3.0.9-Beta
Version: cloud_3.0.1-beta product release
Date: 03 November 2023
**To ensure the highest quality standards, some features in this version are marked for further refinement and will not be included in the current release. Please refer to the next approved release for updates and improvements.**
New Features
Provide show to user flag support in Application Setting .
Application Setting
show to user
If flag is off,then hide application from my access ➝ assigned application.
Delegation : If flag is off,then hide application from Delegation ➝ my access ➝ assigned application.
user can request
If flag is off,then hide application from my access ➝ request for assign application.
If flag is off, then hide application from On-behalf ➝ users ➝ request for assign application.
Delegation : If flag is off, then hide application from Delegation ➝ On-behalf ➝ users ➝ request for assign application.
Framework Upgrade: Java based services are updated for spring framework, spring boot, also updated utility libraries. Please note it may have impact on several functionalities.
MFA attempt Admin User lock
MFA attempt config added in global auth policy
Self unlock flag to unlock the user during admin lock the user
Token Rolling period : Token start period should start before current server time.
Passwordless reset password : When password is required to be changed then user is forced to change password during login using passwordless.
Bearer Token subject is encrypted now in header.
cookies samesite attribute is being set to strict to all the cookies.
Active Directory new bundle (Using unboundid.ldap.sdk library) - Phase 1
Server Connector bundle name: simpleADServer Connector bundle version: 1.0Server Connector name: com.cymmetri.connector.simple.ad.SimpleADConnector
Added one field inside user configuration of active directory "Disable User With Date Time".
Fixes
Policy Attribute- Add pagination
Teams Configuration- Showing route issue when saving new teams configuration
Passwordless- Passwordless page is showing blank when clicked on clicked on Passwordless button on Login page
Notification template- Increase spacing between Kathreftis Team and Disclaimer and remove space above
Login failed> User locked Template- Change notification template
My access> Applications- If an application is already present in a certain tag, when attempting to move it to another tag within the "All Applications" section, it should not be visible in the tag it is already associated with.
Login-Tab button should be applicable for enter password field when passwordless in enabled
AD Application- When assigning remote group to AD user, showing error
Passwordless- Passwordless page is showing blank when clicked on clicked on Passwordless button on Login page
Self-service app: On-behalf tab is loading late
Master> Zone- When editing zone then status is always changing to inactive
Authentication Rule- When user is trying to reset password having LDAP authentication active, then password is changing into target system first and reflecting older password in target system
PAM- Dormancy disabled config- By default config should be disabled
Audit-"action":"DORMANCY_DISABLE_COMPLETED" ,Data showing null,need to show data
PAM dormancy disabled showing failed
Deprovision- All three fields should be in one line
Policy Attribute- Add search filter in policy attribute
Delegation- Add cancel button after editing consent
My Access> Applications- When moving application from one tag to another, then validation message should be proper for end user to understand
Campaigns> Access Review > Campaign Manager- Sorting is not working
My Workspace> Inbox- Need to refresh page every time to see changes in started request
Global Auth Policy- Update message to "Auto Unlock MFA period should be less than Account Auto Unlock period."
Insights> Reports -Showing error message when disabling scheduler toggle
Application MFA update -on click Next button -getting in loop
PAM vault user-Confirm button should not be enable till any value entered
Validation message change-Change 1 days to 1 Day
Teams Config- Configuration should not be saved without adding condition
Teams - User is not able to lock/unlock account even after configuration in teams is enabled
Need to show proper error message when Maximum MFA attempts reached
Reset Password OTP -there is only OTP option is available then also showing error message for question
MFA- User not able to login via Consent based MFA showing error
Login- Showing error when trying to log in using secret question as MFA
Teams Configuration- Showing route issue when saving new teams configuration
MFA count gets reset, when admin mark lock to unlock
MFA- User is able to unlock account event after unlock user account time is not completed
Login with password less-password expiry should be consider and need to follow steps to reset
When admin lock user the take conformation, unlock yourself or lock lifetime
End date over user login-on forgot password this user should be validated and restrict,currently redirecting on MFA
Inactive user login-on forgot password this user should be validated and restrict,currently redirecting on MFA
Need to update audit when user attempt max MFA
MFA- User not able to login when user is trying to login using normal password flow
My workspace> Active Campaign- Latest selection should remain as it is.
Pagination persistence for users (when a user clicks on lets say 3rd page and go into the user details and when come back the pagination gets reset )
Application provisioning workflow- Assign application to user and then cancel it, still showing user assigned
My Access>Application> Tag- Search filter should be applied for tag applications as well
Add New Application Search , when no data is there the UI breaks and a No Data Found card should also be shown on screen
Login Page- User is not redirecting to mentioned login help page( Mentioned in Branding)
Cymmetri Mobile App- Changes required in secret question layout on login page
User Creation Workflow- When clicked on the cancel button on the workflow preference popup box, it should remain on the user creation page. For now it is cancelling the whole process
Branding- Show validation message if user miss to fill any fields and clicked on save button
Lifecycle mgmt>Workflow Configuration- Save button should be enabled when removing approver.
Suspend user-For device deleted message should be shown as Device Deleted
User Onboarding- When provision rule is trigged while onboarding user and any application is assigned to user then assigned tag should be shown in that application as showing in Groups
Configuration> Master- Accepting emoji values in Global Master
MFA- Secret question- Answer field should get blank after question is selected.
Delegation- After delegation time is completed, delegation configuration should be updated
Authentication Rule- When user is trying to reset password having LDAP authentication active, then password is changing into target system first and reflecting older password in target system
Global Auth- User should be able to set Account unlock and MFA unlock to minimum 1min
User-Account lock-Account is self lock then also on UI showing message user cannot unlock
User Setting- Showing user not found error message
Lifecycle Management || Applications redirects user to Identity Hub
Campaign- UI of Calendar field is not proper
Policy attribute- When removing policy attribute, that field is not getting removed also it is visible in policy map application field dropdown
Audit Log- When duplicating a tab and subsequently refreshing it, then audit log is displaying a random requestor ID
Global Auth Policy- "Allow Users to have" is displayed twice
Known Bugs
Manager notification: receiving user name required manager name
AD Group pull || Only under 1000 member getting pulled (Connector Server Restriction)
Workflow initiated for form but form is getting updated without workflow approval.
In application setting if show to user flag off then also application show in recent application.