Release Notes for Build 56.20 of NetScaler 12.0 Release

January 5, 2018|Release notes version: 1.0
This release notes document describes the enhancements and changes, lists the issues that are fixed, and specifies the issues that exist, for the NetScaler release 12.0 Build 56.20. See Release history.

Notes

  • Customers using NetScaler 59xx/89xx appliances, don't upgrade to a 12.0 56.20 image. We will be posting patches suitable for these appliances as soon as possible. Consult Citrix support to implement mitigation steps meanwhile.
  • The Release History section includes all the NetScaler 12.0 builds that had been released earlier. However, builds starting only from 53.13 are available on the Downloads site.
  • This release notes document does not include security related fixes. For a list of security related fixes and advisories, see the Citrix security bulletin.
  • This build includes fixes for the following 35 issues that existed in the previous NetScaler 12.0 release build: 691795, 692922, 691229, 692649, 691268, 693310, 658108, 692943, 688274, 691507, 678885, 686516, 692771, 693522, 687084, 689491, 692326, 693286, 690647, 685181, 693472, 688412, 690975, 675347, 686713, 688100, 692481, 693312, 693356, 633371, 684574, 691308, 692149, 692613, 690534.
  • The known issues section is cumulative. It includes issues newly found in this release, and issues that were not fixed in previous NetScaler 12.0 releases.
  • The [# XXXXXX] labels under the issue descriptions are internal tracking IDs used by the NetScaler team.

Points to Note

Some important aspects to keep in mind while using Build 56.20.

NetScaler SDX Appliance

  • When you upgrade a NetScaler SDX appliance from an older release to release 11.1 51.x and later, some of the VPX instances running on the SDX appliance fail to start if the following conditions are met:
    - The SDX appliance is configured with Intel X710 10G and XL710 40G NICs
    - More than 20 VPX instances run on the SDX appliance
    This happens because in older NetScaler releases (prior to 11.1 51.x) one NIC can support up to 40 VPX instances. However, from release 11.1 51.x onwards one NIC can support only up to 20 VPX instances.
    So, after you upgrade to release 11.1 51.x and later ensure that one NIC is configured for maximum 20 VPX instances. For additional VPX instances, configure a different NIC.
    [# 699567]

Policies

What's New?

The enhancements and changes that are available in Build 56.20.

AAA-TM

  • HMAC SHA256 Authentication Support for NetScaler AAA
    The NetScaler appliance configured for NetScaler AAA now accepts incoming tokens that are signed using keyed-hash message authentication code (HMAC) HS256 algorithm. In addition, the public keys of the SAML Identity Provider (IdP) are read from a file, instead of learning from a URL endpoint.
    For more information, see https://docs.citrix.com/en-us/netscaler/12/aaa-tm/oauth-authentication.html.
    [# 681415]

Admin Partitions

Clustering

Load Balancing

NetScaler GUI

NetScaler Gateway

NetScaler SDX Appliance

NetScaler Secure Web Gateway

NetScaler VPX Appliance

SSL

System

Video Optimization

Fixed Issues

The issues that are addressed in Build 56.20.

AAA-TM

  • If an assertion is sent twice from the same browser, a NetScaler authentication virtual server configured by using SAML authentication returns a 404-error message.
    [# 686810]

Admin Partitions

AppFlow

Application Firewall

Cache Redirection

DNS

GSLB

Integrated Caching

Load Balancing

NetScaler GUI

NetScaler Gateway

NetScaler Insight Center

NetScaler NITRO

NetScaler SDX Appliance

NetScaler Secure Web Gateway

NetScaler VPX Appliance

Networking

Optimization

Policies

SSL

System

Telco URL Filtering

Upgrade and Downgrade

Video Optimization

Known Issues

The issues that exist in Build 56.20.

AAA-TM

  • SHA256 digest algorithm is not supported on a NetScaler FIPS appliance configured for SAML authentication or as a SAML IDP. However, an appropriate error message does not appear in the browser.
    [# 639349]

Analytics

AppFlow

Application Firewall

Clustering

DNS

DataStream

GSLB

Licensing

Load Balancing

NetScaler CPX

NetScaler GUI

NetScaler Gateway

NetScaler ICA

NetScaler Insight Center

NetScaler SDX Appliance

NetScaler Secure Web Gateway

NetScaler VPX Appliance

Networking

Optimization

Policies

SSL

System

Telco

Upgrade and Downgrade

User Interface

Video Optimization

What's New in Previous NetScaler 12.0 Releases

The enhancements and changes that were available in NetScaler 12.0 releases prior to Build 56.20. The build number provided below the issue description indicates the build in which this enhancement or change was provided.

AAA-TM

  • POST and Redirect Bindings Support during Logout
    A NetScaler appliance used as a SAML SP now supports POST and Redirect bindings during logout. Previously, only POST binding was supported.
    [From Build 35.6] [# 642102]

Admin Partitions

AppExpert

Application Firewall

Clustering

DNS

GSLB

Licensing

Load Balancing

NITRO

NetScaler CPX

NetScaler GUI

NetScaler Gateway

NetScaler SDX Appliance

NetScaler Secure Web Gateway

NetScaler VPX Appliance

Networking

Platform

SSL

System

Telco

Fixed Issues in Previous NetScaler 12.0 Releases

The issues that were addressed in NetScaler 12.0 releases prior to Build 56.20. The build number provided below the issue description indicates the build in which this issue was addressed.

AAA-TM

  • If the LDAP bind account password used on a NetScaler appliance contains the "at" special character (@), test connection performed on LDAP server fails, and the dashboard shows that the LDAP server is down.
    [From Build 53.22] [# 654375, 689891]

Admin Partitions

AppExpert

AppFlow

Application Firewall

Clustering

Content Switching

DNS

Front End Optimization

GSLB

Integrated Cache

Integrated Caching

Load Balancing

NITRO

NS-Gateway

NetScaler 1000V Appliance

NetScaler GUI

NetScaler Gateway

NetScaler ICA

NetScaler NITRO

NetScaler SDX Appliance

NetScaler Secure Web Gateway

NetScaler VPX Appliance

Networking

Optimization

Policies

SSL

System

Telco

User Interface

Release history

For details of a specific release, see the corresponding release notes.
  • Build 56.20 (2017-12-20) (Current build)
  • Build 53.22 (2017-08-28) Replaces: 53.13
  • Build 51.24 (2017-07-14)
  • Build 41.24 (2017-05-25) Replaces: 41.22
  • Build 35.6 (2017-03-02)

Fixed Issues