Subscribe

UiPath Orchestrator

The UiPath Orchestrator Guide

Release date: 7 April 2022

Known Issues


As a host, trying to end a maintenance window through Swagger UI may fail. This happens because Swagger UI uses cookies for authentication, which are lost when you close the browser.
To end the maintenance mode via API, use one of the following workarounds:

  • Do not close the browser and make the POST request to /api/Maintenance/End from the Swagger UI.
  • Use an API testing application (for example, Postman) to:
    retrieve an access token by exchanging your credentials to the /api.Account/Authenticate endpoint, and then
    make a POST request to the /api/Maintenance/End endpoint using the Authorization: Bearer {access_token} header.

Bug Fixes


An issue was fixed that would allow an attacker with privileged access to a robot to retrieve the LicenseKey (MachineKey) of other robots within the same tenant by brute forcing API calls to Orchestrator. This would theoretically allow the attacker to access resources restricted only to that robot.
Read the security advisory for UiPath - Robot Account Takeover.

 

See Activity Package Versions

The following activity packages and versions are included in the UiPathOrchestrator.msi installer:

Activity PackVersion
UiPath.UIAutomation.Activitiesv21.4.4
UiPath.System.Activitiesv21.4.1
UiPath.Mail.Activitiesv1.10.5
UiPath.Excel.Activitiesv2.10.4
UiPath.IntelligentOCR.Activitiesv4.13.2
UiPath.PDF.Activitiesv3.4.0
UiPath.Terminal.Activitiesv2.2.0
UiPath.Web.Activitiesv1.7.0
UiPath.Word.Activitiesv1.6.4
UiPath.Form.Activitiesv1.1.11
UiPath.Persistence.Activitiesv1.2.2
UiPath.Presentations.Activitiesv1.1.5
UiPath.MobileAutomation.Activities v21.4.3
UiPath.Testing.Activitiesv1.3.3

Updated 7 months ago


2021.4.4


Suggested Edits are limited on API Reference Pages

You can only suggest edits to Markdown body content, but not to the API spec.