Welcome to SaaS Accelerator 1.5.0
The following is an overview of the changes in this release.
New features in 1.5.0
Removal of Teams & Stream Application
As of release 1.5.0, optimization for Teams and Stream is no longer offered through Riverbed SaaS Accelerator Manager. Optimization for Teams and Stream is now provided through Riverbed eCDN Accelerator.Enhanced security by adding TOTP as an MFA method
Time-based One-Time Password (TOTP) is introduced as a newly supported method for multi-factor authentication (MFA).Added support for the X-Forwarded-For (XFF) header for Netskope
X-Forwarded-For header support is extended to Netskope to enhance cloud access security broker (CASB) visibility.Smaller Additions, Improvements, and Bugfixes
- ZAK-2452 -
Symptom: The production deployment is deprovisioned when an evaluation license expires that is stacked on top of a production license.
Condition: Currently, SAM administrators can stack an evaluation license on top of a production license for a deployment. When the evaluation license expires, the production cluster is deprovisioned even if the production license is still valid.
Solution: SAM administrators can now selectively choose and apply one or more active licenses for a specific deployment. The new release also improves the detection and notification to the SAM administrator of any deployment that is at risk of being deprovisioned due to any kind of license expiration. Notifications include emails, UI notifications, and Alerts.
1.5.0
Known Issues
- ZAK-2372 - Outlook optimized connections are dropped with the error "SFE not configured to optimize this app."
- ZAK-2438 - SaaS acceleration is disrupted while replacing the CA certificate.
Detailed Description:
Symptom: Outlook optimized connections are dropped with the error "SFE not configured to optimize this app."
Condition: An application classification issue can lead to Outlook connections being dropped when using SaaS Accelerator.
Suggested Workaround: In some instances of this issue, the "no service saas-accel acs wan-opt enable" CLI command can be used as a workaround.
Detailed Description:
Symptom: Acceleration of SaaS connections is disrupted when replacing the Certificate Authority (CA) certificate in the SaaS Accelerator Manager (SAM) with another CA certificate of the same type. Acceleration ceases when the active CA certificate is deactivated and does not resume until the new CA certificate is activated.
Condition: For a Riverbed Managed (Root) CA, the certificate can be replaced quickly. However, additional time is required to distribute the new CA certificate for individual clients to trust.
For a Customer Managed (Intermediate) CA, there is no need to distribute the new CA certificate. Therefore, the duration of disruption depends primarily on how long it takes to externally process the Certificate Signing Request (CSR) and upload the signed certificate.
Suggested Workaround: To minimize disruption when replacing an expiring Certificate Authority (CA) certificate with the same type, it should be replaced before it expires during a maintenance window or other period of lower usage. The process for renewing a Riverbed Managed (Root) CA certificate is documented in Riverbed Support Knowledge Base Solution S35016. The process for renewing a Customer Managed (Intermediate) CA certificate is similar.
To view the release notes for previous versions, visit SaaS Accelerator support and select the software version.
If you have questions regarding this update, contact Riverbed Support for assistance.