• Spaces
  • Collections
  • Help
    • ×
     
     
    •  
    Common technical information

    Page tree

    Remedy statement for December 9, 2020

    Alternatives for customers who want to continue to use the Flash-based BMC products

    HARMAN International Packaged Browser solution

    HARMAN International has an exclusive agreement with Adobe to provide extended licensing and support agreements for the enterprise Adobe Flash Player until the end of 2023. For details, go to https://services.harman.com/partners/adobe Open link .

    BMC Software provides Limited Support for Adobe Flash-based capabilities in Remedy version 9.1.03 or later when used in combination with the HARMAN Packaged Browser application—Electron/Chromium version. Limited Support is provided temporarily until Dec 31, 2021, to cover the time period until customers upgrade to the latest BMC product version that has replaced the Flash-based capabilities.

    Important: For known issues, go to the "HARMAN International Packaged Browser solution known issues" section in the "Known and corrected issues" page for the Remedy component and version you are running.

    Adobe Enterprise Enablement for legacy browser versions

    Important

    The ability to run Adobe Flash Player depends upon the browser vendor's support. Running BMC Software products with outdated browser versions requires you to turn off automatic updates. This approach should be carefully considered and should be in alignment with your company's security group recommendations.

    With Adobe Flash Player 32.0 Enterprise Enablement, companies can allow Flash Player content to be loaded from a set of trusted URLs by performing these actions:

    1. To allow Flash to run for a BMC product, in a mms.cfg file, enable the AllowListURLPattern option and add the list of trusted URLs as follows:

      Example AllowListPattern configuration

      EnableAllowList=1

      AllowListUrlPattern=http://<TSIM-Server-FQDN>

      AllowListUrlPattern=https://<TSIM-Server-FQDN>

      AllowListUrlPattern=http://<MidtierServer>:<port>

      AllowListUrlPattern=https://<MidtierServer>:<port>

      For details about the AllowListUrlPattern options, the location of the mms.cfg file for different platforms, and other recommendations from Adobe, see the Adobe Flash Player 32.0 Administration Guide Open link .

    2. Push the mms.cfg file to all browsers that need to continue to use Flash.
    3. Prevent automatic updates of newer browser versions that will not allow Flash Player to load.
      For information about Flash Player automatic updates, go to https://helpx.adobe.com/flash-player/kb/flash-player-background-updates.html Open link .

    BMC Software has validated the Flash Player will continue to run with Flash Player Enterprise Enablement on these browser versions:

    Tested browser versionVendor support
    Microsoft Internet Explorer 11 https://docs.microsoft.com/en-us/lifecycle/announcements/update-adobe-flash-support Open link
    Mozilla Firefox 83 https://support.mozilla.org/en-US/kb/end-support-adobe-flash Open link
    Google Chrome 86 https://support.google.com/chrome/a/answer/7084871?hl=en Open link

    TrueSight statement for  December 9, 2020

    Alternatives for customers who want to continue to use the Flash-based BMC products

    HARMAN International Packaged Browser solution

    HARMAN International has an exclusive agreement with Adobe to provide extended licensing and support agreements for the enterprise Adobe Flash Player until the end of 2023. For details, go to https://services.harman.com/partners/adobe Open link .

    BMC Software provides Limited Support for Adobe Flash-based capabilities in BMC products when used in combination with the HARMAN Packaged Browser application—Electron/Chromium version. Limited Support is provided temporarily until Dec 31, 2021, to cover the time period until customers upgrade to the latest BMC product version that has replaced the Flash-based capabilities.

    Adobe Enterprise Enablement for legacy browser versions

    Important

    The ability to run Adobe Flash Player depends upon the browser vendor's support. Running BMC Software products with outdated browser versions requires you to turn off automatic updates. This approach should be carefully considered and should be in alignment with your company's security group recommendations.

    With Adobe Flash Player 32.0 Enterprise Enablement, companies can allow Flash Player content to be loaded from a set of trusted URLs by performing these actions:

    1. To allow Flash to run for a BMC product, in a mms.cfg file, enable the AllowListURLPattern option and add the list of trusted URLs as follows:

      Example AllowListPattern configuration

      EnableAllowList=1

      AllowListUrlPattern=http://<TSIM-Server-FQDN>

      AllowListUrlPattern=https://<TSIM-Server-FQDN>

      AllowListUrlPattern=http://<MidtierServer>:<port>

      AllowListUrlPattern=https://<MidtierServer>:<port>

      For details about the AllowListUrlPattern options, the location of the mms.cfg file for different platforms, and other recommendations from Adobe, see the Adobe Flash Player 32.0 Administration Guide Open link .

    2. Push the mms.cfg file to all browsers that need to continue to use Flash.
    3. Prevent automatic updates of newer browser versions that will not allow Flash Player to load.
      For information about Flash Player automatic updates, go to https://helpx.adobe.com/flash-player/kb/flash-player-background-updates.html Open link .

    BMC Software has validated the Flash Player will continue to run with Flash Player Enterprise Enablement on these browser versions:

    Tested browser versionVendor support
    Microsoft Internet Explorer 11 https://docs.microsoft.com/en-us/lifecycle/announcements/update-adobe-flash-support Open link
    Mozilla Firefox 83 https://support.mozilla.org/en-US/kb/end-support-adobe-flash Open link
    Google Chrome 86 https://support.google.com/chrome/a/answer/7084871?hl=en Open link

    Second PN November 23, 2020


    Alternatives for customers who want to continue to use the Flash-based BMC products

    HARMAN International Packaged Browser solution

    HARMAN International has an exclusive agreement with Adobe to provide extended licensing and support agreements for the enterprise Adobe Flash Player until the end of 2023. For details, go to https://services.harman.com/partners/adobe Open link .

    BMC Software supports Flash-based capabilities in BMC products when used in combination with the HARMAN browser. 

    Adobe Enterprise Enablement for legacy browser versions

    Important

    The ability to run Adobe Flash Player depends upon the browser vendor's support. Running BMC Software products with outdated browser versions requires you to turn off automatic updates. This approach should be carefully considered and should be in alignment with your company's security group recommendations.

    With Adobe Flash Player 32.0 Enterprise Enablement, companies can allow Flash Player content to be loaded from a set of trusted URLs by performing these actions:

    1. To allow Flash to run for a BMC product, in a mms.cfg file, enable the AllowListURLPattern option and add the list of trusted URLs as follows:

      Example AllowListPattern configuration

      EnableAllowList=1

      AllowListUrlPattern=http://<TSIM-Server-FQDN>

      AllowListUrlPattern=https://<TSIM-Server-FQDN>

      AllowListUrlPattern=http://<MidtierServer>:<port>

      AllowListUrlPattern=https://<MidtierServer>:<port>

      For details about the AllowListUrlPattern options, the location of the mms.cfg file for different platforms, and other recommendations from Adobe, see the Adobe Flash Player 32.0 Administration Guide Open link .

    2. Push the mms.cfg file to all browsers that need to continue to use Flash.
    3. Prevent automatic updates of newer browser versions that will not allow Flash Player to load.
      For information about Flash Player automatic updates, go to https://helpx.adobe.com/flash-player/kb/flash-player-background-updates.html Open link .

    BMC Software has validated the Flash Player will continue to run with Flash Player Enterprise Enablement on these browser versions:

    Tested browser versionVendor support
    Microsoft Internet Explorer 11 https://docs.microsoft.com/en-us/lifecycle/announcements/update-adobe-flash-support Open link
    Mozilla Firefox 83 https://support.mozilla.org/en-US/kb/end-support-adobe-flash Open link
    Google Chrome 86 https://support.google.com/chrome/a/answer/7084871?hl=en Open link

    First PN November 12, 2020


    Alternatives for customers who want to continue to use the Flash-based BMC products

    • HARMAN International Packaged Browser solution

      HARMAN International has an exclusive agreement with Adobe to provide extended licensing and support agreements for the enterprise Adobe Flash Player until the end of 2023. For details, go to https://services.harman.com/partners/adobe.

      BMC Software is in the process of compatibility testing with the HARMAN browser engine and Flash Player.

    • Legacy versions of Adobe Flash Player and browsers

      The ability to run Adobe Flash Player depends upon the browser vendor's support. Running BMC Software products with outdated versions of the Flash Player and browsers requires you to turn off automatic updates. This approach should be carefully considered and should be in alignment with your company's security group recommendations.

    9 Comments

    1. Gregory Kiyoi

      "With Adobe Flash Player 32.0 Enterprise Enablement..."


      Do we need to mention the specific flash version?  As Adobe Flash Player 32.0.0.363 or earlier, but if a customer is on 32.0.0.363 higher it may not work as we have tested?


      The mms.cfg file that needs to be deployed on each users system does this need to be mentioned or customer needs to read the adobe flash admin guide to understand deployment specifics.


      The example URL from QA internal testing - FQDN Servername - this was TSOM, similar for Remedy, but port would be used

      EnableAllowList=1

      AllowListUrlPattern=https://clm-aus-ujb3y8.bmc.com/


      or 


      EnableAllowList=1

      AllowListUrlPattern=https://clm-aus-ujb3y8.bmc.com/:8080


      The Flash Admin guide has examples, not BMC specific.

      1. Sandy Reid

        Hi Greg,

        In previous discussions, it was decided that we would not mention a specific version of Flash in the technical bulletins.

        I recommend that we send customers to Adobe's instructions for implementing the Enterprise Edition options.

        Regarding the example, I can't use the clm... hostnames. Is there a generic pattern that you would recommend other than AllowListUrlPattern=https://<FQDN>:<port>? Are you looking for something like this?

        AllowListUrlPattern=https://nameOfRemedyARSystemServer:8080

        Sandy

        1. Gregory Kiyoi

          Sandy,

          Yes with one clarification - it's midtier server not AR Server and I copied the URL, but default http port for remedy midtier is 8080, but if "https" is used it usually is different than :8080 (like :8181)

          AllowListUrlPattern=http://<nameofmidtierServer>:<port>

          example AllowListUrlPattern=http://MyDevMidTierServer:8080

          For TrueSight products not sure if they support ports, or only the server name.

    2. John Nelson

      We're testing with the latest version of Flash.  The whitelist will permit Flash to run for the specified URLs.  Customers will still need a browser that supports Flash however, so they won't be able to use the Firefox and Chrome browser versions that will be released in December 2020, since support for Flash will be removed.

    3. Cameron McConnell

      When I first read this I think, "who's the intended audience", and what do they already know? Maybe we should list the expected or intended technical knowledge of the audience, so if the person reading it isn't that, they can get someone involved who is.  Because the rest of it, reading it as a manager of Technical people, results in a lot of unknowns.  I think in general, it need a bit more explanation of why we're telling people to undertake the tasks.

      • Is Flash 32.0 the latest version? Why are they calling out that version? How do I work out what I have?
      • What's an mms.cfg file, and where is it? Is it only only my PC, on all user's PCs, on one of our hosting servers?
      • It says I need to push it to all browsers that continue to need Flash, but how do I do that or determine that?


      1. Sandy Reid

        Hi Cameron,

        This excerpt will appear in all of the bulletins that were recently published about the impact of Adobe Flash on BMC products, such as Technical bulletin: Impact of Adobe Flash end of life on TrueSight Capacity Optimization and replacement options. So the context for why to do this will be found in those bulletins. The first recommendation is to upgrade your BMC products. These are alternatives when that is not possible. 

        As far as the intended audience, the bulletins will drive proactive notifications to customers who have signed up for it for their product. I'm not sure who typically signs up for PN, but this information is definitely targeted to administrators.

        As with all third-party software, it's a fine balance between documenting BMC's part in helping the customer configure TPS products that we leverage and documenting how their product works and what they support. Copying parts of another vendor's documentation can violate copyrights so we link to the vendor's documentation instead.

        Sandy



    4. Jian Sun

      Let’s change “Microsoft Edge” to “Microsoft Internet Explorer 11” (which we tested with).  The products that still use flash are old versions and mostly supported IE.

    5. Mark Walters

      Is it worth pointing out that many browsers will have already received the Flash update with the time bomb - that is to say that avoiding future updates may not be effective?

      For the whitelisting I agree that some product specific URL examples would be helpful.  Do we know how exact the URL needs to be, for example, is it enough to whitelist a Remedy URL with just http://midtier:8080/arsys or is more required?

    6. John Nelson

      It's the browser that needs to avoid future updates not Flash.  Later versions of Flash that include the kill switch will run past 1/11/21 with the whitelist configuration.  The browser has to support Flash however, which is why they can't be upgraded to the versions coming out next month in which Flash support has been removed.

    © Copyright 2005-2024 BMC Software, Inc. Use of this site signifies your acceptance of BMC’s Terms of Use . BMC, the BMC logo, and other BMC marks are assets of BMC Software, Inc. These trademarks are registered and may be registered in the U.S. and in other countries.