- Release notes
- 2024.10
Orchestrator Release Notes
2024.10
If you know and love our live streaming and remote control feature, then you will already be aware that it is supported by a VNC server. Up until now, this has been TightVNC, but, with the advent of the Robot 2023.12 release, we are moving to RealVNC.
RealVNC is included in your Studio installation package, and requires no configuration whatsoever. Nothing changes on your part - if anything, things should be smoother from now on. However, this means that we will no longer be offering support for TightVNC.
For details, see the Live streaming and remote control via RealVNC section in our user guide.
We have changed our retention policy for recorded videos. Now, when you choose to record a job execution from the settings of its underlying process, the video is stored in Orchestrator as follows:
-
for 7 days in the case of failed jobs
-
for 3 days in the case of successful jobs
- A better outlook - All the details you need are available in a side-by-side view, ideal for comparative checking.
- More screen space - The side panel can be resized or expanded to a full-sized window for enhanced visibility, and an even larger view for all your data.
- Efficient navigation - Navigation between the details of a job or transaction happens by simply clicking anywhere on a transaction row. This allows you to easily move through the list while also maintaining focus.
You can now see the folders where the processes associated to a certain package are included. This is done at the tenant level, by clicking the See processes option in the contextual menu of the desired package or package version. The resulting window displays the folders where that particular process is used. However, please note that only folders that you have view and edit access to are listed.
For details, see Viewing package processes.
The Machines, Processes, and Queues sections featured in the Monitoring page, at both the folder and the tenant level, are now split up in two tabs:
-
Real time (Orchestrator) provides the information that you will already be used to seeing. The content on this tab continues to be refreshed instantly.
-
Historical (Insights) includes charts based on data available in Insights, that can reach up to two years back. These charts are synchronized with Orchestrator with a 20-minute cadence.
The Historical (Insights) tab provides a series of features that we are certain will be very useful to you. These include:
-
Various filtering options based on the component.
-
The option to download the entire dashboard or each tile in the format of your choice.
-
The ability to schedule the delivery of a report to your email.
-
The click-to-filter option per dashboard component.This is an example of the Historical (Insights) tab for processes, with a look at some of the available options:
Please be aware that the Historical (Insights) tab is only available if you have Insights enabled.
For optimal resource utilization and smoother workflows, we have improved our queue triggering system with a new option: After completing jobs, reassess conditions and trigger new jobs if possible. In addition, this prevents idle robots and stagnant queue items. For more details, refer to Queue triggers.
We are happy to announce that you can now manually delete In Progress queue items from the Transactions window. This option comes highly requested, and we are confident that it will make your automation lives easier. All you need to do is select the desired queue items, then click Remove, just like you would for items with other statuses.
A new credential store is now integrated with Orchestrator: CyberArk® Conjur Cloud. This integration aims to provide a more secure and efficient way to handle credentials within Orchestrator, thus enhancing your automation capabilities.
Testing the credential store connection
A Test button is now available when adding a credential store. The button helps you check the connection to the configured credential store before using it.
Minor change to credential stores setup
If you have no valid credential store plugins installed, the Type field in the credential store configuration window is now empty, and the Create button is unavailable. This is a sign that you need to correct your plugin configuration before you are able to save your setup.
New option to allow OS user authentication
We have added the new Allow OS User Authentication option to CyberArk CCP. OS user authentication enhances security by using the credentials of the user logged into the Orchestrator machine.
Plugins.SecureStores.CyberArkCCP.EnableOsUserAuthentication
parameter is set to true
.
The severity level of the User started exploring your personal workspace. alert has been increased from Info to Error. This ensures that you are notified via email whenever an administrator starts exploring your personal workspace.
When it comes to your libraries, you have a choice to use host feeds, tenant feeds, or both. Based on what you choose, the Libraries page of the tenant's Packages menu is populated with your feed list. Up until now, though, this view was limited if you chose to use both host and tenant feeds. Now, when you select said option, the Libraries page is split into Tenant and Host, with each section displaying its corresponding feeds.
We have split the auto-retry mechanism into two options, as follows:
- Failed items - retries any queue items that fail after creating the queue.
- Abandoned items - retries abandoned queue items based on the value specified in the Max # of retries field.
For more details, refer to Managing queues in Orchestrator.
We are adding the following queue item fields:
-
ManualRetryNumber
-
ManualAncestorId
-
ManualAncestorUniqueKey
-
UniqueKey
-
AncestorUniqueKey
The objective is to complete the traceability of queue item retries. All existing fields will remain in place, and will be used for automatic retries.
Our mission of optimizing the access control framework continues with a significant improvement to the roles and permissions check window.
- The First Name and Last Name fields in the user editing window have been replaced with a single field: Full Name.
- Consequently, the First Name and Last Name columns have been removed from the tenant-level Manage access > Assign roles page.
CreationTime
via the API before performing the export.
For any questions regarding supported fields, you can check out the new Fields supported for queue transactions exports page.
The Personal automations setup tab featured in the role assignment window has undergone a few important changes:
-
The Enable a Personal Workspace for this user option has been renamed to Create a personal workspace for this user and enable optimal Studio Web experience.
-
The Create a personal workspace for this user and enable optimal Studio Web experience option is no longer selected by default when enabling personal automations.
-
Deselecting the Enable user to run automations option triggers a warning message which informs you that doing so will affect any running automations, and could downgrade your Studio Web experience.
Warning message displayed when deselecting Enable user to run automations
The Audit Data window for the Sessions component now includes the Maintenance field, which displays the status of the Maintenance option for unattended machines. 1 marks the enabled status of the machine maintenance mode, and 0 marks its disabled status.
The configuration of processes and triggers has been improved by prefilling their name fields based on the previously selected package or process.
For processes, the Display Name field displays the name of the selected package in the format <PackageName>.
As far as triggers are concerned, the Name field displays the name of the process, followed by the trigger type in the format <ProcessName>_<TriggerType>. It is also worth mentioning that this change applies to time, queue, and API triggers, and that the Name and Process Name fields have switched positions to follow the logical flow.
You can now rename your robot account after creating it.
Test
to Test1
, only the Name column updates with the new value, leaving the Username unchanged. For more information, refer to Adding robot accounts.
Any and all name changes made to local groups at the organization level are now propagated to Orchestrator.
Please note, however, that renaming a group several times in a short timeframe means that only the last renaming event is captured in the Orchestrator audit logs. The organization-level audit includes all such events.
Now, any changes made to your directory users in the Admin portal - including updates or deletions - are reflected within your Orchestrator's user list and audit logs across all tenants.
User System Administrator updated/deleted account {user_mail}
. For a full breakdown of the changes, click View Details in Audit Data.
When a directory user is deleted:
-
Any connected robots will also be automatically deleted.
-
Associated personal workspaces will become orphaned. These can still be explored, or you can choose to convert them into modern folders.
Please note, a delay may be experienced whilst synchronizing these updates to Orchestrator.
External feeds used for libraries can now also be secured through basic authentication credentials, as is already the case for packages.
We removed SMB storage from Automation Suite, and therefore, we recommend using external storage instead.
As part of our ongoing optimization efforts, we have removed the following feature flags and enabled them by default. Therefore, you can no longer configure any feature flags per tenant at the host level:
- Monitoring
- Prevent Auto Refresh
- QueueSlaMonitoring
- Actions
- App actions
- Test Automation
- Document Validation Actions
If your database supports a read-only replica, Orchestrator will use it by default to improve performance and scalability. For more details, refer to the Orchestrator read-only replica.
In December 2023, we launched an option to see the folders where the processes associated to a certain package were included. At the time, only folders that you had both view and edit access to were listed in the Processes of package window. We have now removed the need to have edit access, which means that all folders that you have view access to are listed. The edit option is, however, only enabled for folders that you also have edit access to.
This is a look at the previous frequency component, as well as to the new menu, along with the options it includes.
User experience best practices, as guided by your suggestions and use cases, are always top-of-mind for the Orchestrator team. In trying to align our product design to these practices, we are improving the display density of grid information. This means that you will now see tables in a compact mode, which allows for more items to be displayed, ultimately taking better advantage of screen real-estate.
We are confident that the high-density view will provide you with an overall better experience:
-
The spacing between table rows is smaller. The information is still perfectly visible, as we have simply removed blank spaces.
-
The number of rows that can fit on a single page has significantly increased, thus making more information available at a glance.
You do, however, have the option to go back to a low-density view, by deselecting High density view from the General > Application settings section of your tenant-level settings.
During the first iteration of the jobs side panel implementation, the folder tree was automatically collapsed when the panel was expanded to a full-sized window. Now, the folder tree is persisted even while the job details window is in full-sized mode.
- processes,
- queues,
- folders,
- storage buckets,
- assets with value per user.
As part of our constant effort to provide you with the best user experience, we have decided to remove icons from menus. This means that our user interface is now cleaner, more streamlined, more readable, and more accessible. We are confident that this change will allow you to focus on explicit information without distractions and the need for interpretation.
Orchestrator now supports multiple selection across various filters, allowing you to manipulate data more quickly and have a more streamlined workflow.
You can select multiple options for the following filters:
- The Processes tab
- Job
- Priority
- The Jobs tab
- Process
- State
- Priority
- Source
- The Triggers tab
- State
- Job Priority
- The Transactions window
- Status
- The Users tab, under Manage
Access
- Role Assignment
- The Machines tab
- Type
- The Robots tab
- License Type
When you try to disable a webhook, its name is now displayed in the Confirm action window. Previously, it was identified by its URL.
The Type list of the Search in tenant window now also includes an App entry, allowing you to search for specific apps within a tenant.
The Processes page now includes two new options: View Logs and View Jobs. The options allow you to easily access the logs and jobs associated to a specific process.
You can now easily copy a folder's path by using the Copy folder path option in the desired folder's contextual menu.
To simplify the logs, we have removed the CreationTime field from the Audit logs.
When searching for resources within your tenant, the Type column now displays the resource category, such as:
- Trigger (Time)
- Trigger (Queue)
- Trigger (Event)
- Machine (Template)
- Machine (ACR VM)
- Machine (ACR Serverless)
To enhance operational efficiency, we have hidden the Check Folders and Permissions option for orphaned robots, where the owner no longer exists as a user in Orchestrator.
We have improved the following:
- The authentication error message displayed when user interface access is disabled during sign-in.
- The error messages displayed by all Orchestrator resources. The errors now include a Trace ID, where relevant, for more efficient debugging.
AcceptedDomainsList
, HasConnectionString
, and
ConnectionString
parameters of the GET/odata/Tenants
endpoint are now removed.
Reports endpoints available for audit logs, robot logs, and queue definitions are now removed. As such, we advise against using the following:
-
GET/odata/AuditLogs/UiPath.Server.Configuration.OData.Reports
-
GET//odata/RobotLogs/UiPath.Server.Configuration.OData.Reports
-
GET/odata/QueueDefinitions({key})/UiPathODataSvc.Reports
If you would like to retrieve such reports, we recommend these steps:
-
Initiate an export by calling the appropriate endpoint:
-
For audit logs:
POST/odata/AuditLogs/UiPath.Server.Configuration.OData.Export
-
For robot logs:
POST/odata/RobotLogs/UiPath.Server.Configuration.OData.Export
-
For queue definitions:
POST/odata/QueueDefinitions({key})/UiPathODataSvc.Export
Important:- This operation returns an ID that is necessary for the next two steps.
-
-
Get the status of the report by calling the
GET/odata/Exports({key})
endpoint and appending the ID returned at step 1 to it. -
Once the status is Completed, get a download link for retrieving the exported archive, by calling the
GET/odata/Exports({key})/UiPath.Server.Configuration.OData.GetDownloadLink
endpoint and appending the ID returned at step 1 to it.
InputArguments
and OutputArguments
data fields have
been removed from the GetAll - Jobs
endpoint.
- The elevate permission check no longer includes permissions coming from disabled services. Thus, the following error no longer occurs when you attempt to assign permissions to other users: "Action forbidden: You selected at least one role that grants more than your set of permissions. Please remove the following role(s): {role_name} to continue. (#1437)".
- When the user interface access was disabled and a user tried to sign in, Orchestrator displayed a misleading error that the user was not authenticated.
- The screen reader version of the Create new menu included items that were greyed out in the user interface. Now, if a menu item is not available for any reason, the screen reader also skips it.
- The Monitoring page displayed the status of Automation Suite Robot machines. This no longer occurs.
- Timeouts occurred when a large number of configured robots retrieved CyberArk® credentials.
- When configuring the CyberArk credential store, the CyberArk Folder field did not support separators, the / or \ characters.
- As a result of the My profile page removal, the Orchestrator version was no longer visible in the user interface. You can now find the version at the bottom of the user profile section.
- API calls attempting to edit the details of unattended robots failed due to an unauthorized error. However, manual edits made through the user interface by the same user with identical permissions were successful.
- The Process filter on the Logs page did not include the process names of automations that were run in Studio.
- The Job details window did not display a reason for jobs stuck in a Pending status when the user-machine configuration for those jobs was not valid.
- Assets could not be retrieved from the HashiCorp Vault, which resulted in a permission denied error.
- The time format in grid exports was not always consistent. Now, it is displayed as yyyy-mm-dd hh:mm:ss.fff in all scenarios.
- The Log Details window previously did not display new-line characters correctly. Now, the window properly shows whitespace for all text values in logs, and its width has been increased for improved content visibility.
- An error was displayed in the View transactions window when you attempted to export queue items, and had filtered for a specific robot.
- HPA scaling of the Orchestrator instance caused intermittent 503 network errors.
- In an effort to improve the readability of the queue items side panel, we have changed its layout to a row format, and have made several minor font tweaks. These updates aim to solve a rendering issue which caused content to have too little space in the old side by side layout to accommodate values. The underlying issue stemmed from a rendering change meant to account for any whitespace formatting coming from automations or raw content.
- When an administrator tried to edit another administrator, it triggered an error that the authentication token was invalid, which logged out the initial user.
- Packages larger than 30 MB could not be loaded.
- When you upgrade to a major version,
the upgrade might fail with an error that the NLog extension
UiPath.Orchestrator.Logs.Elasticsearch.dll
is not compatible with the new version of Orchestrator. To avoid this issue, you should always use the latest version. - On the Monitoring page, under the Unattended sessions and User Sessions tabs, you cannot sort items by status. Alternatively, we recommend using the Status filter instead.
- Local users part of local and mail-enabled AD/AAD groups may receive duplicate emails for alerts that have been generated for both groups.
- The live streaming connection does not always load for Robot versions up to 2024.10.1. This happens due to a TLS version mismatch between the server and Robot. For example, some systems (i.e. Windows 10) and Robot versions lower than 2024.10.1 do not support TLS 1.3.
- Automation asset updates
- Introducing RealVNC for live streaming and remote control
- Retention of recorded videos
- Hiding processes for attended users
- Introducing the job and queue transaction side panel
- Viewing process folders
- Introducing historical monitoring
- Recurring queue triggers
- Manually deleting In Progress queue items
- Introducing CyberArk® Conjur Cloud
- Credential store news
- Personal workspace alert severity
- Libraries feeds split view
- Auto-retry for failed and abandoned transactions
- Queue item retry related field changes
- Checking assigned roles and permissions
- Changes to user-specific fields
- New columns in queue transactions exports
- Personal automations setup changes
- Auditing machine maintenance actions
- Prepopulating name fields for processes and triggers
- Increased audit search character limit
- Administration and organization news
- Renaming robot accounts
- Local groups renaming
- Directory user events handling in Orchestrator
- Authenticating external feeds
- Removing SMB storage
- Enabling feature flags by default
- Using the read-only replica by default
- Permission changes for viewing process folders
- User interface enhancements
- Trigger execution frequency revamp
- Changing information density in Orchestrator grids
- Folder tree no longer collapsed
- New deletion confirmation window
- Removing icons from menus
- Multiple selection for filters
- Displaying the webhook name
- Searching for apps in the tenant
- New options on the Processes page
- New option to copy the folder path
- Removing CreationTime from the Audit logs
- Improved identification of resource types
- Hiding permissions for orphaned robots
- Error message improvement
- Enhancing job sources
- API changes
- Removal of API parameters
- Removal of reports endpoints
- Removing large data fields from GetAll - Jobs
- Exposing QueueItems endpoint parameters
- Bug fixes
- Common Vulnerabilities and Exposures
- Known issues