ADMS Release Notes

Version 2.3.0 Released 2017-06-20


New Features

  • [ADMS-98] - Sync KAMAR photos

    ADMS can now save staff and student photos as a 96x96 thumbnail in the thumbnailPhoto and jpegPhoto attributes and to the local disk or network location for use elsewhere.

  • [ADMS-102] - Ability to use caregiver details

    Caregiver names and email addresses are now available to use in Attribute Mapping as <caregivernames> and <caregiveremails>. If there is more than one caregiver then the values will be comma separated.


Changes

  • [ADMS-96] - Remove NSN

    In an upcoming KAMAR update the NSN will no longer be sent in the Directory Services data.

    Impact:

    • The <nsn> placeholder has been removed and will no longer be parsed when used in an Attribute Mapping

    • The order of the student script parameters order will not change and the value of the NSN parameter will now be an empty string.

  • [ADMS-101] - Ensure Directory Services XML is valid before processing

    If the request data from KAMAR contains invalid XML ADMS will now return and log an error with the details instead of aborting without anything helpful.

  • [ADMS-103] - Migrate password hash into attribute mappings

    The password hash location will be migrated into an Attribute Mapping for each user type (staff & student). The hash format is still set globally in the Service section of the Admin Console.

    Resolves issues where a user's password hash is not set/updated when:

    • the user's password is in sync
    • the hash location is changed
    • the hash type is changed

Bug Fixes

  • [ADMS-91] - INF and ERR logs for an invalid user location do not provide enough detail

  • [ADMS-92] - Removing left users group memberships unhandled exception

    Worked around an issue where ADMS would occasionally throw an execption (that we didn't expect) when attempting to enumerate a user's group memberships.

  • [ADMS-93] - Left user group memberships not being removed

    When a user is identified as left ADMS would clear the group memberships and then add the groups back during group processing.


Version 2.2.0 Released 2017-04-11


New Features

  • [ADMS-82] - Individual config for expire and change password

    An Admin can now opt to have the Password Never Expires & Users cannot change password flags set on a user when password syncing from KAMAR is disabled.

  • [ADMS-86] - Add TeamViewer support session link in Admin Console

  • [ADMS-89] - Prompt admin to verify config after upgrade

    ADMS now compares the current config version with the service version and will not process sync requests from KAMAR until the config is verified and saved after an upgrade


Improvements

  • [ADMS-54] - Improve request startup logging

  • [ADMS-73] - Use new startingdate element sent from KAMAR

    In KAMAR v912.27 the teacher start date was added to Directory Services. ADMS can now use this value and the Starting Threshold to provision staff accounts before they start, rather than as soon as they appear in a sync request.

  • [ADMS-87] - Display an alert when the license is about to expire

    ADMS will now display an alert in the Admin Console if the license is due to expire within 7 days.

  • [ADMS-88] - Update password management interface


Bug Fixes

  • [ADMS-40] - Improve the log messages when a script timeout occurs

  • [ADMS-42] - Prevent scripts running indefinitely

    To prevent long running user scripts from holding or blocking the script queue, a max timeout of 3600 seconds (1 hour) is now enforced. Script execution that exceeds this time will be terminated.

  • [ADMS-80] - <empty> placeholder does not work in the email format configuration

  • [ADMS-83] - SMSData missing element types

    The <althomedrive> and <altdescription> placeholders are now available.

  • [ADMS-85] - Staff Move and Disable Config

    The staff "Move and Disable" configuration option was incorrectly linked to the student "Move and Disable" option.


Version 2.1.0 Released 2017-03-06


New Features

  • [ADMS-5] Provide placeholder for staff department list

    The <departments> placeholder will output a comma separated list (CSV) of a staff user departments without Staff- or Dept- prepended

    For example: A user with Staff-Teacher and Dept-English will output Teacher,English

  • [ADMS-12] Map KAMAR Placeholders to LDAP attributes

    Admins can now specify a list of AD attributes and the values they should be set to, either based on data from the sync request or static strings

    See the Attributes Mapping section on the Student & Staff config areas within the ADMS Admin Console

  • [ADMS-14] Config item to allow password resets

    When ADMS is not syncing passwords (i.e only setting them on user creation) it will now obey a Reset Password request from KAMAR. This enables a teacher to easily reset the AD password for a student to the one defined in KAMAR

    The student will then be able to login and change their password as normal.

    Password Resets do not apply when ADMS is syncing passwords because the AD password will always be the KAMAR password

  • [ADMS-34] Sync photocopy code from KAMAR

    KAMAR is now sending the staff photocopierid field in a request. The <photocopierid> placeholder is now available for staff.

    A Photocopier ID can be set against a staff user in KAMAR under Main Menu > Setup > Users > Personal > Other


Improvements

  • [ADMS-60] Enable setting group email for each group type

    Admins now have the option to enable setting an email address and specify a custom format for each type of group (year groups, subject & class groups, staff groups, etc).

    ADMS will not update or clear an email address when the config option for a group type is disabled

  • [ADMS-67] Ability to have shortname placeholder for group emails

    The <shortname> placeholder will shorten the Subject/Class and Staff group names.

    • Dept-English will be shortened to English

    • Staff-Teacher will be shortened to Teacher

    • Subject301Eng will be shortened to 301Eng

    • Subject301EngClass1-1 will be shortened to 301Eng-1-1

    For groups that don't have a shortname the output of <groupname> will be used

  • [ADMS-68] Re-request license without service restart

    Previously, when the license expired and is renewed while the service is running, a service restart was required before the service will start processing requests again

  • [ADMS-72] Only update user AD attributes if there is a config value specified

    AD attributes for a user will now only be updated if they have a configured value. This allows special cases where an attribute may need to be manually set to a value that ADMS does not provide

    For example: If the config value for Logon Script is empty, any value manually set in AD or previously set by ADMS will not be cleared.


Bug Fixes

  • [ADMS-61] Set OU description

    ADMS will now set all Managed OU descriptions to ADMS managed Organizational Unit

  • [ADMS-64] Installer should not re-install service

    In future versions, the MSI installer will skip service re-install if it is preforming an upgrade. This fixes an issue when the service is configured to run under an account other than Local System and was reset back to Local System

    Due to the way MSI works, this change only applies to future updates and the service account will have to be reconfigured after installing this version

  • [ADMS-66] Staff Set Password On Creation setting not persisting to config

    ADMS Admin Console was attempting to save the bool to an invalid configuration option

  • [ADMS-70] Groups are processed for an invalid user

    When an invalid user (users found in an unmanaged ADMS context) was located, they were correctly excluded from user processing; however their groups were still processed. This has been corrected and a user will be completely excluded when they are found outside the ADMS context


Version 2.0.3 Released 2017-01-31


Bug Fixes

  • Users where incorrectly being removed from unmanaged groups during a part sync/update from KAMAR

  • Updating the Script Timeout in the admin console was not being saved to the service config

  • The admin console was not detecting whether a new version was available and therefore not notification was displayed

  • Fixed <last>, <first> display name format

    • When selected, the formatter incorrectly returned a display name in the format of <first>, <last>
  • Users with group memberships in the Managed Context were not being removed if the user was not in the sync/update from KAMAR

  • Groups with a Universal Group Scope would hang the service when relocating to the Zero Members OU

  • SHA256 password hashes were generated when he password hash type was set to SHA

    • SHA1 password hashes have been implemented to support GCDS (GADS). This can be selected from the ADMS admin console

Improvements

  • Prepopulate group email with Active Directory domain when empty

  • Configurable GroupScope

    • Group Scopes can now be set & changed to Universal if required. If the scope is manually set to Local then the Group Scope for the group will not be updated
  • Seperate group email customization

    • Custom group email formats can now be set for each ADMS group type (user, timetable, kamar group, year group & staff department)

New Features

  • User passwords can now be excluded from being passed as a script parameter to the event scripts (new, update, move, leave)

Version 2.0.2 Released 2017-01-11


Bug Fixes

  • Fix regression from KDMS/ADMSv1 where Year level groups prepended with 'Group'.

    When year level groups were created in the ADMS they had an incorrect name format that did not match Network Users or KDMS.

    A new group will be created with the correct name, or the pre-existing group from KDMS/ADMSv1 or Network Users will be migrated correctly. The incorrect group will be emptied and moved to the Zero Members OU

    You will need to update any systems that have references to these groups


Version 2.0.1 Released 2016-12-18


Bug Fixes

  • Check whether password has actually changed before setting it

    • Password was being set on each sync. This would trigger a GAPS sync to Google and invalidate the users Google login session
  • Find user issue. Now falls back to sAMAccountName when user could not be located by EmployeeID

Improvements

  • Log when successfully connected to domain

New Features

  • Customise group email addresses

    • Group email address can now have a custom format specified from the admin console
  • Added student Tutor Group as script parameter 12 for event scripts

  • Provision user before start date

    • Students can now be provisioned/created a specified number of days before their start date set in KAMAR. Staff will honour this setting when start date is sent in request. Previously users would only be provisioned the day before their start date.

Have more questions? Submit a request