnerabilities:

    • BDSA-2020-1921

    • BDSA-2023-0347

    • BDSA-2024-7055

    • CVE-2016-6346

    • CVE-2016-9606 (BDSA-2017-0167)

    • CVE-2017-7561 (BDSA-2017-2977)

    • CVE-2020-10688 (BDSA-2020-1268)

    • CVE-2020-1695 (BDSA-2019-4400)

    • CVE-2020-25633 (BDSA-2020-2449)

    • CVE-2021-20289 (BDSA-2021-0822)

    • CVE-2021-20293 (BDSA-2021-1736)

  • Upgraded SnakeYAML from 1.15.0 to 2.2, which resolved the following security vulnerabilities:

    • CVE-2017-18640 (BDSA-2017-3947)

    • CVE-2022-1471 (BDSA-2022-3447)

    • CVE-2022-25857 (BDSA-2022-2579)

    • CVE-2022-38749 (BDSA-2022-2577)

    • CVE-2022-38750 (BDSA-2022-2578)

    • CVE-2022-38751 (BDSA-2022-2587)

    • CVE-2022-38752 (BDSA-2022-2590)

    • CVE-2022-41854 (BDSA-2022-3211)

  • Upgraded Spring Boot from 2.7.18 to 2.7.23, which resolved the following security vulnerabilities:

    • BDSA-2024-5686

  • Upgraded Spring Framework from 5.3.37 to 5.3.42, which resolved the following security vulnerabilities:

    • CVE-2024-38820 (BDSA-2024-7393)

  • Upgraded undertow from 1.3.31 to 2.2.32.SP1-redhat-00001, which resolved the following security vulnerabilities:

    • BDSA-2018-0397

    • BDSA-2022-2482

    • BDSA-2022-4041

    • BDSA-2023-3448

    • BDSA-2023-3683

    • BDSA-2024-3899

    • BDSA-2024-4198

    • BDSA-2024-5641

    • CVE-2017-12196 (BDSA-2018-0631)

    • CVE-2018-1067 (BDSA-2018-1355)

    • CVE-2018-14642 (BDSA-2018-5042)

    • CVE-2019-10184 (BDSA-2019-2331)

    • CVE-2019-10212 (BDSA-2019-3144)

    • CVE-2019-14888 (BDSA-2020-0115)

    • CVE-2019-19343 (BDSA-2019-4447)

    • CVE-2019-3888 (BDSA-2019-2035)

    • CVE-2020-10687 (BDSA-2020-2102)

    • CVE-2020-10705 (BDSA-2020-1151)

    • CVE-2020-1745 (BDSA-2020-0483)

    • CVE-2020-1757 (BDSA-2019-4367)

    • CVE-2020-27782 (BDSA-2021-0208)

    • CVE-2021-20220 (BDSA-2021-0444)

    • CVE-2021-3597 (BDSA-2021-2789)

    • CVE-2021-3629 (BDSA-2021-3463)

    • CVE-2021-3690 (BDSA-2021-2615)

    • CVE-2021-3859 (BDSA-2022-0318)

    • CVE-2022-1259 (BDSA-2022-2100)

    • CVE-2022-2053 (BDSA-2022-2085)

    • CVE-2023-1108 (BDSA-2023-0526)

    • CVE-2023-1973 (BDSA-2023-4202)

    • CVE-2023-3223 (BDSA-2023-2318)

    • CVE-2024-1459 (BDSA-2024-0322)

  • Upgraded WildFly: Undertow from 7.0.9.GA-redhat-3 to 7.4.20.GA-redhat-00001, which resolved the following security vulnerabilities:

    • BDSA-2018-1355

  • Upgraded Woodstox from 4.4.1 to 6.4.0, which resolved the following security vulnerabilities:

    • CVE-2022-40152 (BDSA-2022-2582)