With the release of Ivanti Endpoint Manager 2017.1, we have upgraded our hash encryption algorithms to use SHA-256 hashes. This was also necessary for security reasons. Unfortunately this change does not allow us to support pass-through authentication to clients running older versions of the agent as they cannot understand the SHA-256 information handed to them by the core server. This affects both HTML5 RC and Legacy RC.
Error presented "The signed rights document was not valid. Authentication failed"
Although the pass-through authentication does not work, when presented with the credentials screen the admin or technician trying to remote control the device can enter their Ivanti sign in credentials and will authenticate properly to the Core allowing access to the client machine.
It has always been the position of Ivanti Support that Agents should be updated as quickly as possible after the core server has been upgraded, Ivanti Endpoint Manager 2017.1 is no exception. Although an inconvenience, this is working as designed and it is expected Ivanti admins will work to upgrade their agents as quickly as possible to return to full functionality.