Issues Resolved in 7.4.1
Released July 2020
New Features
ECA-9244 - Allow the SCEP SSB to verify messages from Intune
ECA-9248 - Add option to certificate serial number generator to use a FIPS/SP800 BC hybrid entropy source
ECA-9250 - Modify ziprelease command to not include the SSH module by default
ECA-9251 - Review implementation of the SSH CA
ECA-9252 - Modifications to End Entity and Certificate Profiles for SSH Certificates
ECA-9253 - Review implementation of SSH Public Keys
ECA-9254 - Review implementation of SSH Certificates
ECA-9255 - Review implementation of SSH-related WS methods
ECA-9265 - Add REST stress test command to clientToolBox
Improvements
ECA-8432 - OCSPkeyBinding Default Responder DB Queries
ECA-8787 - Add the ability to have multiple DVCAs with the same holder country and mnemonic
ECA-9211 - Optionally include certificate chain in /pkcs10enroll response
ECA-9275 - Database protection compatibility code should skip automatic upgrade
ECA-9283 - SSH Implementation improvements
ECA-9289 - Allow validity changes for SSH certificate profiles
ECA-9293 - SSH Implementation remaining TODOs
ECA-9294 - Microsoft Intune feature documentation
ECA-9295 - Make sure all files under the ssh module have the Enterprise license header
ECA-9299 - Remove unneeded values from intune configuration
ECA-9319 - Add CVC WS system test how to renew a domestic DV from a CVCA in the same instance
Bug Fixes
ECA-9170 - SecureXmlDecoder cannot deserialize enums created in Java 6
ECA-9206 - Prevent peer system from being removed when referenced by a publisher
ECA-9217 - ACME http challenge validation process fails when the server redirects to HTTPS
ECA-9278 - SHA512withRSAandMGF1 cannot be used by JackNJI11
ECA-9291 - Incorrect encoding of critical options for SSH certificates
ECA-9296 - SSH values still show up in end entity profiles even if SSH module is not present
ECA-9298 - Security Issue
ECA-9314 - Regression: "Key already in use" functionality stopped working on CA page
ECA-9326 - SCEP approvals only works with soft Crypto Tokens, not HSM.