README for ECE 12.6_ES1
***********************

About this Document
--------------------------------------------------------
--------------------------------------------------------
This document provides installation instructions for ECE 12.6 ES1. The document also describes the issues that have been addressed in this ES.
Please review all sections in this document before installing the product.


PRE-REQUISITE STEPS
--------------------------------------------------------
--------------------------------------------------------
1) This ES can only be applied on ECE 12.6, ECE 12.6 ET1 or ECE 12.6 ET2.
2) Copy the content of ECE 12.6 ES1 installer into a local temporary folder on each of the servers.
3) Backup the Active, Master and Reports databases.
4) If the application is deployed in Geo-Redundant mode, please ensure you shutdown both sides and repeat below steps for each side before bringing the application up.
5) This step is required if you have enabled or intend to enable:
	- Email Retriever/Dispatcher with SSL/TLS
	- Cisco IDS Single Sign-On for Finesse Agents
   If you have already imported the certificates in a previous ECE release, you will have to rename the certificate ALIAS you gave when you imported them so that this ES installer can automatically migrate them to new truststore. Go to STEP 6.A for detailed instructions.
   If you haven't imported any certificate yet, obtain the necessary SSL certificates that need to be imported and proceed to STEP 6.B for detailed instructions.

6.A) In order to rename the ALIAS of already imported certificates to the format eg_custom_<SOME_ALIAS_NAME> follow the below steps:
	a. Open command prompt and change to the following directory
	>cd <FILE_SERVER>\<ECE_INSTALL_DIR>\env\jdk\bin

	b. List the existing imported certificates with the following command to identify the alias you used (use password "changeit"):
	>keytool.exe -list -keystore "..\lib\security\cacerts" | findstr "<Alias name or Date>"
	e.g >keytool.exe -list -keystore "..\lib\security\cacerts" | findstr "2019"
	ciscoids, May 22, 2019, trustedCertEntry,

	c. Change the alias of the certificates you imported to the format eg_custom_<alias name> with the following command (use password "changeit"), repeat for each alias:
	>keytool.exe -changealias -alias <CURRENT_ALIAS_NAME> -destalias eg_custom_<SOME_ALIAS_NAME> -keystore ..\lib\security\cacerts
	e.g >keytool.exe -changealias -alias ciscoids -destalias eg_custom_ciscoids -keystore "..\lib\security\cacerts"

	d. Verify that the changes were correctly applied by listing again the certificates with the following command (use password "changeit"):
	>keytool.exe -list -keystore "..\lib\security\cacerts" | findstr "Alias name or Date"
	e.g >keytool.exe -list -keystore "..\lib\security\cacerts" | findstr "2019"
	eg_custome_ciscoids, May 22, 2019, trustedCertEntry,


6.B) Import certificates to the default truststore with the eg_custom_<SOME_ALIAS_NAME> alias format by following the below steps:
	a. Copy the obtained certificates to the following folder:

	<FILE_SERVER>\<ECE_INSTALL_DIR>\env\jdk\bin

	b. Open command prompt and change to the following directory
	>cd <FILE_SERVER>\<ECE_INSTALL_DIR>\env\jdk\bin

	c. Run the following command to import your certificates, repeat for each of them (use password "changeit"):
	>keytool.exe -import -alias eg_custom_<SOME_ALIAS_NAME> -file <CERTIFICATE_FILE_NAME> -keystore "..\lib\security\cacerts"

	d. When prompted to trust this certificate, type "Y" or "Yes" and press ENTER

INSTALLING ECE 12.6 ES1
--------------------------------------------------------
--------------------------------------------------------
1. Stop Cisco service on Application, Messaging and Services server.
2. Run setup_windows.exe on the File, Services, Application, Messaging and Web servers (from the local temporary folder) and follow the steps in the installer.
   Setup should be done in the following order:
   1. File server
   2. Other servers in any order.
   Entire upgrade must be completed before starting the application again.
   
Installing ECE 12.6 ES1 on HA systems:
--------------------------------------------------------
--------------------------------------------------------

1. Stop Cisco service on Application, Messaging and Services server.

Collocated HA systems
---------------------
Installation should be done on VM-1A first. Rest of the components can be updated in any order.

VM-1A: ECE All-in-One server (file, messaging, application, services and database components are installed on this server).
	- Run setup_windows.exe
	- For Enterprise Chat & Email Home Directory, provide local installation directory path.
VM-1B: ECE Web server component
	- Run setup_windows.exe
	- For Enterprise Chat & Email Home Directory, provide local installation directory path.
	
VA-2A: Multi-role server (Second Messaging, Services, and Application server components are installed on this server).
	- Run setup_windows.exe
	- For Enterprise Chat & Email Home Directory, provide local installation directory path.
	- For File Server Name or NAS UNC Path, provide DFS shared path.

VM-2B: ECE Web server component
	- Run setup_windows.exe
	- For Enterprise Chat & Email Home Directory, provide local installation directory path. 
Entire upgrade must be completed before starting the application again.

Distributed Server HA systems
-----------------------------
Installation should be done on the Services Server first. File server is updated along with it. Rest of the components can be updated in any order.
	- For Enterprise Chat & Email Home Directory, provide local installation directory path.
	- For Services, Messaging and Application servers, update installer will ask for "File Server Name or NAS UNC Path". Provide DFS shared path.
Entire upgrade must be completed before starting the application again.

Running the Reports Database Utility
-------------------------------------
-------------------------------------

1. Follow the instructions to run the utility from below link.
  Pg 154 UCCE: https://www.cisco.com/c/dam/en/us/td/docs/voice_ip_comm/cust_contact/contact_center/enterprise_chat_email/enterprise_chat_email_12_6_1/Installation/Guide/ece125_installationguide_for_ucce.pdf
  Pg 136 PCCE: https://www.cisco.com/c/dam/en/us/td/docs/voice_ip_comm/cust_contact/contact_center/enterprise_chat_email/enterprise_chat_email_12_6_1/Installation/Guide/ece125_installationguide_for_pcce.pdf


All other Post-Install tasks
-------------------------------------------
1. Start Cisco service on Application, Messaging and Services server.
2. On the agent's desktop, clear browser cache.
3. If ECE was using Add On which uses eGain Messaging Hub and OneTAG is configured in ECE, then perform following steps:
	- Reach out to eGain to get new credentials. eGain will share new token.
	- Login as Partition Administrator
	- Go to Partition - External Apps - Authentication screen
	- Edit the existing Messaging Hub configuration and update the new token, received earlier, in Configuration Token field.
	- Save the Messaging Hub configuration screen.

UNINSTALLING ECE 12.6 ES1
--------------------------------------------------------
--------------------------------------------------------
1. Stop Cisco service on Application, Messaging and Services server.
2. Run <ECE_INSTALL_DIR>\Uninstaller\Patches\update_uninstaller.exe on File, Services, Messaging, application, and Web Servers.
3. Restore the Active, Master, and Reports databases, which were taken during installation.(see step 3 in pre-requisite procedure).
4. Start Cisco Service on Application, Messaging, and Services server.
5. On the agent's desktop, clear browser cache.
6. Follow the instructions in the TEMPLATE CHANGES document to restore the old custom chat templates.


UNINSTALLING 2 SERVER HA SETUP
---------------------------------------------------------------------
---------------------------------------------------------------------
1. Uninstall from (Application,Services and Messaging Server) Side B directory.
	<INSTALL_DIR>/Uninstaller/Patches/Uninstall_eGSuite.exe
2. Uninstall From Side A directory
	<INSTALL_DIR>/Uninstaller/Patches/Uninstall_eGSuite.exe
3. No Need to run Uninstaller from Side B file server directory.
4. Delete remaining residual files/Directory manually


UNINSTALLING DISTRIBUTED SERVER SETUP
-----------------------------------------------
-----------------------------------------------
Side B Uninstallations steps to completely uninstall:-
1. Uninstall from Application,Services and Messaging Server Side B directory.
<INSTALL_DIR>/Uninstaller/Patches/Uninstall_eGSuite.exe

Side A Uninstallations steps to completely uninstall:-

1. Uninstall from Application,Services and Messaging Server Side A directory.
<INSTALL_DIR>/Uninstaller/Patches/Uninstall_eGSuite.exe
2. Uninstall File server From Side A directory
<INSTALL_DIR>/Uninstaller/Patches/Uninstall_eGSuite.exe
3. No Need to run Uninstaller from Side B file server directory.
4. Delete remaining residual files/Directory manually


Issues resolved in this Engineering Special
--------------------------------------------------------
--------------------------------------------------------

CDETS 		Summary
CSCwa47392	Address Log4j Vulnerability (CVE-2021-44228)
CSCvz18816	ECE gadget needs to escape Finesse URI
CSCwa23565	SSO User login API not working on ECE
CSCwa15498	Synchronization Thread running into infinite loop do to BEGIN_AGENT_INIT_IND not sent to UCCE
CSCvz82745	ECE 12.6 Partition Administrator SSO Configuration Screen - SSL Configuration Missing
CSCvz82720	ECE 12.6 Partition Administrator SSO Configuration Screen - Base Validation Incorrect
CSCwa24625	Email with 150MB attachment is not dispatched and OOM exception is observed.
CSCvz50637	ECE Chat Vulnerability - Crash Agent Chat Console using XSS
CSCwa29795	Editability of default attributes is not working
CSCwa24672	Unable to set signing algorithm of agent SSO to SHA-256
CSCvy39506	Customer connection status on chat doesn't get reset
CSCvy16328	Failed to modify the LDAP configurations
CSCwa00151	Chat agent unable to download attachment
CSCwa28981	Unable to see queue while creating Entry Point, if there is more than 25 Queue in dept
CSCwa28985	Error processing request is shown when subject with more than 255 characters are provided in calltrack transcripts.
CSCwa28992	WXM related errors are logged continuously even if WXM is not configured
CSCvz50629	ECE Vulnerability - Open Redirection on Login Page
CSCvz44139	Egain Knowledge Base Gadget malfunction in Multi-tab container
CSCvz33049	PCCE Department Sync API Call Fails if Description has Slash in the Text
CSCwa27092	Close chat button is not working for aqua template on chrome browser when cross-domain
CSCvz20450	ECE Vulnerability - Username Enumeration
CSCvz20440	ECE Vulnerability - Reflected Cross-Site Scripting (XSS) - Date field
CSCvz20436	ECE Vulnerability - Reflected Cross-Site Scripting (XSS)
CSCvz20430	ECE gadget vulnerability - Stored Cross-Site Scripting (XSS)
CSCvz20427	ECE Chat Vulnerability - Agent Web Browser Compromised via Chat - XSS
CSCwa27086	Some articles folders are not displayed in Auto-Acknowledge node when logged in Russian locale 
CSCwa27071	"Agent availability settings after completion of call'" attributes are not displayed as per actual and not translated.
CSCwa27061	Update audit fails when call variables are kept displayable.
CSCwa27050	Incorrect attribute name is shown in audit log when Not ready reason codes are enabled.
CSCwa27040	Precision queue attribute name should be translated in audit log.
CSCwa27028	LiteAgent option is enabled when user close CTI error and refresh console page.
CSCwa27132	User experiences blank page when spell check is evoked in quick response content tab
CSCvy58521	Emoji's not rendered properly when isRichTextSupported is set to true
CSCvy97528	code: 400-127 - conversation.id provided in request does not exist in certain conditions
CSCvy92367	Call variables are passed to UCCE in encrypted format
CSCvy88408	Supervisor Does Not See Default Exception Queue to Pick On First Login
CSCvy80057	Agent Work Summary report showing 0 picked and pulled activities
CSCwa26146	EAMS instance node throws error when AgentPG is not imported.
CSCwa26139	Proxy Server setting not visible
CSCvy64897	Login Failure Message for Supervisor Console is Not Helpful
CSCwa29545	"Enable chat queueing" setting should be under Integration node.
CSCwa26124	Unable to update added alias in new admin console 
CSCvy58521	Emoji's not rendered properly when isRichTextSupported is set to true
CSCwa27278	Invalid message is displayed while importing queues in copied department.
CSCwa26972	Unable to delete the alias and getting the error message that alias is used in the workflow, even the alias is not used in the workflow
CSCwa26164	Users are not shown in transfer window when "Allow transferring emails activities to agents who are not available" setting is No
CSCwa28998	Incorrect translation of word 'Subject' in Deutsch language
CSCwa27291	Multiple print preview for mail/chat activities is not working on firefox browser
CSCwa27304	When user click on 'Close dialog' system send outbound email activity to customer.
CSCwa27317	Could not process the request is observed when long search name(greater than 256 characters) is provided
CSCvy29158	A temp directory creation vulnerability exist in Guava versions prio ...
CSCvy29159	The package handlebars before 4.7.7 are vulnerable to Prototype Poll ...
CSCvy29157	In Apache Commons IO before 2.7, When invoking the method FileNameUt ...
CSCvy29160	In Apache Commons IO before 2.7, When invoking the method FileNameUt ...
CSCvy28657	Agent Import with Parenthesis in Name Fails
CSCvy24349	An information leak was discovered in postgresql in versions before  ...
CSCvy24350	A flaw was found in hibernate-core in versions prior to and includin ...
CSCvy24358	An information leak was discovered in postgresql in versions before  ...
CSCvy24357	A flaw was found in hibernate-core in versions prior to and includin ...
CSCvy24359	A flaw was found in jackson-databind before 2.9.10.7. FasterXML mish ...
CSCvy24348	Netty is an open-source, asynchronous event-driven network applicati ...
CSCvy24360	Netty is an open-source, asynchronous event-driven network applicati ...
CSCwa26112	When something is modified on general tab of rx-instance and pa clicks Save button, confirmation about leaving page is shown and if clicking Yes 404 page is displayed.
CSCwa26093	Russian: Garbled characters are shown in workflow name when user workflow is copied.
CSCwa25835	Wrong meaning for To: (email) is used in russian for email.
CSCwa25777	Supervisory email with after condition is assigned to user with admin role but there are no buttons.
CSCwa25762	html tag names are visible in workflow notification editor.
CSCwa29529	When department is created events for default social workflow is logged into audit_trail table.
CSCwa25752	Issues for Chat API : Reason attribute are not available in API response for  'Display chat option based on queue depth, agent availability, and entry point status' API
CSCvx82222	Agent status not changing into "waiting for response" for attachement in chat
CSCvy06065	ECE: slow database performance
CSCwa25737	Not able to preview attachment of greeting article in preview window.
CSCwa25724	KB setting is called 'cisco knowledge system' in audit instead of egain knowledge system. 
CSCwa25717	Not able to delete exceptional day on calendar.
CSCwa25706	Integrated objected were imported by qeuser but for supervisory queue and skillgroups actor is shown as pa.
CSCvy05764	Errors while loading ECE Admin gadget in SPOG
CSCvy05846	In an error condition, EAMS process logs keeps rolling
CSCwa25692	Scroll Bar is missing in Articles preview window
CSCwa25679	 Check Spelling is not working in message body pane under monitors
CSCwa28996	Update record is created for user with licenses being removed when session ends abnormally and user logs in again.
CSCwa28997	Mapped licenses in ECE details are shown as ECE but in audit as eGain.
CSCwa27324	External URL of Application setting is called differently in audit.
CSCwa27389	Incorrect system message is generated when CallTrack activity is created via call-back template.
CSCwa25670	Could not process the request is observed when tried to save multiple activities in agent console.
CSCwa25142	Error observed in UCCE import wizard when "&" is present in department name.
CSCvx89826	Custom Parameters for Listener Process are not Retained After Upgrade to ECE 12.0 or Higher
CSCwa29000	Allow login outside of Finesse options should be yes/no in audit.
CSCwa25131	Language selection is shown twice when login in with integrated SSO user with additional admin role.
CSCwa27368	Not able to login to partition 1 user to access reports console with integrated SSO user with additional admin role.
CSCvy62979	Emoji option is not present in agent reply pane.
CSCwa24783	could not process the request is observed when very long search name is provided
CSCwa24773	Tools: screen attributes: Workflow attributes order is shown with - sign.
CSCwa27373	Custom activity attributes added to Agent Reply Custom General Calltracking is not visible for manually created calltrack. 
CSCwa29006	Retain session popup should not be shown inside Finesse agent gadget when user is logged outside to admin console since option does not work.
CSCwa27333	User is allowed to login (russian) to agent console from console selection screen when EAMS instance is stopped.
CSCwa24758	web link in L10N_LINES_ARE_BUSY message is not working
CSCwa24742	Getting error message 'Could not process the request' while changing pane through layout options
CSCvx87907	ECE 12.5 ES1 ET1 Application log shows duplicate entry PK violation error in EGPL_USER_GROUP_ITEM table
CSCwa24734	KB folder permissions are displayed in integrated user properties.
CSCwa27342	Allow local login for specific users option is not shown under SSO agent configuration but is logged into audit.
CSCwa24713	Validation Popup is not displayed when invalid mime type attachments are provided for email articles
CSCwa29579	Russian: manual calltrack is translated in the message but in notification it is not and there is no space.
CSCwa24697	"Error could process the request "is observed if agent tries to create Inbox folders without having create inbox folder action.
CSCwa29741	Screen attribute shows "Inbox - Main" for agent console screen.
CSCvz29036	When I type '<xxx' (xxx being lettes) on the customer side, the next message is indented on agent
CSCwa29591	ECC variable/name/mapping is not translated in update audit log.
CSCwa29619	CTL for agent is not translated at queue level.
CSCwa29597	Application string attribute is not translated in update audit log.
CSCwa29749	Attachment names are not displayed as they originally are in preview modal for an article type
CSCvy69654	There is no option to import a larger set of agents, the interface is not supporting multiselect
CSCwa29758	Save button gets enabled without modifying settings value
CSCwa29769	Hover over the spell check it shows undefined instead of spell check.
CSCvy07458	Option/Button to change Layout type is not visible in Agent Chat Tab and visible in Email Tab
CSCvy06034	During Agent session timeout, the message and options provided doesn't match
CSCwa29777	Note's type is not translated.
CSCwa29782	PCCE gadget: when new internal message comes count is shifted under message drop down in admin console.
CSCvx85095	Line1 gets added automatically when agent select admin config chat template.Text msg prints on Line2
CSCvz62022	Import Screen Queue Name Field Not Updated Correctly on Initial Selection
CSCvx86762	CIAM: ant 1.10.4
CSCvx86760	CIAM: sqlite 3.34.0
CSCvx86758	CIAM: json-sanitizer 1.2.1
CSCvx86757	CIAM: netty 4.1.50.Final
CSCvx86756	CIAM: activemq 5.15.10
CSCvz21837	Certify Reports Console on MS Edge - IE Mode
CSCwa55918	Integration specific event needs to be logged in case chat is terminated by UCCE.
CSCvr86493	ECE Email Login Needs to Support OAuth2.0 Due to Microsoft Basic Authentication Deprecation

--------------------------------------------------------
--------------------------------------------------------