You can now specify the Administrator Base Domain Name if you configure either an Active Directory or an Open LDAP authentication server. The Administrator Base Domain Name is the administrator user name that is used to bind to the Active Directory or Open LDAP server. You can specify the Administrator Base Domain Name in the field Administrator Bind DN.

This feature allows an external user to log on to Command Center even though the configured external authentication server is down or unreachable. Command Center administrator must identify the users and enable Fallback Authentication User for those users. By default, this option is disabled for all users. Note that the default password for fallback users is public.

To enable Fallback Authentication User for multiple users, on the Administration tab, under Security, click Fallback Authentication User, and select the user for whom you want to enable this setting.

To enable Fallback Authentication User for a user, on the Administration tab, navigate to Security > Users, select the user and click Edit. In Configure User, select the Fallback Authentication User option.

You can now preview the master configuration, which is generated from the configuration template and the input file provided by the user during DeployMasterConfig task execution, before it is executed on the selected device.

You can now download the sample template file and the input file for the DeployMasterConfig task from the NetScaler Built-in Tasks lists page.

On the Configuration tab, navigate to Configuration > Built-in Tasks, select DeployMasterConfig and click Download Sample Template. A zip file containing both the sample template file and the input file is downloaded to your local machine.

You can no longer download the sample template file and the input file from the Downloads section of Command Center.

If you restrict a user group to an entity, then all the users in that group can access only that entity and the entities that are bound to that entity. For example, consider there are three virtual servers configured on a NetScaler device, V1, V2, and V3, and virtual servers V1 and V2 are bound to service S1. If you restrict usergrp1 to only service S1, then all users in the group usergrp1 can access only service S1 and virtual servers V1 and V2. Users in usergrp1 cannot access virtual server V3.

To restrict a user group to only an entity and it's bound entities, on the Administration tab, navigate to Security > Groups, select a group, and then click Advanced Settings. In the Property Name list, select an entity, and then select the Apply on bound entities also option.

This functionality is applicable to the following entities:

-Virtual Server Name

-Service Name

-Service Group Name

-Server IP address

Note: If you select the Apply on bound entities also option for the entities services and service groups, the servers abound to these entities might not be accessible.

If you configure a task to be executed sequentially and select the Ignore and Continue option, you can now select either of the following options:

-Execute on current device only. Execute the task on only the current device, even though the task has partially failed on that device.

-Execute on all selected devices. Execute the task on all the selected devices, including the current device that experiences a partial failure.

Command Center now supports SNMPv3 traps. Command Center receives SNMPv3 traps once a NetScaler device is discovered with SNMPv3 credentials. SNMPv3 traps are supported for only NetScaler devices.

You can now generate technical support bundles of the following types:

-Basic. A technical support bundle that includes log files, database information, and configuration settings.

-Advanced. A technical support bundle that includes log files, database information, configuration settings, thread dumps, and crash logs.

Command Center now stores the last ten previously generated technical support bundles. You can delete the ones that you no longer require.

Technical support bundles generated by Command Center appliances in a high availability configuration include the technical support files for both the primary and the secondary nodes.

To generate the technical support bundle by using the graphical user interface, on the Administration tab, under Diagnostics, click Technical Support.

A technical support bundle can also be generated from the Command Center command line interface. The default type is Advanced.

To generate the technical support bundle by using the command line interface, in the <CCHome>\bin directory, execute the generate_technical_support script.

On a Windows system, run the following command:

generate_technical_support.bat

Alternatively, you can double-click the generate_technical_support.bat file.

On a Linux system, run the following command:

sh generate_technical_support.sh

All groups configured on Command Center now have read-only permissions by default. In earlier releases, the default group "Users" had no permissions.

As part of this enhancement, the Users group now has read-only permissions. A new external user is automatically added to the default Users group when that user is authenticated in Command Center. Since the Users group now has read-only permissions, the new external user does not experience an authorization failure.

The compressed file (.zip) of a sample template of built-in tasks now includes the XML schema file (.dtd) for the input XML file.

If you want to replicate the complete existing state of a NetScaler appliance on another NetScaler appliance, you must replicate the configuration, license, and certificate files. By executing the DeployMasterConfig built-in task without customizing it, you can replicate only the configuration file.

You can customize the DeployMasterConfig built-in task to add additional commands, so that you can replicate license and certificate files to other NetScaler devices, and execute any other commands required for your configuration.

You can customize the DeployMasterConfig built-in task to do the following:

-Add additional commands

-Modify existing commands

-Add variables to commands

-Delete commands

-Change the order of commands.

Caution: Be careful when changing the order of commands in the DeployMasterConfig built-in task.

Command Center now supports TLSv1.1 and TLSv1.2 protocols.

To enable TLSv1.1 and TLSv1.2 protocols

On the Administration tab, navigate to Settings > SSL Settings and select the Enable TLSv1.1 or Enable TLSv1.2 option.

Note that the SSLv3 protocol is no longer supported.

The Auto rollback on failure option under Deployment Automation is now unchecked by default.

You now have the option to enable and disable group extraction for a RADIUS authentication server. In earlier releases, group extraction could not be disabled.

You can now specify either the host name or the IP address to resolve an authentication server. In earlier releases, you could only specify the IP address.

Command Center now supports deployment of RADIUS authentication with an Active Directory server. You must enable Group Extraction and specify the group vendor identifier and the type of group attribute.

You can now export graphs and tables of Application Firewall violations from Command Center. You can choose to export either a graph or a table (CSV file), or both.

You can now view the following reports for NetScaler Gateway devices:

-Top users by sessions

-Top ICA applications by user access

-Top users by bandwidth

-Top client types

-Top users by EPA scan failures

-Top users by failed attempts

You can also export NetScaler Gateway reports from Command Center. You can export them as graphs, tables (CSV files), or both. You can also schedule the Reports.

To view NetScaler Gateway reports

On the Reporting tab, navigate to NetScaler Gateway > Reports, select the report you want to view and then click View Graph.

To schedule NetScaler Gateway reports

On the Reporting tab, navigate to NetScaler Gateway > Notification Settings, and then click Schedule Report.

You now have a single option, LDAP, for configuring either an Active Directory or an Open LDAP authentication server.

On the Administration tab, navigate to Security > Authentication Settings, and select LDAP. In the Server Type list, select either Active Directory or Open LDAP, and then configure the rest of the fields as required for the authentication server you selected.

You can now receive an SNMP trap if the size of the Command Center database reaches a configured threshold value. You can also receive an email notification.

By default, the size of the Command Center database is checked once an hour. You can specify the threshold value in MB, or as a percentage (%) of the disk space allocated to the database.

If you have configured the threshold value as a percentage, then the percentage of the used size is compared against the allocated database size and the notification is generated if the percentage exceeds the configured threshold value.

If you have configured the threshold value as a size (MB), then the used database size is compared against the configured threshold size and the notification is generated if the database size exceeds the configured threshold value.

This feature is supported for the following database servers:

-MSSQL

-MySQL

-Oracle

Note that this feature is not supported for the PostgreSQL database server.

To configure database monitoring

1. On the Administration tab, navigate to Settings > Database Monitor Settings.

2. Select the Enable Database Monitoring option and specify the threshold value as a percentage or as a size (MB).

3. If you also want to receive an email notification, select the Enable Email Notification option and then configure the email server from which to send email notifications.

You can now view a graph of up to 40 top violations in Application Firewall reports. You can also schedule an Application Firewall report of up to 40 top violations.

You can now export syslogs from Command Center. For Application Firewall and NetScaler Gateway syslogs, you can export the recent syslogs that appear under Logs, and you can export syslogs for the views that you have configured under Views. You can also export the syslogs that appear on the Fault tab, under Logs and Views.

You can specify the criteria for exporting syslogs that appear under Logs. Different criteria apply to NetScaler Gateway and Application Firewall syslogs. You can limit the number of rows to be exported depending on your need. The default limit for the number of rows to be exported is 1000, and the maximum is 10000.

You can now export all graphs (image files) and data in tabular format (CSV file) from the Application Firewall dashboard.

Note the following changes in the Command Center graphical user interface:

1. Fault > Syslogs

- "Complete View" has been renamed to "Logs."

- "Filters" has been renamed to "Suppress Logs."

2. Reporting > AppFirewall

- "Filters" has been renamed to "Suppress Logs."

- "Recent Logs" has been renamed to "Logs."

- "Views" was under "Recent Logs" which is now under "AppFirewall."

- "Schedule Report" was under "Reports" which is now under "Notification Settings."

3. Reporting > NetScaler Gateway

- "Filters" has been renamed to "Suppress Logs."

- "Recent Logs" has been renamed to "Logs."

- "Views" was under "Recent Logs" which is now under "NetScaler Gateway."

The Management Service backup now contains only the Management Service configuration backup. This backup no longer includes the image of the NetScaler SDX appliance and NetScaler VPX instances, nor the configuration information for NetScaler VPX instances running on the NetScaler SDX appliance.

If a NetScaler device is enabled with Common Event Format (CEF) logging for Application Firewall, Command Center fails to retrieve views for an alarm.

When OpenLDAP is used for Command Center authentication, a logon attempt with valid credentials fails.

Command center might display same host names for different devices.

User defined rollback commands are not displayed in the preview screen before task execution.

The default value of Event Cleanup Interval is now 30 days. In earlier releases, the default value was 180 days. If you had configured this value to anything other than 30 days before upgrading to the latest release, you must again set it to the value as per your need.

The arrow icon indicates that the records displayed in the Command Center graphical user interface are sorted in ascending order, but they are actually sorted in descending order.

The DeployMasterConfig task fails if the input XML file contains standard comments.

Command Center service fails to start, because of JRE corruption.

You can now specify the device group in the input file to deploy the master configuration on a NetScaler device.The variable values defined in the devicegroup tag take precedence over the global variable values and the variable values defined in the device tag take precedence over the devicegroup variable values.

The browse button to search users from Active Directory is now changed to a search icon.

All entities bound to an entity might not be displayed if you restrict a user to that entity by using Advanced Settings.

The Command Center logon page might take a long time to load.

Appropriate error messages are not displayed in the execution logs if the DeployMasterConfig task fails.

After you install or upgrade Command Center, the first attempt to connect to the MSSQL database fails.

Appropriate error messages might not be logged in the task execution logs if there is an error in the input XML file.

If Command Center is configured with a custom certificate that does not have a default password, the Command Center service fails to start during an upgrade.

The DeployMasterConfig task fails if the configuration template file contains HTML tags, because Command Center uses the characters "<" and ">" to enclose the variable name. You can now use the "$" character to enclose the variables (for example, $NS_IP$).

Command Center now supports using the NITRO API to fetch a device list on the basis of device type.

In the NetScaler Gateway dashboard, the "Top 10 users by EPA scan failures" report displays invalid data.

The CLI commands to generate the technical support bundle have been updated as below:

On a windows system:

generate_technical_support.bat basic

generate_technical_support.bat advanced

On a linux system:

sh generate_technical_support.sh basic

sh generate_technical_support.sh advanced

If an Active Directory user that is a member of a group is reassigned to another group, the Command Center graphical user interface lists the user as part of the original group.

On the Monitoring tab, the search functionality fails if the user belongs to two groups and advanced authorization settings are configured.

If a scheduled report generates the "Too many data points to plot" error at the same time for two different charts, graphs are not attached in the email sent to the user.

In an HA setup of a Command Center server, SSLv3 status change operations (enable or disable) are not propagated to the secondary appliance

Workaround:

Enable or disable SSLv3 when the secondary appliance is UP.

Command Center connections become stale because they are not refreshed.

If the Command Center logon password is longer than 15 characters, an attempt to log on to the Command Center GUI fails.

The Linux script EncryptPassword.sh throws a bad interpreter error because the script contains ^M characters.

The help text on the custom task creation screen now appears as a tool tip.

With this fix, the following weak ciphers have now been removed from the cipher list:
TLS_DHE_RSA_WITH_AES_128_CBC_SHA and TLS_DHE_RSA_WITH_AES_256_CBC_SHA.

Command Center now supports the  following strong ciphers:
TLS_RSA_WITH_AES_128_CBC_SHA,TLS_RSA_WITH_AES_256_CBC_SHA,TLS_DHE_DSS_WITH_AES_128_CBC_SHA,
TLS_DHE_DSS_WITH_AES_256_CBC_SHA,SSL_RSA_WITH_3DES_EDE_CBC_SHA,SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA,
SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA,TLS_EMPTY_RENEGOTIATION_INFO_SCSV

If you modify the default cipher before upgrading to this release, Command  Center retains all the ciphers from the previous release.
If the GUI is not accessible after the upgrade, you must replace the cipher list with the following strong ciphers and add any ciphers that you previously added to the list:
   
TLS_RSA_WITH_AES_128_CBC_SHA,TLS_RSA_WITH_AES_256_CBC_SHA,TLS_DHE_DSS_WITH_AES_128_CBC_SHA,
TLS_DHE_DSS_WITH_AES_256_CBC_SHA,SSL_RSA_WITH_3DES_EDE_CBC_SHA,SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA,
SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA,TLS_EMPTY_RENEGOTIATION_INFO_SCSV

You must replace the ciphers in the following files:
       
* <CC_HOME>/apache/tomcat/conf/backup/server.xml
* <CC_HOME>/security_modules/https/apache/tomcat/conf/backup/server.xml
* <CC_HOME>/conf/transportProvider.conf

Rollback of commands in the DeployMasterConfig built-in task fails.

If you configure an alarm or event trigger for a Send Trap action to send SNMP traps to an SNMP manager, SNMPv3 traps are forwarded to the manager as SNMPv2 traps.

The NetScaler dashboard always displays the CPU Usage (%) value as 0 for a NetScaler cluster.

The restore configuration option on the details page for a device does not display the log information.

When creating views for SNMP alarms and events on the Faults tab, selecting a device type on the Create View page does not load the filter criteria associated with the device type.

Rediscovery of a cluster device with an SNMP v3 profile fails after the Configuration Coordinator node restarts.

You might be unable to log onto Command Center after a fresh installation, because of a corrupted security configuration.

Workaround: After a fresh installation, reset the Command Center configuration by re-initializing it. To do so, run the reinitialize_nms.bat or reinitialize_nms.sh script, which is located in the CCHome/bin/ folder

If you install Command Center servers in a high availability (HA) pair or upgrade Command Center servers in an HA pair to new build, one of the servers might not start.

Workaround: Restart the server that failed to start.

You cannot generate a report by using the "RunningVsSavedconfiguration" audit policy on a NetScaler device if the device password contains a hash (#).

Workaround: Modify the device password.

On the Citrix Network > Device Inventory > NetScaler screen, the Command Center server does not sort the System Uptime column by date but by the string value.

The Device Inventory screen does not display the IP address, platform and hostname for the CloudBridge 800 platform.

If you access the Command Center server through an Internet Explorer 8 browser, the virtual servers screen (Monitoring> NetScaler> Virtual Servers) displays an error message.

Because of security vulnerabilities in the TLSv1 SSL protocol, the default settings for Command Center no longer support TLSv1. However, CloudBridge devices currently do not support TLSv1.1 or TLSv1.2. After you upgrade to this release, Command Center's ability to discover and connect to CloudBridge models 400, 800, 1000WS, 2000, 2000WS, 3000, 4000, and 5000 is lost.

Workaround: To discover CloudBridge devices, on the Administration tab, under settings, click SSL Settings and then select the Enable TLSv1 option.

Command Center accesses unknown DNS IP addresses.

Workaround:

Update the /var/cache/yum/addons/mirrorlist.txt file to remove the invalid DNS entries.

Alarms are not purged if a huge number of incoming traps (around 10,000 requests per second) arrive for processing on the Command Center server.

If you add a device to Command Center, sometimes, the discovery process might not proceed.

Workaround: Restart the Command Center server.

You cannot search for an execution log by specifying the status message that appeared when the task was executed.

The details of a security violation of type APPFW_CSRF_TAG, displayed in AppFirewall log messages, are incorrect for NetScaler devices running release 10.0.

In the Authentication settings for Active Directory Group extraction, the option to retrieve the attributes from the Active Directory server and select the attributes from the retrieved list is not available in Command Center release 5.1 or later.

AES based encryption is not applicable for USMTable in SNMPv3 discovery.

The counter values for Transmit Link utilization and Receive link Utilization are incorrect.

When you replicate a configuration on a NetScaler device, the L2 and L3 configurations are also replicated.

The advanced search and find device features, formerly on the Home page, are not available in the Command Center release 5.2, because of migration to the new user interface framework.

The Replicate Configuration feature is not supported for a NetScaler cluster or for NetScaler devices in a high availability pair.

The option to export the details in the custom views of Events and Alarms is not available in Command Center release 5.2.

The following export options are not available in Command Center release 5.2:

* Export entire custom view data

* Export displayed data

* Export Annotations

If the number of failure objects in Command Center is high and you create or modify custom views in Events and Alarms, a script error occurs.

Command Center does not support Windows authentication mode for an MSSQL database. It only supports SQL authentication mode.

On the graphical user interface (GUI), the Logs Settings page (Administration > Logging > Logs Settings) now displays the following details:

- Logger: Type of log file.

- Level: Level of log you want to generate. Select the log level for a file.

- Appender: A link to set the file appender details.

When you click on file name in the Appender column, you can modify the following settings:

- File Name: Name of the log file with which the appender is associated.

- Max Backup: Maximum number of files to be backed up when storing the logs. When this limit is reached, the log file is rolled back.

- File Size: Maximum size of the log file.

You can now track the configuration files downloaded during discovery of a NetScaler SDX device or a CloudBridge Advanced Platform (CloudBridge 400 or CloudBridge 800). You can back up the configurations of a device at any time.

On the SDX Device Properties page, you can now perform the following tasks:

- Backup Config: Initiate configuration backup.

- Refresh: Refresh the Archived Details section.

- Download: Download configuration and license files to your local system.

The following details are also available for each file archived during discovery, during intervals set by the user, or for the current time:

- Time: The date and time when the configuration and license files were archived.

- View Files: The list of files archived. To view the list of all the license and configuration files archived and stored in the database, click View Files.

- Comments: Details about when the files are downloaded (for example, File downloaded during discovery).

You can use the NetScaler Dashboard to view the status of all the NetScaler devices being managed by Command Center. You can view the name, CPU usage, memory usage, throughput statistics, and HTTP requests per second data for each discovered device.

You can now search the execution logs by task name, device, or status by using the search option on the Execution Log page.

The CloudBridge Advanced Platform (CloudBridge 400 and CloudBridge 800) can initiate discovery by Command Center, if you configure the IP address, port, and password of the Command Center server on the CloudBridge Advanced Platform (CloudBridge 400 and CloudBridge 800). The appliances then use NITRO APIs to send registration requests to Command Center. The Command Center server then automatically starts the discovery process.

You can now use Command Center to monitor and manage the states of servers across the NetScaler infrastructure.

You can now assign Execute task Action to filter the event and alarm triggers.

The Initial Configuration wizard enhances the first time user experience by helping you get started with Command Center efficiently and effectively, and by guiding you through the initial configurations. This ensures that you perform all the required configurations without having to navigate to GUI pages of different tabs in the Command Center GUI.

In this release, you can now use the following built-in tasks to execute configuration changes on CloudBridge devices:

- AddWCCPServiceGroup

- EnableWCCP devices

- DisableWCCP

- SetApplication

- SetTrafficShapingPolicy

- AddTrafficShappingPolicy

- AddService

- AddLink

For details, see http://support.citrix.com/proddocs/topic/command-center-52/cc-tasks-conf-repeater-builtin-tasks-tsk.html.

You can now perform the following tasks in Certificate Management:

- Display the SSL certificate links

- Link certificate(s) to CA certificates

- Unlink certificate(s) from CA certificates

For more information, see http://support.citrix.com/proddocs/topic/command-center-52/cc-mng-mon-sslcert-link-unlink-tsk.html and http://support.citrix.com/proddocs/topic/command-center-52/cc-mng-mon-sslcert-view-certs-tsk.html.

This release supports AES-based encryption of device credentials.

You can now search for a device by device name or status, after navigating to Citrix Network > Devices > Discovery Status.

Command Center can now discover ByteMobile Traffic Director. To begin monitoring the device, you must connect to the Command Center server and then add the ByteMobile Traffic Director for discovery. Command Center initiates the discovery process, which stores the ByteMobile Traffic Director related information in the Command Center server.

The Deployment Automation feature provides easy automation for deployment management when deployments are going through rapid changes. This module provides smooth migration of configurations across different deployments and exposes RESTful NITRO APIs with which you can automate the entire process. For details, see http://support.citrix.com/proddocs/topic/command-center-52/cc-tasks-devops-confmig-tsk.html

When you view the graph for a custom report, you can now click the auto-refresh button to refresh the graph.

Command Center now supports MSSQL 2012.

Command Center 5.2 supports MySQL 5.6 and the Red Hat Enterprise Linux (RHEL) 6.2 operating system.

You can now apply XenServer hotfixes on the Command Center hardware appliance. For details, see http://support.citrix.com/proddocs/topic/command-center-52/cc-admin-apply-xenserver-hotfixes-tsk..html.

If you have resolved any alarms, or if the alarms are no longer valid, you can either clear or delete all the alarms from the Citrix Network tab, depending on multiple severity levels.

The Configuration Management module in Command Center enables you to execute various configuration commands on multiple devices at the same time. You can create configuration profiles that are templates you can use to execute configuration tasks.

If you create a CloudBridge Advanced Platform device profile, you no longer have to provide the CloudBridge profile and NetScaler details. Command Center internally creates CloudBridge and NetScaler profiles from the corresponding CloudBridge Advanced Platform profile.

Also, if you create a CloudBridge device profile, you no longer have to specify the file transfer details. Command Center internally assigns the default user name transfer and assigns the same password that you specify for device login.

Command Center now supports CloudBridge Advanced Platform (CloudBridge 400 and CloudBridge 800).

Progress of Executed Tasks

After you provide the details for executing a built-in task or a custom task, a pop-up screen appears, stating that the task execution is in progress. You are redirected to the Execution Log page that displays the progress of the executed task.

The Invoke CLI button is now available on the header of the Device Inventory screen.

You can now select the columns to include in the tables on Command Center screens such as Device Inventory, Discovery Status, and Device Profiles, and you can rearrange the columns. Each user's changes persistent across his or her sessions.

Choose the column names from the Settings drop-down list next to the Search button.

Command Center now supports the following NetScaler counters:

*vsvrTotalServers,1.3.6.1.4.1.5951.4.1.3.1.1.65

*vsvrInvalidRequestResponse,1.3.6.1.4.1.5951.4.1.3.1.1.67

*vsvrInvalidRequestResponseDropped,1.3.6.1.4.1.5951.4.1.3.1.1.68

*vsvrEstablishedConn,1.3.6.1.4.1.5951.4.1.3.1.1.71

*vxlanTable,1.3.6.1.4.1.5951.4.1.1.81

*vxlanEntry,1.3.6.1.4.1.5951.4.1.1.81.1

*vxlanVNId,1.3.6.1.4.1.5951.4.1.1.81.1.1

*vxlanTotRxPkts,1.3.6.1.4.1.5951.4.1.1.81.1.2

*vxlanTotRxBytes,1.3.6.1.4.1.5951.4.1.1.81.1.3

*vxlanTotTxPkts,1.3.6.1.4.1.5951.4.1.1.81.1.4

*vxlanTotTxBytes,1.3.6.1.4.1.5951.4.1.1.81.1.5

The Execution Logs pane on the Configuration tab is now more intuitive and user friendly.

Command Center now supports the OpenLDAP as one of the authentication servers.

Command Center now has an autoconfiguration feature, which combines configuration profiles with the registration feature to automatically discover and configure one or multiple CloudBridge 400, 800, 1000 WS, 2000, 2000 WS, or 3000 appliances.

For details, see http://support.citrix.com/proddocs/topic/command-center-52/cc-pure-cs-citrix-network-auto-config-map.html.

Command Center now supports the following NetScaler SNMP traps:

*vridStateChange

*portAllocFailed

*lldpRemTablesChange

"Show Service Bindings" and "Show Service Group Bindings" are now on the Servers screen, which is on the Monitoring tab.

The reporting graphs are now enhanced to display the peak values and minimum values along with average values.

Command Center now supports sending audit logs to an external syslog server.

To add a syslog server, on the Administration tab in the details pane, under Security, click Syslog Server.

For more details, see http://support.citrix.com/proddocs/topic/command-center-52/cc-admin-conf-syslog-setting.html

You can now select the following properties when you apply the authorization settings on a group:

*Server IP address

*Server Name.

Command Center now applies a password policy to provide security against hackers and password-cracking software.

To apply a password policy, on the Administration tab, in the details pane, under Security, click Password Policy and specify the parameters.

Command Center now supports the following CloudBridge SNMP traps:

*invalidBridgeConfig

*invalidHttpCachingConfigFile

*qosEngineError

*MapiNtlmError

*EthernetCrcError

*qosLinkConfigWarning

*MaxUnacceleratedConn

*badHardware

*warning

*CheckServiceClass

*cachingEngineMajor

*cachingEngineMinor

*cachingEngineWarning

The Device Inventory screen on the Citrix Network tab now displays the nodes for device types.

You can now use the following built-in tasks to upgrade a CloudBridge Advanced Platform appliance and its instances:

*UploadSoftwareFile

*UpgradeSoftware

On the Configuration tab, in the navigation pane, navigate to Configuration > Built-in Tasks and, in the details pane, select CloudBridge Advanced Platform.

This feature is available on CloudBridge Advanced Platforms running version 124.1353.e or later.

For more details, see http://support.citrix.com/proddocs/topic/command-center-52/cc-tasks-upgrade-cb-adv-plt-builtin-con.html.

You can now enter administrator or user comments for any discovered device.

To include comments, on the Citrix Network tab, under Device Inventory, navigate to any of the device types, Then, in the details-pane, select the device, and from the Action drop-down list select Annotate.

Alternately, right-click the device, and then click Annotate.

If a custom task fails, you can now choose to ignore the command failure and continue with execution of the remaining commands.

The column customization settings drop-down list on the Device Inventory screen displays the SNMP Device Name, Description, and Location options.

The Command Center appliance now monitors the following server conditions and generates an alarm if they occur:

-Memory usage greater than 90%

-CPU usage of 100%

-Page Fault more than 1

-Disk usage greater than 90%

-Interface Status of Down

-HA status

To display this information, on the Command Center appliance, navigate to Administration, and in the left pane select Information > Server.

You can now assign the views on the Monitoring tab to other users in a group by assigning administrator privileges to the view.

For more details, see http://support.citrix.com/proddocs/topic/command-center-52/cc-custom-view-group-assign-tsk.html.

You can now configure ciphers in Command Center.

For details, see http://support.citrix.com/proddocs/topic/command-center-52/cc-faq-gen-51-con.html.

You can configure an SNMP agent on the Command Center appliance, so that an external SNMP manager can monitor the appliance and query any of its Management Information (MIB) objects.

To configure an SNMP agent, on the Administration tab, under Security, click SNMP Agent Configuration.

For more details, see http://support.citrix.com/proddocs/topic/command-center-52/cc-admin-conf-snmp-trap-fwd-tsk.html.

You can now install Command Center on the 64-bit version of CentOS.

For details on operating systems, see http://support.citrix.com/proddocs/topic/command-center-52/cc-install-os-reqmnt-ref.html.

You can now install Command Center on the Windows server 2012 R2 platform.

For details on operating systems, see http://support.citrix.com/proddocs/topic/command-center-52/cc-install-os-reqmnt-ref.html.

Command Center now displays the entity's IP address and port, along with the entity name, for all the SNMP event and alarm details for entity UP, DOWN, and OUT OF SERVICE traps.

If you use an RBAC server for authentication, Command Center groups are configured to match groups configured on authentication servers. When a user logs on and is authenticated, if a group name matches a group on an authentication server, the user inherits the settings for the matching Command Center group.

For more details, see http://support.citrix.com/proddocs/topic/command-center-52/cc-admin-conf-authntcn-settng-4-0-tsk.html#cc-admin-conf-authntcn-settng-4-0-tsk.

Command Center now supports the following built-in tasks for CloudBridge appliances:

-AddVideoCachingSource

-AddorRemoveVideoCachingPorts

-SetVideoCaching

-RemoveVideoCachingSource

-RemoveAllVideoCaching

-ClearVideoCaching

-VideoCachingState

-AddVideoPrePopulationNow

-AddorUpdateVideoPrePopulation

-VideoPrePulationState

For more details, see http://support.citrix.com/proddocs/topic/command-center-52/cc-tasks-conf-repeater-builtin-tasks-tsk.html.

You can now install Command Center on a named instance of MSSQL server 2012.

Command Center can now be configured to repeat email notifications at specified time intervals until an alarm is cleared. Navigate to Fault> SNMP> Alarms> Triggers> Add> Add Action to enable this option.

The search functionality in Command Center is now improved to display the filter names in the search option even after performing multiple search operations by using the same filter name.

Command Center now supports NITRO APIs for custom views.

You can now use the DeployMasterConfig built-in task to configure parameter values across NetScaler devices by applying the global configuration template and an input file.

If any discovered NetScaler device has an SNMP manager configured, Command Center adds itself as an SNMP manager.

Command Center now supports the UploadXVA built-in task to upload a XenServer Virtual Appliance (XVA) image to one or more NetScaler SDX appliances.

Command Center now supports SCP protocol to make configuration changes across NetScaler and CloudBridge devices.

You can now enable or disable the SNMP alarm filters and schedule them (Fault> SNMP> Alarms> Triggers > Schedule a Filter.)

The Execution Log screen (Configuration> Configuration> Execution Log) now includes a Status Message column, which provides details about the progress of task execution.

You can now discard obsolete syslog records by creating a filter.

To configure a Syslog filter, on the Fault tab, navigate to Syslogs> Filters, and click Add.

Command Center server now provides the option to enable or disable SSLv3 (Administration> Settings> SSLv3 Settings.) By default, SSLv3 is disabled on the Command Center server.

You can now configure the syslog purge interval for different syslog messages.

To configure the purge interval, on the Administration tab, in the Settings group, click Syslog Purge Settings.

You can now search for an execution log by specifying the Start Time, End Time and Execution time of a task.

The search by execution time works on the values displayed in the Start time and End Time columns.

You can now abort task execution, on one or more devices, by selecting the devices and clicking the Abort button.

Group extraction feature is now available for RADIUS authentication server.

Command Center now supports MSSQL 2014.

You can now discard obsolete AppFirewall or NetScaler Gateway syslog records by creating a filter.

To configure the AppFirewall filter, on the Reporting tab, navigate to AppFirewall> Filters, and click Add.

To configure the NetScaler Gateway filter, on the Reporting tab, navigate to NetScaler Gateway> Filters, and click Add.

The sorting option after performing a search on the Monitoring tab does not work.

On the Administration tab, after you configure the access setting values for server protocol and server port, and then upgrade Command Center, default server protocol and server port values are reset to their defaults.

The SoftwareUpgrade task fails to upgrade CloudBridge appliances.

You might not be able to configure a high availability (HA) setup after upgrading a Command Center hardware appliance to version 5.1 build 33.3.

On a Command Center hardware appliance running software version 5.1 build 33.3, a failover can cause the MYSQL replication to fail, which in turn can disable high availability (HA) functionality.

You cannot modify the device profile from the Citrix Network > Add Device > Modify icon.

Huge NetScaler configuration files cause high disk usage.

After you upgrade Command Center, you cannot change the Command Center password.

You might not be able to configure a high availability (HA) setup after changing the password of a Command Center hardware appliance.

On the Configuration tab, the task specific execution log does not display the Command Center user details.

On the Configuration tab, after you click Add Command to add a command while adding or editing a custom task, the Command field d does not provide a scroll option for long commands.

On the Configuration tab, when you edit a custom task and click Add Task Variable to add a variable task, some fields are not displayed.

The Monitoring tab might not display the list of polled entities for a NetScaler HA pair.

When you add a device, the Device Profile drop-down list does not display all the available device profiles.

If you use the Command Center graphical user interface (GUI) to change the database password for a high availability (HA) setup, the password change is not propagated to the secondary Command Center appliance.

When you generate a technical support file, the size of the stdout.txt file increases, causing an Out Of Memory (OOM) condition. As a result, Command Center fails to generate the technical support files.

Event severity configuration changes roll back to their default configurations after a service pack installation.

When a secure FTP to a NetScaler device fails, an OutOfMemory (OOO) error occurs.

If the licensing server fails, you cannot log on to Command Center.

An IE9 browser displays long overlapping commands in the ConfigurationChangeHistory built-in audit policy reports.

The refresh button on the Citrix Network > Maps page does not work.

In Command Center 5.2, you cannot modify the custom logs, such as ccapiout.txt, ccapierr.txt and ccagentout.txt.

You can create duplicate groups through the 'Add Users' option.

If you upgrade Command Center to version 5.2, build 40.1, the SNMP community setting might become a blank string.

If you click on the Monitoring tab, Command Center throws an undefined error.

The AppFirewall Recent Logs Screen displays incorrect field values if the Signature category contains more than one hyphen in Signature Violations syslogs.

The Reporting tab for Application Firewall (Reporting> AppFirewall > Recent Logs) displays incorrect values for APPFW_MAX_UPLOADS.

After you install Command Center, you cannot add a CloudBridge 7.2.1 appliance to the Command Center inventory if the CloudBridge serial number is more than 50 characters long.

After you upgrade a Command Center appliance, you might not be able to log on to Command Center if you have configured a syslog server with a port value other than the default.

The entities displayed on the Monitoring tab disappear when the cleanup scheduler deletes the latest polled entities along with the older ones.

The uninstall option functions on Command Center appliance.

The custom task parameters are not preserved if you create a custom task by importing an xml file or if you export the custom task as an xml file.

If, While configuring the server settings on the Administration tab (Settings > Server Settings), you select host name as the Device label, the search functionality for host name does not work across the Command Center graphical user interface.

The following counters are defined as OCTET STRINGs in NetScaler SNMP MIB, but are actually Counter64 values and are not polled in Command Center for reporting.

-vserverTable_vsvrClientConnOpenRate

-nsTcpStatsGroup_tcpTotClientConnOpenRate

-serviceGroupMemberTable_svcGrpMemberRequestRate

-serviceGroupMemberTable_svcGrpMemberRxBytesRate

-serviceGroupMemberTable_svcGrpMemberTxBytesRate

-serviceGroupMemberTable_svcGrpMemberSynfloodRate

If an existing custom task is open when you create a new custom task, the details of the new task are replicated in the existing task.

If you configure the root user password of a Command Center appliance to include special characters, the root user cannot use SSH to connect to the Command Center virtual machine or the XenServer virtual machine.

If Command Center is configured with a custom certificate that does not have a default password, the Command Center service fails to start during an upgrade.

Command Center service fails to start, because of JRE corruption.

When OpenLDAP is used for Command Center authentication, a logon attempt with valid credentials fails.

If you configure the autoconfiguration feature and create a configuration profile with more than 675 lines of commands, the configuration profile is not listed in the configured profile list.

You cannot export the device inventory details for CloudBridge Accelerator and NetScaler devices.

The Administration tab displays the following error message if Command Center does not receive enough database connections:

'Audit Log:{ "errorcode": 400, "message": "No Custom view found with the id "AuthAudit" for user <user_name>i"}

Workaround: Run the Update_Patch_Db.bat/.sh file file located in <CCHome>/bin/ path to solve the issue.

The NetScaler dashboard (Monitoring > NetScaler> Dashboard) displays incorrect CPU usage percentage values for NetScaler MPX appliances.

If a user is disabled on the Active Directory server, and a new user logs on to the Command Center server, the logs show that the user who is disabled on the Active Directory server is performing the actions of creating the new user on the Command Center server as part of authentication.

The NetScalerConfigChange trap is generated every time a NetScaler 10.5 appliance is rediscovered.

If you sort the date columns on the Command Center server, the sort is based on the string, not the date value.

When you search for Active Directory groups by specifying the group name characters, Command Center displays incorrect results.

In an HA configuration, the data in the primary node is not synced with the secondary nodebecause of compression issues.

Command Center displays an error message if you access NITRO APIs by using unsupported JRE versions.

If you upgrade a Command Center server to release 5.2, the Command Center service does not start. It displays the "No suitable driver found" error message.

The Linux script EncryptPassword.sh throws a bad interpreter error because the script contains ^M characters.

The Customize button for all built-in tasks is now modified to "Save As."

Your Command Center service account changes to a network service account after you upgrade to a release 5.2 build.

On the device inventory screen, if you right-click a device and click Alarms, the Command Center server displays the "Error in retrieving alarms" message.

It also does not function if you configure Command Center to display the Host Name column.

On the Citrix Device Inventory, the View Alarms operations does not function if you configure Command Center to display the Host Name column.

If an alarm is triggered when you assign the Execute Task action with an SNMP filter, the Command Center server displays the "Error in retrieving Alarm Trigger" error message.

The user credentials of external users who are authenticated over the RADIUS server are stored in the Command Center server.

If a user is present in both local server and RADIUS server, the user password gets overwritten on the Command Center server.