Release 9.2.23.1¶

Base Image Upgraded¶

Updated the Snowflake, Unity Catalog, and BigQuery Policysync Connector base images to newer versions to address known security vulnerabilities identified in the CVE report.

Microsoft SQL Server — Policy Push naming for On-Premises and Azure¶

For Microsoft SQL Server, policy push now standardizes how Ranger users and groups are mapped based on deployment type.

• On-premises: Uses domain.prefix (e.g., LD) with user.email.domain to generate Windows-style names required by SQL Server.

• Azure: The same settings decide whether names follow Microsoft Entra (email-style) or Windows-style format, based on configuration.
  Always ensure users and groups in Ranger match how they exist in SQL Server to avoid access issues.

• For configuration details, see Deployment and Principal Name Format.

Added Support for EMR Trino JDK Compatibility with Versions Lower Than 21¶

EMR Trino clusters were failing for the EMR versions below 7.2.0 due to JDK upgrade to version 21 in Privacera Trino Plugin. Now a fix has been added to ensure Trino works with the EMR version below 7.2.0.

BigQuery audit ingestion now supports bigquery_dataset and related GCP resource types¶

Ingestion and Pub/Sub filtering now classify bigquery_dataset and other BigQuery monitored resource types as BigQuery audits, routing dataset- and table-scoped audit entries through the BigQuery consumer path. This ensures the realtime scanning of bigquery in discovery.

Updated Discovery Dependencies¶

Upgraded Discovery dependencies to address known security vulnerabilities identified in CVE (Common Vulnerabilities and Exposures) report.

Group Names Now Support Backslash¶

Group names can now contain a backslash (\), for example, Test\MyGroup, for compatibility with Active Directory-style names.

PEG Base Image Upgraded¶

Updated the PEG base image to a newer version to address known security vulnerabilities identified in CVE report.

Updated PEG Dependencies¶

Upgraded PEG dependencies to address known security vulnerabilities identified in CVE (Common Vulnerabilities and Exposures) report.

Audit Fluentd Base Image Upgraded¶

Updated the Audit Fluentd base image to a newer version to address known security vulnerabilities identified in CVE report.

Dataserver Base Image Upgraded¶

Updated the dataserver base image to a newer version to address known security vulnerabilities identified in CVE report.

Ops Server Base Image Upgraded¶

Updated the Ops Server base image to a newer version to address known security vulnerabilities identified in CVE report.

Diagnostics Server and Client Base Image Upgraded¶

Updated both Client and Server images to a new version to address known security vulnerabilities identified in CVE report

Updated PKafka Dependencies¶

Upgraded PKafka dependencies to address known security vulnerabilities identified in CVE (Common Vulnerabilities and Exposures) report.

AWS Secret Manager Support for Runtime Planes¶

Connectors in AWS Runtime Planes now support fetching sensitive configuration properties from AWS Secrets Manager.

Audit Server Base Image Upgrade¶

Updated the base image to a newer version to remediate security vulnerabilities identified in the CVE report.

Apache Ranger Base Image Upgrade¶

Updated the base image to a newer version to remediate security vulnerabilities identified in the CVE report.

Privacera Usersync Base Image Upgrade¶

Updated the base image to a newer version to remediate security vulnerabilities identified in the CVE report.

Privacera Manager Base Image Upgraded¶

Updated the base image to a newer Debian version to address known security vulnerabilities identified in the CVE (Common Vulnerabilities and Exposures) report.

Updated Apache Solr Dependencies¶

Upgraded Apache Solr dependencies to address known security vulnerabilities identified in CVE (Common Vulnerabilities and Exposures) report.

Updated Apache Zookeeper Dependencies¶

Upgraded Apache Zookeeper dependencies to address known security vulnerabilities identified in CVE (Common Vulnerabilities and Exposures) report.