[KBA-79010] Active Directory users deleted after upgrading to Security Center 5.8 - Security Center 5.8

series
Security Center 5.8
revised_modified
2019-11-06
TFSnum
2321327

[KBA-79010] Active Directory users deleted after upgrading to Security Center 5.8

This article explains why some Active Directory users are deleted from Security Center after upgrading to Security Center 5.8 GA or 5.8.1.0.

Symptoms

After upgrading to Security Center 5.8, existing users who were part of a user group that was managed by an Active Directory with the Create user on first logon option enabled, are deleted from Security Center when the first Active Directory role synchronization is performed (either manually or using a scheduled task).

The user group and the group configurations remain intact, but user-specific settings are lost, such as privileges, partition access rights, alarm recipients, event-to-actions, private tasks, and so on.

Cause

A coding error.

Workaround

Do one of the following:
  • If you did not have any user-specific configurations (privileges, partition access rights, alarm recipients, and so on) on your system, or if those configurations are no longer required, then no action is required. Deleted users will be re-created automatically when they log on to Security Center.
  • Before upgrading to Security Center 5.8 GA or 5.8.1.0, disable any scheduled tasks that perform a Synchronize role action, and avoid triggering a Synchronize role action manually until the Security Center 5.8.1.1 patch version has been applied on all servers acting as a Directory or are running an Active Directory role.
  • Apply the Security Center 5.8.1.1 patch version and restore a Directory database backup from a previous Security Center version before the 5.8 upgrade.

Status

This issue will be fixed in Security Center 5.8.1.1. The 5.8.1.1 update will also be included in the full installer for Security Center 5.8.1.0.