Release 23.7
Breaking Changes - Updating v23.4 and below
Please be advised, when upgrading from v23.4 or below there is a one-time permissions requirement to successfully install/upgrade the MCE database using the new Management Center UI.
The Management Center service account should be a member of
db_owner, with ALTER_DATABASE permission, when the UI installation or generated database upgrade script is run. This will allow the MCE database to be altered to prepare it for future updates through the Management Center UI.
New Features:
MCE Dissemination Controls
"The purpose of Dissemination Controls is to allow an MCE administrator to specify certain Attributes as being both publicly known (Well Known) and used to control access to Groups.
A key property of Dissemination Controls is that when there are multiple Attributes selected within a particular Control, a user is allowed access if they have ANY of those attributes."
Contrast this with the Security Context behaviour, where users must have ALL Security Contexts if multiple are applied to a group.See MCE Dissemination Controls Configuration for detials.
Prevent duplicate MCE Users
Attempting to create MCE Users with the same Linked Identity as an existing user will no longer create a duplicate MCE user.
The change helps reduce the burden on administrators when managing and adding users in their system, ensuring accounts will not be duplicated unintentionally.
As an administrator, workflows remain functionally the same (with the exception of the Remove MCE Users change detialed below) but a new message is returned instead of creating the duplicate user.
Remove MCE Users
Administrators should now configure MCE users with
-Statuswhich succeeds the old-IsEnabled $boolvalues of Enabled and Disabled.
Users may be moved between each-Statusby Administrators to dynamically control their environment, through removed users must be re-provisioned before they can return to another state.With MCE Admin PowerShell Module, administrators can set users'
-Statusto one of four states:
- Enabled: User is fully enabled for the MCE system, can log in and their attribute will syncronize periodically
- Suspended: User exists; user cannot login, attribute sync and denorm still continue; appear in memberships
- Disabled: User exists; user cannot login, attribute sync and denorm DO NOT continue; DO NOT appear in memberships
- Removed: User effectively does not exist (but there is still an entry in the Database, until these are purged); user can be re-provisioned
See New-MceUser and Set-MceUser for details.
OIDC - OpenID Authentication Mechanism
23.7 introduces support for authentication with OIDC. This is an optional mechanism adminstrators may enable if their organisation supports it, adding to the suite of available authentication choices.
See the MindLink Anywhere Authentication page for details.
Improvements
This version includes the following improvements:
| ID | Details | Product |
|---|---|---|
| FCF-9932 | Improve workaround for masked icons for IE11 | MindLink Anywhere |
| FCF-9871 | Check for users with the same linked object GUIDs in New-MceUser | MindLink Admin |
| FCF-9621 | Add Remove-MceUser commandlet | MCE Admin |
Bug Fixes
This version includes the following bug fixes:
| ID | Details | Product |
|---|---|---|
| FCF-9990 | Adding group user member when member no longer in scope via AD Group/OU fails to add remaining valid members | Group Management |
| FCF-9984 | Setting group with out-of-scope principals ignores principals but errors at user | Group Management |
| FCF-9966 | Disabling an MCE group when membership contains a user without access throws an error in the group management window | MCE, Group Management |
| FCF-9965 | Group access-control breaks when upgrading historic uploader added/removed events | MindLink Anywhere |
| FCF-9963 | Conversation highest classification gets truncated unnecessarily | MindLink Anywhere |
| FCF-9955 | Uncaught exception in SearchGroupsAsyncOperation | MindLink Anywhere |
| FCF-9942 | User display name can be incorrectly overridden in MCE Standalone | MindLink Anywhere |
| FCF-9941 | Receiving user metadata update from MCE replaces display name in client | MindLink Anywhere |
| FCF-9882 | Search in all joined rooms fails to search history | MindLink Anywhere |
| FCF-9863 | Re-evaluate MLA re-install options | Installers |
| FCF-9853 | Converting an AllGroupMembers mention message part throws an unhandled exception | MindLink API |
| FCF-9847 | API claim types validation always fails if run alongside the web module | MindLink API |
Known limitations
Internet Explorer 11 does not support Conversation Export
Audio calling between the MindLink client and the Skype Mobile app is currently not supported