IT Analytics Release Notes

SC-71044

Fixed the error of unique constraint violation "APT-DB-106348 - APS_SWI_TOPOLOGY_C1' while refreshing "aps_swi_topology".

SC-72828

Fixed the Audit API Sort Parameter compatibility issue with the following changes:

SC-73060

Black Duck vulnerabilities addressed by upgrading Apache Commons Lang to 3.20.0.

SC-73064

Black Duck vulnerabilities addressed by upgrading Netty codec and codec compression to 4.1.128.Final.

SC-73372

Fixed the failure of IT Analytics upgrader utility and connector deployer due to absence of alias name. The utility and connector deployer use the full database URL instead to establish the connection. The dependency on the service name alias does not exist anymore.

SC-73395

The Protection Details probe of Cohesity Data Protect Data Collector policy is modified to prevent the data overrun errors caused by its allocated column length.

SC-73538

Restored Alert notifications that were getting blocked when hardware appliance developed issues or was down.

SC-73573

The external loadPortAttributeFile format has been changed. Instead of supplying the switch port element name, the file must include port name (slot number/physical port number) to be able to fetch the unique fc port id and to persist port attributes against supplied Brocade switch data load.. For example, the values in Port column can be 0/60, 0/62, and so on, in slot number/physical port number format.

SC-73637

Black Duck vulnerabilities addressed by upgrading Apache ZooKeeper to 3.9.4.

SC-73639

Black Duck vulnerabilities addressed by upgrading Bouncy Castle to 1.83.

SC-73675

Addressed Apache-specific issues caused when Apache was upgraded to version 2.4.65 in IT Analytics and 11.7. The new build is compiled over OpenSSL 3.0.16 and uses libexpat 2.7.3, resolving the previously reported libexpat vulnerability and the issue with Apache instability.

SC-73758

The backup sessions collected via the Session Probe of the HP Data Protector policy did not include the associated Volume Pool. The probe has been enhanced to enable IT analytics to report both backup details and their corresponding Volume Pool for each session.

SC-73979

Fixed an issue where the dashboard scheduling feature was unavailable.

SC-74274

Corrected issue for the following reports where their icons incorrectly appeared as a bar chart icons. The icon now correctly appear as a line chart icons.

SC-74288

Fixed issue with Data Collection Message Summary By Collector or By Host report not rendering data.

SC-74466

Resolved an issue where exporting large reports in Excel either failed or resulted in incomplete output. The export process is improvised to ensure successful export of reports with large volumes of data in Excel format.

SC-69799

Resolved the issue that displayed an error message on the UI multiple times even with a single data collection failure of Cohesity NetBackup data collector policy probe.

SC-73384

Resolved the issue that displayed truncated data in the report columns. The issue is fixed and verified all impacted reports including backup RTO and custom RTD reports.

SC-74637

Resolved the issue that continued to display the Compute Resource policy in the policy menu despite being deprecated from IT Analytics.

SC-74255

Resolved the issue that reported data exporter details in the Database Error Summary report along with the data collection of NetBackup Data Collector policy, even after data exporter was deprecated.

SC-74139

Resolved the issue that displayed Flex Appliance access password in clear text when its policy was edited to configure a new Data Collector key.

SC-67924

Upgraded LZ4 to version 1.10.2, which makes CVE-2025-66566 and CVE-2025-12183 non-exploitable.

SC-73679

Resolved ORA-00001 database errors by discarding VMware iSCSI targets with missing or invalid target data (NULL targetName/targetAddress), which prevents unique constraint violations.

SC-74148

Enhanced HIAA Test Connection reliability by adding an HTTPS fallback when HTTP fails with a SocketException.

SC-74852

Resolved the data collection failure in Dell EMC NetWorker, EMC Symetrix, StoreOnce, and PowerFlex Data Collector policies observed after IT Analytics was upgraded to v11.7. Compilation issues in Groovy files of the Data Collectors were resolved to address the issue.

SC-74247

Resolved a race condition in MapDB store access that caused sporadic "Store was closed" errors. This issue previously led to backup policy probe failures when the store was closed while still being accessed.

SC-74927

Fixed the Azure billing probe issue, where the API was failing.

SC-73640

Upgraded Logback to version 1.5.25, which makes CVE-2025-11226 and CVE-2026-1225 non-exploitable.

SC-74923

Fixed the issue that displayed miscalculated file share data for Azure Storage account probe.

SC-73821

Fixed the DTD reports "time period" issue that showed the report scope date and time range details based on the time zone of the server with the latest collected client job instead of picking the actual time zone of selected backup server from scope selection. The report now populates correct date and time ranges in matching with the "time period" range scope inputs by considering individual time zones of the respective backup servers when selected as single backup server from report scope.

SC-73842

Fixed the issue with Veeam Backup and Replication policy that prevented identification of the restored device due to incorrect reporting in client name.

SC-73870

Added FileLevelRestore as new Job Type in IT Analytics for Veeam backup server's restore jobs.

SC-73674

Upgraded Spring Framework to 6.2.15, which makes CVE-2025-41254 non-exploitable.

SC-75180

Apache HTTP server 2.4.66 is built with OpenSSL 3.0.19 which makes  CVE-2025-15467 non-exploitable.

SC-75152

Resolved database error APT-DB-107192 (library is invalid) reported by HPDP Session probe data collection that is caused by incorrect parsing of library names containing multiple colons.

SC-74677

Resolved an issue where Data Collector logs and raw data were not available after completing a run or on‑demand data collection initiated via the UI, even though the collection process reported successful completion. This fix improves post‑collection raw data and Data Collector logs availability for diagnostics.

SC-73617

Report Export on Schedule dialog closes and saves a new schedule when frequency set to minutes or hours.

SC-74465

Resolves an issue with HP 3PAR policy where data collection failed to parse VLUN templates.

SC-73884

Fixed the issue causing error while upgrading IT Analytics from 11.6 and 11.7. The error caused by PowerStore connector deployment failure is addressed through correction in constraint definitions in the schema file of its table.

SC-74528

Fixed the issue causing some portal installations with the VENDORJOBID column missing in two Cohesity DataProtect tables and views.

SC-75675

Fixed an Apache upgrade issue where SSL certificates were not copied when IT Analytics was installed in a mixed‑ or uppercase path on Linux. The fix preserves case sensitivity in certificate path handling, ensuring certificates are correctly copied and Apache starts successfully after upgrade.

SC-75978

Updated Job Summary report to return unique rows to prevent duplicate rows from being displayed.

SC-75350

Fixed portal upgrade for custom user/group installs by applying upgrade profile logic after aptare_env.sh updates, ensuring the correct users/groups are used during upgrade.

SC-75803

Resolved false alerts for NetBackup Job Policy Attribute Change incorrectly reporting "Cross mount points" changes on NetBackup Catalog backup policies .The policy parser was updated to remove static caching so fresh bppllist data is collected per primary server, eliminating stale data and alert noise.

SC-75505

Resolved the issue that caused incorrect or broken drilldowns due to missing environment values in the DataProtect Active Snapshots By Object report. The report query was corrected to join on policy_id and vendor identifiers instead of names, ensuring consistent data population and accurate drilldown results.

SC-73464

Resolved issue with NetBackup Audit Report and drilldown report NetBackup Audit Report Details to ensure Changed Attributes count is matching in both reports.

SC-75308

Resolved an issue where SDK probes processing Virtual Machine backup items failed to create or match the correct host_id when Host Matching Identifier (HMI) was enabled under another policy. The fix ensures Virtual Machine host resolution now uses the centralized host lookup logic, providing consistent host matching and creation across all backup item types.

SC-75305

Fixed PowerStore collection pagination so arrays with >500 host_volume_mappings are fully captured: the collector now preserves the original command across pages and correctly merges paginated JSON arrays instead of concatenating response strings into invalid JSON, preventing path data beyond the first 500 from being dropped.

SC-75489

Fixed an issue where backup forecasting and capacity planning reports displayed inconsistent Total values on mouse-over when using TBytes: the value passed to ByteSizeFormatter is now converted using the correct database input unit, ensuring numeric values and unit labels remain consistent across chart bars and hover details.

SC-75805

Resolved the issue where the file-level compression probe was failing with a NullPointerException, caused by null values in optional fields (such as LocalComp) during KB conversion.

SC-75805

Fixed an issue where ITA generated false Hung Job alerts for long‑running NetBackup jobs due to incorrect job duration calculations. The alert rule now calculates job run duration using the backup server's timezone, ensuring accurate comparison against alert thresholds and preventing false alarms.

SC-73371

Fixed an issue where the Storage Unit Detail Report did not display NetBackup BasicDisk file system details due to an incorrect table reference. The report table reference is changed to ensure correct filesystem and usage information for BasicDisk storage units is populated.

SC-74528

Fixed an issue where the VendorJobId column was missing from the SDK_CHDP_ARCHIVALDATA and SDK_CHDP_REPLICATIONDATA tables in certain upgraded environments. The upgrade process now adds the missing column and required indexes via upgrade_database.sql when upgrading from older IT Analytics versions, ensuring schema consistency across releases.

SC-75246

Fixed an issue where Performance APIs collected data at very fine granularity (5‑second and 20‑second intervals), generating excessively large datasets that caused report and chart failures. The data collection granularity has been updated to 5‑minute intervals, improving report performance, system stability, and user experience.

SC-75247

Fixed an issue where the data reduction ratio was persisted as an integer, resulting in inaccurate values in dashboards and reports. The collector now stores the data reduction ratio using a decimal data type, ensuring accurate reporting and trend analysis.

SC-74564

Fixed an intermittent DataReceiver persistence failure in Kerberos-authenticated environments where UCP connection pools were recreated based on credential field updated in data-receiver property file. This led to invalid pool lifecycle state (UCP‑45060) and "Failed to get a connection" (UCP‑29) errors. Recreation of connection pool on credential change is now limited to non‑Kerberos mode.

SC-75290

Fixed an issue on Windows where reinstallTomcatService.bat utility stopped execution prematurely and failed to reinstall the Agent Tomcat service. The script now uses CALL when invoking other batch files, ensuring control returns correctly and both Portal and Agent Tomcat services are fully reinstalled.

SC-74684

Fixed ORA-01652 TEMP exhaustion caused by temporary CLOB/LOB segments not being released, where inactive sessions held LOB_DATA in TEMP indefinitely. Reporting now explicitly frees temporary CLOBs via DBMS_LOB.FREETEMPORARY in calling procedures, and Persistence removes repeated createClob usage by binding CLOB data without allocating temporary LOBs (Oracle setStringForClob / non-Oracle character streams).

SC-75942

Updated database view aps_v_hnas_virtual_volume to prevent divide by zero error.

SC-75950

Fixed incorrect Swagger/OpenAPI media type profiles that referenced the external domain ita.com. Updated all API YAML spec files to use the correct cohesity.com domain in the JSON:API Content-Type profile, ensuring accurate and non-misleading API documentation and responses.

SC-75968

Fixed NetWorker onboarding failures in large environments caused by excessive REST API payloads from the /global/volumes endpoint. Updated the collector to use field filtering (fl= parameter) to fetch only required volume fields, significantly reducing response size and preventing probe termination during SaveBackup and SaveStorageResource phases.

SC-75993

Fixed data persistence failures caused by oversized TIMEZONE values in the SDK table. Increased the column size to accommodate larger timezone data, preventing insert errors and ensuring successful persistence during connector operations.

SC-75563

All Jetty jar versions have been upgraded to 12.1.7, including the version bundled with Data Collector and the Jetty libraries coming from Kafka dependencies. This addresses CVE-2025-5115, CVE-2026-1605, and CVE-2025-11143 vulnerabilities.

SC-76100

Realtime log collection failures after upgrade have been fixed by addressing incorrect ownership/permissions on the realtime logs directory. The issue caused "Exception while writing realtime logs" errors due to permission denied when Tomcat attempted to create log files, impacting realtime logs on the policy screen.

SC-77701

Resolved the problem that generated unexpected dump files during an automated uninstall by stabilizing the shutdown and exit flow.

SC-77747

An issue where hosts in the "All Backup Servers" scope selector were not displayed in alphabetical order when Authorization Attributes (Authz) were enabled has been fixed. The UI now preserves the original sorted order by using an order preserving map during Authz-based filtering, ensuring consistent alphabetical sorting regardless of Authz configuration.

SC-76110

An issue where the EMC Avamar Activity Details probe missed the most recent hour of backup data due to incorrect timezone and DST handling has been fixed. The probe now correctly converts timestamps using DST aware timezone offsets, ensuring recent Avamar activity data is fully collected across timezone differences.

SC-77758

Fixed an issue in NetBackup Data Collector where CLOB-heavy asset persistence (APT_NBU_ASSET.ASSET_DETAIL) caused excessive TEMP usage due to temporary LOB allocation. The Data Collector persistence logic was updated to free the temporary CLOB space and reducing temporary LOB pressure under load without impacting asset ingest or consumers.

SC-76120

SC-76369

SC-76370

SC-74397

Updated the Active Directory user disablement logic of IT Analytics to correctly evaluate the userAccountControl bitmask instead of relying on exact attribute value matching. IT Analytics now identifies disabled users based on the presence of the ACCOUNTDISABLE flag, ensuring users are deactivated and API access is blocked even when additional AD flags are set.

SC-75001

SC-75429

Fixed the issue that displayed error message "User does not have access to the resource" when performing a drilldown from the Mission Control - Backup report. This issue was observed when the drilldown Source Type was other than Host.

SC-75804

Fixed a parsing failure in the MessageLogsProbe for Alta View customers caused by a StringIndexOutOfBoundsException in the NetBackup parser when handling malformed or skipped filenames. The fix hardens the parsing logic to safely handle invalid bounds, ensuring data collection completes successfully without probe failure.

SC-73165

Fixed an HTTP 500 error in the Cohesity DataProtect ProtectionDetails probe caused by a MissingPropertyException due to improper variable scoping of the REST API command. The fix ensures the command variable is correctly scoped across the logic block and adds warning logs to surface hook/API failures instead of silently ignoring them.

SC-76224

Resolved the problem that prevented a scheduled task from running by updating its timing configuration to use valid future run times.

SC-77902

Fixed the issue related to NetBackup FETB data persistence, where MS-Windows policies were incorrectly mapped as MS-Windows-NT, causing ITA to report incorrect information.

SC-71497

An issue where Oracle purge jobs failed to delete Veritas Flex Appliance hosts - leaving orphaned SDK_VTFA_* records and impacting DXC reports - has been fixed. The fix introduces a new database procedure to explicitly remove SDK_VTFA-related entries by HostID before deleting the host from base tables, ensuring successful purging without constraint violations or database errors.

SC-76073

An issue where the Collection Status page appeared blank or showed incorrect data for multi-device policies has been fixed. The filtering logic has been corrected to use the unique collector identifier instead of a comma-separated policy name, ensuring probe statuses display correctly and only for devices associated with the selected policy.

SC-76128

An issue where the EMC Avamar Configuration Changes Probe failed with an Oracle unique constraint violation due to improper handling of NULL default values has been fixed. The probe logic now correctly updates existing dataset records with NULL defaults, preventing duplicate key errors and ensuring apt_avm_dataset_detail reflects the latest data without database errors.

SC-78034

Fixed a startup-blocking ORA-00932 ("inconsistent datatypes") error introduced after upgrading to Oracle 19.31, which prevented Tomcat-* services from starting due to failures in common_package.getNbrOfClients().

The fix updates affected stored procedures to ensure consistent datatype handling across CAST/SUBSTR expressions used in SET/CAST/COLLECT operations (including ORDER BY clauses), maintaining type safety for nested-table aggregation under stricter datatype enforcement of Oracle 19.31.

SC-71991

The end-to-end file upload library used for data collection is changed to ensure compliance and consistency with licenses and checks, which makes the CVE-2025-48976 vulnerability non-exploitable.