IBM Navigator for i - PTF Update Details

How To

Summary

Information listing the fixes and changes put into each PTF for IBM Navigator for i since initial release of New Navigator.

Objective

You are in: IBM i Technology Updates > Navigator for i > PTF Information > PTF Update Details

For more information on functions, see Documentation on Functional Areas.

Section links for each Navigator for i PTF released:

Q3 2025
Q2 2025
2025 1st PTF - First IBM i 7.6 delivery
Q4 2024 Dec
Q3 2024 Sept
Q2+ 2024 July
Q2 2024 June
Q1 2024 Mar
Q4 2023 Dec
Q3+ 2023 Oct
Q3 2023 Sept
Q2 2023
Q1 2023
PTF Update Archive - 2022 and before

Q3 2025

The following enhancements to Navigator are included in the Q3 2025 PTFs which will be released in the HTTP group updates on 10/3/2025.

Note: Q4 2025 Navigator will plan to be able to run on Java 21 (IBM i 7.6 and 7.5)

This release has the following new features:

Web Administration
- Web Services Table added - right click an IWS (Web Service) server and click "View Web Services" to see a list of web services associated with the server
- Certificate expired - will now show expiration date
- Create HTTP Server wizard now available
- Delete HTTP Server now available
Network
- LDAP
  - LDIF file import/export items
- Debug Server - status shown correctly
  - Will need to regenerate Trus Store because of incompatible key generation from previous releases.
Dashboard - grace period information coming next quarter
Security
- Audit Journal - new support for PO & SF
- Authorization List - added actions
  - New
  - Delete
  - Change - add new profiles
  - Permissions - adjusted columns to avoid need to scroll
Users
- Copy User to other systems - allows selection of whether to copy TOTP values (IBM i 7.6 only)
My Work - Printer Output as well as Work Management > Printers - removed filter row since we have filters for columns and basic and all views
Performance Data Investigator (PDI) -
- New files supported:
  - starting on IBM i 7.2: QAPMETHP, QAPMSYSVP (replaced QAPMSYSCPU)
  - starting on IBM i 7.4: QAPMLINK, QAPMNRG, QAPMNRGL
  - starting on IBM i 7.5: QAPMOPT
  - starting on IBM i 7.6: QAPMFCN, QAPMFCV
- Multiple cllection handling
  - Refer to this page on "Drilldown - Multiple selection" for list of charts affected
  - This is for drilldown when you are on a "by" chart (CPU Utilization by Thread or task) and drilldown to a "for" version of the chart.
    - The breakdown dimension with selected metrics can cause gaps in the chart which were not currently handled correctly, causing data points to not be properly lined up with the lines. x-axis labels, columns, and markers could all be off when this situation arises. If you have seen this happening, we would appreciate your help with the test PTF to ensure things are all working correctly in your favorite graphs.
    - If you have ever looked at a chart and the charting did not accurately represent the data, you may also have noticed that the data in the table was all correct. The only changes are for how we are charting it and to help dojo out with how to handle data like this.
Bookmarks - Improved handling for TLS
- Will now handle different bookmarks saved for any managed system. Including bookmarks that are valid for only some releases and not others. Some scenarios are still in progress.
AJS - version 7.2.25.247
- New - Reorder scheduled jobs through properites
- Fixes for several CPS
Content Manager on Demand (CMOD)
- CMOD & History Log breadcurmbs improvements

Fixes:

Tables - fix to the column filter overlap issue
Message monitor – was not removing message from queue as expected when requested.
Printer Output row count at bottom of table would change and be inaccurate.
Fix for PDI – not loading collection libraries for one user.
Debug Service – cannot be started if QSECOFR is disabled or password is expired. - https://www.ibm.com/support/pages/node/6520030 - search for QSECOFR for details
TLS lock icon was not always in sync with dashboard and table. Now it will be.
Bookmarks – BRMS could not switch to https
Cryptography - Fix for translating keystore to a different master key
Fixes to regex checking on EIM entry
LDAP publishing failure - fixed
Fix for System Value shown for QABNMORMSW
Debug Server
- Paste of password now allowed
- Fix to current status and allowing stop
Description fields - many made larger to better fit allowed text (without scrolling)
Fix for Properties set of authorization list
File System > IFS list load issue - fixed
Login failed error message will not include “additional factor” if < IBM i 7.6
Authority Collection fixes:
- Fix to error received for display for users
- Fix to error with collection for Objects – change or delete
- Fix to error when showing all IFS objects
Work Management > Subsystem Description – change – activity level was empty
Clarified Configure Publishing panel for entering password (used to say “Set publishing password” which was incorrect)
Fix for message.log issue with ArrayIndexOutOfBoundsException.
My Work > My Jobs > Properties – changes were not correctly saved.
Some updates to handling of VPN secure connections.
Fix for internal error Descriptor index not valid.
Fix for Start Debugger Service ends in NAV_306116: failed to start the Debug Service
cre Domain Management – user list did not display on browse.
Output Queues > QEXJOBLOG > Printer Output – Properties delete would fail if the job name information was not listed.
Authentication Service – display or remove keytabs issue with IBM i 7.4
Monitors – fix to message action error
ARE Core fixes delivered in ARE PTFs - no longer checking superseded PTFs

Q2 2025

The following enhancements to Navigator are included in the Q2 2025 PTFs released in the HTTP group updates on 6/27/2025.

Note: Navigator on IBM i 7.6 requires Java 17.

Infrastructure enhancements:

- Tables - Filters are shown again on table column headers. This was requested by users instead of the hidden filter that needed to be opened to see what is filtered. However, there is not always enough space on the table for the filter columns. If columns are too narrow, there may be overlap with the fields. Use "reset to default" in the Columns dialog to get spacing set to avoid overlap.

- Support for Null and Not Null added

This release has the following new features:

Dashboard - added support for handling hostname with underscore ('_')
Network
- Web Administration
  - Certificate expiration dates
    - Added to the tables: TLS Configuration & Application Servers
    - Added expiry dates on TLS wizard
  - DDM/DRDA and Server Mapper TCP ports added to TLS Configuration wizard:
  - Improvements to handling of Deactivate Unsecure Ports
  - Fixed "Restart All" feature to support new TCP/IP servers
  - Test TLS will not test any ports not configured in the wizard (DDM, etc)
  - Not having the correct permissions to use web admin features was previously very confusing. Web Admin feature now requires users who have *ALLOBJ and *IOSYSCFG special authorities (or through QIBM_IOSYSCFG_VIEW for view). More useful error messaging will be provided to fix the problem when they need more authority.
  - The TLS wizard has improved the keystore password encryption saved in the server.xml file.
- LDAP - Import and Export of files is now implemented!
Security - moving toward requiring TLS connections for all Navigator use
- Required TLS - planned for 2025 Q4
  - Plan to set up TLS for all Navigator uses
- Network Authentication Servers (NAS - Kerberos)
  - Display or Remove Keytab Entries added
  - Keytab Entries (IBM i 7.6 ONLY) - new table providing easy access to information on keytab entries
    - Use to delete old "DES" entries
    - Use to view data on keytab entries
    - Uses SQL Service : SELECT * FROM TABLE ( QSYS2.KERBEROS_KEYTAB_ENTRIES() )
  - QIBM_NAV_SECURITY_EIM - new function usage ID added for EIM functions. Default set to ALLOWED
    - This controls access to EIM Setup Wizard, EIM Domain Management, and EIM Configuration
- DCM Launch is back under Security - it will use the Bookmarks-configured port (you can set TLS or not)
- TLS Override - documentation links added on GUI page for easy access
Users - Added option for copying users TOTP information (was default before) - IBM i 7.6 only
My Work - Added basic/all views for my printer output
- This improves search time with large number of printers or output queues defined
Monitors
- Monitor event log - new option to "Delete All" events logged
Performance Data Investigator (PDI) -
- New perspective Plan Cache Hit Ration
  - in Database Perspectives - from QAPMSQLPC using metric SQPCFLD02 - Current plan cache hit ratio:
- New files supported:
  - IBM i 7.2 and later: QAPMETHP, QAPMSYSVP (replaced QAPMSYSCPU)
  - IBM i 7.4 and later: QAPMLINK, QAPMNRG, QAPMNRGL
  - IBM i 7.5 and later: QAPMOPT
  - IBM i 7.6: QAPMFCN, QAPMFCV
Bookmarks - improved handling for TLS
AJS - version 7.2.25.154
Content Manager on Demand (CMOD)
- Added Manage Instances menu item for OnDemand Server
  - Will bring you to Content Manager OnDemand Instances
  - Requires new PTF

Fixes:

CVE-2025-33122 - AJS server side PTF SJ05929
Regex issues – many places with added security checking for parameters (over 900 API endpoints and average 4 parameters per endpoint == 3600 places we have regex. Tough to test areas such as EIM have been fixed recently.
- Examples:: EIM user ID can be just numbers
  - Extend length of allowed EIM source user IDs
  - LDAP publishing
  - SMTP user delimiter
  - Hostname to allow for underscores in name
- If you see a regex error, turn on REGEX specific trace using these steps: https://www.ibm.com/support/pages/node/6486565#configureLogs
  - GUI trace selection is now alphabetized!!!
All messages – will now be displayed in the same language as the browser setting matching all other MRI (translated text) if it is supported on the IBM i GUI node.
Issue with /QIBM/ProdData/OS400/Navigator folder not having QWEBADMIN authority when changes were made Q4 2024 to set *PUBLIC *EXCLUDE – resolved. There will be a PowerHA PTF out in HTTP group now to fix this issue. If you already had the issue, this won’t fix it. But once fixed, it should not break again.
- CHGAUT OBJ('/qibm/proddata/os400/navigator') USER(QWEBADMIN) DTAAUT(*RX) OBJAUT(*ALL)
Messages – issue with replying to messages
- QSYSOPR messages table
Intrusion Detection – New Intrusion Detection Policy for Traffic regulation – fix for Protocol of TCP or UDP – now saved correctly in config file.
Threading issue and Out of Memory fixes
Fix for zip file reading
Keystore password for TLS wizard – enhanced encryption security (RFE/Idea)
- When wizard is run now it will use new encryption (requires ias-spi PTF)
Issue with authority to WebTrustStore being changed with ADMIN PTF which resolved the AF entry generated for heritage Navigator trying to access Navigator. If this PTF is installed AFTER the Navigator PTFs, the WebTrustStore file will not have QWEBADMIN authority to access the WebTrustStore file used for TLS. PTFs have been built and released. HTTP group will be updated in the next few days.
- ADMIN PTFs iapar 736487 PD00SQCN
- SJ05531 7.6
- SJ05532 7.5
- SJ05533 7.4
Web Admin
- IWS Server Status – fix to match WebAdmin GUI
- ADMIN1 TLS wizard will no longer use additional ports
- HTTP Server status set to unknown is fixed
- Unable to start/stop HTTP Servers when browser is set to French – fixed
Monitors – with underscore in its name would cause a regex error – now handled correctly
Fix to handling of QIPPSVR correctly – documentation updates still in progress
EIM API QsySetEIMConnectInfo – missing parameter issue is fixed
Error in system name with underscore – now handled correctly
Fixes for VPN minor issues found internally
Data Mart Library will validate library length to handle correctly
Visualize Monitors added launch to VS Code for SQL
Fixes to some Password System Value Issues
Network > Routes > Properties
- Field was “Preferred binding” but changed to “Binding Interface” to match other places this field is labelled.
Updated message information for Master Key 1. No longer required for encryption of web truststore.
Fixes for cloud support – set localhostOverride https://www.ibm.com/support/pages/ibm-navigator-i-cloud-environment
Some fixes for Edit bookmarks issues
Fixes for null nav session found in messages.log
Output Queue Library will now have a default value (current library)
Server Job Details – fixes to library list and call stack dialogs
Active jobs > Details > call stack will load as expected now
Audit Journal > Detail View > filter > SQL null console error fixed
- Audit journal OK button enabled only when changes have been made and if QAUDFRCLVL field is empty
Application Servers improvements to readability
Web Admin – adding trusted CA certificate potential error is fixed and ‘Browse’ button is added
- Check for Subject Alternative Name would sometimes fail because the hostname is in all caps. This has been fixed
- Fix for hostname verification when index out of bounds error might occur
- TLS Configurations – Deactivate unsecure ports dialog will no longer allow selecting any ports already disabled.
Fix for Monitor substitution variables to allow non-caps
Authority Collection – for objects – filter is fixed for profile name in User filter
TCP/IP Directory Server (LDAP) - Verify is fixed in Configure Publishing to display error message and complete as expected
IFS improvements on total rows count showing correct value
Active Jobs Details – library list issue fixed
Active Subsystems – search fixed for specifying All
Accessibility fixes for AVT compliance – some completed and more in progress

2025 First PTF

The following enhancements to Navigator are included in the 2025 first PTF as well as IBM i 7.6 released on 4/18/2025.

Note: Navigator on IBM i 7.6 requires Java 17.

ADMIN PTF update with 4/18/2025 group could cause the webtruststore authority to be wrong (not including QWEBADMIN).

This has been corrected in the latest HTTP Group update on 5/12/2025. Apply the latest HTTP group to correct.

The command to manually correct the authority is:

> QSYS/CHGAUT OBJ('/QIBM/USERDATA/OS/WEBTRUSTSTORE') USER(QWEBADMIN) DTAAUT(*RWX) OBJAUT(*ALL) SUBTREE(*ALL)

PowerHA PTF update with HTTP group in Q4 2024 and First PTF of 2025 may cause the /QIBM/ProdData/OS400/Navigator' directory to have the wrong authority.

This will be corrected in an upcoming PTF for PowerHA.
If Navigator isn't accessible after applying the PTFs Delayed (web browser shows "Not Found. The application or context root for this request has not been found: /Navigator"), take the following steps:
- End the HTTP ADMIN1 server that Navigator runs in:
  - > ENDTCPSVR SERVER(*IAS) INSTANCE(ADMIN1)
- Run this command to add the needed authority for the QWEBADMIN profile:
  - > QSYS/CHGAUT OBJ('/QIBM/ProdDATA/OS400/Navigator') USER(QWEBADMIN) DTAAUT(*RX) OBJAUT(*ALL)
- Start the server and Navigator again:
  - > STRTCPSVR SERVER(*IAS) INSTANCE(ADMIN1)

Infrastructure

Upgrade to Angular 19 - new look and feel
- columns now found under gear icon
- column selection changed format
Open link in new tab
- will open to selected/managed node
- tab name will be of the component launched to
Lazy load tables - no longer utilize NEWNAV in QNEWNAVSRV
- reworked for better security
System LPP expiration indicator - will verify LPP is installed before giving warning indicator for LPP expiration
Navigator can now be run with QSECOFR disabled
- For configuration, a user will need to log in to Navigator one time with high authority profile to set up tables for Navigator SQL, Monitors, ARE, and Web Admin
- If QSECOFR is disabled, Monitors will NOT be started automatically. A user will need to manually go to the Monitors table and start the Monitor Server
- A user without ALLOBJ authority will not be able to use Authentication Method 3 (saving passwords in encrypted file with Master Key 1) when QSECOFR is disabled. This option will be unselected for that user when a basic user signs in.
- Starting the Debug Service requires QSECOFR to be enabled without password expired.
  - The user profile "Date password expires" for QSECOFR cannot be before the current date.
    - Password expiration interval . . . . . . . : *SYSVAL
    - Date password expires . . . . . . . . . : 02/07/26
  - QDBGSRV is the user profile used to start the debug service, so user authority is not taken into consideration for this action. This is required to access Master Key 1.

This release has the following new features:

Multi-Factor Authentication support in Navigator - Using IBM Navigator for i to Manage MFA - IBM i 7.6 only (Idea delivery)
Web Administration migration
- TLS Connections - Host Server port information and launch to wizard for host servers
Monitors
- Stop monitor server command has changed! Refer to Monitor Stop and Start
Security
- Kerberos wizard - will no longer include arcfour-hmac as a default encryption type when creating the krb5.conf file.
- Moving toward requiring all TLS connections by end of 2025.
  - When this is put in place, Navigator will not function except to set up TLS if not using https protocol and secure connections
    - Use of TLS wizard will be allowed
    - Bookmarks (launch to DCM) will be available
- Improvements to handling of Certificates
  - Navigator correctly saving the signing certificates (not the server certificates). Allows for more general use of the certificate
- New GUI Preferences panel for TLS Override and Localhost Override
  - TLS handling - Added tlsOverride option to preferences to override an user preferences for TLS. This is a safety measure to allow easier non-TLS log in when certificate issues occur (expired, not updated, etc). Will also require removal of any port restrictions (via 5250) that might be on.
  - Localhost override - For port forwarding and cloud environment.
    - The preference file for this can also be manually edited. See Navigator for i in a Cloud environment.
    - When turned on, the localhost override will disable checks for requests coming from localhost. This allows Navigator to work in environments that use port forwarding and tunneling. Turn this on if you have trouble connecting to Navigator and have set up port forwarding or are in a cloud environment using ssh tunnel and localhost.
- TLS - Secure Connections
  - Dialog to turn off all non-secure ports:
    - Will also set Global TLS for system by default
    - Will also turn on TLS for DCM by default
- Network Authentication Service (NAS)
  - Keystore wizard update for Keytab entries - on 7.6 only
    - Allow selection of encryption types
    - Will display the default encryption types
    - NasConfig_xxxxx.bat update
- Audit Journal
  - GR type added: GR generic record table function
Users - New function to disable a user profile across multiple systems (Idea delivery)
- Actions > Disable on system
System > System Status
- new Firmware card - added FW_CURRENTFIXPACK and FW_CURRENCY data
  - Firmware: VHxx_yy Update available
  - anything else from SELECT * FROM SYSTOOLS.FIRMWARE_CURRENCY;
  - Available on 7.4 and later with required SQL Service updates (latest Db2 group)
Monitors
- Stop monitor server command has changed! Refer to Monitor Stop and Start
Network
- System Debug - Debug Service
  - Can now regenerate certificates for the Debug Service, requires v3+ of Debug Service (PTF number TBD)
    - This requires a user with *ALLOBJ and *SECADM, and the *SYSTEM store needs to be properly set up with a valid certificate.
    - Start and stopping the service has been updated for v3, it will also continue to work for older versions of the Debug Service.
    - QSECOFR needs to be enabled to start the Debug Service - for access to the keystore file.
- Packet Rules filtering changes
  - Verify rules action
    - Verify the rule on a specific interface
    - Will let you check that the activation of the rules will succeed
  - File > Open function will open to default packet rules directory: /QIBM/UserData/OS400/TCPIP/OpnavRules/. If you navigate to a different directory, that preference will be saved.
  - Rules editor will no longer close on Save action. Editor will be left open. Save As will close the editor
  - Insert rules will now add the new rule where the cursor is located
- SNTP Connection Status action is now supported
- DCM - TLS configuration wizard is new (Idea delivery)
  - Go to Network > TLS Configuration > ADMIN3
- Alternative Subsystem Routing
  - Route by User
  - Route by IP - interface changes for Navigator
  - Added column for Number of Configured IPs (Idea delivery)
- Web Administration
  - Config editor
  - Application Servers now has all the data populated in each row for the server:
    - Hostname verification indicator - can also turn it on or off here
    - Assigned Certificate information
- TLS Configuration > Deactivate Unsecure Ports - made more robust and user-friendly:
  - will not be able to select this if TLS is not enabled
  - Set up secure connections for Navigator - turn on GlobalTLS to avoid any user without TLS set to be locked out
  - Also has a toggle for setting DCM TLS
- TLS Wizards
  - Test TLS in the wizard to verify all host servers have correct certificates
  - Subject Alternative Name verification - verifies hostname on certificate
    - Liberty TLS wizard
  - Summary enhancements
    - endpoint name
    - provide TLS-enabled URL
    - server name added
Performance Data Investigator (PDI)
- Ability to view Incomplete collections - previously you could not view a collection if it was marked "incomplete".
- New Graph History charts for Job Count
  - Batch Jobs CPU Utilization - Number of Batch Jobs
  - Interactive Jobs CPU Utilization - Number of Interactive Jobs
  - Batch Jobs CPU Utilization - Number of batch jobs
  - Interactive Jobs CPU utilization - Number of interactive jobs
Bookmarks - Improved handling for TLS (Idea delivery) - default will now be TLS
- Added TLS column and port information
- Bookmarks will default to TLS
  - If the TLS port is not enabled but the port is active, you may need to modify the bookmark to use the non-TLS port. Once this choice is saved, it will remain until you change it again.
- Manage bookmarks - can edit and set to http or https.
  - Note that you may need to launch from the manage bookmarks table until you log out and back in. There is a issue with the save being propagated to the left-side launch for bookmarks that will be fixed in the near future.
- Use default ports or override with your used values
- We will determine if LPP is installed before displaying bookmark
File Shares
- QDSL File System - IBM i NetServer shares may show path availability as "unavailable" - https://www.ibm.com/support/pages/node/7182988
Advanced Job Scheduler (AJS) - version 7.2.25.85
- Schedule Jobs Commands list now includes Sequence value to help with reordering

Fixes:

CVE-2025-2950
Start monitor will now use java8 toolkit for compatibility regardless of Java_home setting to jdk80, jdk11 or jdk17
HTTP Servers – Configuration – config edit button – when editing a HTTP config file, select (edit) then make a change and save it. Exit thinks there are unsaved changes. Save button will now be greyed-out until a change is made.
Issue with printer output – only downloading by html, not text after Q4 2024 – fixed
PDI exporting graphs is now fixed after being broken in Q4 2024 PTFs
Fix to allow TLS wizard to specify the original TLS configured port (no error)
NFS Export issues – resolved
Output queue file download - allow txt again (Q4 2024 limited to html format regression)
Adding or removing iSCSI using Nav for i fails with NAV_308021
Fix for failed to retrieve SMTP properties (error NAV_306312)
Network Attributes Server does not save
PNDSYSNAME clear issue
Network attributes ALRHLDCNT set to *NOMAX fix
Monitor package name selecting a Q* collection would hang with LOADING… Now. You will see a message indicating that the collection is not valid for the perspective.
Fix for Application Servers table – Refresh/Reload will now include any currently selected row.
ADMIN1 server TLS-enablement cannot restart itself. Deactivate auto restart.
FTP Properties – issue with json on Java 17
My IFS Objects - Path filter Permissions error fixed
Updating Output queue and Message queue fix for Queues tab
EIM :
- Missing parameter error is fixed
- Problem with unable to create associations for identifier is fixed

Q4 2024

The following enhancements to Navigator are included in the Q4 2024 PTFs released 12/18/2024:

Change to authority of the Navigator file directory. For security, the Navigator directory has been locked down. The PTF install exit program will modify the directory /QIBM/ProdData/OS400/Navigator/ to have authority set to:

*PUBLIC *EXCLUDE
QWEBADMIN *RX
If Navigator isn't accessible after applying the PTFs Delayed, take the following steps:
- End the HTTP ADMIN1 server that Navigator runs in:
  - > ENDTCPSVR SERVER(*IAS) INSTANCE(ADMIN1)
- Run this command to add the needed authority for the QWEBADMIN profile:
  - > CHGAUT OBJ('/qibm/proddata/os400/navigator') USER(QWEBADMIN) DTAAUT(*RX) OBJAUT(*ALL)
- Start the server and Navigator again:
  - > STRTCPSVR SERVER(*IAS) INSTANCE(ADMIN1)

This release has the following new features:

Web Administration migration
- Network > Web Administration > Application Servers > (right-click server)
- TLS Connections - Host Server port information and launch to wizard for host servers
- Server properties updates
  - IAS -properties
    - Instana monitoring added
  - Logging & Tracing enhancements to panel
Monitors
- Stop monitor server command has changed! Refer to Monitor Stop and Start
- Infrastructure changes have been made to monitors to address security-related concerns.
Security
- The web truststore is no longer dependent on Master Key 1 being set. For this change to be handled correctly, a user with *ALLOBJ authority should turn off TLS for their connection to the GUI node (Serviceability > Connection Properties then TLS Connection table), then apply the PTF. That user should then sign in and turn TLS back on. This will allow the conversion of the truststore to be handled correctly.
  - Db2M use of the same web truststore is incompatible with this change. Update to Db2M for compatibility is available here.
- Included with the HTTP group update is a change to Liberty and that it will default to hostname verification for SSL certificates on outbound connections. The host targeted by the outbound connection is required to present a certificate with a Subject Alternative Name (SAN) value matching the hostname. To resolve a hostname verification failure, update the target host's certificates with ones that contain a SAN value matching
  the hostname used to connect to the server. See this support doc for more information: Navigator for i is unable to establish TLS connections to host servers.
- Increased awareness for TLS connections. For this PTF, we are adding warnings if you are not using https protocol, and if you are not using secure connections. In the future, Navigator will restrict access if not using TLS.
  - Warning 1: We will warn users if not using https protocol. On the dashboard page, you will be warned if your connection is using an unsecured port with a Link that launches to ADMIN1 Configure TLS Wizard:
    - Warning: NAV_209003: Your connection to the ADMIN1 server is using an unsecured port. It is recommended that you turn on Transport Layer Security (TLS) for the the ADMIN1 server. Go to Network > Web Administration > Application Servers > ADMIN1 > Configure TLS to configure TLS for the ADMIN1 server.
  - Warning 2: We will warn users if not using secure connections (TLS enabled) and provide a link to launch to Connection Properties > TLS Connection for TLS Enablement panel.
    - Warning: NAV_201001: To secure the connections between all managed system connections, go to Servicablility > Connection Properties > TLS Connection to enable all TLS connections between the GUI and managed nodes.
  - To help support all users with secure connections, we have added a TLS Enablement for all users in the TLS Connection panel under Connection Properties. A user with authority (*ALLOBJ) is able to configure all users signing in to that node to use TLS. This is for the GUI node only. If other GUI nodes are used to manage the same system, TLS enablement will need to be done on that GUI node as well.
  - Improved secure settings for Content Security Policy (CSP).
    - ```
    cache-control:no-store
    content-security-policy:default-src 'self' 'unsafe-inline'; img-src 'self' data:; frame-ancestors 'none'
    content-type:application/json; charset=UTF-8
    content-type-options:nosniff
    x-frame-options:DENY
    x-xss-protection:0
```
- QIBM_NAV_FS_UPLD – change to *DENIED as default. Check here for more information on Function Usage IDs.
Dashboard enhancements and improvements
- Icon name text will be shown initially. User can close and open the text section with the "<" button:
- Paddle-lock shown locked or unlocked = TLS between systems (secured connections)
- New “Manage ->” click-space can be used in addition to double-click
- New look for menu (manage, refresh, view SL, edit, and remove node)
- State – Active shows stats. Not connected – system (rotating dots – static) and “Unknown” instead of empty fields
Tabs for Navigator will now include the component they are launched from. This includes:
- Inquiry Messages
- ARE Console
- Active Jobs
- Performance Data Investigator (PDI)
- Custom Charts - will be enhanced to include header next quarter
Performance Data Investigator (PDI)
- Dojo update to 1.17 for security
- Historical Detail Data (supporting metrics) for top contributors can now be saved up to 425 days. Requires Performance Tools PTFs.
Audit Journal Datamart enhancements to create library when required
Advanced Job Scheduler (AJS) – version 7.2.24.331

Fixes:

TLS Wizard is less error-prone when using non-CMS keystores

CVE-2024-51463 & CVE-2024-51464
PDI Job Watcher call stack - fix to some JW collections and intervals that could not launch Interval Details (showed LOADING...)
Change to Netserver Disabled Users list to query with USER_INFO_BASIC instead of USER_INFO. This provides a performance improvement for systems with thousands of users.
Invalid login will no longer provide the user profile attempted on error for security reasons.
Fix for manually editing DNS servers which could result in a Navigator error when opening the file.
Issue with Monitors stuck in STOPPING status is resolved.
Fixes for issues with NFS export.
Navigator will now update JOBD Entries for a existing user is fixed.
AJS fix for:
- Ability to change scheduled time on scheduled job
- MRI missing on scheduled job

Q3 2024

The following enhancements to Navigator are included in the Q3 2024 PTFs released 9/26/2024:

This release has the following new features:

Web Administration migration
- Network > Web Administration > Application Servers > (right-click server)
  - > Configure TLS Wizard : Application Server TLS Wizard is available to Enable TLS on application servers.
  - > Configure Logging : Network Servers Logging Configuration
- Connections - More columns not set to be sortable and filterable as numbers
License Management - License Expiration information
- Dashboard
  - Will show if OS license key is within warning or alert levels as well as expired
  - Table view will now include:
    - IBM i OS expiry date with icons for threshold values
    - TR level
    - Active Jobs count
  - Updated icons and visuals for warning, critical, and expired licenses
- On system Home panel, the Warning/Critical icon is a live link to launch to the License Table
- Configuration & Service > License Information table - shown sorted by expiration date with oldest date on the top
Performance Data Investigator (PDI)
- New perspectives added to Collection Services > CPU for Number of Active Jobs
  - Active Jobs Count
  - CPU Utilization by Prestart Job
    - ```
     WHERE (QOS.JBSTYP = 'J')
```
- Job Count by Status & Prestart Jobs Count by Status
  - Jobs Started in Interval, Ended in Interval, Continued through Interval, Started and Ended:
- Job Count by Type
- Job Count by Subtype
SQL View
- Now run SQL from Navigator directly in VSCode using the Db2 for IBM i extension (minimum version 1.4.0 (recommended 1.4.1). You need to be connected to a system for it to run the SQL. Otherwise, the editor will open with the SQL and you can then connect to a system to run it.
Security
- Audit Journal updates
Monitors
- Migrating monitors from heritage Navigator no longer works because of Java incompatibility issues. This function will not be restored.
Bookmarks - go to Manage Bookmarks > Actions > Restore Shipped Bookmarks to update
- What’s new in MTU launch added
- Bookmark for Db2M added and will show up if installed
AJS - new version 7.2.24.263
- Fixes delivered
- Status of Data Library ASP
- Apply AJS server side PTF SJ01696

Fixes communicated with customers:

Issue with editing HTTP config when HTTP instance is on IASP
- Fixed issue with lines added to configuration file which caused errors
Fixed error with EIM when deleting multiple entries at once
Activate Packet Rules - fix to drop down not showing rules for interface list.
ARE in Navigator for i not working for Group PTFs - fixed.
Monitors
- Fix to monitors stuck in Stopping status.
- Fix to adding excluded message in monitors.
- Fix to issue with catching Inquiry messages.
Network
- Fix for internal error
- Fix for Connections error "Failed to retrieve the connections"
- Fix for NFS export incorrect value when browser is in French
- Error on NFS export fixed
Fix for Subsystem Descriptions properties to show Job Queues and Routing entries.
Printer Output fix for unexpected error.
Fix for TLS configuration limit on number of certificates
Fix for description for Groups profile not shown

Internal issues fixed:

Fix to saved favorites with filters
Fix to duplicate bookmarks for BRMS for each "restore"
Close on serviceability page previously left user on a blank screen. Will now return to dashboard.
Fixed missing login when using common authority (#1 on selection for authority).
Fix to properly display user profile currently logged in to managed system.

Q2+ 2024

The following enhancements to Navigator are included in the Q2+ 2024 PTFs released 7/1/2024:

This release has the following new features:

Launch to Memo to Users - What's New section.
- Go to Manage Bookmarks.
- Then Actions > Restore Shipped Bookmarks .
License Management
- On system Home panel, the Warning/Critical icon is a live link to launch to the License Table
- License Information table - will be sorted by expiration date by default.
- Dashboard -
  - Table view will now include IBM i OS expiry date with icons for threshold values.
  - Update to icons and visuals for warning, critical, and expired licenses.
Dashboard - table view will now include TR level and Active Jobs count.
AJS - new version 7.2.24.178

Fixes communicated with customers:

Issue with editing HTTP config when HTTP instance is on IASP
Fixed error with EIM when deleting multiple entries at once
Activate Packet Rules - fix to drop down not showing rules for interface list.

Internal issues fixed:

Fix to saved favorites with filters

Q2 2024

The following enhancements to Navigator are included in the Q2 2024 PTFs released 6/14/2024:

This release has the following new features:

Infrastructure - Angular upgrade to 17.8
- Fix to dropdown loading with correct values on multi-select
Login - improved handling for multiple login using authentication method. Prompt will allow login with different user profile and password
New improved editor (colors & formatting) used for:
- HTTP servers editing
- DNS configuration editing
- ARE log files viewing
- Navigator messages.log viewing
Security
- Audit Journal
  - Data Mart - preload detailed audit journal data - SQL services update in Spring 2024 TR.
  - Journal entry types NA and PS now supported.
ARE console in Navigator (Application Runtime Expert)
- Heritage ARE console compatibility with Navigator - V1R1M0 SJ00055
- Group scheduling in console
- Add & remove templates (multiples)
- Importing from heritage ARE
Network
- Web Administration in Navigator
  - Certificate Stores table
    - Add *SYSTEM store
    - Add and existing certificate store (by IFS path)
  - Application Servers (previously "IAS & IWS Servers")
    - improvements to display time when working on a remote system (using a different managing node)
- NAS configuration wizard will now use the fully qualified domain name (FQDN) set in CHGTCP option 12 when creating the service principal keytab entries. Previously, it would create the keytab entries using the URL used to access Navigator for i or the name of the managed node. This previous method would require additional steps to receive the correct entry names.
- VPN Connection Wizard
Monitors - updated to use latest resource classes
- Fix for &MSGTEXT parameter handling
Thresholds
- Hover text has been added to icons related to thresholds. This includes System ASP as well as the new license expiration information. This delivers IDEA 3762.
- Updated interface for Thresholds under Connection Properties to simplify setting of warning and critical thresholds.
- Whole values can not be edited in field for simplicity.
License Expiration - Several enhancements for displaying license expiration information have been added. This delivers IDEA 4069.
- License expiration dates for 5770SS1 5050 will be displayed on the dashboard for each system:
- - If license expiration is below set thresholds for warning or critical, an icon will be shown in the bottom right. If license is expired, the system card will be shown as follows. Hover over the icon for description of issue. Go to Connection Properties > Thresholds to change the default dates. Defaults are 60 days for warning and 15 days for critical.
- System Home Page will also show these icons. Additionally, if any LPPs are within the threshold ranges for expiration, this will be shown by an icon on the bottom left of the home page:
- - Go to Configuration and Service > License Information to find the licenses that are expiring
- Configuration & Service > License Information table
  - License Expiration column is now listed third by default. Go to columns and select "Reset Default" to pick up this change if you have set any preferences for this table. You will lose any customizations you have previously made to this table.
- System > System Stats
  - Has a new License box with information specific to licensing. This includes 5050 and 5051 details.
  - The System panel has been reconfigured and additional information is added.
- Threshold settings are available for license expiration settings. Default is 15 days for critical and 60 days for warning. Go to Serviceability > Connection Properties > Thresholds to change the threshold settings.
File System - Integrated File System
- IFS_OBJECT_REFERENCES_INFO is used to provide the IFS file list. The service documentation indicates that what is provided may not be complete for objects residing in systems other than root (/), QOpenSys, and user-defined file systems. Other file systems such as QDLS and QNTC may not be complete. Any limitations of a service used by Navigator will result in the same limitation in Navigator.
Performance Data Investigator (PDI)
- Performance Data Investigator (PDI)
  - New charts utilizing new breakdown monitor files for disk by ASP – QAPMSMASP (db2mb2pm SMASP has User ASP and iASPs). These are found in the Monitor package and require monitor data to be collected:
    - Percent Busy of each Independent ASP
    - Percent Busy of each User ASP
      - SYSTEM ASP Disk Arm Utilization for System ASP (Average)
    - Storage Utilization of each Independent ASP
      - 2 views – storage utilization (disk storage in GB) & storage breakdown
    - Storage Utilization of each User ASP
      - 2 views – storage utilization (disk storage in GB) & storage breakdown
        
        SYSTEM ASP Disk Storage Utilization for System ASP (Average)
- If you select a chart that requires a data point for drilldown without selecting a point, you will get this error. Previously you would get a chart, but it may have had skewed values.
Bookmarks updated – link to BRMS GUI added
- Go to Bookmarks > Manage and select Actions > Restore shipped bookmarks to get updates. You will only see the link to BRMS if 5770-BR2 is installed.
  - Product 5770-BR2 cannot be installed with product 5770-BR1 already installed on the same system. You must delete product 5770-BR1 using option 12 on the GO LICPGM menu or using the DLTLICPGM command. Here is the license info from the BRMS wiki: https://helpsystemswiki.atlassian.net/wiki/spaces/IWT/pages/165642458/Licensing+Information
Alerts > QSYSOPR Messages
- Enhancement to handling of a large number of messages – handling as lazy load (Idea delivery)
Advanced Job Scheduler (AJS) - version 7.2.149
- Status of Data Library ASP
- New AJS server side PTF:

Fixes communicated with customers:

Trigger command not executed in message monitor after 1 week – update to resource class
Deleting groups of 500 spoolfiles in printout caused issues
Error deleting PF from IFS (crtpf then /qsys.lib/mylib.lib/testdlt.file)
Error deleting IFS file from “My Objects” .
Edit Host table, name stays on the screen after Cancel.
AJS – shows incorrect version for non-English.
AJS – adding a command to a new job does not save.
SSHD remains in stopped status – non-English QLANGID.
Fixes to handling of favorites
Fix for SNTP NullPointerException.
ARP Cache – fixed some language issues working with the table
Improvements to System ASP threshold handling

Internal issues fixed:

Systems Status page - Object Object error fixed
NFS export – fixed issue where removing export from current exports list also removed from permanent entry.
Clarified message when copying user profile to multiple systems
Removed MGTC as a server to be started

Q1 2024

The following enhancements to Navigator are included in the Q1 2024 PTFs released 3/25/2024:

This release has the following new features:
- Makes use of Angular version 17 and updated node.js
  - New look for menu, fields, and sign-in password
- Requires JTOpen Toolbox 20.0.7 (5770SS1) to run. This is included in the HTTP PTF group update March 26, 2024.
- Monitors - System and Message Monitors - will now run with Java 17 or 11 if installed on your system (using the latest version installed).
New function enhancements by Component:
- Multisystem > Administration Runtime Expert (ARE) - Console now available in Navigator
  - View all the report files in the Verify and Previous Results
  - Scripts and Groups are sharable
    - Handling of groups implemented based on IDEA 3388.
  - New Authorization lists: QNAVARECON and QNAVARETMP
  - Templates are not yet available in IBM Navigator for i. Continue to use the heritage ARE tool for templates
- Web Administration for IBM i - functions now available in Navigator
  - View Logs
  - View and edit configuration files - Network > Servers > HTTP Servers > Right click a server > Configure
- Work Management
  - Scheduled Jobs - added function to Submit Immediately
  - Prestart Jobs - added Job Description field and others
  - Copy Printer (create using New Based On)
    - Allows you to use existing printer for the basis of a new printer to be added.
- Configuration & Service
  - PTF_INFO - new fields are supported (7.4 and 7.5 - requires Fall 2023 TR)
    - PTF_LATEST_SUPERSEDING_PTF
    - PTF_PRODUCT_OPTION2
    - This information is also now viewable from the properties panel from PTFs, PTF Groups, and Software Groups > Installed PTFs
- System
  - Added Software License Tier to System Status page:
- Network
  - VPN
    - Added connection editor to move up, down, and view.
    - New dynamic-key connection action is now available.
    - New option to display current attributes.
    - Added host-to-host and gateway-to-host options on connection wizard.
  - Additional launch was added to Network Attributes from System > Configuration
  - Manage Host Table - now allows Action > Delete for multiple rows
  - NFS Export (LUG request)
    - Creating and modifying NFS exports
    - Display list of current exports
    - Display list of permanent exports
    - Remove or change an existing export
    - Add multiple accesses to the export for given hosts/netgroups
    - Remove access items from the access list
    - Netgroups action will take you to the Add Netgroup panel
    - Allow input of host or IP on Add Access
    - Allow entry of host or IP on Change Netgroups
- File System > IFS
  - NOTE: If no data is returned it may be because the user profile requesting the view does not have the required authority. The QSYS2.IFS_OBJECT_STATISTICS service requires users to have *USE for each library included in the path name. If not, no rows are returned.
  - Using "Navigate to" followed by switching systems on the system tray - Navigator will attempt to go to the same path for that selected system.
- Performance Data Investigator (PDI)
  - New field for VCPU delays (JBVPDLY) and update to perspectives to provide this data:
    - Collection Services - new perspective: CPU Utilization & Waits Overview with JBVPDLY - has Active time on the new view which is Dispatched CPU minus JBVPDLY (Virtual Processor Delay)
      - NOTE: This requires the new Performance Collection Tools (5770PT1) PTFs to generate the new field JBVPDLY in the QAPMISUM file, and also requires that you convert data files for this new field to be available:
        
        7.5: SI85069 (delayed apply)
        
        7.4: SI85829 (delayed apply)
    - Collection Services - change to Waits for One Thread or Task to include the calculation for Active Time using Virtual Processor Delay.
    - Job Watcher - CPU Utilization & Waits Overview and Waits for One Thread or Task also will now include this value
- Security - Audit Journal Data Mart
  - Updates will be provided with the Spring TR. More updates will be posted when available.
- Users
  - Filter improvement - to use "ALL" instead of with asterisk for clarity. Default value is also now easily replaced when you start typing (no longer need to back up or delete existing text)
  - Table is now sortable by Description column
- Infrastructure:
  - The Navigator build date is now output in the messages.log file
  - Configure Logs - has new granular selection for debugging at FINEST (Trace) level:
    - Finest Trace Component Selection - if sending in data to IBM, support may ask you to set specific components or attributes for trace to provide the most helpful debug information.
- Advanced Job Scheduler (AJS) - version 7.2.65
  - NOTE: There is a new back-end PTF for iASP handling (included in the HTTP PTF group update)
  - You can now set the iASP for the Advanced JobScheduler (AJS) within the Navigator for i. This delivers IDEA 1575.
  - Fixes for several AJS issues
    - Scheduled Jobs is better formatted. Go to Columns ("...") and select "Reset to default". You will lose your customized preferences for this table if you reset to defaults. Job Name will now be first in the table.
- Content Manager on Demand updates
Fixes communicated with customers:
- Netserver
  - properties issue is fixed
  - removing an authorization list is now working (7.5 and later)
- New User (Based On) existing user will not retain authorizations from previous new user
- nullPointerException on startup of ADMIN1 (Loading...) is fixed.
- PDI
  - sort issue with multiple collections for some perspectives (Ethernet Protocol Overview and others) has been fixed.
  - Graph History > export data - format for datetime field will now follow browser locale setting.
- Fix for error on Start NFS servers - would happen if this was the first time using Navigator to start NFS servers because the pid file does not exist yet.
- Message Monitors - Allow asterisk in message monitor ID specification.
- Fix for error when removing an ISCSI entry.
- Netserver > Properties > WINS - will now allow removing servers by setting to blank.
- Packet Rules
- AJS
  - showing old version after updates has been fixed.
  - commands not showing under Scheduled Jobs Properties is fixed.
Internal issues fixed:
- Problem when a basic *USER goes to About function - caused spinning because user didn't have access to WRKPTFGRP command. This will now show build dates and Java information, and will not attempt to show PTF groups for those profiles
- SQL Services connecting to IASP when not requested - issue has been fixed.
- Performance Data Investigator (PDI) fixes:
  - Fix for PDI JW Interval Details hangs on loading.
  - Graph History - Details > Disk Response Time - Historical chart - corrected y-axis label issue.
  - Database perspectives (for Database Performance Monitor, Plan Cache, and Event Monitor perspectives) was fixed (stuck on "Loading..." with classCastException)
  - Fix for PDI perspective SQL Cursor and Native DB Opens by Job perspective that was not rendering.
- Fix for PTF table pagination issue when sorted by Status column.
- Network
  - VPN Group Connections Propeties - Clean-up of allowing "Restrict the associated IP address to the following range" only when remote addresses (for IPv4 & IPv6 Host Name)
  - VPN Secure Connections > By Group > select one:
    - Properties > Connections Tab > Generate the policy filter > Edit - will now validate ranges input
  - Servers > TCP/IP Servers > NFS > Start/Stop option error fixes.
  - NFS Start error for first time using Navigator to do so is fixed.
  - Fix for Network Servers Menu "sticking" on start/stop (HTTP server for example).

Q4 2023

The following enhancements to Navigator are included in the Q4 2023 PTFs released 12/13/2023:

Favorites – Launch to favorites, saved filters, and sorts improvements.
GUI node authentication – username will now be updated on upper right when switching systems.
Progress Bars - Improved readability and sizing.
Shipped bookmarks - Restore ability to edit - allows setting for TLS.
System > History Log
- Pre-filter for “Include” added – allows more flexibility in viewing history log
  - Time, Jobs, Message IDs
  - Return to Include action to modify it
Network
- Network NFS List of Exports
  - Export Function – lists
  - Add new export
- Added properties for VPN under TCP/IP Servers, select VPN > Properties
- Under Secure Connections – for By Group – added new Dynamic Key Group function
- Debug Service will now be started under QDBGSVR rather than the user starting it.
My Work > My Printer Output
- A pre-filter has been added for this function so user can select what data is included in results. Since this function searches all printers on a system for output owned by the user, this can be slow on systems with thousands of printers. A pre-filter allows the user to pre-select some filtering options (printer, etc) to subset the search and enable it to be completed in less time. Users can leave *ALL for all the filters to have the entire system searched as previously by default.
Security >
- Audit Journal – Support for new Journal Entries (requires Fall 2023 TR):
  - LD – Link, Unlink, Search Directory
  - AU – Attribute Change
- CVE-2023-47741
  - Password handling enhancements
  - Other security enhancements:
    - Function usage validation when switching systems
    - Input validation on SQL filter
  - Using library-qualified name for all tables in monitor
    - Call certain monitor queries as SYSTEM vs USER.
File System > IFS
- Changing permission of owned object
- Column handling improvements
Users
- Enhancements to pre-filter Include with added fields: Special Authorities and Description. Also added ability to choose filter type (starts with vs contains, etc)
- LANGID and CNTRYID are properly displayed now.
- Support for a new parameter on CRTUSRPRF and CHGUSRPRF on IBM i 7.5 is provided with the Users > Properties panel.
  - Under Jobs > Session Startup - Added max sign-on attempts (MAXSIGN)
  - Also added to the Users table list of available columns
- NetServer Disabled User ID table now has a pre-filter to accommodate systems with thousands of users which can take time to return results, particularly starting with security checking in IBM i 7.5 (see MTU).
  - This will be enhanced in the future to use the faster USER_INFO_BASIC
- Users dialog filter now will allow multiple filters
AJS update - version (7.2.319)
Content Manager on Demand updates - Requires server-side CMOD PTFs

Fixes for the Following:

Fix to issue with refresh in tabs.
Function Usage fix to verify users when switching user profiles.
Dashboard Threshold Configuration – resolved problem with Save button not activated.
Security > Audit Journal detail table - Fix to errors when checking/unchecking filter values.
Network
- Fixes for some issues with the VPN Connection wizard and editing policies. Enhancements to handling of edit for policy filters. Enhancements to field handling and input validation for usability improvements. Fix to issues with creating new Dynamic Key Connection
- SSHD status error is handled – trying to get TCP/IP status when SSHD has not been started on a system will no longer cause an error.
File System >
- Integrated File System (IFS)
  - Fix to issue with empty "/" tab
  - Fixed error on sorting non-default IFS columns

Q3+ 2023

The following enhancements to Navigator are included in Q3+ 2023 PTFs released 10/16/2023:

Only applicable to Upgrades: Changes to restore authority on preferences directories in Navigator. The authorities on Navigator preference directories is changed and access is removed for *USER profiles when you upgrade to IBM i 7.4 or IBM i 7.5 after running IBM Navigator for i on IBM i 7.3 or IBM i 7.4. The install-exit program alters the authorities. To fix this, do the following:
1. Update the system with this PTF (in the 16 Oct 2023 HTTP group)
2. Restart ADMIN1 server (as is always required after PTF update)
  1. ENDTCPSVR *IAS INSTANCE(ADMIN1)
  2. STRTCPSVR *IAS INSTANCE(ADMIN1)
3. Log in to IBM Navigator for i with a profile that has *ALLOBJ authority. Now, code is run to restore the authorities to all the user preferences files.
- A notice for this situation is also listed on the IBM Navigator for i page and will be included in the Memo to Users next update (Spring 2024).
Network
- VPN Secure Connections > All Connections - added Group Properties action
- Fixes for some issues with the VPN Connection wizard and editing policies
- Fix for NetServer Disabled user filter to allow systems with thousands of users to load the list by using the pre-filter. Not using the prefilter with thousands of users on an IBM i 7.5 system causes Navigator to time out because the SQL Service takes too long to return. See information on QSYS2.USER_INFO changes in the IBM i 7.5 Memo to Users.
Work Management > Create Remote Output Queue - Option added to easily create a "dummy" printer device by selecting the checkbox provided on the panel. Using the panel and checkbox ensures that the correct queue name is used as well as the correct library - QUSRSYS.
File System > Integrated File System - Fix to issue with empty "/" tab
Support for a new parameter on CRTUSRPRF and CHGUSRPRF on IBM i 7.5 is provided with the Users > Properties panel.
- Under Jobs > Session Startup - Added max sign-on attempts (MAXSIGN)
- Also added to the Users table list of available columns

Q3 2023

The following enhancements to Navigator are included in Q3 2023 PTFs:

Infrastructure - Custom Favorites
- Table filtering and sort - We added the ability to save filter and sort selections to favorites
  - When you add a filter or sort for a column, there is a new checkbox to "Save table's current filters", that then includes the sort and filter settings in the new favorite.
  - Saved favorites can be used across different managed nodes
  - Reset button clears filters
- Multi-column filtering is now supported
- Export and import favorites
Network
- Configure VPN wizard now available
- DNS configuration root servers - Added ability to edit the named.ca file
Users table (including Netserver Disabled Users table) - We added a pre-filter to limit the number of results in the query to improve performance
Security
- Audit Journal
  - Configuration: Action Change on Auditing System Value now launches to Security > Audit Configuration. All configuration for auditing is in one place.
    - System Values for auditing redirects to audit configuration page
    - New Audit Control context panel and Advanced settings (from Action > Additional Audit System Values):
      - Audit Control System Value - QAUDCTL
      - Enable object auditing (*OBJAUD)
      - Do not audit objects in QTEMP (*NOQTEMP)
  - Security Configuration value for exists now displays as "Yes" or "No"
Work Management
- Printing
  - Remote Output Queues added to Printing support
    - End Writer
    - Hold
    - Create a remote output queue
- Active Jobs now uses an ORDERBY including Run Priority so that subsystem is listed before (above) the jobs running in that subsystem in the table (on default display)
- Active Subsystems > Jobs - Subsystem Jobs, then Details > Threads table now includes Job Name
- Job Log table makes better use of space available
System
- New menu format with sub-categories
- A new Hardware Resources table is available that uses SQL Services HARDWARE_RESOURCES added
Configuration & Service
- PTF panel - better use of space and action for showing coverletter disabled if not available
IFS
- Deafult initial sort - ascending
- Locked files - added Show Usage information
Bookmarks
- Handle user-defined bookmarks to change system hostname based on selected system
- Lock-down shipped bookmarks so changes are not allowed
- Added LDAP bookmark
AJS update - version 7.2.242
- Job Groups
- New report distribution list
- Scheduled Jobs - see AJS page for details
Content Manager on Demand updates

Ideas (previously called RFEs) fulfilled with this PTF:

Hardware Resource Info table added - IBMI-I-3207
Favorites now saves filtering settings - IBMI-I-1581

Fixes provided with this PTF:

Infrastructure - Tables - Columns with large content will no longer overflow the column width, but is now formatted to flow within the column
Work Management
- Active Jobs & Server Jobs tables - Job Queue column is now correctly filled in (was blank previously)
- Active Job Queues table - Jobs in Queue column now allows filter and sort by number instead of text
System Monitors
- Copy to System Monitor panel has size set as a ration of initial browser window
Security > Audit Journal
- New ZC entries needed changes for support
- Fixes to handling of some auditi configuraiton changes
- We don't change or update QAUDLVL2 when there are not changes to the value (some aspects of this still require OS changes are are forthcoming).
- QCRTOBJAUD showed incorrect value
Users & Groups
- Deleting more than one account - with failure, will now continue and process remaining selected users after failure
Configuration & Service
- Sorting fixed for PTF group table, "Level" column
Network
- Fix to SSHD server not refreshing status
- Connections - idle time corrections
File System
- Fix to incorrect units on storage for IFS properties
- Fixes to several permissions issues found with File Shares
- Fix to My IFS OBjects issues with permissions
AJS - Fix for "Date is required" error. Default values of holiday, fiscal, and regular calendars are now handled correctly

Q2 2023

The following enhancements to Navigator are included in Q2 2023 PTFs:

Table size preference added - choose from wide-ruled, college-ruled or in-the-middle ("normal") for your table spacing preference. The differenc is subtle, provided by primeNG.
Infrastructure:
- Navigator now uses the highest level Java available on the system. If available (on 7.4 and 7.5) Java 17 will be used. If Java 17 is not available, Java 11 will be used. Install Java 11 or Java 17 and latest Java group PTF to run Navigator with these versions of Java. Details on Java: https://www.ibm.com/support/pages/node/6437873
  - Related PTFs for ADMIN1 server to utilize the Java 11 and 17 are also required (and included in the HTTP group update June 2023):
    - 7.5 SI83486
    - 7.4 SI83487
    - 7.3 SI83485
- Upgraded to Angular 15 - framework upgrade can result in changes to the look of columns and filter fields and can be affected by previously saved preferences for your column settings on tables. If you see columns with small filter fields or not laid out well, do the following:
  - Go to columns on the right-side of the table:
  - Select Reset Defaults followed by OK:
  - Re-configure your table to your liking and it will be saved for future use.
  - PrimeNG update caused column width user preferences to not be saved - now fixed
Dashboard:
- TR added
- Node Display Name - choice is now available to use display name if requested
Custom Charts - Sorting system name alphabetically is now available
IFS enhancements
- Go to - favorite path
  - Open multiple tabs
- Reset button provided
- Download and upload support
  - Append another version, replace, delete options provided
- Filter capabilities (not yet saved in favorites)
- Table properties:
  - Set default directory for first open of table
  - Set default for opening directories - in same tab or new
  - Set units for data size to be used: KB, MB, or GB
- Note: No rows are returned for remote file system objects. This means that for the QNTC file system, only a row for /QNTC is returned. For the Network File System (NFS) and QFileSvr.400 file systems, no rows are returned.
Network
- DHCP Configuration added
- TCP/IP Servers > IBM i NetServer > "File Shares" action added
- TCP/IP Configuration Properties > Servers to Start is updated - added SNMP, VPN, and OBJC
- DNS – added support for properties
Security:
- Authority Collection - added actions
  - Start and stop the authority collection
  - Delete the collection
- Audit Journal - general improvements in minor functions
- Security Configuration Information - values added:
  - Allow Password Exit Program Add Remove
  - DDM Request Access
  - Client Request Access
  - Job Action
Work Management
- Navigation menu - re-organized with sub-headings
- Server Jobs table has an added column for server description
- Job Scheduler - Work with scheduled jobs is now supported by using QSYS2.SCHEDULED_JOB_INFO
Printers
- Include function added to help users with a large number of printers to filter and view a subset.
- Add Printer function
Monitors - Allow user with authority to change owner to another user
System Values
- Password system values - improved labels
- Security system values - prioritized values shown
AJS update - AJS page
- Job Groups now available
- related AJS PTF for back-end only: SI83469 (included in HTTP group PTF update June 2023)
  - There are two flags that can be set in the data area described in the Answer Text. One that causes AJS to start doing the SETASPGRP for a data library in an ASP group other than *SYSBAS when accessing 5250 screens. And the other flag does SETASPGRP for a data library in an ASP group other than *SYSBAS when logged in to the GUI.
    - To enable the IASP option. Enter the Change Data Area command on green screen:
      - CHGDTAARA DTAARA(QUSRIJS/QIJSPM (256 1)) VALUE('1')

Ideas (previously called RFEs) fulfilled with this PTF:

For system monitors, allow selection of new user to be any profile with required authority
Basic Job Scheduler is now provided in Work Management > Jobs > Scheduled Jobs
- Add, Change, Hold, Remove system job scheduler entries. This uses the QSYS2.SCHEDULED_JOB_INFO view to provide information similar to WRKJOBSCDE
Add Printer function is provided in the print table (access through Work Management > Printing > Printers). Select the Actions button for the menu includes the list action Add printer. Additional printer support is planned for future updates.
Network:
- Under Network > Servers > TCP/IP Server - Continue to support more servers for the option to view properties. If a server properties view you require is missing, contact us.

Fixes for the following:

Panel layout and sizing improvements
IFS improvements - improved filtering and added global filtering
Authority Collection library name filter no longer case sensitive
IFS item without access was showing size as “NaN”
Performance Data Investigator (PDI)
- Fix for JVM Waits Overview perspective
- Add ORDERBY DateTime to Memory perspectives
- QAPMCONF table expanded to fit on one panel
Fix on issue with filtering of "Copy to System" dialog
Network> IP Policies> Virtual Private Network> IP Security Policies - "Transforms"
- IKE aggressive mode change to main mode would not save
EIM – added missing exception, fixed missing MRI, and cleaned up logging errors

Q1 2023

The following enhancements to Navigator ar included in Q1 2023 PTFs:

Dashboard
- Make use of “display name” - On connected-to system (upper right)
- Added an option to Properties to specify whether to use Host name or Display name.
- Additional column for disply name is added to multi-system operator messages
- OS release added, updates to table view
- Username in navigator header matches system currently managed
- SQL button added
Search keywords updated for latest additions
Bookmarks updated – link to PowerHA GUI added
- Go to Bookmarks > Manage and select Actions > Restore shipped bookmarks to get updates
Error message details – message help text is now available under the details for the error message
Table Filter Enhancements –
- Select all pertain only to the visible (filtered) rows
- Preserve filter and sort for columns when table is refreshed
- Saving with favorites – still in progress
- Allow selection of filter action
IFS
- Refresh and reload icons implemented
- When you change authority to a *DIR object, a checkbox for propagate the authority change is provided (RFE)
  - Change the objects within the subtree if the object specified is a directory or a library
- Permissions panel – defaults to Revoke
- Upload and download actions
- Large folder expansion -
  - Open in new tab – on request and QSYS.LIB by default
- IFS warns user when deleting a folder in IFS to make user more aware of implications of delete actions (RFE)
Network > TCP/IP Servers
- ObjectConnect Server over IP > Properties
- Netserver Disabled column now included in table when viewing disabled Users - default view (RFE)
  - Netserver disabled columns is moved next to status (relabeled “Profile Status”)
  - If you have set your columns, use Reset Defaults to see this added .
- DDM actions > Properties
- FTP properties action implemented
- DNS servers – configure, reload view log, server jobs
  - Enhancements and fixes from last months version
- Telnet properties
- VPN – defaults updated
- IP Policies > Packet Rules – property values enhancements
- Find the jobs running under Network > Connections
  - Additional actions here – tasks, properties
- System Debug - Start and Stop Instances for:
  - IDE Debugger Server – QB5ROUTER
    - STRDBSVR/ENDDBGSVR
    - RDI connects to it today, now requires TLS
  - Debug Service – new service built on top of qb5
    - Environment variables: DEBUG_SERVICE_KEYSTORE_FILE and _PASSWORD
    - Runs startDebugService.sh and stop
    - Creates job QP0ZSPWT
  - System Debug - (already there STRDBG ACS)
    - Access now through RSS > Run > System Debugger
System
- System Status panel –
  - Lightened blue bar for better readability
  - New Properties view to view all data and copy from this page (export button)
  - Type of processors will properly show dedicated partition or type in text (may show ‘null’ previously)
  - Interactive performance changed to a percent (without bar) so 0 will show up more clearly. Same for Large and Very Large when 0.
Exit Programs – Add Exit Program dialog will allow edit of exit point name and format
Monitor - Include thresholds on Performance Data Investigator (PDI) charts for monitors
Security
- Cryptography work completed – keystores: export key record wizard
Spoolfiles – download as zip option added
Work Management
- Allow name change on prestart job entry
  - From Active subsystems and Subsystem Descriptions > Properties > Change
  - And from Active Prestart Jobs > change prestart job entry
- Active Prestart Jobs table has expanded columns
- Active Jobs – launch to Performance Data Investigator (PDI) in new tab always
  - Also from subsystem jobs – launch to job waits in PDI in new tab
- Job Log – increase number of messages viewable
- History Log – changed to Lazy Load for better performance
- Active Prestart Jobs – expanded information – Initial jobs as default
  - All others available in columns... selection
- Active Jobs – ORDER BY added to make up for change to ACTIVE_JOB_INFO (may have been noticed with specific PTFs that affected default order for ACTIVE_JOB_INFO).
- Working with Subsystem > Properties – all columns of data available are not provided (previously was limited to 3)
Users - will now also include Groups and will include a profile type to indicate Group or User
QSYSOPR message radio button selection is now saved in user preferences.
Printers - Added Include function so user can specify a subset of printers to work with. This filter is saved with the user preferences.
AJS - Job Controls/Applications tab under AJS Properties

Fixes:

System values – Time Adjustment code fixes made
AJS – various fixes reported have been fixed
SQL formatting adjustments to color and special values
Add Exit Program dialog now allows editing parameters when action is used without any pre-selected
FTP properties – minor adjustments
System Monitor will not trigger if QWEBADMIN does not have the proper authority. The user needs to have *USE authority to perform the CREATE ALIAS command.
APAR SE79087 – Fixed Performance Data Investigator (PDI) problem with Graph Disk I/O Rates Overview With Cache Statistics - Detailed after HTTP level 25
Fixed problem with false error in printer status
APAR SE79011 - Issue with excluded messages being rejected has been fixed. A message must exist in the "Monitored Message Set" to successfully be allowed in the "Excluded Message Set".

This detail is for New Navigator only. Click here for the Heritage version of Navigator

Document Location

Worldwide

[{"Type":"MASTER","Line of Business":{"code":"LOB68","label":"Power HW"},"Business Unit":{"code":"BU070","label":"IBM Infrastructure"},"Product":{"code":"SWG60","label":"IBM i"},"ARM Category":[{"code":"a8m0z0000000CH1AAM","label":"IBM Navigator for i"}],"ARM Case Number":"","Platform":[{"code":"PF012","label":"IBM i"}],"Version":"7.3.0;7.4.0;and future releases"}]

Tips

IBM Navigator for i - PTF Update Details

How To

Summary

Objective

Document Location

Was this topic helpful?

Document Information

UID

Share your feedback

Need support?