Cisco Cisco Web Security Appliance S670
16
Release Notes for Cisco IronPort AsyncOS 7.7.0 for Web
7.7.0
Known Issues
CSCzv39361
The index feature in online help for Cisco Security Appliances is not intuitive. As you
type a term in the index field, the online help software highlights the first matching
term in the list of index terms; pressing Enter does not take you directly to the related
topic in the book. Instead it pops up an instruction to click on the highlighted term to
go to the topic in the book.
type a term in the index field, the online help software highlights the first matching
term in the list of index terms; pressing Enter does not take you directly to the related
topic in the book. Instead it pops up an instruction to click on the highlighted term to
go to the topic in the book.
Workaround: In the list of index terms, click on a term to go to the related topic in the
book.
book.
CSCzv86403
With Transparent User Identification (TUI) and Active Directory agent, users who
have recently authenticated may need to re-authenticate at frequent intervals.
have recently authenticated may need to re-authenticate at frequent intervals.
CSCzv06278
The online help index does not work properly in Safari browsers. Searching the index
results in a pop-up box that cannot be permanently dismissed using the Enter key.
results in a pop-up box that cannot be permanently dismissed using the Enter key.
Workaround: Dismiss the pop-up box with a mouse click or use a different browser.
CSCzv86357
AsyncOS fails to authenticate users through LDAP if UTF-8 characters are used in
the Bind DN or Base DN.
the Bind DN or Base DN.
CSCzv58857
The SOCKS proxy does not support SaaS single sign-on.
Workaround: Send SaaS traffic through the HTTP or HTTPS proxy.
CSCzv95175
Web interface stops responding after entering some regular expressions with trailing
context patterns in a custom URL category.
context patterns in a custom URL category.
This is a known issue with the Flex, the application that AsyncOS for Web uses to
analyze regular expressions. For more information on this limitation, go here:
http://flex.sourceforge.net/manual/Limitations.html#Limitations
analyze regular expressions. For more information on this limitation, go here:
http://flex.sourceforge.net/manual/Limitations.html#Limitations
CSCzv03044
When the appliance is configured to warn end-users about explicit content, AsyncOS
displays an End-User Notification warning about explicit content for sites that allow
explicit content even if the site does not actually include explicit content. While this
feature is working as designed, it may be a confusing outcome because the text in the
web interface for the appliance implies that AsyncOS will only display an End-User
Notification warning for explicit content if the site actually includes explicit content.
In fact, end-users receive the warning if the site allows explicit content.
displays an End-User Notification warning about explicit content for sites that allow
explicit content even if the site does not actually include explicit content. While this
feature is working as designed, it may be a confusing outcome because the text in the
web interface for the appliance implies that AsyncOS will only display an End-User
Notification warning for explicit content if the site actually includes explicit content.
In fact, end-users receive the warning if the site allows explicit content.
CSCzv46190
Attempting to delete a PAC file may result in misidentification of the file as the
default PAC file. This can happen if the name of the default PAC file includes special
characters.
default PAC file. This can happen if the name of the default PAC file includes special
characters.
Workaround: Don't use special characters in PAC file names.
CSCzv17778
AsyncOS and some browsers determine the root CA for each site using different
processes, which may result in discrepancies. Discrepancies may lead to unexpected
results when attempting to black list sites.
processes, which may result in discrepancies. Discrepancies may lead to unexpected
results when attempting to black list sites.
CSCzv50704
Web Security appliance performance is affected when the Default Proxy Logs are
configured at debug or trace logging level.
configured at debug or trace logging level.
Workaround: Change the logging level of the Default Proxy Logs to something higher
than Debug, such as Information.
than Debug, such as Information.
CSCzv36346
Running logconfig from the CLI and choosing 'Request Debug Logs' causes logging
and reporting to fail.
and reporting to fail.
CSCzv36740
Occasionally, network traffic moves faster than AsyncOS can accept the packets, and
the network adapter drops some packets.
the network adapter drops some packets.
Bug Toolkit ID
Description