Readme file for IBM(R) TRIRIGA(R) Application Platform 3.5.0.1 fix pack. Date: April 1, 2016 IBM Corporation Copyright(C) International Business Machines Corporation 2016. All rights reserved. US Government Users Restricted Rights - Use, duplication or disclosure restricted by GSA ADP Schedule Contract with IBM Corp. =============================================================================================== Table of Contents =============================================================================================== 1. Introduction 2. Information resources 3. Installation instructions 4. Resolved issues 5. Notices =============================================================================================== 1. Introduction =============================================================================================== This fix pack updates the TRIRIGA Application Platform product. ----------------------------------------------------------------------------------------------- Prerequisites and supported products ----------------------------------------------------------------------------------------------- To install this fix pack, you must already have IBM TRIRIGA Application Platform 3.5.0 installed. =============================================================================================== 2. Information resources =============================================================================================== Knowledge center URL: http://www-01.ibm.com/support/knowledgecenter/SSHEB3_3.5.0/com.ibm.tap.doc_3.5.0/product_landing.html Description: Access the Knowledge Center to view the product documentation. Topics include product overviews; installation and configuration tasks; instructions for using, administering, and troubleshooting the product; and security information. Real Estate and Facilities Management community on Service Management Connect URL: https://www.ibm.com/developerworks/servicemanagement/rfm/ Description: Use Service Management Connect to access blogs, wikis, forums, and communities. In Service Management Connect you can review information such as best practices, performance and tuning, and product integrations. You can also collaborate with IBM experts and the broader user community. IBM TRIRIGA Application Platform support resources portal URL: http://www.ibm.com/support/entry/portal/overview/software/tivoli/ibm_tririga_application_platform Description: The IBM support resources portal provides access to tools and resources to keep your systems, software, and applications running smoothly. From the support resources portal you can find fixes, service requests, useful links and an enhanced search to help you find information quickly. =============================================================================================== 3. Installation instructions =============================================================================================== The fix pack file can be extracted into any directory. Before extracting and running the fix pack, back up the existing TRIRIGA files and make a backup copy of the database. NOTE: In the patch folder for the 3.5.0.1 fix pack, when the fix pack installer backs up the ibm-tririga.war file, the back-up .war file appears as the ibs-tririga.war.bak file. Follow these steps to apply this fix pack: 1 Ensure that no database configuration changes are pending. 2 Shut down all of your application and process servers. 3 Take a backup of the database and of the TRIRIGA install directory. 4 For IBM WebSphere Application Server, after the backup has been completed, restart WebSphere. 5 Download the 3.5.0-TIV-TAP-FP001 file. 6 Unzip the file and run the patch executable file (fixpack_tririga_v3.5.0.1.exe or fixpack_tririga_v3.5.0.1.bin). 7 In the Introduction panel, click Next. 8 In license agreement, accept the terms and click Next. (if you do not accept the terms, the patch will exit) 9 Choose the directory where TRIRIGA is installed. For example: c:\ibm\tririga\ Or /opt/ibm/tririga/ 10 Review the information, and click Next. 11 The fix pack process will patch the WAR file, run any platform database fix pack scripts, and redeploy the WAR file in Liberty. 12 For Oracle WebLogic Application Server, delete all the cache, tmp, and .wlnotdelete directories that may contain files left over from the previous application/ear installation For example: C:\oracle\weblogic10\user_projects\domains\tririga10domain\servers\tririgaServer\cache C:\oracle\weblogic10\user_projects\domains\tririga10domain\servers\tririgaServer\tmp Or /opt/oracle/weblogic10/user_projects/domains/tririga10domain/servers/tririgaServer/cache /opt/oracle/weblogic10/user_projects/domains/tririga10domain/servers/tririgaServer/tmp 13 For Oracle WebLogic Application Server, the fix pack process will attempt to redeploy the WAR file into the managed Server. However because of conditions in the server environment outside of IBM TRIRIGA's control, it may be necessary to manually redeploy the WAR file. Restart the application server when the fix pack has completed, and check the build number in the IBM TRIRIGA Administrator Console. If the old .war file is still shown, redeploy the .war file following Oracle's instructions for deploying a .war application into the managed server. The WAR file is located in the root TRIRIGA install directory: For example: c:\ibm\tririga\tririga-ibs.war /opt/ibm/tririga/tririga-ibs.war 14 For IBM WebShere Application Sever Liberty Core profile, the WAR file should be deployed and the cache directories will be automatically removed. All that is required is to restart Liberty. 15 For WebSphere Application Server, the WAR file will be redeployed and started automatically. If it fails to deploy, you can try to manually. The WAR file is located in the root TRIRIGA install directory: For example: c:\ibm\tririga\ibm-tririga.war /opt/ibm/tririga/ibm-tririga.war ========================================================================================================== 4. Resolved issues ========================================================================================================== ---------------------------------------------------------------------------------------------------------- The following issues were resolved in this fix pack. ---------------------------------------------------------------------------------------------------------- ---------------- Security Issues: ---------------- IBM does not intend to provide vulnerability details that could enable someone to craft an exploit. IBM uses the Common Vulnerability Scoring System (CVSS) as a standard for communicating the impact of security vulnerabilities in IBM products and solutions. CVSS is an industry open standard for assessing the severity or impact of computer system security vulnerabilities. This standard attempts to establish a numeric measure that represents how much concern or attention the vulnerability warrants. The resulting CVSS score is based on an assessment of a series of metrics. The CVSS Base Score represents the intrinsic and fundamental characteristics of the vulnerability that are typically constant over time and across user environments. For more information, see http://www-03.ibm.com/security/secure-engineering/bulletins.html --------------------------------------------------------------------------------------------------- The following security issues were resolved in the TRIRIGA Application Platform 3.5.0.1 fix pack --------------------------------------------------------------------------------------------------- --- Description: IBM TRIRIGA could allow an authenticated user to obtain sensitive information displayed in error messages. CVEID: CVE-2016-0343 CVSS Base Score: 4.3 CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/111784 for the current score CVSS Environmental Score*: Undefined CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N) --- Description: The IBM TRIRIGA Application Platform has a security flaw that could grant unauthenticated access into all JSP pages within the application structure under certain circumstances with the right criteria, which may allow for subsequent probing and exploitation. CVEID: CVE-2016-0300 CVSS Base Score: 5.40 CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/111412 for the current score CVSS Environmental Score*: Undefined CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N) --- Description: The IBM TRIRIGA Application platform grants the ability to access to read or modify a report that the user does not have privileges for. CVEID: CVE-2016-0342 DESCRIPTION: CVSS Base Score: 5.4 CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/111783 for the current score CVSS Environmental Score*: Undefined CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N) --- Description: Unauthenticated requests can be made to a vulnerable web application, which then performs unauthorized action on behalf of the attacker. CVEID: CVE-2016-0346 CVSS Base Score: 8 CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/111813 for the current score CVSS Environmental Score*: Undefined CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H) --- Description: The IBM TRIRIGA Application Platform is vulnerable to a cross site scripting attack within My Reports. CVEID: CVE-2016-0344 CVSS Base Score: 5.4 CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/111785 for the current score CVSS Environmental Score*: Undefined CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N) --- Description: The IBM TRIRIGA Application Platform no longer discloses server file path information when Birt reports are rendered. CVEID: CVE-2016-0345 CVSS Base Score: 4.3 CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/111786 for the current score CVSS Environmental Score*: Undefined CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N) --- ---------------------------------------------------------------------------------------------------- General Issues: ---------------------------------------------------------------------------------------------------- APAR #: IV80204 Defect: 206727 Description: If you import the TRIRIGA Service Technician group that is found in the TRIRIGA Application 10.4.1 Object Migration, it now imports correctly. --- APAR #: Defect: 207218 Description: In the fix pack installer, if an installation did not complete without warnings, you will now be asked to view the ant.log file for details. --- APAR #: IV79878 Defect: 208581 Description: Offline debug logging now indicates when a distill or populate process is about to evaluate an Excel formula. When a formula is successfully evaluated, a message will display. --- APAR #: IV79450 Defect: 208764 Description: A concurrency issue was resolved that resulted in a higher CPU utilization when multiple users authenticated at the same time. --- APAR #: Defect: 209108 Description: An issue was resolved that occurred when an event or scheduled event with no recurrence pattern failed to start. --- APAR #: IV80364 Defect: 209342 Description: In the Document Manager or the Notes & Document tab of a record, when you upload a file with multi-byte characters in the file name, the upload window now closes after you select submit. In the Document Manager, when you view, download, or check out a file with multi-byte characters in the file name, the file name is the same in the Document Manager preview. --- APAR #: Defect: 209453 Description: When the requestTest.jsp page cannot be used, additional debug logging is now available to help sort out SSO issues. --- APAR #: IV80415 Defect: 209541 Description: On the main page and in the Administrator Console, you can now change the default IBM TRIRIGA logo to custom company logos. Do the following to override the default logo set: 1. Create custom images named logo.gif, logoRTL.gif, or logoAdminConsole.gif. The RTL image is only used for mirrored bidirectional languages. 2. With the server running, place the image or images in the Userfiles/Images folders. 3. In the Administrator Console, clear the cache. 4. In the browser, clear the cache and refresh the page. --- APAR #: IV80379 Defect: 209551 Description: List fields in the data modeler now load properly when the list values contain an apostrophe. --- APAR #: IV80095 Defect: 209790 Description: Populate tasks that are used in the offline process no longer cause the populate process to fail due to a formula cache if the formula references a cell that has yet to be populated with a value and a different formula references that same cell after it is populated with a value. --- APAR #: IV79655 Defect: 209791 Description: Resolved an issue with the integration of McAfee ICAP virus scanning. The platform no longer sends null bytes at the end of the file stream to the server. The platform allows the configuration of an ICAP 204 response. The following new properties can be added to TRIRIGAWEB.properties to allow greater control of ICAP: VIRUS_SCAN_ALLOW_204=Y VIRUS_SCAN_SERVICE_NAME=SYMCScanResp-AV VIRUS_SCAN_FIRST_READ_TIMEOUT=3000 VIRUS_SCAN_SECOND_READ_TIMEOUT=3000 --- APAR #: Defect: 209793 Description: In the Document Manager, an issue was resolved on the Check Out page where the Check Out button and the Cancel button were not available when the page initially loaded. --- APAR #: Defect: 209824 Description: A new Internal Rate of Return (IRR) function that is called IRRX was added to the expression engine in the workflow builder. The IRRX function requires three parameters and returns an approximate IRR value that is accurate to 12 decimal places. --- APAR #: Defect: 210587 Description: An issue was resolved where export packages would mark business objects that were not part of the package as modified. --- APAR #: Defect: 210728 Description: Multi-file download functionality is now available in the Document Manager and you can now add as a section action where documents are displayed within a form. The downloaded files are compressed into a .zip archive that contains the files in the same hierarchy that they were represented in the Document Manager. You can add the multi-file download functionality to an existing form by adding a download section action in the triDocument section of an existing form. When you add the section action to the section, the section popup, visible, and active properties needs to be true. Set the Action Type to custom with the URL field set to javascript:methodKey=download. --- APAR #: IV80605 Defect: 210741 Description: The Availability applet now renders properly in Firefox and Internet Explorer 11. --- APAR #: Defect: 211045 Description: You can add a new property called PRESERVE_IMAGE_HEIGHT_WIDTH_QUERY_SECTION to the TRIRIGAWEB.properties file. The PRESERVE_IMAGE_HEIGHT_WIDTH_QUERY_SECTION property determines how images that are smaller than 50 pixels in width and height and are attached to an image field on a TRIRIGA record are displayed inside a query section. If you want to attach an image that is smaller than 50 pixels in width or height and the PRESERVE_IMAGE_HEIGHT_WIDTH_QUERY_SECTION is set to Y, query sections will use the image's original height and width. The PRESERVE_IMAGE_HEIGHT_WIDTH_QUERY_SECTION property will not alter how images are displayed in other areas of the application. You must add the PRESERVE_IMAGE_HEIGHT_WIDTH_QUERY_SECTION property manually to the TRIRIGAWEB.properties file. --- APAR #: IV79644 Defect: 211110 Description: In query results, editable fields are now the same width as the column. --- APAR #: Defect: 211272 Description: In the installer, the database version was not updated by the 3.5.0 installer for existing installations that were upgraded from 3.4.2.x and lower. The database is now updated to match the version, release, modification, and fix pack number (VRMF) when the application server starts. --- APAR #: IV81124 Defect: 211625 Description: An exception is no longer thrown when you append JavaScript into a parameter of a specific URL. --- APAR #: Defect: 212240 Description: In Perceptive applications, the back button on the browser now works. --- APAR #: IV81067 Defect: 212256 Description: When you upload a file to a binary field, the action labels in the window no longer display escaped characters for non-US English-language users. --- APAR #: IV81476 Defect: 212680 Description: You can now set the following custom Workflow task: com.tririga.platform.admin.cache.web.CacheProcessingCustomTask$CacheAndRebuildHierarchyTree The workflow task allows application developers to trigger a cache clear and hierarchy rebuild as if it were triggered from the Administrator Console of all application servers. --- APAR #: IV81553 Defect: 212920 Description: When you upgrade to 3.4 or later on certain 10.3 clean Oracle environments, rendering problems in the graphics section no longer occur for existing published drawings and broken CI application definitions. The platform now correctly upgrades the CI application definitions, correctly reprocesses existing published drawings, and correctly renders existing published graphics on these environments. --- APAR #: Defect: 212971 Description: In the Document Manager and in the Notes & Documents tab of a record, when you check in a file, the check in form now displays the file name correctly when the file name contains multi-byte characters. --- APAR #: Defect: 213165 Description: In the TRIRIGAWEB.properties file, you can change the value of the CALENDAR_EVENT_MAX_OCCURRENCES property to set the maximum number of occurrences. If you do not set a value, the default value is 20. --- APAR #: IV81554 Defect: 213182 Description: Custom Class Loader calls and CBA SOAP requests that run simultaneously no longer cause occasional user session conflicts. --- APAR #: Defect: 213184 Description: Object Migration now ignores the Has Staging Table property value of a business Object upon import if the value in the target environment is set to something other than none. Existing staging table data will no longer be deleted when the source Object Migration package does not have the Has Staging Table property enabled. --- APAR #: IV82976 Defect: 213509 Description: In check in and check out forms, actions and labels are now translated for non-US English languages. --- APAR #: IV81332 Defect: 213965 Description: You can manually add the WF_NOTIFICATION_EMAIL_ID_FROM_DISPLAY_LABEL property to the TRIRIGAWEB.properties file. You can use the WF_NOTIFICATION_EMAIL_ID_FROM_DISPLAY_LABEL property to assign a title to the outgoing email address that is defined in the WF_NOTIFICATION_EMAIL_ID property. --- APAR #: IV81972 Defect: 214587 Description: Internet Explorer now renders TRIRIGA in standard mode when you have compatibility mode enabled. --- APAR #: Defect: 214679 Description: In the Workflow application, you longer need access to the Administration Console to clear the global cache. You can create a custom task and specify the following in the class field: com.tririga.platform.admin.cache.web.CacheProcessingCustomTask$RefreshAllCache. The custom task will perform a global cache clear on the server where the workflow runs as if it were triggered from that server's Administrator Console. --- APAR #: Defect: 215825 Description: New functionality was added to the Database Manager menu in the System Administrator portal. In the Database Manager menu, the Database Enabled Triggers window displays all the trigger events in the database. You can disable all trigger events found. --- APAR #: IV82559 Defect: 216362 Description: The Workflow start task expression editor now loads consistently. --- APAR #: IV82712 Defect: 216768 Description: In an integration object, if you select System Module from the drop-down menu in the Data Map tab, the correct objects now appear in the drop-down list. --- APAR #: IV82710 Defect: 217214 Description: In editable queries, locator field values are now saved correctly. --- APAR #: Defect: 214897 Description: A security vulnerability was resolved where an unauthorized user can perform a SOAP query and view unauthorized data. --- APAR #: IV82436 Defect: 215877 Description: Resolved an issue where a user might be tricked into clicking a link on an external site where an attacker would attempt to trick the user into a Cross Site Request Forgery attack. A new property KNOWN_REFERRER_LIST can be added to TRIRIGAWEB.properties. If left blank, or not included, the Platform behaves as before and does not check referrers. If the property exists, the values are a comma-separated list that is intended to restrict the allowable referrers of links that interact with TRIRIGA when no security token exists on the request. --- APAR #: IV82434 Defect: 215884 Description: The IMPORT_CONTENT_INCLUDE_EXTENSIONS property only allows documents to be uploaded with the extensions specified. --- APAR #: Defect: 216412 Description: The notices file was updated with open source licensing. --- APAR #: IV83070 Defect: 217904 Description: When an issue occurs during export of annotated system labels, the issue is logged in the server.log and the export process continues. --- APAR #: IV81975 Defect: 217954 Description: The platform validation of percent fields that display with a custom mask that includes the % symbol now works correctly. --- ==================================================================================================== 5. Notices ==================================================================================================== This information was developed for products and services offered in the US. This material might be available from IBM in other languages. However, you may be required to own a copy of the product or product version in that language in order to access it. IBM may not offer the products, services, or features discussed in this document in other countries. Consult your local IBM representative for information on the products and services currently available in your area. Any reference to an IBM product, program, or service is not intended to state or imply that only that IBM product, program, or service may be used. Any functionally equivalent product, program, or service that does not infringe any IBM intellectual property right may be used instead. However, it is the user's responsibility to evaluate and verify the operation of any non-IBM product, program, or service. IBM may have patents or pending patent applications covering subject matter described in this document. The furnishing of this document does not grant you any license to these patents. You can send license inquiries, in writing, to: IBM Director of Licensing IBM Corporation North Castle Drive, MD-NC119 Armonk, NY 10504-1785 US For license inquiries regarding double-byte character set (DBCS) information, contact the IBM Intellectual Property Department in your country or send inquiries, in writing, to: Intellectual Property Licensing Legal and Intellectual Property Law IBM Japan Ltd. 19-21, Nihonbashi-Hakozakicho, Chuo-ku Tokyo 103-8510, Japan INTERNATIONAL BUSINESS MACHINES CORPORATION PROVIDES THIS PUBLICATION "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESS OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF NON-INFRINGEMENT, MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. Some jurisdictions do not allow disclaimer of express or implied warranties in certain transactions, therefore, this statement may not apply to you. This information could include technical inaccuracies or typographical errors. Changes are periodically made to the information herein; these changes will be incorporated in new editions of the publication. IBM may make improvements and/or changes in the product(s) and/or the program(s) described in this publication at any time without notice. Any references in this information to non-IBM websites are provided for convenience only and do not in any manner serve as an endorsement of those websites. The materials at those websites are not part of the materials for this IBM product and use of those websites is at your own risk. IBM may use or distribute any of the information you provide in any way it believes appropriate without incurring any obligation to you. Licensees of this program who wish to have information about it for the purpose of enabling: (i) the exchange of information between independently created programs and other programs (including this one) and (ii) the mutual use of the information which has been exchanged, should contact: IBM Director of Licensing IBM Corporation North Castle Drive, MD-NC119 Armonk, NY 10504-1785 US Such information may be available, subject to appropriate terms and conditions, including in some cases, payment of a fee. The licensed program described in this document and all licensed material available for it are provided by IBM under terms of the IBM Customer Agreement, IBM International Program License Agreement or any equivalent agreement between us. The performance data discussed herein is presented as derived under specific operating conditions. Actual results may vary. The client examples cited are presented for illustrative purposes only. Actual performance results may vary depending on specific configurations and operating conditions. The performance data and client examples cited are presented for illustrative purposes only. Actual performance results may vary depending on specific configurations and operating conditions. Information concerning non-IBM products was obtained from the suppliers of those products, their published announcements or other publicly available sources. IBM has not tested those products and cannot confirm the accuracy of performance, compatibility or any other claims related to non-IBM products. Questions on the capabilities of non-IBM products should be addressed to the suppliers of those products. Statements regarding IBM's future direction or intent are subject to change or withdrawal without notice, and represent goals and objectives only. All IBM prices shown are IBM's suggested retail prices, are current and are subject to change without notice. Dealer prices may vary. This information is for planning purposes only. The information herein is subject to change before the products described become available. This information contains examples of data and reports used in daily business operations. To illustrate them as completely as possible, the examples include the names of individuals, companies, brands, and products. All of these names are fictitious and any similarity to actual people or business enterprises is entirely coincidental. COPYRIGHT LICENSE: This information contains sample application programs in source language, which illustrate programming techniques on various operating platforms. You may copy, modify, and distribute these sample programs in any form without payment to IBM, for the purposes of developing, using, marketing or distributing application programs conforming to the application programming interface for the operating platform for which the sample programs are written. These examples have not been thoroughly tested under all conditions. IBM, therefore, cannot guarantee or imply reliability, serviceability, or function of these programs. The sample programs are provided "AS IS", without warranty of any kind. IBM shall not be liable for any damages arising out of your use of the sample programs. Each copy or any portion of these sample programs or any derivative work must include a (c) (your company name) (year). Portions of this code are derived from IBM Corp. Sample Programs. (c) Copyright IBM Corp. _enter the year or years_. Trademarks IBM, the IBM logo, and ibm.com are trademarks or registered trademarks of International Business Machines Corp., registered in many jurisdictions worldwide. Other product and service names might be trademarks of IBM or other companies. A current list of IBM trademarks is available on the web at "Copyright and trademark information" at www.ibm.com/legal/copytrade.shtml. Terms and Conditions For Product Documentation Permissions for the use of these publications are granted subject to the following terms and conditions. Applicability These terms and conditions are in addition to any terms of use for the IBM website. Personal Use You may reproduce these publications for your personal, noncommercial use provided that all proprietary notices are preserved. You may not distribute, display or make derivative work of these publications, or any portion thereof, without the express consent of IBM. Commercial Use You may reproduce, distribute and display these publications solely within your enterprise provided that all proprietary notices are preserved. You may not make derivative works of these publications, or reproduce, distribute or display these publications or any portion thereof outside your enterprise, without the express consent of IBM. Rights Except as expressly granted in this permission, no other permissions, licenses or rights are granted, either express or implied, to the publications or any information, data, software or other intellectual property contained therein. IBM reserves the right to withdraw the permissions granted herein whenever, in its discretion, the use of the publications is detrimental to its interest or, as determined by IBM, the above instructions are not being properly followed. You may not download, export or re-export this information except in full compliance with all applicable laws and regulations, including all United States export laws and regulations. IBM MAKES NO GUARANTEE ABOUT THE CONTENT OF THESE PUBLICATIONS. THE PUBLICATIONS ARE PROVIDED "AS-IS" AND WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESSED OR IMPLIED, INCLUDING BUT NOT LIMITED TO IMPLIED WARRANTIES OF MERCHANTABILITY, NON-INFRINGEMENT, AND FITNESS FOR A PARTICULAR PURPOSE. Privacy Policy Considerations IBM Software products, including software as service solutions, (Software Offerings) may use cookies or other technologies to collect product usage information, to help improve the end user experience, to tailor interactions with the end user or for other purposes. In many cases no personally identifiable information is collected by the Software Offerings. Some of our Software Offerings can help enable you to collect personally identifiable information. If this Software Offering uses cookies to collect personally identifiable information, specific information about this offerings use of cookies is set forth below. This Software Offering does not use cookies or other technologies to collect personally identifiable information. If the configurations deployed for this Software Offering provide you as customer the ability to collect personally identifiable information from end users via cookies and other technologies, you should seek your own legal advice about any laws applicable to such data collection, including any requirements for notice and consent. For more information about the use of various technologies, including cookies, for these purposes, see IBMs Privacy Policy at www.ibm.com/privacy and IBMs Online Privacy Statement at www.ibm.com/privacy/details in the section entitled Cookies, Web Beacons and Other Technologies and the IBM Software Products and Software-as-a-Service Privacy Statement at www.ibm.com/software/info/product-privacy/.