KB:

Microsoft IAG 2007 Service Pack 2 Update 3


A:
 Applies to: Winfrasoft Gateway Appliances running Microsoft IAG 2007 with Service Pack 2

Warning: This update installs a NEW version of login.asp which provides awareness of Windows 7 and support for IE8. However, if you have existing customised versions of login.asp from pre-update 3 then these pages will no longer function once update 3 is installed.  After installing SP2 Update 3 you will need to create a new customised version of login.asp using the update 3 version as a template.

Prerequisites:

  • The IAG appliance must have SP2 installed already, with all Winfrasoft IAG appliance ship with out of the box.
  • This update is cumulative and includes all changes that were previously released in SP2 Update 1 & 2.

Download Details: Select the location to download from.

IAG 2007 SP2 Update 3 download:
IAG3.7-SP2Update-3 (32Mb)

Known issues:

  • After you remove IAG 2007 SP2 Update 3, all configuration changes that are made after you upgrade to Update 3 are discarded. Therefore, we recommend that you back up an active configuration before you remove Update 3.
  • Due to a bug in UAG 2010 Client Components, Windows 7 64-bit OS clients will not display the pop-up message for unsupported applications.
  • IAG implementation requires that a particular root certificate be present in the client’s Trusted Root Certificate store. Due to a change in the certification authority for Update 3, clients with a previous IAG Client Components installation might fail when upgrading to Update 3 online. To resolve the issue, please follow the instructions at http://support.microsoft.com/kb/931125.
  • The Network Connector does NOT function on Windows 7. There is no plan to ever support this configuration in IAG 2007.

Further Information:

Microsoft knowledge base: http://support.microsoft.com/kb/979097

What's New:

·          Enhanced IAG Client Components, with support for Windows 7 (32 and 64 bit) and Windows Vista 64 bit.

Technically, the Client Components of the newer Unified Access Gateway 2010 product (UAG 2010) have been integrated. The new IAG Client Components support the following.

·          Online and offline installation of the Client Components.

·          Online upgrade from the former IAG Client Components (requiring a computer restart).

·          Backward compatibility: Client Components downloaded from the IAG server running Update 3 and installed on an endpoint computer will be compatible with the latest Update 2.

The table summarizes the main features and their availability on the various supported platforms.

Feature / Platform

XP 32

Vista 32

Vista 64

Win7 32

Win7 64

Mac / Linux

Offline installation

v

v

v

v

v

x

Online installation

v

v

v

v

v

v

End-Point Detection

v

v

v

v

v

v

Attachment Wiper

v

v

v

v

v

v

SSL VPN

v

v

v

v

v

v

Socket Forwarding

v

v

x

v

x

x

Network Connector (NC)

v

v

v

x

x

x

·          Introduced a supportability-related fix which sends a useful message to IAG Web monitor when an HTTP response buffer exceeds the predefined limit.

The message contains links to KB’s with guidelines for resolving the issue.

·          Enhanced web monitor report generation.

A more efficient report generation supports handling of larger reports. Additionally, a previous hard-wired limit on the report size is now user-configurable through the registry.

·         Fixed a crash in w3wp.exe process when accessing a basic trunk with defined server name translation rules (SNT).

·          Fixed a bug leading to a crash in HTTP Parser module.

A crash occurred because of the way IAG was parsing chunked HTTP responses

·         Fixed a problem with requests starting with an upper case HTTPS.
IAG SRA engine was unable to recognize links starting with an uppercase HTTPS, and missed these links in the signing process. The result was that some applications did not work properly.

·          Fixed a crash of application w3wp.exe (module WhlServerProxy.dll).

A crash occurred in a rare scenario when using Network Connector application.

·          Fixed a problem with SharePoint 2007 AAM rule-set.

Rule number 55 blocked the usage of files having Dash, Comma, and Apostrophe in the filename. 

·          Enhanced WMI Translation of legacy values for F-Prot Antivirus.

WMI Translation of legacy values did not work for F-Prot Antivirus, preventing policies that specify it from being used.

·          Fixed a problem with KCD authentication.

When disabling/enabling KCD-enabled applications, sometimes IAG was unable to find the authentication provider and KCD failed.

·          Fixed a problem in the duplicated basic trunk activation due to incorrect port assignment.

·          Fixed NTLM Authentication failure when a password included Unicode characters.

·          Fixed an issue of parsing large (>10-20 MB) HTML files even if MaxBodyBufferSize value is configured.

·          Added support for MSN Optimized in IE8.

·          Fixed an issue introduced by an ADFS fix which caused a failure in IAG login.

 

Last updated: 01/03/2010