Release notes Digital Access component 6.12.1

DA-2598

New branding manual for tailwind which replaced jquery mobile in Digital Access version 6.12.0.

DA-2652

Upgraded the bundled Apache Guacamole integration version.

DA-2271

User link repair Janitor
Implemented an automated background job that detects and repairs broken directory links in user accounts. The Janitor runs as a scheduled task on the administration node, processing users in paginated batches with configurable scheduling. It includes safety mechanisms such as pre-flight directory verification, consecutive error abort, and detailed progress reporting. Configurable via the admin UI with enable/disable toggle and scheduling options.

DA-2471

Removed the legacy Apple push notification library and its deprecated APNs API, reducing the dependency footprint.

DA-2594

Improved fatal error logging
Fatal errors during service startup now include the full stack trace at the appropriate log level without requiring debug logging to be enabled.

DA-2582

Reduced log noise
Removed or downgraded unnecessary ERROR and FATAL log entries that were causing confusion in production environments. Session check-out timeout messages are now logged at an appropriate severity level.

DA-2681

Resolved confusing OATH log warning
Eliminated a misleading warning about an internal configuration entity that appeared during normal operation and caused unnecessary concern.

DA-2505

Corrected LCP file sync message
Fixed an incorrect status message displayed after file synchronization. The admin UI now correctly reports the synchronization result and the system log no longer shows a zero file size for uncompressed configuration files.

DA-2607

Fixed several visual issues in the authentication flows, including incorrect QR code sizing and misaligned buttons.

DA-2639

Applied patches for vulnerabilities identified by security scans.

DA-2589

Fixed broken MS-CHAP authentication
Restored MS-CHAPv1 and MS-CHAPv2 RADIUS authentication which was broken by a cipher algorithm change in a previous release.

DA-2658

Fixed Entra External Authentication Method (EAM)
Resolved a compatibility issue with Microsoft Entra ID where the JWKS Key ID value was not formatted correctly, causing Entra to reject authentication requests from DA's EAM provider.

DA-2667

Fixed secure OATH setup failure
The Distribution service was missing a web resource path after fresh installation. The path is now created automatically during setup with the correct access permissions.

DA-2641

Fixed certificate persistence failure
Resolved an issue where persisting certificate information in the session would fail when the CA information was unavailable. This could break certificate-based authentication flows in production environments.

DA-2628

Fixed false "Display Name is Mandatory" error
Corrected a misleading validation error that appeared when relinking a user with a broken directory connection. The display name field was incorrectly flagged as mandatory. The value is now refreshed from the repaired directory connection before validation runs.

DA-2621

Resolved an issue where OATH token provisioning failed after an upgrade until the service was restarted.

DA-2617

Fixed secure profile for Port 443 behind AP
Resolved an issue where OATH provisioning URLs incorrectly included an explicit :443 port number, causing token activation to fail when the Distribution service was configured behind an Access Point.

DA-2600

Fixed AP Entry-Point state binding
Corrected a bug where the Access Point incorrectly tied the entry-point name state to the TCP connection rather than the user session. This caused incorrect behavior when AP was deployed behind a reverse proxy that reuses connections for multiple clients.

DA-2599

Fixed upgrade failure from 6.11.1 to 6.12.0
Resolved an issue where upgrading from version 6.11.1 to 6.12.0 could fail in certain deployment configurations, preventing the administration service from starting.

DA-2592

Fixed unexpected error in Admin
Resolved an unexpected error in the web resource path confirmation page that could occur under certain conditions.

DA-2575

Resolved an issue where the Copy Users functionality failed with Microsoft SQL Server.

DA-2474

Fixed reserved DNS name link translation
Corrected the link translation behavior for web resources using reserved DNS name mappings. Previously, translated links would incorrectly reference the Access Point URL path instead of the associated reserved DNS name, causing unnecessary redirects.

DA-2094

Fixed Admin field Auto-Clear bug
Resolved an issue in the administration UI where editing a web resource would automatically reset the "Link translation type" to URL-mapping and clear the "Mapped-DNS names" field.

DA-2189

Fixed initial setup connectivity with Swarm
Resolved an issue where services would bind to the wrong network interface during initial Docker Swarm deployment, preventing inter-service communication.

DA-1466

Fixed Access Point license validation
Corrected the license user count validation in the Access Point, which could incorrectly report "Number of users exceeded" even when the actual named user count was within the license limit.

DA-1336

Fixed LocalConfiguration.xml corruption
Resolved a long-standing issue where the LocalConfiguration.xml file could be overwritten with default values during service startup, losing the node identity and preventing the service from starting.

DA-472

Fixed Distribution service context and license issues
Resolved multiple issues with the Distribution service: the missing context path for secondary instances, the incorrect dependency on the Personal Mobile license for OATH provisioning bounce pages, and a 404 error when Personal Mobile was not activated.