Unified Access Gateway | Released on 21 DEC 2017

Check for additions and updates to these release notes.

What's in the Release Notes

The release notes cover the following topics:

What's New in This Release

VMware Unified Access Gateway 3.2 provides the following new features and enhancements:

  • Identity Bridging - Multi-Domain KCD Support
    This release of identity bridging in Unified Access gateway 3.2 supports multi-domain along with the existing single domain support. This means the user and the SPN account can be in different domains.
  • Create low-privilege read-only account for users
    You can create a low-privilege admin account for users with read-only permissions. Users can perform non-critical tasks such as viewing logs and monitoring.
  • Certificate uploading provision for the admin interface
    You can upload a CA-signed certificate for users using the admin interface from the Admin UI.
  • NIC Configuration using Admin UI
    You can modify the NIC settings such as the IP address and the IP allocation mode for the configured NICs from the admin UI.


The Unified Access Gateway user interface, online help, and product documentation are available in Japanese, French, German, Spanish, Brazilian Portuguese, Simplified Chinese, Traditional Chinese, and Korean. For the complete documentation, go to the Documentation Center .

Compatibility Notes

For more information about the VMware Product Interoperability Matrix, go to http://www.vmware.com/resources/compatibility/sim/interop_matrix.php.

Known Issues

After a JSON file is exported from Unified Access Gateway 3.1.1, user is unable to import the same file to Unified Access Gateway 3.2.
Workaround: Delete the ip0AllocationMode, ip1AllocationMode, and ip2AllocationMode attributes, if present, from the JSON file that you exported from Unified Access Gateway 3.1.1, before importing the file to Unified Access Gateway 3.2.

Resolved Issues

  • System settings such as Name, Request Timeout, and Body Receive Timeout did not persist across reboots.
  • Only the most recently uploaded certificate was always sent to the browser if more than one root certificate was uploaded for Client certificate to Kerberos Identity Bridging.
  • When you configure the Connection Server URL Thumbprint with SHA256, the following error is displayed: "proxyDestinationUrlThumbprints Invalid thumbprint format"
  • View client cannot reconnect to Unified Access Gateway after idle session timeout.
  • Tunnel Proxy was disallowed when TLS port sharing mode was enabled on Unified Access Gateway.
check-circle-line exclamation-circle-line close-line
Scroll to top icon