Date:2014-03-13

OS: Windows/Linux

Etrack Incidents: 3322450, 3332293, 3333195, 3338064, 3339324, 3340194, 
3341260, 3341475, 3346260, 3346852, 3349797, 3360081, 3360996, 3362626, 
3363542, 3365338, 3366466, 3366484, 3368584, 3370111, 3372289, 3374567, 
3375441, 3383035, 3383281, 3386721, 3392016, 3393618, 3401723, 3401763, 
3409975, 3412719, 3415120, 3417580, 3425797, 3429196, 3429442, 3430935, 
3431613, 3434169, 3434502, 3435182, 3436563, 3441213, 3444977, 3446036, 
3446438, 3453007


Errors/Problems Fixed:

3322450 - Data Insight is unable to display domain local group as a member group 
          if it is added in local group of a Windows File Server or a NetApp 
          filer.

3333195 - Performance improvement to Indexer.

3338064	- DLP sensitive policy list filter doesn't work for "Like" or "Not like"
          selection criteria.

3339324	- Controlpoint.exe is crashing.

3340194	- Incorrect membership for SharePoint local groups.

3341260	- DQL returns precision in the output. If file or share size is less 
          than 1GB, then DQL returns size in GB as zero.

3341475	- Discover site collections with the correct URL in case of claims-based
          authenticated web application URLs.

3346260	- DLP settings in Data Insight change after upgrading Data Insight from 
          4.0 to 4.0 RP1.

3346852	- Disabled shares should be grayed out in the workspace like they are in 
          the settings page.

3349797	- Server column missing in email alerts.

3360081	- idxwriter.exe can crash if it needs to reopen the index while processing 
          scan files.

3360996	- Ability to ignore disabled filers in reports.

3362626	- DLP policies count and DLP policies name filters are not working at 
          folder level.

3363542	- DataInsightWinnas service is consuming high memory.

3365338	- DiscoverSharesJob never completes in a large distributed environment.

3366466	- Pull the sidhistory attribute from Active Directory.

3366484	- Scanner.exe crashes if file system type is not supported.

3368584	- adcli.exe crashes when adding sidhistory attribute.

3370111	- Provide option to clear all selected resources from the page selection
          view in report wizard.

3372289	- Index DB need not do an integrity check for every version.

3374567	- DQL throws syntax error if arguments of the "formatdate" function are
          incorrect.

3375441	- In reports, if copy report output step returns failure, then highlight
          the last run status accordingly, and show the warning icon.
		  
3383035	- Duration function in DQL returns nothing if there is no space between
          number and unit.

3383281	- Data Insight 4.0 RP1 fails to display SharePoint version.

3386721	- Add missing filters from version 3.0.1 to Context Map on the Workspace
          tab.

3392016	- Update default sqlite page size to 32k for better performance.

3393618	- GUI freezes completely if you try to assign disabled user as custodian
          on a path.
		  
3401723	- Unable to set "Ignore accesses made by LocalSystem accounts" property
          for a Windows File Server.

3401763	- Permission recommendation workflow is not getting fired in Data Insight
          4.0 RP1.

3409975	- In case of data selection for reports, CSV upload times out for large 
          number of paths.

3412719	- Check if .Net 3.5 framework is installed on the Collector node for 
          SharePoint Servers.

3415120	- Reduce fragmentation in index copy operation.

3417580	- Incremental scan behavior is not consistent with full scan in case of 
          reparse points.

3425797	- Custom cron schedule is not updated in GUI if it is changed using
          command line.

3429196	- Indexers not deleting older filehash and dirhash files on VxFS.

3429442	- adcli.exe corrupts the member hash in a certain scenario, when we 
          encounter failed or disabled domains.

3430935	- Exclusion of Administrators@Filer group removes unrelated user entries
          from report output along with members of the Administrators@Filer group.
		  
3431613	- Add New Policy wizard does not work.

3434169	- Access summary for paths - fix report design for SharePoint and NFS 
          paths.

3434502	- Provision to exclude filers from control point process.

3435182	- Access details for paths - BuName and BUOwner value not getting mapped
          to all records.

3436563	- Cannot add SharePoint site collection with a space in the name. GUI 
          shows invalid URL message.

3441213	- Double quotes in query causes DQL to fail on a Linux Indexer.

3444977	- Fix exception handling in web service during scan operation.

3446036	- Windows File Server agent share scan exits with error code 5 in case 
          the Scanner credentials are from different domains.
		  
3446438	- Reports > Select action does not show option to archive.

3453007	- Scanner does not go in throttle mode even if the latencies are high 
          on the filer.

NOTE: Incidents fixed in earlier rolling patches are listed at the end of this
      document.

Install/Uninstall Instructions:

Apply this rolling patch on all Data Insight servers with version 4.0, 4.0 RP1 or 
4.0 RP1b.

NOTE: Please keep a backup of the Data Insight files in the installation directory.
      This will be required in case you want to manually rollback the patch.

High Level Steps:
1. Apply the rolling patch on Management Server first, followed by all worker nodes.
2. Next, apply patch to Windows File Server agents (if applicable).

Patching Data Insight Management Server and worker nodes:

1. Log onto each server with Administrative privileges.
2. Unzip the patch files to a temporary folder. In this folder, locate the 
   rolling patch installer for the appropriate OS architecture. The installer
   is called Symantec_DataInsight_windows_40RP2_4_0_0_4422_x64.exe for 64 bit 
   Windows OS, Symantec_DataInsight_windows_40RP2_4_0_0_4422_x86.exe for 32 bit
   Windows OS and Symantec_DataInsight_linux_40RP2_4_0_0_4422_x64.sh for 64 bit
   Linux OS.
3. Launch the installer executable to install the rolling patch.

Patching Data Insight Windows File Server agents:

1. Unzip the patch files to a temporary folder. In this folder, locate the 
   rolling patch installer bundles for Windows File Server agents. The agent
   bundle is called Symantec_DataInsight_windows_winnas_40RP2_4_0_0_4422_x64.zip 
   for 64 bit OS and Symantec_DataInsight_windows_winnas_40RP2_4_0_0_4422_x86.zip 
   for 32 bit OS.
2. Log into the Data Insight Management Console with Server Administrator 
   privilege and upload the agent bundles to the appropriate Collector worker
   nodes using "Upload Manager" page on the Settings tab.
3. Navigate to Filer details page for each configured Windows File Server from 
   the Settings tab, and click on "Upgrade Agent" button available on the top of
   the page. This option is only visible if you have enabled the option to let 
   Data Insight install/upgrade agent for this filer.
4. Alternately, to manually patch a Windows File Server agent, log onto the 
   Windows File Server machine with Administrative privileges, unzip the agent
   installer bundle in a temporary location, and launch the patch installer. 
   The patch installer is called 
   Symantec_DataInsight_windows_winnas_40RP2_4_0_0_4422_x64.exe
   for 64 bit OS, and Symantec_DataInsight_windows_winnas_40RP2_4_0_0_4422_x86.exe
   for 32 bit OS.

Patching Data Insight Microsoft SharePoint agent:

1. Log onto the SharePoint farm machine where the SharePoint agent has been 
   previously installed.
2. Uninstall the old agent using the "Add/Remove Programs" applet in Control Panel.
3. Unzip the patch files to a temporary folder. In this folder, locate the 
   SharePoint agent installer. The installer is called 
   Symantec_DataInsight_sharepoint_40RP2_4_0_0_4422.exe for SharePoint 2007, 
   Symantec_DataInsight_sharepoint2010_40RP2_4_0_0_4422.exe for SharePoint 2010, 
   and Symantec_DataInsight_sharepoint2013_40RP2_4_0_0_4422.exe for SharePoint 2013.
4. Launch the installer to install the new agent.

Additional Notes:
1. At this time, automated rollback of patch is not supported. To roll back the
   patch manually:
   a. Remember to take a backup of original files before you install the rolling
      patch.
   b. To roll back the patch, stop all Data Insight services, overwrite the 
      patched files with original files from backup, and restart the services.
2. To confirm if a system has been patched, check the version of Data Insight
   using the Add/Remove Programs applet in the Control Panel.
   
Following ETrack incidents have not been fixed in this release, however 
workaround for these is as below:   

3315995	- EmailUtils caches old value of SMTP host.

Workaround: If the SMTP settings are changed, DataInsightWeb service must be restarted.
	    To do this, log in to the Data Insight Management Server node with 
	    Administrative privileges. From the command prompt, run the following
	    commands: 
			
	    net stop DataInsightWeb
	    net start DataInsightWeb
 
3383277	- Cannot select customattr.csv attributes in analytics configuration.

Workaround: Manually type in the text box.
						
*************************************************************************************************

Incidents fixed in 4.0 RP1b

*************************************************************************************************		

3346255 - Issue fetching list of sensitive paths from DLP when DLP is configured
          with Kerberos authentication.

3348844 - Data Insight does not always recommend the correct patch number 
          applicable for a server node.

3348991 - Permission reports consume excessive memory.


*************************************************************************************************

Incidents fixed in 4.0 RP1

*************************************************************************************************

2781513 - Access Pattern Map showing information in GMT for date as today.

3313610 - SharePoint - Enhance Local user scan job for 10000 site collections.

3098137 - Adding Folder Depth dropdown in Access Summary User/Path reports.

3164625 - EVClient - In case of WinNAS cluster, evclient sends the cluster name 
          as parameter to EV which returns an error for all paths.

3211411 - Wildcard support in Exclude Rules for access events in case of 
          SharePoint is not implemented.

3218248 - Path Permission report does not exclude Administrators group.

3219246 - Entitlement report - Exclude Group/user does not work.

3227205 - Inactive folders query should exclude deleted paths.

3257392 - Reports - parallelism for reports through GUI.

3263375 - Set control point depth analysis to 5 by default.

3272517 - Reports - Custom report output: Exclude column does not work with CSV 
          output format.

3276079 - Enhance Access Summary report to allow for Depth Parameter.

3280454 - Provide option to copy report output to network file-share for 
          reports.

3281612 - Enhancement in Sensitive job to do CSV based sensitive file import.

3284683 - Discovery of sharepoint webapp with 10000 site collection times out.

3292056 - Change the Event details of "Exit Code 1: Incorrect function".

3292723 - Add pagination to SharePoint scanner and sharepoint webservice when it
          fetches websites and lists within a site collection.
 
3281984 - Windows File Server agent registration fails with status code 500.
		  
3298390 - Fetch local users from Netapp filers.

3302069 - Reports - redirect output to a network file share (only supports local
          drive currently).

3303981 - Do not delete SharePoint audit logs during specified period.