3.0.x Consolidated
(3.0.1 - 3.0.12)
Version | New Features | Fixes | Known Bug |
---|---|---|---|
3.0.1 Beta (3 November 2023) | 1. Policy Map Datatype Converter: Added standard converter to convert the LDAP profile picture. Added standard converter to encrypt & decrypt data. | 1. Cymmetri Verify- When exporting TOTP users password is accepting all digits/values as alphabets/number when it should have accepted alphanumeric values | 1. Manager notification: Receiving user name required manager name |
2. Decision Engine Restart Scheduler: Added scheduler which will run every hour and process stuck decisions. | 2. Cymmetri Verify | IOS | Face ID being asked infinitely | 2. Multi-role assignment with form, then form adding repeatedly for each role, expected only one form should be there | |
3. Audit JMS Queue added for the following services, authPolicy, mfa, notification, provisionEngine, registration, ruleEngine, selfservice, usermanagement, workflow, IG, sodengine, pam, analytics. | 3. Cymmetri Verify app- Showing duplicate records when imported from other device | 3. Fido - Push/fido not getting removed from mobile app | |
4. UI/UX Changes: Show Cymmetri Verify app link on push/fido registration screens.-Rejected for the selfservice app. | 4. Cymmetri Verify app- Search functionality is not working when users imported from different device | 4. Password converter only accepted encrypted value. It should also accept user's editable value | |
5. Cymmetri Verify App update (v5.9.1) | 5. Cymmetri Verify- Show password when clicked and file is exported, then again export file same password is visible with no masking(password is visible) |
| |
6. Cymmetri Verify App update (v5.9.2) | 6. Cymmetri Verify | IOS | Unable to import backup file |
| |
7. Cymmetri Verify App update (v5.9.3): Display a message to indicate the action being performed. | 7. Cymmetri Verify | IOS | Face ID not supported error |
| |
8. Restructured bulk user import for performance | 8. Cymmetri Verify | Account details not updated on adding/removing push/fido |
| |
9. Notification Global Config: Notification categories in two types i] Mandatory and ii] Optional. Notification Global Config applicable for only optional types of notification. | 9. Cymmetri Verify | IOS | Not internet error |
| |
| 10. Application getting repeated within different pages of application list |
| |
| 11. My workspace>Access Review>IG>Managed - When all the checkbox of Info field are disabled, then title checkbox should also be disabled |
| |
| 12. User - Application - Group name should be displayed |
| |
| 13. Audit-Audit with device filter not working |
| |
| 14. Vaulting Configuration- Test connection audit not present |
| |
| 15. Notification Template- User is not receiving mail for reset password |
| |
| 16. Login-Showing incorrect validation message and asking user to reset password again |
| |
| 17. Onboarding flow | Additional details not accepting other country mobile number |
| |
| 18. Recon history- provide search |
| |
| 19. Tenant Registration- Domain is not visible |
| |
| 20. Register tenant- Country dropdown is showing no option instead of countries list |
| |
| 21. Application - Tag - Already created tags present in application are not getting displayed in grid page. |
| |
| 22. Partner Portal- Showing invalid argument but not able to understand exactly which field is invalid: Admin Portal- Top search not working Admin Portal- Get Started link not working Admin Portal- Company name and company code should get trim |
| |
| 23. Fido Authentication- User is not able to authenticate via FIDO in first time, user need to kill app or refresh inorder to register device |
|
Version | New Features | Fixes | Known Bug |
---|---|---|---|
3.0.2 (1 December 2023) | 1. User management service restructured. | 1. Forgot password-User is not receiving email notification | 1. Manager notification: receiving user name required manager name |
2. PAM - Sub domain added in Authentication Parameter | 2. Workflow description spelling correction | 2. AD Group pull || Only under 1000 member getting pulled (Connector Server Restriction) | |
3. UI/UX Improvements: Show username in user selection dropdown menus, Show Cymmetri Verify app link on MFA TOTP Registration and App MFA TOTP, Push, Fido, Show message when cookies are disabled on the browser Cymmetri Verify App update (v5.10): App drawer, header and lock screen UI improvements, Search box moved to header, Show search history, Haptic feedback on TOTP code press | 3. Workflow on unassignment-On role unassignment, if any workflow already trigger then the message should be shown |
| |
4. Cymmetri Verify App Hotfix (v5.10.1) | 4. Manage view- for converter used parameter not showing |
| |
5. Introduced spring expression language in SAML. | 5. Application-date converter, recon pull getting stuck |
| |
6. In Multifactor otp config we can't disable both email otp and sms otp. At least one should be active. | 6. Workspace | click search box creates Ul glitch |
| |
7. Group Provisioning | 7. Login with Read only user- Configuration> Syslog configuration- Configuration should be gray out and should not be editable |
| |
8. Cymmetri Mobile App update (v1.5): Added QR code self-registration for TOTP, Push, and FIDO Added TOTP self-verification eliminating the need for finding and copying TOTP from the Cymmetri Verify app for the login. Added App lock with biometrics in the app | 8. Configuration>User decommission config- Add a short description specifying functionality (Title) |
| |
| 9. MFA- Rename SMS Authenticator to OTP Verification |
| |
| 10. Configuration>Master>Zone>Gateway IP- Sorting is not working |
| |
| 11. Configuration>Master>Global>Value- Sorting is not working |
| |
| 12. Configuration>Master>Zone>Name- Sorting is not working |
| |
| 13. User Onboarding| Contact info details not accepting other country mobile number |
| |
| 14. Delegation- Successful Validation message should be shown after user is assigned |
| |
| 15. Time-based role assigned application- Time-based Application is not deleted after a period is completed when a role is assigned |
| |
| 16. Configuration>Master>Zone- Showing old zone data when creating new zone |
| |
| 17. My workspace>Access Review>IG>Managed - When all the checkbox of Info field are disabled, then title checkbox should also be disabled |
| |
| 18. Provision- When user is trying to create new role, role is not getting added neither validation message is shown |
| |
| 19. Cymmetri Verify - IOS - Push/FIDO Verification screen not shown when app opened through its notification |
| |
| 20. Cymmetri Verify - App protection not working |
| |
| 21. Self service app- User when trying to login on self service app having Fido authentication On, user is redirected to Play store but see in play store app is not clickable |
| |
| 22. Cymmetri Verify - Same day exported file - with file count attached to the name is reported as invalid file |
| |
| 23. Application provisioning MFA- When max TOTP/OTP/Secret Question invalid answers limit exceeds, it should show validation message and should be redirected to login page. |
| |
| 24. Application Role workflow- User is applying workflow for specific role but non-workflow as the signed role is also not getting assigned |
| |
| 25. Update user import sample file |
| |
| 26. usersrvc/api/user/dropdownList- in the above path, for creating workflow in bulk |
| |
| 27. when we create in bulk it is showing out of memory |
| |
| 28. Global Notification disable-by default it is off |
| |
| 29. Notification template- Global Notification for OTP is off still logs is showing mail sent(True) |
| |
| 30. Campaign with group-Campaign getting aborted |
| |
| 31. Multi-role assignment with form, then form adding repeatedly for each role, expected only one form should be there |
| |
| 32. Deprovision rule- User is not getting suspended when end date is applied at the time of user creation |
| |
| 33. Users Import- User name, Login should get trim if space is included while importing user |
|
Version | New Features | Fixes | Known Bug |
---|---|---|---|
3.0.3 Beta (5 December 2023) |
|
|
|
2. Onbehalf Configuration: Default onbehalf configuration, Rule engine support to create custom configuration. Display the OnBehalf menu in self-service according to the logged-in user's matching custom/default configuration. Below menu operations supported: User Application View: Assign Application, Assign Role, Unassign Application, and Unassign Role. User Groups View: Assign Group and Unassign Group. Group Provisioning Enhancement Policy map datatype converter Enhancement. Converter support was added in the custom attribute. Configuration support added for custom attribute converters, Encryption added for Custom attribute password converter value of user, Cymmetri Verify v5.10.3 - (link) - Bug fixes Cymmetri Mobile v1.5.1 (link) - (Rejected): Bug fixes and Added self-verification support for forgot passwords, App MFA, server MFA, and passwordless. Global module search feature (Ctrl+K). Groups list pagination in user details, Connector: Oracle HCM, PAM: AD separated from the Cymmetri and Group - View Attribute - Showing list of CN of members of remote group | 2. Recon Link for both exist- When updating the group after linking showing a custom attribute error | 2. AD Group pull || Only under 1000 members getting pulled (Connector Server Restriction) | |
| 3. Multi node-Application assign with role, all user getting assigned but still import showing in progress | 3. Application getting assigned from UI. If it is failed. | |
| 4. AD group count mismatch-In AD total 1278 group but in pull it is showing 1260 | 4. Group-Custom Attributes not getting updated in group while assigning user to the group manually | |
| 5. Application Group- Pagination should be applied for the group provision page |
| |
| 6. AD application push- Group should not be updated when update checkbox in policy map is unchecked |
| |
| 7. AD Recon Push- When all policy attribute are false, group creation should show error. |
| |
| 8. AD Application Pull- When all policy attribute are set to false, group creation should show error |
| |
| 9. AD-Policymap_memberOf need to be default false for old tenants |
| |
| 10. Browser specific-On Mozilla browser OTP verification is not proper |
| |
| 11. Login with Domain Admin- Manager assignments should not be greyed out |
| |
| 12. Import completed file show end time |
| |
| 13. Policymap-group(pull/push)-if attributes are inactive then this should not be reflected under dropdown |
| |
| 14. PAM-Sign on Policy- Policy should not get activated unless MFA factor is selected. |
| |
| 15. Audit-Configuration-OTP-For check uncheck Send OTP on,audit should be present |
| |
| 16. AD application- Should show error message when description is user principal |
| |
| 17. Self service-Read auto MFA considering camel cases |
| |
| 18. Cymmetri Verify app- Cymmetri mobile app is not able to fetch TOTP from verify app if the re are more than 20 TOTP users |
| |
| 19. Users Managed View- Managed view should get blank for those applications not supporting this operation |
| |
| 20. Configuration>Master>Browser Tab text is not correct |
| |
| 21. Workflow- Close button in Users details pop-up box should be enlarged (currently not visible properly) |
| |
| 22. Branding-Should show proper validation message on UI |
| |
| 23. Version-provisionsrvc showing two times |
| |
| 24. PAM> SignOn Policy- Discard button is not working |
| |
| 25. Identity Hub> Users: Others field details are not visible on user display page on editing profile |
| |
| 26. Cymmetri app(selfservice)-Auto read MFA-when Cymmetri verify app having App protection is enabled then also it is reading,bypassing app protection |
| |
| 27. Cymmetri Verify - Google Authenticator Import TOTP timer not running |
| |
| 28. Cymmetri Verify - MFA Push Registration fails |
| |
| 29. Cymmetri Verify - App crashing on Samsung fold phone |
| |
| 30. SAML-Expression-restrict to show id |
| |
| 31. SAML-Expression-if user don't have data and fetching data then no message showing on UI |
| |
| 32. SAML Key:- Not able to understand why validation message is showing invalid arguments |
| |
| 33. Delegation- Session getting expired even after refreshing token continuously |
| |
| 34. External idp login showing error |
| |
| 35. SAML-User is not able to download metadata, showing 500 internal server error |
| |
| 36. API SSO validateToken API only validate the auth_key parameter |
| |
| 37. Password converter only accepted encrypted value. it should also accept user's editable va lue |
| |
| 38. Identity Hub>Group: Grey out Group name field for remote groups as user cannot edit name |
|
Version | New Features | Fixes | Known Bug |
---|---|---|---|
3.0.4 Beta (3 January 2024) | 1. Connector: Darwinbox and SuccessFactor | 1. Reset password OTP- Max limit validation message should be displayed if 3 invalid otp are provided | 1. Manager notification: receiving user name required manager name |
2. Cymmetri Verify now supports webauthn QR code scanning from mobile in case mobile camera doesn't support QR scanning | 2. For the newly created tenant configuration showing error | 2. AD Group pull || Only under 1000 member getting pulled (Connector Server Restriction) | |
3. Persistent Form Enhancement: Added Form submission support on Role assignment, Added Form submission support on Role unassignment and Added configuration to enable/disable form submission on role assignment and unassignment. | 3. For newly created tenant notification template not loading | 3. Workflow initiated for form but form is getting updated without workflow approval. | |
4. Policy Map Data Type Converters: Added support to input pattern of date of target system and Added support to convert date & date time of target system using mentioned pattern. | 4. Time-based/Normal Application- When deprovisioning time-based application or successf ully assigned application is going into failed state showing null pointer exception |
| |
5. PAM: Download AD Certificate | 5. Selfservice-Behalf-User-Group-Group is already assigned then also it is again available for t he assignment |
| |
6. Passwordless Login Flow Enhancement.- Now tere is MFA registartion is optional in login | 6. Selfservice-Team-User-Group-Group is already assigned then also it is again available for t he assignment |
| |
7. Lock user on mfa failed Attempt: Added configuration for mfaattempt, coooldown period. | 7. Group-Custom Attributes not getting updated in group while assigning user to the group manually |
| |
| 8. Provision Rule- User need to refresh page when adding/updating application role condition |
| |
| 9. Recon pull with AD-For default data related to date it is not working |
| |
| 10. ctrl+K search -add MFA rule not present |
| |
| 11. Partner portal-Add customer with domain-for domain field validation should be as per the normal registration |
| |
| 12. Cymmetri verify App(Selfservice(-Need to handle auto register flow in the application MFA |
| |
| 13. App Auth does not work when verify app in closed state |
| |
| 14. ios 17.2 Auto Auth not working |
| |
| 15. ctrl+k search-Read only user redirecting on add form |
| |
| 16. SAML-Expression-Provide sample on i icon |
| |
| 17. PAM- Rename server to device |
| |
| 18. Login with PAM Read Access Admin-PAM>Devices>Setting: User is able to edit complete p age details and showing processing validation message when clicked on save button |
| |
| 19. User not getting deleted from AD when assign in AD |
| |
| 20. Recon-Pull-Group, for one user having 900 groups, then under recon history showing error,same vice versa one group multiple users |
| |
| 21. Take pull from AD- User having remote group present in AD |
| |
| 22. When password is expired and the user is trying to change password then it is not adhering password policy, accepting same old password |
| |
| 23. SAML-Regular expression-if user entity not exist and doing SSO then in audit data should be present |
| |
| 24. Identity Hub- Group: Validation message should be shown when clicked on assign group button |
| |
| 25. Identity Hub >User: Custom attribute dropdown is not completely visible |
| |
| 26. Custom Attribute Import- When the password attribute is imported via csv file then password should be visible in encrypted form in user details |
| |
| 27. Custom attribute Import via API EXT- Password should be encrypted form when imported |
| |
| 28. Application MFA- Showing routes issue when accessing application |
| |
| 29. Not able to login on partner portal via admin login |
| |
| 30. Route issue-On click configuration tab |
| |
| 31. On Behalf- Route issue |
| |
| 32. Import> Download sample file- showing route error |
| |
| 33. Browser cookies disable-end user-facing difficulty |
| |
| 34. Calendar: Resolution specific> Calendar Ul is getting glitched at 75% 80% 90% zoom |
| |
| 35. Identity Hub-Users: User should not be able to assign application again if already is assigned. |
| |
| 36. Teams-Add user showing unknown error |
| |
| 37. Inbox showing unknown error |
| |
| 38. Teams-User list not showing |
| |
| 39. Application Recon- When user is trying to Pull users from database and if pin code is blank, then default set value should have been taken |
| |
| 40. Authentication> Auth rule- Showing Rulesrvc not found validation message |
| |
| 41. Policy map update-on save showing error |
| |
| 42. Hide this /disable button when script is enabled |
| |
| 43. MFA- Rename SMS Authenticator to OTP Verification |
| |
| 44. Application getting assigned from UI. If it is failed. |
|
Version | |
---|---|
3.0.5 Beta (12 January 2024) | No new features were introduced. This version has implemented all the features and bug fixes from the 3.0.4 |
Version | New Features | Fixes | Known Bug |
---|---|---|---|
3.0.6 Beta (30 January 2024) | 1. Provision Rule Revamp: Restructure Provision rule condition configuration: Provide support for single condition and group condition in condition config, Provide Operator support like Equal and Not Equal and Provide AND, OR Operator support for multiple condition in provision rule condition config, Group provision Support: Add group in provision rule. (only local group), Old provision rule migration: If the old rule is without condition mark it as inactive and if the old rule is without application also mark as inactive. | 1. Provision Rule- Rule is not getting applied if previous provision rule is deleted. | 1. Manager notification: receiving user name required manager name |
2. UI/UX Changes: Application profile and group mapping in SAML SSO and SAML Service Provider - Restructuring and provide defaults | 2. Group- Search functionality is not working | 2. AD Group pull || Only under 1000 member getting pulled (Connector Server Restriction) | |
3. Deprovision Rule support for user delete (if no application assign) | 3. Not getting form values in the target application when Form updated, role assigned and role unassign | 3. Workflow initiated for form but form is getting updated without workflow approval. | |
4. SSO -SAML: SSO-group policy Mapping -- SSO SAML, SSO-added nameFormat in profileMapping and groupMapping -- SSO SAML. SSO-added digest algorithm method. SSO-added list support for profile mapping. | 4. Self service app- Increase spacing |
| |
5. Mfa Attempt Enhancement(Old behavior when admin locks the user then the user should not able to unlock from selfservice now he/she can able to unlock yourself): User can unlock if admin locked the user invalid mfa will permanently lock the user, user can unlock account after mfa cooldown period is completed. Admin can unlock the user which will unlock the mfa as will. | 5. Notification bell icon- When notification is empty, mark read and delete option should not be clickable |
| |
6. UserType Master Support in User Creation and Updation. | 6. Cymmetri self service app- When clicked on groups or application from on behalf tab, it is redirecting to dashboard page |
| |
| 7. User Onboarding| Contact info details not accepting other country mobile number |
| |
| 8. Cymmetri Verify app- For long tenant name timer clock is not visible |
| |
| 9. Group-Attribute detail-provide search |
| |
| 10. Android Heads Up Notification now will display notification upfront which earlier required from user to turn on from the Notifications Settings (Float Notification) |
| |
| 11. Notification template-correct spell for delegation |
| |
| 12. Deleted user login-on forgot password this user should be validated and restrict,currently showing error-Please try again |
| |
| 13. SAML-On clicking validate regular expression should show data message which is available in backend |
| |
| 14. Ctrl+K: Search filter is showing records for all the letters mentioned |
| |
| 15. If the admin lock the user, then the user should be able self unlock by forgot password flow |
| |
| 16. Audit- Audit log should shows role specific logs for role assignments/ unassignments |
| |
| 17. Self Service: Access review- Validation message is not complete it is getting cut |
| |
| 18. Registration- Showing processing please wait validation message after registering user and without any setup if user is clicking logout |
| |
| 19. Self-service app-On behalf: When clicking on application/groups from the dropdown mobile keyboard is getting displayed and due to that applications/ groups visibility is less |
| |
| 20. Not getting form values in the target application when form updated, role assigned and role unassign |
|
Version | Fixes | Known Bug | |
---|---|---|---|
3.0.7 Beta (09 February 2024) | 1. PAM SUDO SU feature for linux server.(For SUDO SU shortcut key Ctrl+Shift+E) | 1. Default delegation consents do not convey responsibility of delegator or delegatee | 1. Manager notification: receiving user name required manager name |
2. SAML Assertion Preview | 2. Self service app- On behalf: When clicked on application/groups from dropdown mobile keyboard is getting displayed and due to that applications/ groups visibility is less | 2. AD Group pull || Only under 1000 member getting pulled (Connector Server Restriction) | |
3. Encrypt saml response | 3. Provision rule-On click save showing error,without condition | 3. Workflow initiated for form but form is getting updated without workflow approval. | |
4. ETL: Custom Create user in AD API with unboundid library, Custom user assign to group in AD API with unboundid library | 4. Configurations-general-config-Rename message for User Decommission Config |
| |
5. Configurable UI Info and Actions: Hide "Reset / Unlock User", Hide "Login Help Page Link", Configure "Login Help Page Link", Hide "IP Address" and Hide "Self-Service App Links" | 5. Label update for suspend config |
| |
6. Login Help page external link updated | 6. Provision Rule; Groups/Application- If user is selecting any local group in first field then second field is greyed out not showing other local groups |
| |
7. Cymmetri Verify: Firebase version upgradation and A troubleshoot page provided if FCM token is missing | 7. Notification content should not be hardcoded |
| |
8. SSO UI migration | 8. Remove trailing slash from selfservice endpoint |
| |
9. Made Gateway IPs and Proxy IPs non mandatory on the Masters -Zone page. Only Name and CIDR fields will be mandatory. | 9. Error handling for product Webhook custom error |
| |
| 10. Application SSO-attribute mapping-without selecting Cymmetri Attribute save button should not be enable, as this is mandatory field |
|
Version | New Features | Fixes | Known Bug |
---|---|---|---|
3.0.8 Beta (23 February 2024) | 1. UI/UX Changes: Skeleton loaders - Improved loading indicators, Filter enhancement for Users and Application pages - Now filter persists the data once go in the detail page and comes back also an indicator to show how many filters or any filters are applied and Branding changes - Now the preview of branding will be on scroll for better UX , "should help icon be shown " field would highlight the help icon | 1. API Integration for passwordless flow reset password | 1. Manager notification: receiving user name required manager name |
2. Mfa attempt Admin User lock:Mfa attempt config added in global auth policy, Self-unlock flag to unlock the user during admin lock the user and Email for invalid mfa attempt | 2. Workflow- For the user list workflow approver, the user is showing in the list dropdown but in the pending workflow it is showing empty. | 2. AD Group pull || Only under 1000 member getting pulled (Connector Server Restriction) | |
3. Service Provider (SP) Initiated SAML Single Logout | 3. Application- Application name should be unique | 3. Workflow initiated for form but form is getting updated without workflow approval. | |
4. Secret Questions verification changed: Earlier it used to show all questions and mandate the user to fill in all the configured questions. Now it will only ask the user to show a dropdown multiple times configured by the admin for minimum correct answers. | 4. Applications Group mapping- Change the validation message as only one group can be added in group mapping/ disable the add attribute button after 1st group mapping is done |
| |
5. SBI VAPT: Encrypt 'login' in some public API same as password encrypted. The following APIs are changed: validateIdentity API: on login page, validateIdentity API change get type to post and in request body login encrypted value pass and token API: on login page token api login encrypted value pass. | 5. AD application Recon- When importing users via recon having provision rule assigned for User creation with condition, then showing error in recon history and again after executing run now command then the user is getting imported but going in Ignore case. |
| |
| 6. AD Application recon- When workflow is applied for User creation having condition applied(Department=Accounts), and user is imported via recon, recon history is showing user assigned but when searched In identity hub-Users, showing user not found. |
| |
| 7. Notification Template- Showing processing please wait message when trying to click toggle button |
| |
| 8. Provision Rule- User should not be able to save provision rule without adding applications/groups |
| |
| 9. SBI VAPT || Testing and changes for SBI as well as product |
| |
| 10. Application SSO- Label change to update |
| |
| 11. My workspace>Inbox- User details popup box should not be displayed when user is deleted from admin account after initiating workflow |
| |
| 12. Deprovision- Remove Exclusion Applications field |
| |
| 13. Delegation account- Change label from Delegate Session Active to Delegate Session Information |
| |
| 14. Users> Applications- The total number of applications assigned should be shown in user account |
| |
| 15. User: Menu Action- There should be a sync event toggle button while marking user inactive in user menu as available while marking inactive from user setting tab |
| |
| 16. Policy attribute- When removing the policy attribute, that field is not getting removed also it is visible in policy map application field dropdown |
| |
| 17. Identity Hub> Users- Users should be searched on basis of Usertype as well |
| |
| 19. User Creation Workflow- When clicking on the cancel button on the workflow preference popup box, it should remain on the user creation page. For now it is cancelling the whole process |
| |
| 20. Application> SSO>Configuration>Edit configuration- UI for logos and name is not proper |
| |
| 21. Application SSO> Configuration- The marked button should be disabled until service provider is selected |
| |
| 22. Branding- Change the label as both the fields sound similar |
| |
| 23. Branding- Preview is not available after changing setting |
| |
| 24. Branding- Add a short note/sample file for default help link when show help button is Yes |
| |
| 25. User Filter- Reset button should reset all the filters applied and load complete data |
| |
| 26. Self Service App>Managed access- Fields on right side should be slightly moved to left as in mobile it is not visible properly |
| |
| 27. Application Audit logs- Applications are getting updated when password reset is performed for users. |
| |
| 28. Selfservice app-MAX MFA attempt message is not readable |
| |
| 29. Self Service mobile app: Application- Application Tag is not visible when clicked on move to tag option at first time and later on option is continuously visible |
| |
| 30. My workspace> Inbox- Starred requests are not getting saved in starred folder |
| |
| 31. Exclude application > delegation- When any application is added in tag and excluded by delegator, then should not be visible in delegatee account |
| |
| 32. My workspace: Application- One application should be assigned/moved to one tag only |
| |
| 33. Teams Configuration- Showing route issue when saving new teams configuration |
|
Version | New Features | Fixes | Known Bug |
---|---|---|---|
3.0.9 Beta (03 November 2023) | 1. Provide show-to-user flag support in the Application Setting. Application Setting: Show to user: if the flag is off, then hide the application from my access ➝ assigned application. Delegation: If the flag is off, hide the application from Delegation ➝ my access ➝ assigned application. user can request: If the flag is off, then hide the application from my access ➝ request for assigned application, If the flag is off, then hide the application from On-behalf ➝ users ➝ request for assigned application and Delegation: If the flag is off, then hide the application from Delegation ➝ On-behalf ➝ users ➝ request for assign application. | 1. Policy Attribute- Add pagination | 1. Manager notification: receiving user name required manager name |
2. Framework Upgrade: Java based services are updated for spring framework, spring boot, also updated utility libraries. Please note it may have impact on several functionalities. | 2. Teams Configuration- Showing route issue when saving new teams configuration | 2. AD Group pull || Only under 1000 member getting pulled (Connector Server Restriction) | |
3. MFA attempt Admin User lock: MFA attempt config added in global auth policy and Self unlock flag to unlock the user during admin lock the user | 3. Passwordless- Passwordless page is showing blank when clicked on clicked on Passwordless button on Login page | 3. Workflow initiated for form but form is getting updated without workflow approval. | |
4. Token Rolling period : Token start period should start before current server time. | 4. Notification template- Increase spacing between Kathreftis Team and Disclaimer and remove space above | 4. In application setting if show to user flag off then also application show in recent application. | |
5. Passwordless reset password : When password is required to be changed then user is forced to change password during login using passwordless. | 5. Login failed> User locked Template- Change notification template |
| |
6. Bearer Token subject is encrypted now in header. | 6. My access> Applications- If an application is already present in a certain tag, when attempting to move it to another tag within the "All Applications" section, it should not be visible in the tag it is already associated with. |
| |
7. cookies samesite attribute is being set to strict to all the cookies. | 7. Login-Tab button should be applicable for enter password field when passwordless in enabled |
| |
8. Active Directory new bundle (Using unboundid.ldap.sdk library) - Phase 1: Server Connector bundle name: simpleADServer Connector bundle version: 1.0Server Connector name: com.cymmetri.connector.simple.ad.SimpleADConnector and Added one field inside the user configuration of the active directory "Disable User With Date Time". | 8. AD Application- When assigning remote group to AD user, showing error |
| |
| 9. Passwordless- Passwordless page is showing blank when clicked on clicked on Passwordless button on Login page |
| |
| 10. Self-service app: On-behalf tab is loading late |
| |
| 11. Master> Zone- When editing zone then status is always changing to inactive |
| |
| 12. Authentication Rule- When a user is trying to reset the password having LDAP authentication active, then password is changing into target system first and reflecting older password in target system |
| |
| 13. PAM- Dormancy disabled config- By default config should be disabled |
| |
| 14. Audit-"action":"DORMANCY_DISABLE_COMPLETED" ,Data showing null,need to show data |
| |
| 15. PAM dormancy disabled showing failed |
| |
| 16. Deprovision- All three fields should be in one line |
| |
| 17. Policy Attribute- Add search filter in policy attribute |
| |
| 18. Delegation- Add cancel button after editing consent |
| |
| 19. My Access> Applications- When moving an application from one tag to another, the validation message should be proper for the end user to understand |
| |
| 20. Campaigns> Access Review > Campaign Manager- Sorting is not working |
| |
| 21. My Workspace> Inbox- Need to refresh page every time to see changes in started request |
| |
| 22. Global Auth Policy- Update message to "Auto Unlock MFA period should be less than Account Auto Unlock period." |
| |
| 23. Insights> Reports -Showing error message when disabling scheduler toggle |
| |
| 24. Application MFA update -on click Next button -getting in loop |
| |
| 25. PAM vault user-Confirm button should not be enable till any value entered |
| |
| 26. Validation message change-Change 1 days to 1 Day |
| |
| 27. Teams Config- Configuration should not be saved without adding condition |
| |
| 28. Teams - User is not able to lock/unlock account even after configuration in teams is enabled |
| |
| 29. Need to show proper error message when Maximum MFA attempts reached |
| |
| 30. Reset Password OTP -there is only OTP option is available then also showing error message for question |
| |
| 31. MFA- User not able to login via Consent based MFA showing error |
| |
| 32. Login- Showing error when trying to log in using secret question as MFA |
| |
| 33. Teams Configuration- Showing route issue when saving new teams configuration |
| |
| 34. MFA count gets reset, when admin mark lock to unlock |
| |
| 35. MFA- User is able to unlock account event after unlock user account time is not completed |
| |
| 36. Login with password less-password expiry should be consider and need to follow steps to reset |
| |
| 37. When admin lock user the take conformation, unlock yourself or lock lifetime |
| |
| 38. End date over user login-on forgot password this user should be validated and restrict,currently redirecting on MFA |
| |
| 39. Inactive user login-on forgot password this user should be validated and restrict,currently redirecting on MFA |
| |
| 40. Need to update audit when user attempts max MFA |
| |
| 41. MFA- User not able to login when user is trying to login using normal password flow |
| |
| 42. My workspace> Active Campaign- Latest selection should remain as it is. |
| |
| 43. Pagination persistence for users (when a user clicks on lets say 3rd page and go into the user details and when come back the pagination gets reset ) |
| |
| 44. Application provisioning workflow- Assign application to user and then cancel it, still showing user assigned |
| |
| 45. My Access>Application> Tag- Search filter should be applied for tag applications as well |
| |
| 46. Add New Application Search, when no data is there the UI breaks and a No Data Found card should also be shown on screen |
| |
| 47. Login Page- User is not redirecting to mentioned login help page( Mentioned in Branding) |
| |
| 48. Cymmetri Mobile App- Changes required in secret question layout on login page |
| |
| 49. User Creation Workflow- When clicked on the cancel button on the workflow preference popup box, it should remain on the user creation page. For now it is cancelling the whole process |
| |
| 50. Branding- Show validation message if user miss to fill any fields and clicked on save button |
| |
| 51. Lifecycle mgmt>Workflow Configuration- Save button should be enabled when removing approver. |
| |
| 52. Suspend user-For device deleted message should be shown as Device Deleted |
| |
| 53. User Onboarding- When provision rule is trigged while onboarding user and any application is assigned to user then assigned tag should be shown in that application as showing in Groups |
| |
| 54. Configuration> Master- Accepting emoji values in Global Master |
| |
| 55. MFA- Secret question- Answer field should get blank after question is selected. |
| |
| 56. Delegation- After delegation time is completed, delegation configuration should be updated |
| |
| 57. Authentication Rule- When user is trying to reset password having LDAP authentication active, then password is changing into target system first and reflecting older password in target system |
| |
| 58. Global Auth- User should be able to set Account unlock and MFA unlock to minimum 1min |
| |
| 59. User-Account lock-Account is self lock then also on UI showing message user cannot unlock |
| |
| 60. User Setting- Showing user not found error message |
| |
| 61. Lifecycle Management || Applications redirects user to Identity Hub |
| |
| 62. Campaign- UI of Calendar field is not proper |
| |
| 63. Policy attribute- When removing policy attribute, that field is not getting removed also it is visible in policy map application field dropdown |
| |
| 64. Audit Log- When duplicating a tab and subsequently refreshing it, then audit log is displaying a random requestor ID |
| |
| 65. Global Auth Policy- "Allow Users to have" is displayed twice |
|
Version | New Features | Fixes | Known Bug |
---|---|---|---|
3.0.10 Beta (21 March 2024) | 1. Addition of Grade as an attribute for users: Workflows updated to support grade-based approvers: Added grade to Pending Workflow Page and Workflow List Page, Added grade for User profile: Added grade in create user, update user, user info page, grade in user info page for Suspended Users and Archived Users and Displaying grade in User Details [Assignee Details], Added grade in Attribute Setting, policy map [cymmetri policy mapping drop down], bulk import and Added grade in Teams Config Page: Added grade in create user, update user and user info page, grade in user info page for Suspended Users and Archived Users, Added grade in OnBehalf config for self user, Displaying the grade for self user profile, Added the grade for the pull/push reconciliation process Added the grade to get the value of the middle name in a user profile, to create the user through apiext, Added grade in JIT to create the user -Not working and Added grade value on the page that displays the delegatee. | 1. Application Update Workflow- In inbox user name and Login ID fields are showing empty | 1. Manager notification: receiving user name required manager name |
2. Analytics Metabase in the report: Configuration of Metabase and Metabase Report | 2. Rename application name as shown below should be Google Workspace and not Google Workplace. | 2. AD Group pull || Only under 1000 member getting pulled (Connector Server Restriction) | |
3. __MANAGER__ support in policy map for manager assignment in Active Directory (Target application) | 3. Fix typo in application provisioning labels | 3. Workflow initiated for form but form is getting updated without workflow approval. | |
4. Addition of Middle Name as an attribute for users: Added middle name in create user, update user and user info page, in user info page for Suspended Users and Archived Users, for User Profile, to Pending Workflow Page, to Workflow List Page, Displaying middle name in User Details [Assignee Details], Added middle name in Attribute Setting, Added middle name for the policy map [cymmetri policy mapping drop down], for the bulk import, in create user, update user and user info page, in user info page for Suspended Users and Archived Users, in OnBehalf config for self user, Displaying the middle name for the self-user profile, Added the middle name for the pull/push reconciliation process, to get the value of the middle name in a user profile, to create the user through apiext, in JIT to create the user -Not working and Added middle name value on the page that displays the delegatee. | 4. Preference Workflow config popup box - Add Auto option in dropdown list when workflow approver is set to user list | 4. In application setting if show to user flag off then also application show in recent application. | |
5. Role Required in Application Assignment: In the application setting, Role Required flag added and Application Assignment flag is enabled in the below mentioned pages:Application assignment page, User page, in application assignment and Self-Service: When user request for application, Teams page, in application assignment and Onbehalf page, in application assignment. | 5. My access application- Calendar UI is not proper for 90% resolution | 5. Creating the user through the JIT: Message was rejected due to issue instant expiration | |
| 6. Password policy-Show last sync time if already sync |
| |
| 7. MFA attempt configuration-take confirmation on save |
| |
| 8. JIT-Detail showing route error |
| |
| 9. JIT-Custom field-Only type=USER should be present in dropdown, currently showing group also |
| |
| 10. correct notification template-login failed |
| |
| 11. Unlock User- API is getting called twice and login should be shown in encrypted form |
|
Version | New Features | Fixes | Known Bug |
---|---|---|---|
3.0.11 Beta (05 April 2024) | 1. New Feature - Amaya (Schema Maker): A new feature called "Amaya" is released for generating policy map, policy attribute, and also for generating schema for various functions - Create User, Update User, Sync User, Search User etc. Using a UI-based designer, an administrator may configure JSON REST-API based applications without needing to write scripts for the above mentioned functions. | 1. Inbox- Request count should be shown in claim> open request as visible in Requests>Open request | 1. Manager notification: receiving user name required manager name |
2. Role Required in Assign Application(Backend Validation):Bulk Application Assignment, Admin Application Assignment, Admin User Page, Selfservice, User Application Request, Selfservice -> Teams, Application Assignment, Selfservice -> Onbehalf and Application Assignment | 2. Application deprovision Workflow- When removing role from user application, workflow is getting triggered but before saving popup box is getting disappeared | 2. Workflow initiated for form but form is getting updated without workflow approval. | |
3. Active Directory new bundle (Using unboundid.ldap.sdk library) <Group operation supports>: Added a field inside Active Directory User Configuration Page: "Add or Remove group using Simple AD". | 3. Password Policy- Accepting -1 in password history versions and also displaying in policy rule when changing password | 3. In application setting if show to user flag off then also application show in recent application. | |
4. Added a default filter for the start date as the current day in all report detail views. | 4. Password Policy- Password history versions should have default 0 value and also add note specifying description of 0 value. |
| |
5. The view button in the application role is only visible when edit access is not provided to the user, but read access is granted, such as for read-only users. | 5. Import user with grade,need to handle user import with inactive grade |
| |
6. PAM - Device Termination when device unassigned | 6. Attribute setting- Not able to disable grade attribute |
| |
| 7. Audit log- Showing application id instead of application name when moving application to tag from self service app |
| |
| 8. AD Authentication- Audit log should be shown when changing password for AD authenticated user |
| |
| 9. My workspace >Teams>Users- The message "User account locked" appears whenever changing pages. |
| |
| 10. Forms- Field name is not displaying double spaces when inserted in JSON field |
| |
| 11. Workflow Config- Add Remove button for stage 1 user |
| |
| 12. Tenant registration flow- show password not working |
| |
| 13. Workflow- Pending/ Inbox- Menu action should not be visible for every application or when field is empty. |
| |
| 14. Identity Hub>User Filters- When applying a filter for inactive users or any other filter and then activating the same user, the filter selection is removed, but the count is still displayed. |
| |
| 15. Upload CSV- Not able to drag and drop csv files in import users, manager assignments, groups |
| |
| 16. Global module search-when product is disabled and the user trying to search then showing an error |
| |
| 17. Application update Workflow- Workflow is not getting trigged when application role is assigned to user |
| |
| 18. Partner portal-delete customer not working |
| |
| 19. Applications-For old google applications name getting replaced with Google Workspace |
| |
| 20. Password Policy>Blacklisted Password- When setting blacklisted password for user showing error |
| |
| 21. Password less login showing error |
| |
| 22. Email Notification- User is not receiving email notification |
| |
| 23. Version Specific > Delegation recent apps- When the delegatee is accessing the account then excluded applications are still showing in recently used apps |
| |
| 24. Admin MFA -on click save showing error |
| |
| 25. TEAMS-Menu action click showing unknown error |
| |
| 26. Admin Dashboard, Risk Dashboard and Insight reports are not loading |
| |
| 27. Taking time to load data in complete application |
| |
| 28. User-Activity -taking time to load data |
| |
| 29. AD- Recon- Push- Users are going into pending state for new AD bundle |
| |
| 30. Managed View- IDM value is not getting displayed |
| |
| 31. Notification template-need to add middlename attribute under system variable |
| |
| 32. Users | Sort by filter should be beside Sort Order |
| |
| 33. Role mandatory-In import assign application there is no validation, without role also able to assign |
| |
| 34. Identity Hub>User>Setting- Admin should not be able to lock himself from setting |
| |
| 35. Suspend user-for AD update , remove application |
| |
| 36. AD application - In Suspend user, application status is showing fail updation state |
| |
| 37. Group-Recon pull-update and full sync assign/update-taking too much time |
| |
| 38. AD Group pull || Only under 1000 member getting pulled (Connid Restriction) |
| |
| 39. Remote group-bulk assignment showing error, "failureReason" : "javax.naming.ServiceUnavailableException: [LDAP: error code 51 - 0000200E: SvcErr: DSID-031A1202, problem 5001 (BUSY), data 0 ]; remaining name 'CN=allgroup,OU=allgroup,dc=cymmetri,dc=in'" |
| |
| 40. When Add group pull/push then server getting stuck due to memory increase. |
| |
| 41. Remote Group assign in bulk-Not moving all user in group under AD |
| |
| 42. AD Application new bundle- If user is inactive in AD, and same user is updated in Cymmetri then user in AD should also get updated |
| |
| 43. AD Recon push-User not getting push in target (New bundle) |
| |
| 44. Adaptive MFA-Blacklisted ip configuration- Not able to enter range |
| |
| 45. Phone number - Phone number and country code validation issue |
| |
| 46. Partner portal- Company name letters should be extended to 100 characters and space at the end should be trimmed |
| |
| 47. Partner Portal- On the admin approval dashboard page, column name width should be identical, and if the name is extending then the extended name should be shown in hover. |
|
Version | Fixes | Known Bug | |
---|---|---|---|
3.0.12 Beta (18 April 2024) | 1. Upload filename length validation: When a file is uploaded in the form of a profile image or Excel file import then validation is added for the file name length. Implement pages are as follows (20 characters): Selfservice profile picture, Application image, and Excel upload in User import, manager assignment, application assignment, group assignment,Role import | 1. Application> Roles- Add toggle button to Active /Inactive status. | 1. Manager notification: receiving user name required manager name |
2. For the remote group, when a user or application is assigned to the group, they will not be assigned to Cymmetri until they have been successfully assigned to the target. | 2. Add application/device name with space,Space should be trim | 2. Workflow initiated for form but form is getting updated without workflow approval. | |
3. Workflow Config: After creating work flow now user redirect to workflow config page and Now we can't active workflow if approver not configure in workflow config. | 3. Users> Activity- Filter and search should be added in user activity | 3. In application setting if show to user flag off then also application show in recent application. | |
| 4. Workflow-"Save" button should remain disabled unless some condition is mentioned | 4. Unable to identify application properties data type where value is empty | |
| 5. Application SSO-attribute mapping-for duplicate entry, a message should be shown on the same screen, refer other modules for the duplicate entry error message |
| |
| 6. Lifecycle Mgmt>Hook Config - Search filter is not working |
| |
| 7. Amaya Connector- Show complete name on tooltip |
| |
| 8. User Setting- Change validation message for all three tasks( Active, Inactive, Delete) |
| |
| 9. Workflow Configuration- If the approver is not present then workflow config should not get active |
| |
| 10. Partner Portal - Add Asterisk (*) for marked fields |
| |
| 11. Partner Portal- The validation message indicates that spaces are acceptable, but the field is not currently allowing them |
| |
| 12. Partner portal- Company name letters should be extended to 100 characters and space at the end should be trimmed |
| |
| 13. Amaya-Param getting duplicate |
| |
| 14. Trigger email to user when MFA max attempted in login |
| |
| 15. Master > Audit logs- Audit for fields created or updated in Master is not showing except for Grade |
| |
| 16. PAM Device- Not able to search PAM devices from my workspace |
| |
| 17. Application add with space,Need to handle space in backend also as temporary fix deployed from UI side |
| |
| 18. Rename- Dynamic json connector to Amaya |
| |
| 19. Amaya connector- Rename Dynamic Json connector to Amaya |
| |
| 20. Dynamic Json Connector- Text is overflowing tag border |
| |
| 21. Delegation- User should not be able to save delegation when start date is in past. |
| |
| 22. Amaya-policy map-felicity-If for policy map attribute not generated then default value should be there |
| |
| 23. Add application-For policy map default should be off |
| |
| 24. Update pagination offset - label and placeholder |
| |
| 25. Amaya-Response getting hide |
| |
| 26. Rename Amaya provision sub tab to User Configuration |
| |
| 27. Amaya-Policy map,tooltip overlap issue |
| |
| 28. Partner portal-under cymmetri customer total user count showing-1, actual available-12 |
| |
| 29. Recon- Modes should be non editable |
| |
| 30. Import users via CSV/recon- Users should not be imported/ should show error when particular usertype, department ,designation fields are inactive |
| |
| 31. Load Test Data: Identity Hub> Users- Pagination is not working when multiple users(Load) are present |
| |
| 32. Workflow- Workflow popup box is showing unknown but in pending workflow is going into requestor manager |
| |
| 33. User-Filter with custom attribute not working on below data |
| |
| 34. AD Application new bundle- If user is inactive in AD, and same user is updated in Cymmetri then user in AD should also get updated |
| |
| 35. AD Recon push-User not getting push in target (New bundle) |
| |
| 36. Recon- Timing is not correct |
| |
| 37. Application delete-Deleted application present under Provision rule, even after application deleted |
| |
| 38. Processing please wait message should be changed, when no data is entered and clicked on preview assertion |
| |
| 39. Deprovision- User is getting suspended when the deprovision rule is executed via scheduler when no end date is applied or status is inactive |
| |
| 40. Reports> Filter- Showing error message to enter start and date when resetting filter or applying any other filter. |
| |
| 41. Remote Group assign in bulk-Not moving all users in the group under AD |
| |
| 42. To verify user deleted from AD OU and cymmetri admin trying to assign remote group |
| |
| 43. AD application - In Suspend user, application status is showing fail updation state |
| |
| 44. Remote group-bulk assignment showing ServiceUnavailableException |
| |
| 45. Group-Recon pull-update and full sync assign/update-taking too much time |
| |
| 46. Ad Application- Application assignment is going in failed state , but deleting application is also getting failed |
| |
| 47. Assign user to remote group is failed |
| |
| 48. AD application recon- When workflow is configured and recon is executed, then user is going in pending workflow |
| |
| 49. AD New Bundle- Thumbnail Photo is reflecting incomplete(In hex form) in AD |
| |
| 50. Workflow- Workflow popup box is showing unknown but in pending workflow is going into requestor manager |
| |
| 51. Recon-Name not present then also showing error for the duplicate |
| |
| 52. AD application - In Suspend user, the application status is showing a fail updation state |
| |
| 53. Custom attribute Import via API EXT- Password should be encrypted form when imported |
| |
| 54. SSO-Openid not working on QA, same working on dev |
| |
| 55. Multi node-Application assigned with the role, all users getting assigned but still import showing in progress |
| |
| 56. API ext (API Client) User not getting created |
| |
| 57. Deprovision rule-user data not getting updated when changing Grace Period from 3 to 0 days |
| |
| 58. Unable to add Gmail account on Android after logging into Cymmetri |
| |
| 59. Tenant specific> Reset OTP config- Not able to save configuration |
| |
| 60. Partner portal- Display validation message specifying some fields are missing |
| |
| 61. Grade workflow- Preference config popup box is showing the user name but pending is showing Unknown |
| |
| 62. Group recon pull-when space is in name then not going in ignore case |
| |
| 63. Workflow- Sequence for approver is mismatched in the preference config popup box and pending workflow |
| |
| 64. Workflow- Workflow in the preference popup box is showing the user name but in pending showing unknown when applied for user list or grade |
| |
| 65. Workflow- When approver is set as reporting manager and application workflow is initiated then preference box is showing approver name but pending is showing unknown |
| |
| 66. Schedule report- cron not getting updated, from hourly to change once in day then also report receiving hourly |
| |
| 67. creating the user through the JIT Message was rejected due to the issue instant expiration |
| |
| 68. PAM device is assigned then on access showing a message for the disconnected |
| |
| 69. AD Adaptor token- Token is showing Invalid |
| |
| 70. PAM Device- showing processing plaese wait validation message with 403 forbidden error |
| |
| 71. Application- Showing processing please wait validation message. |
| |
| 72. Loadtest-workflow page not loading |
| |
| 73. Expired session: Showing blank page when clicked on user setting logout tab |
| |
| 74. Suspend Config- User should be able to disable suspend config |
| |
| 75. Deprovision- Deprovision via scheduler is not working |
| |
| 76. AD-Recon pull with update-If user data removed from AD and taking pull,then this data not updating in the cymmetri user data |
| |
| 77. group push-not taking user in AD at the time of update |
| |
| 78. Daily scheduler running late |
| |
| 79. AD Application- Showing error when trying to update profile picture |
| |
| 80. MFA- Rename SMS Authenticator to OTP Verification |
| |
| 81. Global Auth- When the "Single Session > Block Session" setting is enabled, attempting to log in with the same user account should block the user even before verifying Multi-Factor Authentication (MFA). |
|
Last updated