Cisco Cisco Web Security Appliance S670 Release Notes
6
Release Notes for Cisco IronPort AsyncOS 7.5.7 for Web
7.5.7
Known Issues
Known Issues
lists the known issues in this release of AsyncOS for Web.
Table 2
Known Issues for AsyncOS 7.5.7 for Web
Defect ID
Description
N/A
Specifying port 8080 is required to access the administration interface. To access the
Web Security appliance management interface, you must connect using the appliance
IP address and port number,
Web Security appliance management interface, you must connect using the appliance
IP address and port number,
http://192.168.42.42:8080
. Failing to specify a port
number when accessing the web interface results in a default port 80, Proxy
Unlicensed error page.
Unlicensed error page.
23480, 23483,
26979, 37384
26979, 37384
Partial messaging for denied HTTP CONNECT requests. Some browsers truncate
HTTP data that is sent in response to a CONNECT request. This means that if the Web
Security appliance denies a CONNECT request, the “page cannot be displayed:
Access Denied” error message might be incomplete.
HTTP data that is sent in response to a CONNECT request. This means that if the Web
Security appliance denies a CONNECT request, the “page cannot be displayed:
Access Denied” error message might be incomplete.
27887
No alerts for failed authentication servers. The Web Security appliance does not
currently support alert messaging for failed authentication servers. To manage the
appliance during such an event, use the advanced authentication settings to specify an
action if the authentication server becomes unavailable. This option is located on the
Network > Authentication page.
currently support alert messaging for failed authentication servers. To manage the
appliance during such an event, use the advanced authentication settings to specify an
action if the authentication server becomes unavailable. This option is located on the
Network > Authentication page.
28821
System reports false hard disk failure. Transient reports of hard disk failures might be
erroneous. Performing a same drive hot swap resets the RAID firmware and likely
resolves this issue.
erroneous. Performing a same drive hot swap resets the RAID firmware and likely
resolves this issue.
28958
Issue with temperature alerts. The system health daemon fails to send alerts when the
environmental temperature reaches critical levels. To prevent disk failure due to high
temperatures, power down the appliance before the ambient air temperature reaches
95 degrees Fahrenheit.
environmental temperature reaches critical levels. To prevent disk failure due to high
temperatures, power down the appliance before the ambient air temperature reaches
95 degrees Fahrenheit.
29868
Changing NTLM non-admin user credentials requires AD server configuration.When
changing the non-admin user credentials for the Active Directory server on the
appliance, the credentials used to join the Active Directory domain must also be
configured on the Active Directory server. The new credentials must have at least the
following permissions on the “Computers” container in the “Active Directory Users
and Computers” MMC applet: Create Computer Objects, and Delete Computer
Objects.
changing the non-admin user credentials for the Active Directory server on the
appliance, the credentials used to join the Active Directory domain must also be
configured on the Active Directory server. The new credentials must have at least the
following permissions on the “Computers” container in the “Active Directory Users
and Computers” MMC applet: Create Computer Objects, and Delete Computer
Objects.
30255
NTLM authentication settings might not save correctly. When NTLM Basic
authentication is configured and then disabled in a web access policy group, settings
are saved and you do not have to repeat the setup if you re-enable. Currently, the
appliance fails to save the authentication scheme and the setting defaults to “Use
NTLMSSP.”
authentication is configured and then disabled in a web access policy group, settings
are saved and you do not have to repeat the setup if you re-enable. Currently, the
appliance fails to save the authentication scheme and the setting defaults to “Use
NTLMSSP.”
30703
Using Internet Root DNS servers for DNS lookups fails to resolve local hostnames.
When you configure the Web Security appliance to use Internet Root DNS servers for
DNS lookups, it fails to resolve machine names for local hostnames, such as the
appliance or Active Directory server host names.
When you configure the Web Security appliance to use Internet Root DNS servers for
DNS lookups, it fails to resolve machine names for local hostnames, such as the
appliance or Active Directory server host names.
Workaround: Fix the DNS or add the appropriate static entries to the local DNS using
the Command Line Interface.
the Command Line Interface.