Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Version: cloud_3.0.4-beta product release
Date: 03 January 2024
Connector
Darwinbox
SuccessFactor
Cymmetri Verify now supports webauthn QR code scanning from mobile in case mobile camera doesn't support QR scanning
Persistent Form Enhancement
Added Form submission support on Role assignment.
Added Form submission support on Role unassignment.
Added configuration to enable/ isable form submission on role assignment and unassignment.
Policy Map Data Type Converters
Added support to input pattern of date of target system.
Added support to convert date & date time of target system using mentioned pattern.
PAM
Download AD Certificate
Passwordless Login Flow Enhancement.- Now tere is MFA registartion is optional in login
Lock user on mfa failed Attempt.
Added configuration for mfaattempt, coooldown period.
Reset password OTP- Max limit validation message should be displayed if 3 invalid otp are provided
For the newly created tenant configuration showing error
For newly created tenant notification template not loading
Time-based/Normal Application- When deprovisioning time-based application or successf ully assigned application is going into failed state showing null pointer exception
Selfservice-Behalf-User-Group-Group is already assigned then also it is again available for t he assignment
Selfservice-Team-User-Group-Group is already assigned then also it is again available for t he assignment
Group-Custom Attributes not getting updated in group while assigning user to the group manually
Provision Rule- User need to refresh page when adding/updating application role condition
Recon pull with AD-For default data related to date it is not working
ctrl+K search -add MFA rule not present
Partner portal-Add customer with domain-for domain field validation should be as per the normal registration
Cymmetri verify App(Selfservice(-Need to handle auto register flow in the application MFA
App Auth does not work when verify app in closed state
ios 17.2 Auto Auth not working
ctrl+k search-Read only user redirecting on add form
SAML-Expression-Provide sample on i icon
PAM- Rename server to device
Login with PAM Read Access Admin-PAM>Devices>Setting: User is able to edit complete p age details and showing processing validation message when clicked on save button
User not getting deleted from AD when assign in AD
Recon-Pull-Group, for one user having 900 groups, then under recon history showing error,same vice versa one group multiple users
Take pull from AD- User having remote group present in AD
When password is expired and the user is trying to change password then it is not adhering password policy, accepting same old password
SAML-Regular expression-if user entity not exist and doing SSO then in audit data should be present
Identity Hub- Group: Validation message should be shown when clicked on assign group button
Identity Hub >User: Custom attribute dropdown is not completely visible
Custom Attribute Import- When password attribute is imported via csv file then password should be visible in encrypted form in user details
Custom attribute Import via API EXT- Password should be encrypted form when imported
Application MFA- Showing routes issue when accessing application
Not able to login on partner portal via admin login
Route issue-On click configuration tab
On Behalf- Route issue
Import> Download sample file- showing route error
Browser cookies disable-end user-facing difficulty
Calendar: Resolution specific> Calendar Ul is getting glitched at 75% 80% 90% zoom
Identity Hub-Users: User should not be able to assign application again if already is assigned.
Teams-Add user showing unknown error
Inbox showing unknown error
Teams-User list not showing
Application Recon- When user is trying to Pull users from database and if pin code is blank, then default set value should have been taken
Authentication> Auth rule- Showing Rulesrvc not found validation message
Policy map update-on save showing error
Hide this /disable button when script is enabled
MFA- Rename SMS Authenticator to OTP Verification
Application getting assigned from UI. If it is failed.
Manager notification: receiving user name required manager name
AD Group pull || Only under 1000 member getting pulled (Connector Server Restriction)
Workflow initiated for form but form is getting updated without workflow approval.
Version: cloud_3.0.5-beta product release
Date: 12 January 2024
Version: cloud_3.0.2-beta product release
Date: 01 December 2023
User management service restructured.
PAM - Sub domain added in Authentication Parameter
UI/UX Improvements:
Show username in user selection dropdown menus
Show Cymmetri Verify app link on MFA TOTP Registration and App MFA TOTP, Push, Fido
Show message when cookies are disabled on browser
Cymmetri Verify App update (v5.10)
App drawer, header and lock screen UI improvements
Search box moved to header
Show search history
Haptic feedback on TOTP code press
Cymmetri Verify App Hotfix (v5.10.1)
Introduced spring expression language in SAML.
In Multifactor otp config we can't disable both email otp and sms otp. At least one should be active.
Group Provisioning
Cymmetri Mobile App update (v1.5)
Added QR code self registration for TOTP, Push and FIDO
Added TOTP self verification eliminating need for finding and copying TOTP from cymmetri Verify app for the login
Added App lock with biometric in the app
Forgot password-User is not receiving email notification
Workflow description spelling correction
Workflow on unassignment-On role unassignment, if any workflow already trigger then message should be shown
Manage view- for converter used parameter not showing
Application-date converter, recon pull getting stuck
Workspace | click search box creates Ul glitch
Login with Read only user- Configuration> Syslog configuration- Configuration should be gray out and should not be editable
Configuration>User decommission config- Add a short description specifying functionality (Title)
MFA- Rename SMS Authenticator to OTP Verification
Configuration>Master>Zone>Gateway IP- Sorting is not working
Configuration>Master>Global>Value- Sorting is not working
Configuration>Master>Zone>Name- Sorting is not working
User Onboarding| Contact info details not accepting other country mobile number
Delegation- Successful Validation message should be shown after user is assigned
Time-based role assigned application- Time based Application is not getting deleted after time period is completed when role is assigned
Configuration>Master>Zone- Showing old zone data when creating new zone
My workspace>Access Review>IG>Managed - When all the checkbox of Info field are disabled, then title checkbox should also be disabled
Provision- When user is trying to create new role, role is not getting added neither validation message is shown
Cymmetri Verify - IOS - Push/FIDO Verification screen not shown when app opened through its notification
Cymmetri Verify - App protection not working
Self service app- User when trying to login on self service app having Fido authentication On, user is redirected to Play store but see in play store app is not clickable
Cymmetri Verify - Same day exported file - with file count attached to the name is reported as invalid file
Application provisioning MFA- When max TOTP/OTP/Secret Question invalid answers limit exceeds, it should show validation message and should be redirected to login page.
Application Role workflow- User is applying workflow for specific role but non workflow as signed role is also not getting assigned
Update user import sample file
usersrvc/api/user/dropdownList- in above path, for create workflow in bulk
when we create in bulk it is showing out of memory
Global Notification disable-by default it is off
Notification template- Global Notification for OTP is off still logs is showing mail sent(True)
Campaign with group-Campaign getting aborted
Multi-role assignment with form, then form adding repeatedly for each role, expected only one form should be there
Deprovision rule- User is not getting suspended when end date is applied at the time of user creation
Users Import- User name, Login should get trim if space is included while importing user
Identity Hub> User session- User session is not getting terminated even after revoking users session button is clicked
Manager notification: receiving user name required manager name
AD Group pull || Only under 1000 member getting pulled (Connector Server Restriction)
Version: cloud_3.0.1-beta product release
Date: 30 January 2024
Provision Rule Revamp:
Restructure Provision rule condition configuration
Provide support single condition and group condition in condition config.
Provide Operator support like Equal and Not Equal.
Provide AND , OR Operator support for multiple condition in provision rule condition config
Group provision Support
Add group in provision rule. (only local group)
Old provision rule migration
If old rule without condition mark as inactive.
if old rule without application also mark as inactive.
UI/UX Changes:
Application profile and group mapping in SAML SSO
SAML Service Provider - Restructuring and provide defaults
Deprovision Rule support for user delete (if no application assign)
SSO -SAML
SSO-group policy Mapping -- SSO SAML.
SSO-added nameFormat in profileMapping and groupMapping -- SSO SAML.
SSO-added digest algorithm method.
SSO-added list support for profile mapping.
Mfa Attempt Enhancement(Old behaviour when admin locks the user then user should not able to unlock from selfservice now he/she can able to unlock yourself)
user can unlock if admin locked the user
invalid mfa will permanently lock the user, user can unlock account after mfa cooldown period is completed.
admin can unlock the user which will unlock the mfa as will
UserType Master Support in User Creation and Updation.
Provision Rule- Rule is not getting applied if previous provision rule is deleted.
Group- Search functionality is not working
Not getting form values in the target application when Form updated, role assigned and role unassign
Self service app- Increase spacing
Notification bell icon- When notification is empty, mark read and delete option should not be clickable
Cymmetri self service app- When clicked on groups or application from on behalf tab, it is redirecting to dashboard page
User Onboarding| Contact info details not accepting other country mobile number
Cymmetri Verify app- For long tenant name timer clock is not visible
Group-Attribute detail-provide search
Android Heads Up Notification now will display notification upfront which earlier required from user to turn on from the Notifications Settings (Float Notification)
Notification template-correct spell for delegation
Deleted user login-on forgot password this user should be validated and restrict,currently showing error-Please try again
SAML-On clicking validate regular expression should show data message which is available in backend
Ctrl+K: Search filter is showing records for all the letters mentioned
If the admin lock the user, then the user should be able self unlock by forgot password flow
Audit- Audit log should shows role specific logs for role assignments/ unassignments
Self Service: Access review- Validation message is not complete it is getting cut
Registration- Showing processing please wait validation message after registering user and without any setup if user is clicking logout
Self service app-On behalf: When clicked on application/groups from dropdown mobile keyboard is getting displayed and due to that applications/ groups visibility is less
Not getting form values in the target application when form updated, role assigned and role unassign
Manager notification: receiving user name required manager name
AD Group pull || Only under 1000 member getting pulled (Connector Server Restriction)
Workflow initiated for form but form is getting updated without workflow approval.
Version: cloud_3.0.3-beta product release
Date: 15 December 2023
WebAuthn passwordless authentication (It only works for chrome, safari, edge on desktop and chrome and edge on mobile) - EXPERIMENTAL
Onbehalf Configuration
Default onbehalf configuration
Rule engine support to create custom configuration.
Display the OnBehalf menu in self-service according to the logged-in user's matching custom/default configuration.
Below menu operations supported
User Application View,
Assign Application
Assign Role
Unassign Application
Unassign Role
User Groups View
Assign Group
Unassign Group
Group Provisioning Enhancement
Policy map datatype converter Enhancement
Converter support added in custom attribute
Configuration support added for custom attribute converters
Encryption added for Custom attribute password converter value of user
Cymmetri Verify v5.10.3 - (link) -
Bug fixes
Cymmetri Mobile v1.5.1 (link) - (Rejected)
Bug fixes
Added self verification support for forgot password, App MFA, server MFA, and passwordless
Global module search feature (Ctrl+K)
Groups list pagination in user details
Connector
Oracle HCM
PAM
AD seperated from the Cymmetri
Group - View Attribute - Showing list of CN of members of remote group
Workflow for time-based role application- Audit log should show action not supported me ssage if lifetime application is changed to time base from approver end.
Recon Link for both exist- When updating group after linking showing custom attribute error
Multi node-Application assign with role, all user getting assigned but still import showing in progress
AD group count mismatch-In AD total 1278 group but in pull it is showing 1260
Application Group- Pagination should be applied for group provision page
AD application push- Group should not be updated when update checkbox in policy map is unchecked
AD Recon Push- When all policy attribute are false, group creation should show error.
AD Application Pull- When all policy attribute are set to false, group creation should show error
AD-Policymap_memberOf need to be default false for old tenants
Browser specific-On Mozilla browser OTP verification is not proper
Login with Domain Admin- Manager assignments should not be greyed out
Import completed file show end time
Policymap-group(pull/push)-if attributes are inactive then this should not be reflected under dropdown
PAM-Sign on Policy- Policy should not get activated unless MFA factor is selected.
Audit-Configuration-OTP-For check uncheck Send OTP on,audit should be present
AD application- Should show error message when description is user principal
Self service-Read auto MFA considering camel cases
Cymmetri Verify app- Cymmetri mobile app is not able to fetch TOTP from verify app if the re are more than 20 TOTP users
Users Managed View- Managed view should get blank for those application not supporting this operation
Configuration>Master>Browser Tab text is not correct
Workflow- Close button in Users details pop up box should be enlarged (currently not visible properly)
Branding-Should show proper validation message on UI
Version-provisionsrvc showing two times
PAM> SignOn Policy- Discard button is not working
Identity Hub> Users: Others field details are not visible on user display page on editing profile
Cymmetri app(selfservice)-Auto read MFA-when Cymmetri verify app having App protection is enabled then also it is reading,bypassing app protection
Cymmetri Verify - Google Authenticator Import TOTP timer not running
Cymmetri Verify - MFA Push Registration fails
Cymmetri Verify - App crashing on Samsung fold phone
SAML-Expression-restrict to show id
SAML-Expression-if user don't have data and fetching data then no message showing on UI
SAML Key:- Not able to understand why validation message is showing invalid arguments
Delegation- Session getting expired even after refreshing token continuously
External idp login showing error
SAML-User is not able to download metadata, showing 500 internal server error
API SSO validateToken API only validate the auth_key parameter
Password converter only accepted encrypted value. it should also accept user's editable va lue
Identity Hub>Group: Grey out Group name field for remote groups as user cannot edit name
Manager notification: receiving user name required manager name
AD Group pull || Only under 1000 member getting pulled (Connector Server Restriction)
Application getting assigned from UI. If it is failed.
Group-Custom Attributes not getting updated in group while assigning user to the group manually
Version: cloud_3.0.1-beta product release
Date: 09 February 2024
PAM SUDO SU feature for linux server.(For SUDO SU shortcut key Ctrl+Shift+E)
SAML Assertion Preview
Encrypt saml response
ETL
Custom Create user in AD API with unboundid library
Custom user assign to group in AD API with unboundid library
Configurable UI Info and Actions:
Hide "Reset / Unlock User"
Hide "Login Help Page Link"
Configure "Login Help Page Link"
Hide "IP Address"
Hide "Self-Service App Links"
Login Help page external link updated
Cymmetri Verify
Firebase version upgradation
A troubleshoot page provided if FCM token is missing
SSO UI migration
Made Gateway IPs and Proxy IPs non mandatory on the Masters -Zone page. Only Name and CIDR fields will be mandatory.
Default delegation consents do not convey responsibility of delegator or delegatee
Self service app- On behalf: When clicked on application/groups from dropdown mobile keyboard is getting displayed and due to that applications/ groups visibility is less
Provision rule-On click save showing error,without condition
Configurations-general-config-Rename message for User Decommission Config
Label update for suspend config
Provision Rule; Groups/Application- If user is selecting any local group in first field then second field is greyed out not showing other local groups
Notification content should not be hardcoded
Remove trailing slash from selfservice endpoint
Error handling for product Webhook custom error
Application SSO-attribute mapping-without selecting Cymmetri Attribute save button should not be enable, as this is mandatory field
Manager notification: receiving user name required manager name
AD Group pull || Only under 1000 member getting pulled (Connector Server Restriction)
Workflow initiated for form but form is getting updated without workflow approval.
Version: cloud_3.0.11-beta product release
Date: 05 April 2024
New Feature - Amaya (Schema Maker): A new feature called "Amaya" is released for generating policy map, policy attribute, and also for generating schema for various functions - Create User, Update User, Sync User, Search User etc. Using a UI-based designer, an administrator may configure JSON REST-API based applications without needing to write scripts for the above mentioned functions.
Role Required in Assign Application(Backend Validation):
Bulk Application Assignment
Admin Application Assignment
Admin User Page
Selfservice, User Application Request
Selfservice -> Teams, Application Assignment
Selfservice -> Onbehalf, Application Assignment
Active Directory new bundle (Using unboundid.ldap.sdk library) <Group operation supports>
Added a field inside Active Directory User Configuration Page: "Add or Remove group using Simple AD".
Added a default filter for the start date as the current day in all report detail views.
The view button in the application role is only visible when edit access is not provided to the user, but read access is granted, such as for read-only users.
PAM - Device Termination when device unassigned
Inbox- Request count should be shown in claim> open request as visible in Requests>Open request
Application deprovision Workflow- When removing role from user application, workflow is getting triggered but before saving popup box is getting disappeared
Password Policy- Accepting -1 in password history versions and also displaying in policy rule when changing password
Password Policy- Password history versions should have default 0 value and also add note specifying description of 0 value.
Import user with grade,need to handle user import with inactive grade
Attribute setting- Not able to disable grade attribute
Audit log- Showing application id instead of application name when moving application to tag from self service app
AD Authentication- Audit log should be shown when changing password for AD authenticated user
My workspace >Teams>Users- The message "User account locked" appears whenever changing pages.
Forms- Field name is not displaying double spaces when inserted in JSON field
Workflow Config- Add Remove button for stage 1 user
Tenant registration flow- show password not working
Workflow- Pending/ Inbox- Menu action should not be visible for every application or when field is empty.
Identity Hub>User Filters- When applying a filter for inactive users or any other filter and then activating the same user, the filter selection is removed, but the count is still displayed.
Upload CSV- Not able to drag and drop csv files in import users, manager assignments, groups
Global module search-when product is disabled and the user trying to search then showing an error
Application update Workflow- Workflow is not getting trigged when application role is assigned to user
Partner portal-delete customer not working
Applications-For old google applications name getting replaced with Google Workspace
Password Policy>Blacklisted Password- When setting blacklisted password for user showing error
Password less login showing error
Email Notification- User is not receiving email notification
Version Specific > Delegation recent apps- When delegatee is accessing account then excluded application are still showing in recent used apps
Admin MFA -on click save showing error
TEAMS-Menu action click showing unknown error
Admin Dashboard, Risk Dashboard and Insight reports are not loading
Taking time to load data in complete application
User-Activity -taking time to load data
AD- Recon- Push- Users are going into pending state for new AD bundle
Managed View- IDM value is not getting displayed
Notification template-need to add middlename attribute under system variable
Users | Sort by filter should be beside Sort Order
Role mandatory-In import assign application there is no validation, without role also able to assign
Identity Hub>User>Setting- Admin should not be able to lock himself from setting
Suspend user-for AD update , remove application
AD application - In Suspend user, application status is showing fail updation state
Group-Recon pull-update and full sync assign/update-taking too much time
AD Group pull || Only under 1000 member getting pulled (Connid Restriction)
Remote group-bulk assignment showing error, "failureReason" : "javax.naming.ServiceUnavailableException: [LDAP: error code 51 - 0000200E: SvcErr: DSID-031A1202, problem 5001 (BUSY), data 0 ]; remaining name 'CN=allgroup,OU=allgroup,dc=cymmetri,dc=in'"
When Add group pull/push then server getting stuck due to memory increase.
Remote Group assign in bulk-Not moving all user in group under AD
AD Application new bundle- If user is inactive in AD, and same user is updated in Cymmetri then user in AD should also get updated
AD Recon push-User not getting push in target (New bundle)
Adaptive MFA-Blacklisted ip configuration- Not able to enter range
Phone number - Phone number and country code validation issue
Partner portal- Company name letters should be extended to 100 characters and space at the end should be trimmed
Partner Portal- On admin approval dashboard page, column name width should be identical, and if name is extending then extended name should be shown in hover.
Manager notification: receiving user name required manager name
Workflow initiated for form but form is getting updated without workflow approval.
In application setting if show to user flag off then also application show in recent application.
Version: cloud_3.0.1-beta product release
Date: 23 February 2024
UI/UX Changes:
Skeleton loaders - Improved loading indicators
Filter enhancement for Users and Application pages - Now filter persists the data once go in the detail page and come back also an indicator to show how many filters or any filters are applied
Branding changes - Now the preview of branding will be on scroll for better UX , "should help icon be shown " field would highlight the help icon
Mfa attempt Admin User lock
Mfa attempt config added in global auth policy
Self-unlock flag to unlock the user during admin lock the user
Email for invalid mfa attempt
Service Provider (SP) Initiated SAML Single Logout
Secret Questions verification changed
Earlier it used to show all question and mandate user to fill all the configured questions . Now it will only ask user to show dropdown multiple times configured by admin for minimum correct answers.
SBI VAPT :
Encrypt 'login' in some public api same as password encrypted. Following APIs are changed:
validateIdentity api : on login page validateIdentity api change get type to post and in request body login encrypted value pass.
token api : on login page token api login encrypted value pass.
API Integration for passwordless flow reset password
Workflow- For user list workflow approver, user is showing in list dropdown but in pending workflow it is showing empty.
Application- Application name should be unique
Applications Group mapping- Change the validation message as only one group can be added in group mapping/ disable the add attribute button after 1st group mapping is done
AD application Recon- When importing users via recon having provision rule assigned for User creation with condition, then showing error in recon history and again after executing run now command then user is getting imported but going in Ignore case.
AD Application recon- When workflow is applied for User creation having condition applied(Department=Accounts), and user is imported via recon, recon history is showing user assigned but when searched In identity hub-Users, showing user not found.
Notification Template- Showing processing please wait message when trying to click toggle button
Provision Rule- User should not be able to save provision rule without adding applications/groups
SBI VAPT || Testing and changes for SBI as well as product
Application SSO- Label change to update
My workspace>Inbox- User details popup box should not be displayed when user is deleted from admin account after initiating workflow
Deprovision- Remove Exclusion Applications field
Delegation account- Change label from Delegate Session Active to Delegate Session Information
Users> Applications- Total number of applications assigned should be shown in user account
User: Menu Action- There should be sync event toggle button while marking user inactive in user menu as available while marking inactive from user setting tab
Policy attribute- When removing policy attribute, that field is not getting removed also it is visible in policy map application field dropdown
Identity Hub> Users- Users should be searched on basis of Usertype as well
User Creation Workflow- When clicked on the cancel button on the workflow preference popup box, it should remain on the user creation page. For now it is cancelling the whole process
Application> SSO>Configuration>Edit configuration- UI for logos and name is not proper
Application SSO> Configuration- Marked button should be disabled until service provider is selected
Branding- Change label as both the fields are sounding similar
Branding- Preview is not available after changing setting
Branding- Add a short note/sample file for default help link when show help button is Yes
User Filter- Reset button should reset all the filters applied and load complete data
Self Service App>Managed access- Fields on right side should be slightly moved to left as in mobile it is not visible properly
Application Audit logs- Applications are getting updated when password reset is performed for users.
Selfservice app-MAX MFA attempt message is not readable
Self Service mobile app: Application- Application Tag is not visible when clicked on move to tag option at first time and later on option is continuously visible
My workspace> Inbox- Starred requests are not getting saved in starred folder
Exclude application > delegation- When any application is added in tag and excluded by delegator, then should not be visible in delegatee account
My workspace: Application- One application should be assigned/moved to one tag only
Teams Configuration- Showing route issue when saving new teams configuration
Manager notification: receiving user name required manager name
AD Group pull || Only under 1000 member getting pulled (Connector Server Restriction)
Workflow initiated for form but form is getting updated without workflow approval.
Version: cloud_3.0.12-beta product release
Date: 18 April 2024
Upload filename length validation: When file is upload in form of profile image, excel file import then validation is added for the file name length.Implement pages are as follows (20 characters)
Selfservice profile picture
Application image
Excel upload in User import, manager assignment, application assignment, group assignment,Role import
For the remote group, when a user or application is assigned to the group, they will not be assigned to Cymmetri until they have been successfully assigned to the target.
Workflow Config
After creating work flow now user redirect to workflow config page.
Now we can't active workflow if approver not configure in workflow config.
Application> Roles- Add toggle button to Active /Inactive status.
Add application/device name with space,Space should be trim
Users> Activity- Filter and search should be added in user activity
Workflow-"Save" button should remain disabled unless some condition is mentioned
Application SSO-attribute mapping-for duplicate entry,message should be show on same screen,refer other module for the duplicate entry error message
Lifecycle Mgmt>Hook Config - Search filter is not working
Amaya Connector- Show complete name on tooltip
User Setting- Change validation message for all three tasks( Active, Inactive, Delete)
Workflow Configuration- If approver is not present then workflow config should not get active
Partner Portal - Add Asterisk (*) for marked fields
Partner Portal- The validation message indicates that spaces are acceptable, but the field is not currently allowing them
Partner portal- Company name letters should be extended to 100 characters and space at the end should be trimmed
Amaya-Param getting duplicate
Trigger email to user when MFA max attempted in login
Master > Audit logs- Audit for fields created or updated in Master is not showing except for Grade
PAM Device- Not able to search PAM devices from my workspace
Application add with space,Need to handle space in backend also as temporay fix deployed from UI side
Rename- Dynamic json connector to Amaya
Amaya connector- Rename Dynamic Json connector to Amaya
Dynamic Json Connector- Text is overflowing tag border
Delegation- User should not be able to save delegation when start date is in past.
Amaya-policy map-felicity-If for policy map attribute not generated then default value should be there
Add application-For policy map default should be off
Update pagination offset - label and placeholder
Amaya-Response getting hide
Rename Amaya provision sub tab to User Configuration
Amaya-Policy map,tooltip overlap issue
Partner portal-under cymmetri customer total user count showing-1, actual available-12
Recon- Modes should be non editable
Import users via CSV/recon- Users should not be imported/ should show error when particular usertype, department ,designation fields are inactive
Load Test Data: Identity Hub> Users- Pagination is not working when multiple users(Load) are present
Workflow- Workflow popup box is showing unknown but in pending workflow is going into requestor manager
User-Filter with custom attribute not working on below data
AD Application new bundle- If user is inactive in AD, and same user is updated in Cymmetri then user in AD should also get updated
AD Recon push-User not getting push in target (New bundle)
Recon- Timing is not correct
Application delete-Deleted application present under Provision rule ,even after application deleted
Processing please wait message should be changed, when no data is entered and clicked on preview assertion
Deprovision- User is getting suspended when deprovision rule is executed via scheduler when no end date is applied or status is inactive
Reports> Filter- Showing error message to enter start and and date when resetting filter or applying any other filter.
Remote Group assign in bulk-Not moving all user in group under AD
To verify user deleted from AD OU and cymmetri admin trying to assign remote group
AD application - In Suspend user, application status is showing fail updation state
Remote group-bulk assignment showing ServiceUnavailableException
Group-Recon pull-update and full sync assign/update-taking too much time
Ad Application- Application assignment is going in failed state , but deleting application is also getting failed
Assign user to remote group is failed
AD application recon- When workflow is configured and recon is executed, then user is going in pending workflow
AD New Bundle- Thumbanail Photo is reflecting incomplete(In hex form) in AD
Workflow- Workflow popup box is showing unknown but in pending workflow is going into requestor manager
Recon-Name not present then also showing error for the duplicate
AD application - In Suspend user, application status is showing fail updation state
Custom attribute Import via API EXT- Password should be encrypted form when imported
SSO-Openid not working on QA, same working on dev
Multi node-Application assign with role, all user getting assigned but still import showing inprogress
API ext (API Client) User not getting created
Deprovision rule-user data not getting updated when change Grace Period 3 to 0 days
Unable to add Gmail account on Android after logging into Cymmetri
Tenant specific> Reset OTP config- Not able to save configuration
Partner portal- Display validation message specifying some fields are missing
Grade workflow- Preference config popup box is showing user name but pending is showing Unknown
Group recon pull-when space is in name then not going in ignore case
Workflow- Sequence for approver is mismatched in preference config popup box and in pending workflow
Workflow- Workflow in preference popup box is showing user name but in pending showing unknown when applied for user list or grade
Workflow- When approver is set as reporting manager and application workflow is initiated then preference box is showing approver name but pending is showing unknown
Schedule report- cron not getting updated, from hourly to change once in day then also report receiving hourly
creating the user through the JIT Message was rejected due to issue instant expiration
PAM device is assigned then on access showing message for the disconnected
AD Adaptor token- Token is showing Invalid
PAM Device- showing processing plaese wait validation message with 403 forbidden error
Application- Showing processing please wait validation message.
Loadtest-workflow page not loading
Expired session: Showing blank page when clicked on user setting logout tab
Suspend Config- User should be able to disable suspend config
Deprovision- Deprovision via scheduler is not working
AD-Recon pull with update-If user data removed from AD and taking pull,then this data not updating in the cymmetri user data
group push-not taking user in AD at the time of update
Daily scheduler running late
AD Application- Showing error when trying to update profile picture
MFA- Rename SMS Authenticator to OTP Verification
Global Auth-When the "Single Session > Block Session" setting is enabled, attempting to log in with the same user account should block the user even before verifying Multi-Factor Authentication (MFA).
Manager notification: receiving user name required manager name
Workflow initiated for form but form is getting updated without workflow approval.
In application setting if show to user flag off then also application show in recent application.
Unable to identify application properties data type where value is empty
Version: cloud_3.0.1-beta product release
Date: 03 November 2023
Policy Map Datatype Converter
Added standard converter to convert ldap profile picture.
Added standard converter to encrypt & decrypt data.
Sample Fields For Active Directory
Decision Engine Restart Scheduler
Added scheduler which will run on every hour and process stuck decisions.
Audit JMS Queue added in following services
cymmetri-microservices-authPolicy
cymmetri-microservices-mfa
cymmetri-microservices-notification
cymmetri-microservices-provisionEngine
cymmetri-microservices-registration
cymmetri-microservices-ruleEngine
cymmetri-microservices-selfservice
cymmetri-microservices-usermanagment
cymmetri-microservices-workflow
IG
cymmetri-microservices-sodengine
cymmetri-microservices-pam
cymmetri-microservices-analytics
UI/UX Changes
Show Cymmetri Verify app link on push/fido registration screens.-Rejected for the selfservice app
Cymmetri Verify App update (v5.9.1)
Cymmetri Verify App update (v5.9.2)
Cymmetri Verify App update (v5.9.3)
Display a message to indicate the action being performed
Restructured bulk user import for performance
Notification Global Config
Notification categories in two types i] Mandatory ii] Optional.
Notification Global Config applicable for only optional type of notification.
Cymmetri Verify- When exporting TOTP users password is accepting all digits/values as alphabets/number when it should have accepted alphanumeric values
Cymmetri Verify | IOS | Face ID being asked infinitely
Cymmetri Verify app- Showing duplicate records when imported from other device
Cymmetri Verify app- Search functionality is not working when users imported from different device
Cymmetri Verify- Show password when clicked and file is exported, then again export file same password is visible with no masking(password is visible)
Cymmetri Verify | IOS | Unable to import backup file
Cymmetri Verify | IOS | Face ID not supported error
Cymmetri Verify | Account details not updated on adding/removing push/fido
Cymmetri Verify | IOS | Not internet error
Application getting repeated within different pages of application list
My workspace>Access Review>IG>Managed - When all the checkbox of Info field are disabled, then title checkbox should also be disabled
User - Application - Group name should be displayed
Audit-Audit with device filter not working
Vaulting Configuration- Test connection audit not present
Notification Template- User is not receiving mail for reset password
Login-Showing incorrect validation message and asking user to reset password again
Onboarding flow | Additional details not accepting other country mobile number
Recon history- provide search
Tenant Registration- Domain is not visible
Register tenant- Country dropdown is showing no option instead of countries list
Application - Tag - Already created tags present in application are not getting displayed in grid page.
Partner Portal- Showing invalid argument but not able to understand exact which field is invalid
Admin Portal- Top search not working
Admin Portal- Get Started link not working
Admin Portal- Company name and company code should get trim
Fido Authentication- User is not able to authenticate via FIDO in first time, user need to kill app or refresh inorder to register device
Manager notification : receiving user name required manager name
Multi-role assignment with form,then form adding repeatedly for each role, expected only one form should bethere
Fido - Push/fido not getting removed from mobile app
Password converter only accepted encrypted value . it should also accept user's editable value
Application Field
Cymmetri Field
Application Field Type
Cymmetri Field Type
Create Only
Update Only
whenCreated
startDate
Ldap DateTime Custom
Datetime
TRUE
FALSE
accountExpires
endDate
Ldap DateTime
Datetime
TRUE
TRUE
thumbnailPhoto
profilePicture
Ldap Byte Array
Array
TRUE
TRUE
Version: cloud_3.1.0 product release
Date: 02 May 2024
Add Welcome Guide when no nodes added
Amaya Operations cards messages updated
Tooltip DX enhancements
Add confirmation dialogue when request method is missing
File Upload Validations based on filename length and file size
File validation applied on User Bulk Imports, Group Assignments, Application Assignments, Role Imports, Upload metadata SSO.
Branding Image upload applied image size validation and image name length valdation.
Validation also applied on self service User avatar upload, application icon upload.
Cymmetri Verify App issuer format is changed now so there wont be duplicate record creation from now onwards, earlier we did not take into account of the environment but now we are considering that as well
Deprovision Via scheduler when threshold value is set:- Past date user is also getting deprovisioned when rule is applied on status
Application-Role-One role mandatory, validation should be present at least one active
Node name without spaces overlap
Amaya- Not able to drag down node which is at the top most corner
Campaign - Campaign action reminder email time calculation wrong
Campaign- Campaign is getting aborted and summary is showing blank when campaign for local group is executed.
Custom attribute - When custom attribute filter is applied in users, showing no users found
Workflow- Preference config box is not visible while deprovisioning application
Self service app: While setting up secret question authentication in mobile app, user need to click twice on question field.
User activity Ascending Descending not working
Amaya Connector Recon- Showing duplicate role remarks, but in duplicate field showing 0 records
Identity Hub- Groups- After editing groups when on application / activity page user is redirected to users page by default
My workspace> Create new tags- showing older suggestion as soon as clicked on new tag field
AD Application - View attribute is empty
Tenant registration | Pressing tab key glitches UI
Missing error code mapping
Grade Workflow- When workflow preference config is set to visible, and workflow is applied for user creation, then popup box is showing user list but in pending showing unknown instead of user list
Amaya- When the back button is clicked, a save/discard popup box will appear. However, clicking anywhere on the page directly navigates the user away from the operation page.
Amaya- Save/Discard popup box should not be shown when user is trying to go back without saving any changes
Mobile app- Secret question- Field is showing required even when data is present in field
Cymmetri Verify app- Password recovery should be provided for Exported TOTP user files in case user forgets the password
login via Authenticator-identity provider is inactive then also user able to login.
syslog-configuration- UDP test, for invalid IP also giving success.
Unable to have TOTP account for same username on different environments
Manager notification: receiving user name required manager name
Workflow initiated for form but form is getting updated without workflow approval.
In application setting if show to user flag off then also application show in recent application.
Unable to identify application properties data type where value is empty
Framework Upgrade: Java-based services are updated for spring framework, spring boot, and updated utility libraries. Please note it may impact several functionalities: a. Access Review b. Risk Engine c. Data Logger d. Reports e. Webhook Sample
Provision rule module updated to support (type: user type and Converter Type: String ) custom attributes as condition parameters.
Support added for address1 and address2 field in user for the following: a) User Import via CSV File b) Reconciliation Application c) Amaya Application d) JIT e) Workflow - Inbox > user details, should address fields be visible Pending workflow > user details, should address fields be visible Archive > user details, should address fields be visible f) In the SSO profile mapping drop-down these fields should be visible.
Workflow: a. Menu Action: Update the topic of the workflow request for menu action. b. My Request: In My Workspace ➝ Inbox ➝ My Request, we show a list of requests that are requested for logged-in users. Now we provide support to show a list of requests which is requested by logged-in users. So now we are showing both requests which are requested and requests for logged-in users.
360 Degree Reconciliation: a. Migrated APIs from Python to Java, since it was a major roadblock for performance.
Webhook sample API details a. Added remark of appId in URL
UI improvement - Global search bar (ctrl + k) search result improvement
Screenshot Removed right side panel in my workspace dashboard which previously showed no. of pending workflow requests with the user
Cymmetri Verify App - A sync service will run to check the pending notification actions that did not take place because the app was in a closed-on-background state and will sync the data based on the notifications
Cymmetri Self-Service App - Earlier to register a tenant in cymmetri self-service we used to scan from our app to register a tenant but now you can use any camera or any scanner of that sort to register a tenant
UI Improvement - "Test Connection" should be prevented when an operation is not configured
SLO- Reverted as business case gap in the developed feature
Breached Password (Pwned Password 98crores+) Integration with Password policy.
Common adaptive data moved to master db: a. ipreputation b. short-lived domain c. breached password
MFA: Encrypt userName(login) in the request of API user behavior initiateKeystrokeCheck.
Suspend Resume: a. After the resume of the user's end date is clear and the user acts as a fresh user
PAM Workflow- Meta condition workflow for devices is not getting triggered.
The dashboard count is mismatched.
Policy Map- Cymmetri field dropdown should contain Address1 and Address2 fields
Autofill API sorts in alphabetic order for JSON objects for create/update
Onboarding || User should be able to unselect an application
Add and Edit password policy-need to g\show exact labels for the fields
Identity hub>User create- When importing users space should get eliminated
ServiceNow CURL Import not working
"Test Connection" should be prevented when an operation is not configured
TEAMS-Users profile pic not showing
My workspace- Teams- Showing processing please wait validation message
creating the user through the JIT Message was rejected due to the issue of instant expiration
Campaign- The Google Workspace application name is not visible in the campaign
AD application New bundle- Showing error while importing group having special symbol(-) for recon
Application recon pull configuration-recon pull configuration vanished suddenly
login with domain admin-need to provide Adaptive menu access
AD recon user push- When recon is executed in exist on Cymmetri and does not exist in target = Unlink, the operation should have been executed in Ignore case
AD Application new bundle- Group recon pull operation is showing in ignore state but still, groups are imported in Cymmetri
AD New Bundle>Address Field- Not able to add AD application when address fields are mapped, showing error
AD new bundle- When an AD application is assigned to a remote group, the application is highlighted
Cymmetri Verify App - While deleting the account from Cymmetri authenticator, TOTP is not getting
Custom attribute- Even when a custom attribute is disabled from the configuration, it remains visible
Cymmetri Verify App- For old tenants before env was considered if that totp is used for auto-verified
Custom Attribute-Provision- When a custom attribute with special characters is created and applied
Grade workflow- When workflow over workflow is assigned and is approved by the approver, still workflow is still not updated
Cymmetri Self-service App - Once we click on the web link from the scanner, it should show confirmation
Self-service Mobile App - When an app is in a Quit state and the app is via a scanner(camera), it is not redirected to the login page of the website
JIT- Once the default value is set, the user is unable to edit it, and when attempting to edit, the default toggle is shown as disabled
API SSO- Profile mapping configuration is not working
Provision Rule - Custom Attribute - Value field is not accepting space
AD Application New bundle- The "Application assigned successfully" message should not be shown when the test provision has failed and the application is assigned to a remote group
Azure authorization curl is mis-imported
Provision Rule - The existing rule configuration with the custom attribute is not working.
Audit log-for-date filter add default date is Today
User import-file size upload issue
Cymmetri Verify App - While deleting the account from Cymmetri authenticator, TOTP is not getting removed automatically
Cymmetri Verify App - While authenticating automatically via cymmetri authenticator, the "user not found" message comes twice in the iOS device.
Cymmetri Verify App- For old tenants before env was considered if that totp is used for auto verification it shows the user has not found the need to add that compatibility as well, via Passwordless (TOTP)
AD authentication- Showing invalid token error
Tenant creation not working
MFA- Factors showing empty
Breach password- Asking webauth, this factor is only for passwordless
MFA- The user, is not able to login when the user is trying to login using the normal password flow
Teams config- When the team configuration is inactive or does not match the conditions, an error message is displayed after logging in from the user account, yet all data is still shown
Adaptive service responding slow in load testing
AD Application new bundle- When the Unassign/Deprovision reconciliation is executed for group pull/push, the group should not be deleted from Active Directory
Provision rule - The application is not getting configured for the second condition present in the OR condition
SAML- Showing saml type mismatch error when the user is trying to click on Gmail via SP-initiated process
when the user creates via JIT then the user creation workflow should be skipped
PAM-Vaulting Configuration-AD test showing route issue
Login page- The user is not able to login when MFA is enabled( Prod issue)
Reports- When the report is scheduled, Scheduler history shows content not found and the execution status is aborted
AD Application new Bundle- Audit log for pending records should be shown when executing recon user push for failed provision test
Grade workflow- When workflow over workflow is assigned and is approved by the approver, still workflow is still not updated
Time-based application- Scheduler is executed even when a user is moved to suspended
Workflow- User creation using JIT(external IDP Azure)- Workflow is not getting triggered
Password policy- password rule updated with contains instead of exact match
Self-service-My request takes time to load if more data present
Teams config- When the team configuration is inactive or does not match the conditions, an error message is displayed after logging in from the user account, yet all data is still shown
FIDO-On push approve showing message something went wrong
User lock- When a user account is active, and the same account is logged in through another browser, and by any means, the account gets locked, the first session should get terminated.
Workflow Application Deprovision- Workflow is applied for (Role1) but when removing role 2 still workflow is getting initiated.
JIT- Once the default value is set, the user is unable to edit it, and when attempting to edit, the default toggle is shown as disabled
Recon Group PUSH- When recon is executed for both existing Deprovision, then the group should be deleted from the Target application and not from Cymmetri
PAM-Add/Edit vault user showing error
MFA push location showing unknown
/mfasrvc/userbehaviour/initiateKeystrokeCheck in this API login going in plain text expected encrypted.
MFA- Factors showing empty
AD New Bundle- Available Records should be synced when recon is executed for the first time after executing recon in the ignore case
Audit- Change archive to Suspend when user is deleted and moved to suspend users
AD application new bundle - When SAMaccount name is set to false in the Group policy map, members are not assigned in the group when recon Pull is executed for both exist=Update
Recon Group PUSH- When recon is executed for both existing Deprovision, then the group should be deleted from the Target application and not from Cymmetri
Identity Hub-Group- Change Audit log message
AD Application- When the group is unassigned via recon, users, and applications are deleted but the group is not
File Uploads, Filename length validation should be inclusive of the file name and extensions
User import-file size upload issue
AD Recon group Push- When recon is executed for a group that exists in Cymmetri and does not exist in the target system Operation should be shown in Ignore case as no action is performed on Groups
Remote Group- When the user is added to the remote group, the count should be increased automatically or after changing tabs
Recon Push Users- Multiple entries for the same users are visible in Recon History.
MFA- When push authentication is enabled and MFA rules are saved, but then Push auth is disabled from MFA factors, users are still prompted for push authentication when attempting to log in
Deprovision: After resuming a user from the suspended user list and applying deprovisioning via a scheduler with no end date, the user is still being deprovisioned again
Workflow metacondition- The Metacondition name is getting reset after selecting
AD group attribute- When the member attribute is clicked, it redirects to the assignment page
While creating the custom attribute with the same name as the provision rule options, the application is not getting assigned
External IDP Rule- When the external IDP authentication rule condition matches the user details, the user is unable to log in to the external IDP. Additionally, when that user is locked, an 'Invalid Auth Config' error message is shown.
Provision Rule - Custom Attribute - If the list of custom attributes is more than 10 records while selecting and saving the 11 key, it is not getting saved
When the user deletes, add more information in the audit log under the event attribute
Amaya-On update token screen getting blank
Manager notification: receiving user name required manager name
In the application setting if to user flag is off then the also application shows in the recent application.
Unable to identify application properties data type where value is empty
(26 July 2024)
User Threshold: a. A UI change has been made in the general configuration for the threshold. b. Creation of user c. Updation of user d. Deletion of user e. Staging for user threshold f. Retry staging user from staging dashboard. g. Archive for user threshold h. Notification for user threshold
User directory search API updated for quick search (keyword): a. Support dropped for grade, userType, department, designation, and custom-attributes b. Supported on: employeeId, email, mobile, firstName, lastName, middleName, displayName, login
Data logger service version info added.
Tenant registration database creation process optimization.
Pending Workflow Inner page applied functionality to reassign users from the inner page
Added QR code zoom feature on FIDO, TOTP and push Authenticator scanner.
VPT: Modify routes of API - /usersrvc/api/user/directory/list/{appId} remove user role form routes.
Custom Attribute support in the following Workflow Rule Events a. User Creation b. Application Provisioning c. Application Deprovisioning d. Application Update
Added the following templates in Amaya Quick Setup: • Atlassian • Zoho CRM • Zoho Desk • Zoho Books • Zoho Expenses
Provided support for integer values for ROLE assignment through Amaya.
Tenant Registration Process Resumption: If the tenant registration process is interrupted, it can be seamlessly resumed and completed using the existing account configuration. The registration process can be resumed from the following stages: a. Pending OTP Verification b. Incomplete Credential Setup
Active Directory || SimpleAD Connector upgrade: a. UserAccountControl attribute support added b. memberOf attribute support in manage system viewer c. ProxyAttribute attribute support added
External IDP SSO: a. added support to login into cymmetri as an external identity provider as IDP initiated sso.
SAML IDP SSO: a. added support to send IDP initiated (cymmetri) sso response to cymmetri as a service provider.
TOTP Config
Removal of Email validation from the backend
DataLogger | Refer to configuration steps here: a. data-logging framework optimization. b. Full sync support, this step is optional and required only if, • Tenant audit database is not present, or • Tenant audit database is corrupt so fresh setup is required.
Error in the server log-authsrvc, No impact on the functional flow
Team config - Create - Discard button issue - After clicking not able to add the details in the condition section
Rule engine- Remove the "above" word from the note
login with admin-Campaign detail show role also, currently role showing only for a campaign manager
Amaya API returns null if error instead of error and errorCode
Hide metabase analytics
Workflow rule configuration-on edit workflow, previously selected role getting save
User - Assign Application - Workflow initiated - Workflow Approvals page displays User list in Grade type
Pending Workflow -If the L1 approver is User List, then while clicking on the info icon, the popup does not show the user list. Also, it is " Grade List Details"
Identity Hub- The pending initial login symbol is visible far away from the user name.
On behalf configuration - While disabling and enabling the toggle, a popup message shows "This change will take effect on the user's next login" but it is getting reflected on the fly.
On-behalf>Delegation- On behalf, mthe enu is not visible when logged in via the Delegatee account.
SSO- Group mapping- Save button should be enabled when mandatory fields are filled
Workflow- Even after updating the reporting manager as the 2nd level approver in the workflow, the 1st level approver is still being set at level 2
Global search (Ctrl+K) - even if characters are not matching still shows suggestions
The product menu getting hidden on the workflow page
LDAP connector-LDAP SSL should be saved in Boolean in the DB
User setting- An error message should be shown when any action is performed and when landing/refreshing the settings page
User setting- External IDP rule is active-An admin user should not be able to lock a user when the external IDP rule matches the user condition
Schedule history-ad by default today filter for from and to
Teams config- When the view button is clicked, the user is still able to check or uncheck the boxes
Menu action- Displaying an error message when a user already has one role assigned and tries to assign a menu action.
Custom Attribute-Provision- When a custom attribute with special characters is created and applied in a provision rule (for user creation), the provision rule fails to trigger after the user is created.
Lifecycle Management - All menus - The discard button is not working as expected.
Application - SSO While saving the same config in two applications, while clicking on Edit SP config, a popup showing do you want to continue editing the SP configuration? But only the continue button is given.
Application - SSO - While saving the configuration in a new application, the save button loader is loading continuously
Amaya- Rename all operations(Test, Search, Sync, etc....) in sentence case
Group Policy map- For group custom attribute Cymmetri field type should be automatically selected as working in the user custom field
Teams config - while removing the condition in Group condition, shows the error " Please try again"
On Behalf config - while removing the condition in Group condition, shows the error " Please try again"
Teams Config - If the condition is kept blank and save is clicked, getting the error " Please try again"
On behalf config- If the condition is kept blank and save is clicked, getting the error " Please try again"
Import/Export- Showing error message when importing the file into a new tenant (AD specific)
Import application-show error message user or groupwise
Import application- Showing an error message when importing an Amaya-based application if the exported application was without the policy map checked
Import/Export - When any application configuration is imported into a new tenant, the user should be redirected to the application provisioning page after the upload
Amaya Azure- Showing route issue error message
Import/Export Application- Convertor field types in the policy map are not getting imported
Import/Export- Recon is not working for AD's new application bundle
Workflow- When workflow over workflow is applied 2nd level approver is not getting updated
Workflow- Even after updating Grade as the 2nd level approver in the workflow, the 1st level approver is still being set at level 2
Workflow- After updating the user list as the 2nd level approver in the workflow, the 1st level approver is still being set at level 2
Workflow- When the level 3 approver is updated in the workflow, a 'Workflow Not in Range' error message is displayed.
Workflow TAT- Workflow is getting aborted when workflow approver is assigned to the user list
Team config - Create - Discard button issue - After clicking not able to add the details in the condition section
Import/Export- By default, the time in the application name should be removed when exported
Rule engine- Remove the "above" word from the note
login with admin-Campaign detail show role also, currently role showing only for a campaign manager
Hide metabase analytics
Error in the server log-authsrvc, No impact on the functional flow
AD new application- User list is not getting displayed showing urersrvc unknown error.
The campaign not ending, for tenant 2711
Workflow rule configuration-on edit workflow, previously selected role getting save
AD application new bundle - When SAMaccount name is set to false in the Group policy map, members are not assigned to the group when recon Pull is executed for both exist=Update
My workspace> Inbox- When workflow assignment is reassigned by admin, then the previous approver should not be able to accept or reject the request if the page is already open in the previous approver account.
After the campaign workflow triggered on revoked, even though the campaign had ended and the workflow was approved, applications were still getting unassigned.
Workflow TAT- Workflow is getting aborted when grade is set at second level approver and set TAT time is over
Workflow TAT- Workflow is getting aborted when 2 level approver is set and set TAT time is over
Workflow TAT- Showing error when the user is not present and TAT is over
Workflow TAT- Showing unauthorized error when TAT is over and operation is getting aborted
User - Assign Application - Workflow initiated - Workflow Approvals page displays User list in Grade type
Reports- SSO-based application- Reports are blank/ not showing data when SSO-based applications are accessed
Pending Workflow -If the L1 approver is User List, then while clicking on the info icon, the popup does not show the user list. Also, it is " Grade List Details"
AD new bundle>Group- When the "Sam account name" update checkbox is unchecked and the user attempts to update the description, the description does not get updated in the AD
Import/ Export- When a file is exported from a different env (Dev) and imported to QA env, then credentials are also imported along
Identity Hub- The pending initial login symbol is visible far away from the user name
On behalf configuration - While disabling and enabling the toggle, a popup message shows "This change will take effect on the user's next login" but it is getting reflected on the fly.
In the User creation workflow, L1 - User List approved, L2 - reporting manager after TAT is expired, the request is not getting auto reject.
On-behalf>Delegation- On behalf menu is not visible when logged in via Delegatee account
Import Manager-Manager is deleted and the user trying to assign them in the import history shows success but the audit shows a failed
Application delete-Campaign-Deleted application available for review
AD new bundle- User policy map- When Sam account name is mapped with any attribute and update checkbox is kept false, and the user is updated, the audit log shows a failed
Workflow>Inbox- Address field names in inbox /pending workflow and identity hub users are not the same
SSO- Group mapping- Save button should be enabled when mandatory fields are filled
Campaign-email report showing error
deployment_analytics_1 Service CPU utilization is 100%
Application - Form - When submitted as blank, after assigning the application page is getting blank.
Reports- Records are displayed after 11min approximately
CSV Import users- An error message is not shown when the user is unable to save user details if space is included in the email
After the campaign workflow was triggered on revoked, even though the campaign had ended and the workflow was approved, applications were still getting unassigned.
User Workflow - If the reporting manager is set as 2 level approver, the reporting manager is showing as Unknown
Workflow>Inbox- Address field names in inbox /pending workflow and identity hub users are not the same.
Export- Rename Config type to Select All
MFA- When the default MFA rule is inactive, the user can delete the default rule as well
Amaya connector>Policy mapping- The bottom slider should be fixed
Amaya || Validation preventing usage of long valid header
Amaya Connector- By default only green colored (confirmed policy attributes) should be checked
Amaya Quick Setup- When an auto test run fails and operations are manually updated, clicking 'Generate Policy Mapping' should exit the page.
Application delete-Campaign-Deleted application available for review
Import Manager-Manager is deleted and the user trying to assign them in the import history shows success but the audit shows a failed
Import/Export- By default, the time in the application name should be removed when exported
SSO - OpenID - Configure CIDR - Add - While clicking on the Add icon without entering any details, blank data is getting added.
SSO - OpenID - Configure CIDR - While clicking on the delete icon, no message is displayed and the entry is removed
Workflow List - View - Showing label as "Custom Workflow "
Import/ Export- Application name while importing file should be limited to 50 characters
Application - SSO - SLO toggle enable/disable audit log
SOD; policies-Policy owner name is not getting updated after updating the user name from the Identity hub and without the owner name policy is getting saved
AD new bundle- When recon is executed for both existing updates but the application is not linked, still user is still getting updated.
Application - Form - When submitted as blank, after assigning the application page is getting blank.
Masters - Grade- While clicking on the Add button it shows showing edit page of an existing record
Tenant registration- Showing suspicious popup box when clicked on verify your email
New tenant registration- If the tenant is already on the registration page then after clicking verify email from the mail box should show tenant is already registered
Tenant registration- Taking time to register the tenant
Email verification - The email verification link redirects to the otp verification screen.
My Workflow> Teams- Add a short menu button
Tenant creation not working
After release v 3.1.2, for old updated tenant campaign module is disabled
Portal-For module update showing error, already exist
Push and FIDO scan zoom functionality not available at the time of Device MFA
Push and FIDO scan zoom functionality not available at the time of application MFA
User setting- The external IDP rule is active-An admin user should not be able to reset the user password when the external IDP rule matches the user condition
Manager notification: receiving user name required manager name
Unable to identify application properties data type where value is empty
Amaya || Create user operation fails due to an invalid password
In forgot password/password breach condition-asking disabled MFA factor also
Amaya-Autofill policy map, When the value is not present to the user at the time of application then Amaya passes "$." to the target
Campaign - Reviewer can approve self review request
After the campaign workflow was triggered on revoked, even though the campaign had ended and the workflow was approved, applications were still getting unassigned.
Remote Group- AD Application- When users are removed from a remote group in Cymmetri, those members should also be removed from the group in the Active Directory
Amaya- Client ID should be visible in encrypted form
Provision Rule - While creating and configuring the custom attribute as "New ", the system is not initiating the rule.
AD new bundle- When an AD application is assigned to a remote group, the application is highlighted in the background while assigning but disappears as soon as the application popup box is closed
Reports- When the report is scheduled, Scheduler history shows content not found and the execution status is aborted.
AD Application- When the Ad test provision fails, and the user tries to delete the application from a user account, then the application should go in a fail deletion state
Audit- Taking time to load audit logs
AD Application- Showing error when inserting start date in AD
In the application setting if shown to the user flags off then the also application shows in recent applications.
User lock- When a user account is active, and the same account is logged in through another browser, and by any means, the account gets locked, the first session should get terminated.
Branding- When show Unlock link from branding is kept as No, and the admin user account gets locked, then the user is not able to unlock the account from the login page
Application- When a user is adding /removing a role then it is not getting reflected without refreshing
group push-not taking user in AD at the time of update
Passwordless- WebAuthn; Showing not allowed error
Delegation-On behalf: when login by the delegate and the on-behalf condition is not satisfied still shows othe n-behalf toggle button and gets removed when refreshed
AD Application- Group name should not accept space while creating or updating group name
Audit- Audi log should show log when the user is not getting any records in Recon history but showing task executed
The workflow self-approval module was updated to support custom attributes (type: user type and Converter Type: String ) as condition parameters.
Teams config module updated to support custom attribute (type: user type and Converter Type: String ) as condition parameter.
On behalf module updated to support the custom attribute (type: user type and Converter Type: String ) as a condition parameter.
Auth Rule module updated to support custom attribute (type: user type and Converter Type: String ) as condition parameter.
Quick Setup - Setup applications using pre-defined operations
Import-Export App Configuration - Transfer configurations of applications smoothly between tenants, simplifying the setup for users by ensuring all configurations, including user configurations, server configurations, and policy maps, are accurately migrated.
Removal of Deprovision Rule Exclusion Applications Field: a) Manual Execute Deprovisioning b) Deprovisioning via Scheduler c) Update Threshold Delete Config d) Deprovision Rule Updation e) Backward Compatibility f) Suspend or Resume User g) Impact on UI
Access review reject process updated, on rejection workflow support added.
SAML Single Logout
The new screen will show loading on UI till tenant creation is completed once OTP is verified
Interchanged position of login ID and email on add/edit user for better UX.
Add support for the page number field for pagination in Amaya
360 Recon
Lotus Notes Connector
Application Policy Map (Active Directory) samAccountName is compulsory for Create only flag in User as well as Group (AD application new bundle - When SAMaccount name is set to false in Group policy map, members are not assigned in group when recon Pull is executed for both exist=Update).
Added Warning information and warning popups (Only UI changes no impact on backend functionality): a. Creation of user manually. b. Updating of user manually. c. Bulk upload CSV (creation of user) d. Manager assignment e. Policy map creation and updation f. Reconciliation Pull operation g. Reconciliation push operation h. Selfservice ➝ Teams: i. Creation of user ii. Updation of user
Removal of Email validation from the backend
The user info page crashed while the user edit fails
Import/Export of App Configuration
Amaya- Detailed description of failed/executed logs should be shown
AD application new bundle- The group link attribute in the db is empty, and users are not getting updated in the group
AD policy map- Spaces should be trimmed automatically if included while creating a policy attribute
Tenant creation not working
New tenant Registration- Showing subscription end for tenant which is not even registered completely
Secret question configuration- Admin user should be able to delete secret questions when not in use
Secret Question- When a question is already in use and the user trying to delete a question then it should not display a successful delete message.
Secret question- Displaying removal validation message when editing a question
User> Activity- Add a cross (x) button to clear the selection
Onbehalf Config - If the Description is kept blank, no error message is getting displayed on the screen while saving.
Team Config - If the Description is kept blank, no error message is getting displayed on the screen while saving.
On Behalf config- When the view button is clicked, the user is still able to check or uncheck the boxes.
Custom attribute- Even when a custom attribute is disabled from the configuration, it remains visible in the policy map selected dropdown menu
Users - View User- Custom attribute fields text UI is breaking
Custom Attribute- Require text change in success message to " Custom Attribute activated successfully"
Edit User - After deactivating the already assigned custom attribute, in edit user, the system is showing info XYZz" attribute is inactive for the active custom attribute also.
Identity Hub- When clicking on edit info from the user menu action, the user account edit page should open instead of the user display page.
CTRL+K: When any feature/module is already opened and the user presses the ctrl +k button from the keyboard then the search filter modal is opened at the back
Delegation - Delegator and Delegatee consent should not get updated if the user has already set some other consent.
Users> Group- Rename the label from 'Delete' to 'Unassign'.
Audit- Logs for deprovisioned users are getting repeated.
Custom Field- Policy Map- Date is not showing in the correct format
Mobile app- When clicking on the user name for the first time after killing the app, the keyboard is hidden
Custom Attribute-Provision- When a custom attribute with special characters is created and applied in a provision rule (for user creation), the provision rule fails to trigger after the user is created.
Global search (Ctrl+K) - even if characters are not matching still shows suggestions
User setting- An error message should be shown when any action is performed and when landing/refreshing the settings page
Cymmetri Selfservice App - Need to change the message showing in the popup screen while TOTP is getting authenticated.
Mozilla Browser specific- User getting stuck when password-less Webauthn is On
Application - SSO - While clicking on Preview assertion, getting the error "processing please wait"
Product menu getting hidden on workflow page: a. Menu action- Displaying an error message when a user already has one role assigned and tries to assign a menu action.
The user info page crashed while the user edit fails
Import/Export- Showing error message when importing the file into a new tenant (AD specific)
Custom Attribute-Provision- When a custom attribute with special characters is created and applied in a provision rule (for user creation), the provision rule fails to trigger after the user is created.
Quick setup- Data is not getting reset after closing the policy mapping popup box, but getting reset when clicking on the "I'll do later button"
Add Page Number support for Amaya.
Application - SSO While saving the same config in two applications, while clicking on Edit SP config, a popup showing do you want to continue editing the SP configuration? but only the continue button is given
Application - SSO - While saving the configuration in a new application, the save button loader is loading continuously
360 recon-Hide runnow button from detail view
360 recon dashboard filter-add dropdown for break type
360 recon dashboard-label change account overdue to account overdue in the target (also add some info on i icon what is this)
360 recon-Already running recon need to handle, disable the play button, or show a message
360 dashboard-make label consistent
360 recon dashboard-action details showing blank
360 Degree recon-For execution showing error
360 Degree Recon- History some time loading some time not
Recon 360 recon- A validation message for missing data is not required as it already shows no data found on the page when recon is not executed at all
360 recon dashboard-action details showing blank
360 dashboard-Search not working on break type
360dashboard-loginid filter not working
360 recon detail data showing mismatch
360 recon execute audit log not present
360 recon dashboard-on 2nd run details getting repeated
Amaya Azure- Showing route issue error message
Import Application- UI for the name is not proper
Import/Export- Recon is not working for AD's new application bundle
Teams config - while removing the condition in Group condition, shows the error " Please try again"
On Behalf config - while removing the condition in Group condition, shows the error " Please try again"
Teams Config - If the condition is kept blank and save is clicked, getting the error " Please try again"
On behalf config- If the condition is kept blank and save is clicked, getting the error " Please try again"
Import/Export Application- Convertor field types in the policy map are not getting imported
Import/Export - When any application configuration is imported into a new tenant, the user should be redirected to the application provisioning page after the upload
Import application- Showing an error message when importing an Amaya-based application if the exported application was without the policy map checked
Amaya- Policy Map Password attribute datatype identified as password instead of string
Amaya- Rename all operations(Test, Search, Sync, etc....) in sentence case
Workflow- Even after updating Grade as the 2nd level approver in the workflow, the 1st level approver is still being set at level 2
Workflow- After updating the user list as the 2nd level approver in the workflow, the 1st level approver is still being set at level 2
Workflow- When the level 3 approver is updated in the workflow, a 'Workflow Not in Range' error message is displayed.
Workflow- Even after updating the reporting manager as the 2nd level approver in the workflow, the 1st level approver is still being set at level 2
Workflow- When workflow over workflow is applied 2nd level approver is not getting updated
360 recon should consider full sync
360 recon fails then that 360 recon should be abort
Amaya Felicity Role assignment- Taking time to provide an error message
Deprovision- Exclusion Application- Application going in pending deletion state when that particular application is added in exclusion application while manually deleting a user from the Identity hub
360 Recon sync with bulk data showing heap size issue
AD new application- User list is not getting displayed showing urersrvc unknown error.
My workspace> Inbox- When workflow assignment is reassigned by admin, then the previous approver should not be able to accept or reject the request if the page is already open in the previous approver account.
Inbox - Workflow Request for setup for application - Need to enhance the details as per user interface.
Error in the server log-authsrvc , No impact on the functional flow
After the campaign workflow triggered on revoked, even though the campaign had ended and the workflow was approved, applications were still getting unassigned.
Campaign - Reviewer can approve self review request
The campaign not getting end, for tenant 2711
Workflow TAT- Workflow is getting aborted when grade is set at second level approver and set TAT time is over
Workflow TAT- Workflow is getting aborted when 2 level approver is set and set TAT time is over
Workflow TAT- Workflow is getting aborted when workflow approver is assigned to the user list
Workflow TAT- Showing error when the user is not present and TAT is over
Workflow TAT- Showing unauthorized error when TAT is over and operation is getting aborted
Recon pull- with both existing links, audit detail not showing
Workflow rule configuration-on edit workflow, previously selected role getting save
AD new bundle- Managed View- View should be proper while separating multiple OU in proxy addresses
AD new bundle- Manager and account expiry is not visible in the Managed view
AD new bundle- managed view- Value is not displayed in a proper format in Name in managed view
AD new bundle- Managed View- Showing different Start time/created time
In the User creation workflow, L1 - User List approved, L2 - reporting manager after TAT is expired, the request is not getting auto reject.
Pending Workflow List - If the approver is User list and Grade then it should display in Current Assign in the pending list
User Workflow - If the reporting manager is set as 2 level approver, the reporting manager is showing as Unknown
Policy Map- When the attribute is searched via the search button and that attribute is deleted then other attributes are not loaded
Profile Picture- After clicking once on the upload button, that button should be disabled
PAM-Server access not getting terminated even after time ends (Related to HA environment only)
User - Assign Application - Workflow initiated - Workflow Approvals page displays User list in Grade type
Pending Workflow -If the L1 approver is User List, then while clicking on the info icon, the popup does not show the user list. Also, it is " Grade List Details"
PAM-Server access not getting terminated even after time ends (Related to HA environment only)
Workflow Rule - Workflow is initiated when the group is set as an approver, the group is not visible on the popup screen
AD new bundle>Group- When the "Sam account name" update checkbox is unchecked and the user attempts to update the description, the description does not get updated in the AD
deployment_analytics_1 Service CPU utilization is 100%
Import/ Export- When a file is exported from a different env (Dev) and imported to QA env, then credentials are also imported along
Security Bug Fixes:- E2E request/response payload encryption for all APIs of authservice (as of now, planning to rollout for all the services in the next phase)
Manager notification: receiving user name required manager name
Unable to identify application properties data type where value is empty
Amaya || Create user operation fails due to an invalid password
In forgot password/password breach condition-asking disabled MFA factor also
Amaya-Autofill policy map, When the value is not present to the user at the time of application then Amaya passes "$." to the target
Campaign - Reviewer can approve self review request
After the campaign workflow was triggered on revoked, even though the campaign had ended and the workflow was approved, applications were still getting unassigned.
Remote Group- AD Application- When users are removed from a remote group in Cymmetri, those members should also be removed from the group in the Active Directory
Amaya- Client ID should be visible in encrypted form
Provision Rule - While creating and configuring the custom attribute as "New ", the system is not initiating the rule.
AD new bundle- When an AD application is assigned to a remote group, the application is highlighted in the background while assigning but disappears as soon as the application popup box is closed
Reports- When the report is scheduled, Scheduler history shows content not found and the execution status is aborted.
AD Application- When the Ad test provision fails, and the user tries to delete the application from a user account, then the application should gointon a fail deletion state
Audit- Taking time to load audit logs
AD Application- Showing error when inserting start date in AD
In the application setting to user flags off then the also application shows in the recent application.
User lock- When a user account is active, and the same account is logged in through another browser, and by any means, the account gets locked, the first session should get terminated.
Branding- When show Unlock link from branding is kept as No, and the admin user account gets locked, then the user is not able to unlock the account from the login page
Application- When a user is adding /removing a role then it is not getting reflected without refreshing
group push-not taking user in AD at the time of update
Passwordless- WebAuthn; Showing not allowed error
Delegation-On behalf: when login by the delegate and the on-behalf condition is not satisfied still shows the on-behalf toggle button and gets removed when refreshed
AD Application- Group name should not accept space while creating or updating group name
Audit- Audi log should show log when the user is not getting any records in Recon history but showing task executed
Version: cloud_3.0.1-beta product release
Date: 03 November 2023
Provide show to user flag support in Application Setting .
Application Setting
show to user
If flag is off,then hide application from my access ➝ assigned application.
Delegation : If flag is off,then hide application from Delegation ➝ my access ➝ assigned application.
user can request
If flag is off,then hide application from my access ➝ request for assign application.
If flag is off, then hide application from On-behalf ➝ users ➝ request for assign application.
Delegation : If flag is off, then hide application from Delegation ➝ On-behalf ➝ users ➝ request for assign application.
Framework Upgrade: Java based services are updated for spring framework, spring boot, also updated utility libraries. Please note it may have impact on several functionalities.
MFA attempt Admin User lock
MFA attempt config added in global auth policy
Self unlock flag to unlock the user during admin lock the user
Token Rolling period : Token start period should start before current server time.
Passwordless reset password : When password is required to be changed then user is forced to change password during login using passwordless.
Bearer Token subject is encrypted now in header.
cookies samesite attribute is being set to strict to all the cookies.
Active Directory new bundle (Using unboundid.ldap.sdk library) - Phase 1
Server Connector bundle name: simpleADServer Connector bundle version: 1.0Server Connector name: com.cymmetri.connector.simple.ad.SimpleADConnector
Added one field inside user configuration of active directory "Disable User With Date Time".
Policy Attribute- Add pagination
Teams Configuration- Showing route issue when saving new teams configuration
Passwordless- Passwordless page is showing blank when clicked on clicked on Passwordless button on Login page
Notification template- Increase spacing between Kathreftis Team and Disclaimer and remove space above
Login failed> User locked Template- Change notification template
My access> Applications- If an application is already present in a certain tag, when attempting to move it to another tag within the "All Applications" section, it should not be visible in the tag it is already associated with.
Login-Tab button should be applicable for enter password field when passwordless in enabled
AD Application- When assigning remote group to AD user, showing error
Passwordless- Passwordless page is showing blank when clicked on clicked on Passwordless button on Login page
Self-service app: On-behalf tab is loading late
Master> Zone- When editing zone then status is always changing to inactive
Authentication Rule- When user is trying to reset password having LDAP authentication active, then password is changing into target system first and reflecting older password in target system
PAM- Dormancy disabled config- By default config should be disabled
Audit-"action":"DORMANCY_DISABLE_COMPLETED" ,Data showing null,need to show data
PAM dormancy disabled showing failed
Deprovision- All three fields should be in one line
Policy Attribute- Add search filter in policy attribute
Delegation- Add cancel button after editing consent
My Access> Applications- When moving application from one tag to another, then validation message should be proper for end user to understand
Campaigns> Access Review > Campaign Manager- Sorting is not working
My Workspace> Inbox- Need to refresh page every time to see changes in started request
Global Auth Policy- Update message to "Auto Unlock MFA period should be less than Account Auto Unlock period."
Insights> Reports -Showing error message when disabling scheduler toggle
Application MFA update -on click Next button -getting in loop
PAM vault user-Confirm button should not be enable till any value entered
Validation message change-Change 1 days to 1 Day
Teams Config- Configuration should not be saved without adding condition
Teams - User is not able to lock/unlock account even after configuration in teams is enabled
Need to show proper error message when Maximum MFA attempts reached
Reset Password OTP -there is only OTP option is available then also showing error message for question
MFA- User not able to login via Consent based MFA showing error
Login- Showing error when trying to log in using secret question as MFA
Teams Configuration- Showing route issue when saving new teams configuration
MFA count gets reset, when admin mark lock to unlock
MFA- User is able to unlock account event after unlock user account time is not completed
Login with password less-password expiry should be consider and need to follow steps to reset
When admin lock user the take conformation, unlock yourself or lock lifetime
End date over user login-on forgot password this user should be validated and restrict,currently redirecting on MFA
Inactive user login-on forgot password this user should be validated and restrict,currently redirecting on MFA
Need to update audit when user attempt max MFA
MFA- User not able to login when user is trying to login using normal password flow
My workspace> Active Campaign- Latest selection should remain as it is.
Pagination persistence for users (when a user clicks on lets say 3rd page and go into the user details and when come back the pagination gets reset )
Application provisioning workflow- Assign application to user and then cancel it, still showing user assigned
My Access>Application> Tag- Search filter should be applied for tag applications as well
Add New Application Search , when no data is there the UI breaks and a No Data Found card should also be shown on screen
Login Page- User is not redirecting to mentioned login help page( Mentioned in Branding)
Cymmetri Mobile App- Changes required in secret question layout on login page
User Creation Workflow- When clicked on the cancel button on the workflow preference popup box, it should remain on the user creation page. For now it is cancelling the whole process
Branding- Show validation message if user miss to fill any fields and clicked on save button
Lifecycle mgmt>Workflow Configuration- Save button should be enabled when removing approver.
Suspend user-For device deleted message should be shown as Device Deleted
User Onboarding- When provision rule is trigged while onboarding user and any application is assigned to user then assigned tag should be shown in that application as showing in Groups
Configuration> Master- Accepting emoji values in Global Master
MFA- Secret question- Answer field should get blank after question is selected.
Delegation- After delegation time is completed, delegation configuration should be updated
Authentication Rule- When user is trying to reset password having LDAP authentication active, then password is changing into target system first and reflecting older password in target system
Global Auth- User should be able to set Account unlock and MFA unlock to minimum 1min
User-Account lock-Account is self lock then also on UI showing message user cannot unlock
User Setting- Showing user not found error message
Lifecycle Management || Applications redirects user to Identity Hub
Campaign- UI of Calendar field is not proper
Policy attribute- When removing policy attribute, that field is not getting removed also it is visible in policy map application field dropdown
Audit Log- When duplicating a tab and subsequently refreshing it, then audit log is displaying a random requestor ID
Global Auth Policy- "Allow Users to have" is displayed twice
Manager notification: receiving user name required manager name
AD Group pull || Only under 1000 member getting pulled (Connector Server Restriction)
Workflow initiated for form but form is getting updated without workflow approval.
In application setting if show to user flag off then also application show in recent application.
Version: cloud_3.0.10-beta product release
Date: 21 March 2024
Addition of Grade as an attribute for users
Workflows updated to support grade based approvers
Added grade to Pending Workflow Page
Added grade to Workflow List Page
Added grade for User profile
Added grade in create user, update user and user info page
Added grade in user info page for Suspended Users and Archived Users
Displaying grade in User Details [Assignee Details]
Added grade in Attribute Setting
Added grade for the policy map [cymmetri policy mapping drop down]
Added grade for the bulk import
Added grade in Teams Config Page
Added grade in create user, update user and user info page
Added grade in user info page for Suspended Users and Archived Users
Added grade in OnBehalf config for self user
Displaying the grade for self user profile
Added the grade for the pull/push reconciliation process
Added the grade to get the value of the middle name in a user profile
Added grade to create the user through apiext
Added grade in JIT to create the user -Not working
Added grade value on the page that displays the delegatee
Analytics Metabase in the report
Configuration of Metabase
Metabase Report
__MANAGER__ support in policy map for manager assignment in Active Directory (Target application)
Addition of Middle Name as an attribute for users
Added middle name in create user, update user and user info page
Added middle name in user info page for Suspended Users and Archived Users
Added middle name for User Profile
Added middle name to Pending Workflow Page
Added middle name to Workflow List Page
Displaying middle name in User Details [Assignee Details]
Added middle name in Attribute Setting
Added middle name for the policy map [cymmetri policy mapping drop down]
Added middle name for the bulk import
Added middle name in create user, update user and user info page
Added middle name in user info page for Suspended Users and Archived Users
Added middle name in OnBehalf config for self user
Displaying the middle name for self user profile
Added the middle name for the pull/push reconciliation process
Added the middle name to get the value of the middle name in a user profile
Added middle name to create the user through apiext
Added middle name in JIT to create the user -Not working
Added middle name value on the page that displays the delegatee
Role Required in Application Assigment
In application setting, Role Required flag added.
Application Assignment flag is enabled in the below mentioned pages:
Application assignment page
User page, in application assignment
Self-Service
When user request for application
Teams page, in application assignment
Onbehalf page, in application assignment
Application Update Workflow- In inbox user name and Login Id fields are showing empty
Rename application name as shown below should be Google Workspace and not Google Workplace.
Fix typo in application provisioning labels
Preference Workflow config popup box - Add Auto option in dropdown list when workflow approver is set to user list
My access application- Calendar UI is not proper for 90% resolution
Password policy-Show last sync time if already sync
MFA attempt configuration-take confirmation on save
JIT-Detail showing route error
JIT-Custom field-Only type=USER should be present in dropdown, currently showing group also
correct notification template-login failed
Unlock User- API is getting called twice and login should be shown in encrypted form
Manager notification: receiving user name required manager name
AD Group pull || Only under 1000 member getting pulled (Connector Server Restriction)
Workflow initiated for form but form is getting updated without workflow approval.
In application setting if show to user flag off then also application show in recent application.
Creating the user through the JIT: Message was rejected due to issue instant expiration
Logic - The FormLogic functionality, enables you to store custom data using flexible, administrator-defined forms. It empowers you to create forms tailored to your specific data collection requirements, providing a versatile solution for various data management needs.
360 Degree Reconciliation - Compare tab added to the current feature, where the user can compare with the source application and target application and further generate reports and download CSV.
SkipPasswordExpiry - We are enhancing our Password Policy by introducing a new field, SkipPasswordExpiry, within the PasswordChangeRule. This enhancement allows users to opt out of the password expiry process entirely. When the SkipPasswordExpiry field is enabled, users will not receive warnings or notifications about password expiry, nor will they be prompted to change their password due to its expiration.
Connector a. SimpleLDAP application
ICICI Client - Role-Based form delivery in IGA.
SDK-based integration to send mobile push notifications to mitigate legacy API issues: a. Fido Based Notifications b. Normal Push Based Notifications
The LDAP adapter has been updated with a new feature that eliminates the need to enter a username and password for each execution.
Fixes
Time-based Application: Timebased application assignment message spelling incorrect
Deprovision- When applications are assigned via group and deprovision is executed all the applications should get deleted.
Teams - Suspended Users - List View - Edit - It is redirecting to Users but showing blank screen
Application Search: When clicking on "View More Applications" and searching for an application, the application is not being found.
Pending Staging- When no records are present on the page, the "Select All" button should be disabled like the other buttons.
User Onboarding - Dropdowns are not loading when creating a user after adding an Admin during the registration process.
Global search - Pending action is not coming in global search
Form logic-Configured Forms -On click setting icon screen getting flicker
Selfservice Submit form-Update error message and backend error code if pre and post hook script having error.
Form logic-on form submit close form
Form logic-Selfservice-My Form Submissions pagination, page getting blank
Archived Forms detail-Revision data showing wrong, showing non existing list
Form logic-After changing form schema, form detail showing blank
Form logic-User submissions-Provide search by taskeid,username,loginid
Form logic-on all screen search only working for the exact case, expeted should be work for matching cases
Form logic-Form table-sorting not working
Form logic-Pre and post hook should be non mandatory
Form map with rule-if form map more than defined limit then error message showing only one time
Staging users details - Version history log user details not loading
Form logic-Configured form and archive form detail, back button behaviour is not as ex[ected, need to click multiple time.
Form logic-Form Access Rules-Link form, save button should be disabled till form selection
form logic- if request is timeout or fail then feature showing diabled
Form logic-User submissions-Provide date filter
Workflow || Additional Form Info || Readonly text-based form submissions
Due to the limited resources in QA env and to ensure effective utilization, we are not currently proceeding with the new development to the recommendation service from both the backend and UI at this time. Hence, we kindly request you to exclude the recommendationsrvc service from the QA environment during deployment until further notice.
CISO Dashboard service deployment remains the same as the last release since the sprint release for the same is mid-next week. (EoM - September 2024)
Reconciliation Enhancement a. Reconciliation Job Notifications b. Reconciliation Job Dashboard c. Handling of Partial Job Failures d. Reconciliation Filters
Email Configuration Update a) Mail Username and Password fields no longer require validation, allowing them to be empty. This is because some email servers do not require authentication. b) Other fields, such as Mail Port, Mail Host, and Mail Sender, still require validation to ensure proper email functionality
Form logic-When TAT is executed then in the detail show the message "Form Logic Workflow Rejected by system"
Assign Application- The application page not getting refreshed automatically after deleting/assigning applications.
Amaya Policy Mapping- The search button should be present.
Amaya || Validation prevents the usage of variables in the URL
FormLogic || Step 2 of form || Form config JSON should be mandatory
Amaya- The present header key disappeared when saving the value
Quick setup policy mapping- When any fields are not filled and an error is shown, the user should be taken to the error field
Amaya>Policy Mapping- Showing repeated validation message on UI when clicking on the reset button
Amaya- When the JSON body type is changed from raw to any other format, the previous type is cleared, but the response is not being updated accordingly
Amaya- After 3-4 attempts of clicking the validate/save button, the validation message is no longer being displayed.
Form logic-form detail-Need to provide rule link.
Staging Users - Version History - Change the text "Update Version" to "Updated Version"
Form logic-When TAT is executed then in the detail show the message "Form Logic Workflow Rejected by system"
Onboarding- The page is being skipped when the "Create User" popup box is clicked outside of it.
Audit log- UI layout is getting distorted for long role name
Application role- The Role page layout is getting distorted when a role with a long name is created
Application Role- When a role with a long name, including spaces, is created, the UI (specifically the Cancel and Save buttons) is affected while unassigning the role from a user account.
Application Role- UI is getting impacted.
Selfservice mobile app-inbox-User detail not showing.
CSV Bulk Import- When a bulk file is imported via CSV, attribute fields take time to load
Amaya Policy Mapping- The search button should be present.
Workflow || Additional Form Info || Readonly text-based form submissions
Policy map- Empty values are getting saved in the policy mapping
Amaya- When the JSON body type is changed from raw to any other format, the previous type is cleared, but the response is not being updated accordingly
UI new user walkthrough- Sentence correction needed
UI new user walkthrough- Description should be changed
Quick setup policy mapping- When any fields are not filled and an error is shown, the user should be taken to the error field
Amaya- After 3-4 attempts of clicking the validate/save button, the validation message is no longer being displayed.
Form logic-Form table-sorting not working
Form logic-Pre and post hook should be nonmandatory
Form logic-User submissions-Provide date filter
Form logic-on all screen search only works for the exact case, expected should work for matching cases.
Partner portal-add user-country list not loading.
CSV Bulk Import- When a bulk file is imported via CSV, attribute fields are taking time to load.
Form details UI is different in Pending and Completed Workflow than showing in the selfservice inbox section.
Form logic-Selfservice app-My Requests-form detail not showing
Skip Password Expiry- Session expires when the refresh button is clicked having skip password expiry enabled
FormLogic || Unable to save rule after changing condition
Manager notification: receiving user name required manager name
In the application setting if to user flag is off then the also application shows in the recent application.
Unable to identify application properties data type where value is empty
Amaya || Create user operation fails due to an invalid password
Reports- Records are displayed after 11min approximately
Deprovision Rule executed via Scheduler - Workflow is not getting initiated for the set of users based on status/end date
Workflow List - Getting error " Contact system administrator" on technova tenant
FormLogic || Step 2 of form || Form config JSON should be mandatory
Recon - Abort sync state - System is getting auto abort and failure log showing nothing and
Recon Dashboard History> Search field- A Placeholder should be added specifying search is applicable for only the application name, also No data found should be shown and pagination should get clear when the page is empty
Recon Failure sync status - Showing "Reconciliation In Progress" in fail status
Application Recon History- Slider should be added at the bottom
Recon Dashboard history- Users/groups are getting created in Cymmetri even when the process is aborted from the dashboard
UI/UX || Warning added || Application Config Import Modal || Auto 'Create Only' for User Principal policy mappings
A new feature has been developed for the "Recommendation Engine", enabling seamless integration and management of application and role recommendations. The recommendation engine supports the generation of personalized applications and role suggestions for each user. The system supports the automatic synchronization of data from various sources, ensuring that recommendations are always based on user behavior. All recommendation engine configurations and data synchronization are stored and can be easily retrieved and updated as needed.
UI/UX || Amaya || Add support for JSON body validation through validate button
Audit log comparison for oldObject and newObject when they are in detailed format
UI/UX Inconsistent button placement in some modules fixed to a default below position
UI/UX Onboarding walkthrough of New users
ICICI: a. The inbox title in the workflow setup event has been updated to display the workflow name. b. Workflow (Pending workflow list) requester and requestedFor column added for display
Identity Analytics (Reporting Engine)
End-to-end Request/Response Payload Encryption for all authservice's API. (/authsrvc/*)
User Threshold (Phase 2): i. Update Email Title and Template ii. Create a new 'Move to Archive' button to manually archive a user. iii. Make the notifications field mandatory in the User Threshold Configuration. iv. Added the Org Admin as the default notifier in the user threshold configuration. (Not supported for old tenant). v. Update UI Error Message Format vi. The User Threshold staging mode name has been changed. vii. Failure to Move Staging User to Archive Manually and Audit Log Display for fail. viii. The changes made to the staging dashboard view. Include a comparison between the previous and updated versions of the UI. ix. Show the display name in the Threshold Delete operation on the Staging Dashboard. x. Notification Field in User Threshold Config for deleting users.
Amaya- When server connector timeout is changed and test configuration is clicked, it shows a "connector not found in cloud" error in the Audit log
Import User - If loginid already exists, then the remark shows "Usrsrvc.existing Login". Change this text to "Existing Login ID"
Import/Export- Showing host server details when the file is imported for script connector
My Access - Tags - Roles is not getting displayed in the Application
Application - Clicking on the role tile, SSO is happening and also while clicking on close icon, SSO is happening
Applications- When any attribute is updated (made empty in the target application) and recon for both exist operation is executed, the corresponding attribute in Cymmetri should also be cleared
Reports- SSO based application- Reports are blank/ not showing data when SSO based application are accessed (To correct the data need to perform data-logger sync for respective tenant. Refer configuration steps here)
Deprovision- User is getting deprovisioned even after user status is changed to Active from Inactive
User threshold mail notification- Title changes required
Audit log-Recon - When recon is executed with status as Inactive, audit log is showing "Recon initiated successfully" but not any log for execution failed/aborted
Audit Filter- Add cross button in Target Type and Action field.
Threshold Config- Validation message for all three operations should be similar
Threshold Create/Update- Spelling for exceeded is not correct
Notification Template - Toggle and status should display in status column as per other modules.
Create User- While creating user on newly created tenant, assign group page showing text "No group assigned , assign group"
User setting- External idp rule is active-An admin user should not be able to reset user password when the external IDP rule matches the user condition
Create user - While creating user on newly created tenant, assign application page showing text "No data found, add application"
Audit Filter- Add cross button in Target Type and Action field.
Portal-For module update showing error, already exist
My Access - Tags - Roles is not getting displayed in Application
Threshold Config- Validation message for all three operations should be similar
Threshold Create/Update- Spelling for exceeded is not correct
Notification Template - Toggle and status should display in status column as per other modules.
Create User- While creating user on newly created tenant, assign group page showing text "No group assigned , assign group"
Create user - While creating user on newly created tenant, assign application page showing text "No data found, add application"
Group Unassignment: The message appearing on group unassignment is incorrect
Push and FIDO scan zoom functionality not available at the time of Device MFA
Push and FIDO scan zoom functionality not available at the time of application MFA
Campaign Reassign -inactive users are also listed for reassignment on click
Login page- AD auth- Provide proper UI message when AD adapter details are incorrect
Amaya- When server connector timeout is changed and test configuration is clicked, it is showing "connector not found in cloud" error in Audit log
Import User - If loginid already exist , then remark shows "Usrsrvc.existing Login" . Change this text to "Existing Login Id"
User threshold- Pending Staging- When changing page select all box should be unchecked.
Threshold Pending staging- Whenever the page changes or the number of records per page is modified, the selection should be reset
Import/Export- Showing host server details when file is imported for script connector
Threshold pending staging- When the retry button is clicked multiple times, the validation message does not appear after the third click on UI
Application assignment- Change user search suggestion watermark
Onboarding registration- When resolution is at 80%, PAM report admin option is not visible in dropdown
Reports- SSO based application- Reports are blank/ not showing data when SSO based application are accessed
After release v 3.1.2, for old updated tenant campaign module is disabled
Onboarding registration- When an application is selected and then reverted to the previous page, selecting the application again causes the application count to double
External JIT- JIT configuration should be disabled until new external idp configuration details are filled
External IDP- JIT- API is showing "undefined" error on clicking JIT button and on enabling JIT configuration
External IDP- JIT- Reverse the title, it is confusing for user
MFA - Secret Question - Question selection is getting non-selectable after entering incorrect answers and then retrying for correct answer
My workspace>Inbox- Count is not showing when records are in claim
Reports( Employee's with upcoming contract end date) - By default date filter should be applied of 30 days
Provision Rule - Cursor of the condition is getting overlapped with footer of the page.
Onboarding - Login credentials timeout error
My Access - Superset Application logo and label should be changed
Applications- When any attribute is updated (made empty in the target application) and recon for both exist operation is executed, the corresponding attribute in Cymmetri should also be cleared
Deprovision- User is getting deprovisioned even after user status is changed to Active from Inactive
Audit log-Recon - When recon is executed with status as Inactive, audit log is showing "Recon initiated successfully" but not any log for execution failed/aborted
User threshold mail notification- Title changes required
Application- Managed view- When manager is removed from Cymmetri, user is still getting displayed in managed view
Create Threshold Config> Csv import- Showing empty records in pending staging list when threshold limit is exceed and user are imported via csv file
Reports- SSO based application- Reports are blank/ not showing data when SSO based application are accessed
My workspace>Inbox- Count is not showing when records are in claim
login with admin-Campaign detail show role also, currently role showing only for campaign manager
Cymmetri Selfservice App - Once we click on the web link from scanner , it should show confirmation popup on screen (Suggestion)
Selfservice Mobile App - When app is in Quit state and open the app via scanner(camera), it is not redirecting to login page of the website
Push Authenticator - Need to change the error message
User creation- While creating new users then going to next level that is on groups page and then on application page ,then user should be redirected back to the group's page when back button is clicked instead of existing user creation page
Showing error when saving workflow with name( User creation, Application provisioning, Application deprovisioning)
deployment_analytics_1 Service CPU utilisation is 100%
Campaign-email report showing error
Some time tenant registration not working,showing WriteConflict error in the service
Application provisioning and deprovisioning workflow initiated request is not getting displayed in activity logs.
Workflow Rules - Application Deprovisioning event - If condition is set as RegEx for custom attribute is not working
User update-Showing audit failed-Write conflict
Report - Updated record should display on top.
Auth rule showing unknown error
Workflow List - View any workflow detail - While clicking on info icon it is showing Grade List Detail
AD-Recon-If Policy attribute marked inactive then also it is getting pull from AD.
Login via Application admin- When click on application showing processing please wait error message.
Applications- Application are not getting assigned to user and also audit log is not visible for the same
PAM write admin not able to assign users,user list not populating
Manager notification: receiving user name required manager name
In the application setting if to user flags off then the also application shows in the recent application.
Unable to identify application properties data type where value is empty
Amaya || Create user operation fails due to an invalid password
Reports- Records are displayed after 11min approximately
UI/UX - Workflow Inbox User detail will now have applications detail as well assigned to the user.
UI/UX - Workflow Inbox will have a start date and end date filter
User delete workflow support a. Workflow configuration support b. Rule configuration support
CISO Dashboard - REVERTED
Amaya || General Config-based role data type
PAM write admin not able to assign users, user list not populating
Policy map- Empty value are getting saved in policy mapping
Workflow Rule update - View - Created by and updated by fields are empty
Superset - OpenId issue - While doing sso for superset application, it should is getting redirect superset url with error "The request to sign in was denied"
Threshold configuration- Replace could be to can be
Policy Map- When searching in the search box by any attribute, the search should get reset after changing tabs
Onboarding - Login credentials timeout error
Application- When searching user in application, user can be searched by first name, last name, login id but not by First name+lastname
PAM write admin not able to assign users,user list not populating
TOTP-Lookahead window change , on click save button show warning message,
User delete Workflow - Pending Workflow - Application details tab is not present
Manager notification: receiving user name required manager name
In the application setting if show to user flag off then also application show in recent application.
Unable to identify application properties data type where value is empty
Amaya || Create user operation fails due to invalid password
Reports- Records are getting displayed after 11min approximately
Deprovision Rule executed via Scheduler - Workflow is not getting initiated for the set of users on the basis of status/end date
Workflow List - Getting error " Contact system administrator" on technova tenant
(3.1.0 - 3.1.6)
VERSION | New Features | Fixes | Known Bug |
---|---|---|---|
VERSION | New Features | Fixes | Known Bugs |
---|---|---|---|
VERSION | New Feature | Fixes | Known Bugs |
---|---|---|---|
VERSION | New Feature | Fixes | Known Bugs |
---|---|---|---|
VERSION | New Feature | Fixes | Known Bugs |
---|---|---|---|
Version | New Features | Fixes | Known Bugs |
---|---|---|---|
(3.0.1 - 3.0.12)
Version | New Features | Fixes | Known Bug |
---|---|---|---|
Version | New Features | Fixes | Known Bug |
---|---|---|---|
Version | New Features | Fixes | Known Bug |
---|---|---|---|
Version | New Features | Fixes | Known Bug |
---|---|---|---|
Version | |
---|---|
Version | New Features | Fixes | Known Bug |
---|---|---|---|
Version | Fixes | Known Bug | |
---|---|---|---|
Version | New Features | Fixes | Known Bug |
---|---|---|---|
Version | New Features | Fixes | Known Bug |
---|---|---|---|
Version | New Features | Fixes | Known Bug |
---|---|---|---|
Version | New Features | Fixes | Known Bug |
---|---|---|---|
Version | Fixes | Known Bug | |
---|---|---|---|
3.1.0 Beta (02 May 2024)
Add a Welcome Guide when no nodes are added
Amaya Operations cards messages updated
Tooltip DX enhancements
Add confirmation dialogue when the request method is missing
File Upload Validations based on filename length and file size: File validation applied on User Bulk Imports, Group Assignments, Application Assignments, Role Imports, and Upload metadata SSO. Branding Image upload applied image size validation and image name length validation. Validation is also applied on self-service User avatar upload and application icon upload.
Cymmetri Verify App issuer format is changed now so there wont be duplicate record creation from now onwards, earlier we did not take into account of the environment but now we are considering that as well
Deprovision Via scheduler when threshold value is set:- Past date user is also getting deprovisioned when rule is applied on status
Application-Role-One role mandatory, validation should be present at least one active
Node name without spaces overlap
Amaya- Not able to drag down node which is at the top most corner
Campaign - Campaign action reminder email time calculation wrong
Campaign- Campaign is getting aborted and summary is showing blank when campaign for local group is executed.
Custom attribute - When custom attribute filter is applied in users, showing no users found
Workflow- Preference config box is not visible while deprovisioning application
Self service app: While setting up secret question authentication in mobile app, user need to click twice on question field.
User activity Ascending Descending not working
Amaya Connector Recon- Showing duplicate role remarks, but in duplicate field showing 0 records
Identity Hub- Groups- After editing groups when on application / activity page user is redirected to users page by default
My workspace> Create new tags- showing older suggestion as soon as clicked on new tag field
AD Application - View attribute is empty
Tenant registration | Pressing tab key glitches UI
Missing error code mapping
Grade Workflow- When workflow preference config is set to visible, and workflow is applied for user creation, then popup box is showing user list but in pending showing unknown instead of user list
Amaya- When the back button is clicked, a save/discard popup box will appear. However, clicking anywhere on the page directly navigates the user away from the operation page.
Amaya - Save/Discard popup box should not be shown when user is trying to go back without saving any changes.
Mobile app- Secret question- Field is showing required even when data is present in field
Cymmetri Verify app- Password recovery should be provided for Exported TOTP user files in case user forgets the password
login via Authenticator-identity provider is inactive then also user able to login.
syslog-configuration- UDP test, for invalid IP also giving success. Unable to have TOTP account for same username on different environments .
Manager notification: receiving user name required manager name
Workflow initiated for form but form is getting updated without workflow approval.
In application setting if show to user flag off then also application show in recent application.
Unable to identify application properties data type where value is em
3.1.2 Beta (26 July 2024)
Workflow self-approval module updated to support custom attribute (type :user type and Converter Type: String ) as condition parameter.
Teams config module updated to support custom attribute (type :user type and Converter Type: String ) as condition parameter.
On behalf module updated to support custom attribute (type :user type and Converter Type: String ) as condition parameter.
Auth Rule module updated to support custom attribute (type :user type and Converter Type: String ) as condition parameter.
Quick Setup - Setup applications using pre-defined operations
Import-Export App Configuration - Transfer configurations of application smoothly between tenants, simplifying the setup for users by ensuring all configuration, including user configurations, server configurations, and policy maps, are accurately migrated.
Removal of Deprovision Rule Exclusion Applications Field: a) Manual Execute Deprovisioning b) Deprovisioning via Scheduler c) Update Threshold Delete Config d) Deprovision Rule Updation e) Backward Compatibility f) Suspend or Resume User g) Impact on UI
Access review reject process updated, on rejection workflow support added.
SAML Single Logout
New screen that will show loading on UI till tenant creation is completed once OTP is verified
Interchanged position of login id and email on add/edit user for better UX.
Add support for page number field for pagination in Amaya
360 Recon
Lotus Notes Connector
Application Policy Map (Active Directory) samAccountName is compulsary for Create only flag in User as well as Group (AD application new bundle - When SAMaccount name is set to false in Group policy map, members are not assigned in group when recon Pull is executed for both exist=Update).
Added Warning information and warning popups (Only UI changes no impact on backend functionality): a. Creation of user manually. b. Updation of user manually. c. Bulk upload csv (creation of user) d. Manager assignment e. Policy map creation and updation f. Reconciliation Pull operation g. Reconciliation push operation h. Selfservice ➝ Teams: i. Creation of user ii. Updation of user
Removal of Email validation from backend
User info page gets crashed while user edit fails
Import/Export of App Configuration
Amaya- Detailed description of failed/executed logs should be shown
AD application new bundle- Group link attribute in db is empty, users are not getting updated in group
AD policy map- Spaces should be trimmed automatically if included while creating a policy attribute
Tenant creation not working
New tenant Registration- Showing subscription end for tenant which is not even registered completely
Secret question configuration- Admin user should be able to delete secret question when not in use
Secret Question-When a question is already in use and user trying to delete question then it should not display successful delete message
Secret question- Displaying removal validation message when editing a question
User> Activity- Add cross (x) button to clear the selection
Onbehalf Config - If Description is kept blank , no error message is getting displayed on screen while saving.
Team Config - If Description is kept blank , no error message is getting displayed on screen while saving.
On Behalf config- When the view button is clicked, the user is still able to check or uncheck the boxes
Custom attribute- Even when a custom attribute is disabled from the configuration, it remains visible in the policy map selected dropdown menu
Users - View User- Custom attribute fields text UI is breaking
Custom Attribute- Require text change in success message to " Custom Attribute activated successfully"
Edit User - After deactivating the already assigned custom attribute, in edit user , system is showing info "xyz" attribute is inactive for active custom attribute also.
Identity Hub- When clicked on edit info from user menu action, user account edit page should get open instead of user display page
CTRL+K: When any feature/module is already opened and user press ctrl +k button from keyboard then search filter modal is getting opened at back
Delegation - Delegator and Delegatee consent should not get updated if user has already set some other consent
Users> Group- Rename the label from 'Delete' to 'Unassign'.
Audit- Logs for deprovisioned user is getting repeated.
Custom Field- Policy Map- Date is not showing in correct format
Mobile app- When clicked on user name for first time after killing app , keyboard is getting hidden
Custom Attribute-Provision- When a custom attribute with special characters is created and applied in a provision rule (for user creation), the provision rule fails to trigger after the user is created.
Global search (Ctrl+K) - even if characters are not matching still showing suggestions
User setting- Error message should be shown when any action is performed and when landing/refreshing setting page
Cymmetri Selfservice App - Need to change the message showing in popup screen while TOTP is getting authenticated.
Mozilla Browser specific- User getting stuck when password less Webauthn is On
Application - SSO - While clicking on Preview assertion , getting error "processing please wait"
Product menu getting hide on workflow page: a. Menu action- Displaying an error message when a user already has one role assigned and tries to assign a menu action.
User info page gets crashed while user edit fails
Import/Export- Showing error message when importing file into new tenant (AD specific)
Custom Attribute-Provision- When a custom attribute with special characters is created and applied in a provision rule (for user creation), the provision rule fails to trigger after the user is created.
Quick setup- Data is not getting reset after closing policy mapping popup box, but getting reset when clicked on "I ll do later button"
Add Page Number support for Amaya
Application - SSO While saving the same config in two applications, while clicking on Edit SP config , popup showing do you want to continue editing the SP configuration? but only continue button is given
Application - SSO - While saving the configuration in new application, save button loader is loading continuously
360 recon-Hide runnow button from detail view
360 recon dashboard filter-add dropdown for break type
360 recon dashboard-label change account overdue to account overdue in the target (also add some info on i icon what is this)
360 recon-Already running recon need to handle,disable play button or show message
360 dashboard-make label consistent
360 recon dashboard-action details showing blank
360 Degree recon-For execution showing error
360 Degree Recon- History some time loading some time not
Recon 360 recon- Validation message for missing data is not required as it already shows no data found on page when recon is not executed at all
360 recon dashboard-action details showing blank
360 dashboard-Search not working on break type
360dashboard-loginid filter not working
360 recon detail data showing mismatch
360 recon execute audit log not present
360 recon dashboard-on 2nd run details getting repeated
Amaya Azure- Showing route issue error message
Import Application- UI for name is not proper
Import/Export- Recon is not working for AD new application bundle
Teams config - while removing the condition in Group condition, showing error " Please try again"
On Behalf config - while removing the condition in Group condition, showing error " Please try again"
Teams Config - If condition is kept blank and save is clicked , getting error " Please try again"
On behalf config- If condition is kept blank and save is clicked , getting error " Please try again"
Import/Export Application- Convertor field types in policy map is not getting imported
Import/Export - When any application configuration is imported into a new tenant, the user should be redirected to the application provisioning page after the upload
Import application- Showing an error message when importing an Amaya-based application if the exported application was without the policy map checked
Amaya- Policy Map Password attribute datatype identified as password instead of string
Amaya- Rename all operations(Test, Search, Sync, etc....) in sentence case
Workflow- Even after updating Grade as the 2nd level approver in the workflow, the 1st level approver is still being set at level 2
Workflow- After updating the user list as the 2nd level approver in the workflow, the 1st level approver is still being set at level 2
Workflow- When the level 3 approver is updated in the workflow, a 'Workflow Not in Range' error message is displayed.
Workflow- Even after updating the reporting manager as the 2nd level approver in the workflow, the 1st level approver is still being set at level 2
Workflow- When workflow over workflow is applied 2nd level approver is not getting updated
360 recon should consider full sync
360 recon fails then that 360 recon should be abort
Amaya Felicity Role assignment- Taking time to provide error message
Deprovision- Exclusion Application- Application going in pending deletion state when that particular application is added in exclusion application while manually deleting user from Identity hub
360 Recon sync with bulk data showing heap size issue
AD new application- User list is not getting displayed showing urersrvc unknown error.
My workspace> Inbox- When workflow assignment is reassigned by admin, then previous approver should not be able to accept or reject request if page is already open in previous approver account.
Inbox - Workflow Request for setup for application - Need to enhance the details as per user interface.
Error in the server log-authsrvc ,No impact on functional flow
After the campaign workflow triggered on revoked, even though the campaign had ended and the workflow was approved, applications were still getting unassigned.
Campaign - Reviewer can approve self review request
Campaign not getting end, for tenant 2711
Workflow TAT- Workflow is getting aborted when grade is set at second level approver and set TAT time is over
Workflow TAT- Workflow is getting aborted when 2 level approver is set and set TAT time is over
Workflow TAT- Workflow is getting aborted when workflow approver is assigned to user list
Workflow TAT- Showing error when user is not present and TAT is over
Workflow TAT- Showing unauthorized error when TAT is over and operation is getting aborted
Recon pull- with both exist link, audit detail not showing
Workflow rule configuration-on edit workflow ,previously selected role getting save
AD new bundle- Managed View- View should be proper while separating multiple OU in proxy addresses
AD new bundle- Manager and account expiry is not visible in Managed view
AD new bundle- managed view- Value is not displayed in proper format in Name in managed view
AD new bundle- Managed View- Showing different Start time/created time
In User creation workflow L1 - User List approved , L2 - reporting manager , after TAT is expired , request is not getting auto reject.
Pending Workflow List - If approver is User list and Grade then it should display in Current Assign in pending list
User Workflow - If reporting manager is set as 2 level approver , reporting manager is showing as Unknown
Policy Map- When attribute is searched via search button and that attribute is deleted then other attributes are not getting loaded
Profile Picture- After clicking once on the upload button, that button should be disabled
PAM-Server access not getting terminated even after time end (Related to HA environment only)
User - Assign Application - Workflow initiated - Workflow Approvals page displays User list in Grade type
Pending Workflow -If L1 approver is User List , then while clicking on the info icon, popup not showing user list .Also it is " Grade List Details"
PAM-Server access not getting terminated even after time end (Related to HA environment only)
Workflow Rule - Workflow is initiated when group is set as approver , group is not visible on popup screen
AD new bundle>Group- When the "Sam account name" update checkbox is unchecked and user attempt to update the description, the description does not get updated in AD
deployment_analytics_1 Service CPU utilisation is 100%
Import/ Export- When file is exported from different env (Dev) and imported to QA env, then credentials are also imported along
Security Bug Fixes :- E2E request/response payload encryption for all APIs of authservice
manager notification : receiving user name required manager name
Unable to identify application properties data type where value is empty
Amaya || Create user operation fails due to invalid password
In forgot password/password breach condition-asking disabled MFA factor also
Amaya-Autofill policy map, When value is not present to the user at the time of application then amaya passing "$." to the target
Campaign - Reviewer can approve self review request
After the campaign workflow triggered on revoked, even though the campaign had ended and the workflow was approved, applications were still getting unassigned.
Remote Group- AD Application- When users are removed from a remote group in Cymmetri, those members should also be removed from the group in Active Directory
Amaya- Client id should be visible in encrypted form
Provision Rule - While creating and configuring the custom attribute as "New ", system is not initiating the rule.
AD new bundle- When an AD application is assigned to a remote group, the application is highlighted in the background while assigning but disappears as soon as the application popup box is closed
Reports- When report is scheduled, Scheduler history is showing content not found and execution status is getting aborted
AD Application- When Ad test provision is failed, and user trying to delete application from user account, then application should go in fail deletion state
Audit- Taking time to load audit logs
AD Application- Showing error when inserting start date in AD
In application setting if show to user flag off then also application show in recent application.
User lock- When a user account is active, and the same account is logged in through another browser and by any means account gets locked, the first session should get terminated.
Branding- When show Unlock link from branding is kept as No, and admin user account gets locked, then user is not able to unlock account from login page
Application- When user is adding /removing role then it is not getting reflected without refreshing
group push-not taking user in AD at the time of update
Passwordless- WebAuthn; Showing not allowed error
Delegation-On behalf: when login by delegate and on-behalf condition is not satisfied still showing on-behalf toggle button and getting removed when refreshed
AD Application- Group name should not accept space while creating or updating group name
Audit- Audi log should show log when user is not getting any records in Recon history but showing task executed
3.1.3 Beta (26 July 2024)
User Threshold: a. A UI change has been made in the general configuration for the threshold. b. Creation of user c. Updation of user d. Deletion of user e. Staging for user threshold f. Retry staging user from staging dashboard. g. Archive for user threshold h. Notification for user threshold
User directory search API updated for quick search (keyword): a. Support dropped for: grade, userType, department, designation, custom-attributes b. Supported on: employeeId, email, mobile, firstName, lastName, middleName, displayName, login
Data logger service version info added.
Tenant registration database creation process optimisation.
Pending Workflow Inner page applied functionality to reassign user from inner page
Added QR code zoom feature on FIDO, TOTP and push Authenticator scanner.
VPT: Modify routes of api - /usersrvc/api/user/directory/list/{appId} remove user role form routes.
Custom Attribute support in following Workflow Rule Events a. User Creation b. Application Provisioning c. Application Deprovisioning d. Application Update
Added the following templates in Amaya Quick Setup: • Atlassian • Zoho CRM • Zoho Desk • Zoho Books • Zoho Expenses
Provided support for integer values for ROLE assignment through Amaya.
Tenant Registration Process Resumption: In the event that the tenant registration process is interrupted, it can be seamlessly resumed and completed using the existing account configuration. The registration process can be resumed from the following stages: a. Pending OTP Verification b. Incomplete Credential Setup
Active Directory || SimpleAD Connector upgrade: a. UserAccountControl attribute support added b. memberOf attribute support in manage system viewer c. ProxyAttribute attribute support added
External IDP SSO: a. added support to login into cymmetri as external identity provider as idp initiated sso.
SAML IDP SSO: a. added support to send idp initiated (cymmetri) sso response to cymmetri as service provider.
TOTP Config
Removal of Email validation from backend
DataLogger | Refer configuration steps here: a. data-logging framework optimisation. b. Full sync support, this step is optional step and required only if, • Tenant audit database is not present, or • Tenant audit database is corrupt so fresh setup is required.
Error in the server log-authsrvc ,No impact on functional flow
Team config - Create - Discard button issue - After clicking not able to add the details in condition section
Rule engine- Remove "above" word from note
login with admin-Campaign detail show role also, currently role showing only for campaign manager
Amaya API returning null if error instead of error and errorCode
Hide metabase analytics
Workflow rule configuration-on edit workflow ,previously selected role getting save
User - Assign Application - Workflow initiated - Workflow Approvals page displays User list in Grade type
Pending Workflow -If L1 approver is User List , then while clicking on the info icon, popup not showing user list .Also it is " Grade List Details"
Identity Hub- Pending initial login symbol is visible far away from user name
On behalf configuration - While disable and enabling the toggle,popup message shows "This change will take effect on user's next login" but it is getting reflecting on the fly.
On-behalf>Delegation- On behalf menu is not visible when logged in via Delegatee account
SSO- Group mapping- Save button should be enabled when mandatory fields are filled
Workflow- Even after updating the reporting manager as the 2nd level approver in the workflow, the 1st level approver is still being set at level 2
Global search (Ctrl+K) - even if characters are not matching still showing suggestions
Product menu getting hide on workflow page
LDAP connector-LDAP SSL should be save in Boolean in the DB
User setting- Error message should be shown when any action is performed and when landing/refreshing setting page
User setting- External idp rule is active-An admin user should not be able to lock a user when the external IDP rule matches the user condition
Schedule history-ad by default todays filter for from and to
Teams config- When the view button is clicked, the user is still able to check or uncheck the boxes
Menu action- Displaying an error message when a user already has one role assigned and tries to assign a menu action.
Custom Attribute-Provision- When a custom attribute with special characters is created and applied in a provision rule (for user creation), the provision rule fails to trigger after the user is created.
Lifecycle Management - All menus - Discard button is not working as expected.
Application - SSO While saving the same config in two applications, while clicking on Edit SP config , popup showing do you want to continue editing the SP configuration? but only continue button is given
Application - SSO - While saving the configuration in new application, save button loader is loading continuously
Amaya- Rename all operations(Test, Search, Sync, etc....) in sentence case
Group Policy map- For group custom attribute Cymmetri field type should be automatically selected as working in users custom field
Teams config - while removing the condition in Group condition, showing error " Please try again"
On Behalf config - while removing the condition in Group condition, showing error " Please try again"
Teams Config - If condition is kept blank and save is clicked , getting error " Please try again"
On behalf config- If condition is kept blank and save is clicked , getting error " Please try again"
Import/Export- Showing error message when importing file into new tenant (AD specific)
Import application-show error message user or groupwise
Import application- Showing an error message when importing an Amaya-based application if the exported application was without the policy map checked
Import/Export - When any application configuration is imported into a new tenant, the user should be redirected to the application provisioning page after the upload
Amaya Azure- Showing route issue error message
Import/Export Application- Convertor field types in policy map is not getting imported
Import/Export- Recon is not working for AD new application bundle
Workflow- When workflow over workflow is applied 2nd level approver is not getting updated
Workflow- Even after updating Grade as the 2nd level approver in the workflow, the 1st level approver is still being set at level 2
Workflow- After updating the user list as the 2nd level approver in the workflow, the 1st level approver is still being set at level 2
Workflow- When the level 3 approver is updated in the workflow, a 'Workflow Not in Range' error message is displayed.
Workflow TAT- Workflow is getting aborted when workflow approver is assigned to user list
Team config - Create - Discard button issue - After clicking not able to add the details in condition section
Import/Export- By default, the time in the application name should be removed when exported
Rule engine- Remove "above" word from note
login with admin-Campaign detail show role also, currently role showing only for campaign manager
Hide metabase analytics
Error in the server log-authsrvc ,No impact on functional flow
AD new application- User list is not getting displayed showing urersrvc unknown error.
Campaign not getting end, for tenant 2711
Workflow rule configuration-on edit workflow ,previously selected role getting save
AD application new bundle - When SAMaccount name is set to false in Group policy map, members are not assigned in group when recon Pull is executed for both exist=Update
My workspace> Inbox- When workflow assignment is reassigned by admin, then previous approver should not be able to accept or reject request if page is already open in previous approver account.
After the campaign workflow triggered on revoked, even though the campaign had ended and the workflow was approved, applications were still getting unassigned.
Workflow TAT- Workflow is getting aborted when grade is set at second level approver and set TAT time is over
Workflow TAT- Workflow is getting aborted when 2 level approver is set and set TAT time is over
Workflow TAT- Showing error when user is not present and TAT is over
Workflow TAT- Showing unauthorized error when TAT is over and operation is getting aborted
User - Assign Application - Workflow initiated - Workflow Approvals page displays User list in Grade type
Reports- SSO based application- Reports are blank/ not showing data when SSO based application are accessed
Pending Workflow -If L1 approver is User List , then while clicking on the info icon, popup not showing user list .Also it is " Grade List Details"
AD new bundle>Group- When the "Sam account name" update checkbox is unchecked and user attempt to update the description, the description does not get updated in AD
Import/ Export- When file is exported from different env (Dev) and imported to QA env, then credentials are also imported along
Identity Hub- Pending initial login symbol is visible far away from user name
On behalf configuration - While disable and enabling the toggle,popup message shows "This change will take effect on user's next login" but it is getting reflecting on the fly.
In User creation workflow L1 - User List approved , L2 - reporting manager , after TAT is expired , request is not getting auto reject.
On-behalf>Delegation- On behalf menu is not visible when logged in via Delegatee account
Import Manager-Manager is deleted and user trying to assign then in the import history showing success but in audit showing failed
Application delete-Campaign-Deleted application available for review
AD new bundle- User policy map- When Sam account name is mapped with any attribute and update checkbox is kept false, and user is updated, audit log is showing failed
Workflow>Inbox- Address fields name in inbox /pending workflow and identity hub users are not same
SSO- Group mapping- Save button should be enabled when mandatory fields are filled
Campaign-email report showing error
deployment_analytics_1 Service CPU utilization is 100%
Application - Form - When submitted as blank, after assigning the application page is getting blank.
Reports- Records are getting displayed after 11min approximately
Csv Import users- An error message is not shown when the user is unable to save user details if a space is included in the email
After the campaign workflow triggered on revoked, even though the campaign had ended and the workflow was approved, applications were still getting unassigned.
User Workflow - If reporting manager is set as 2 level approver , reporting manager is showing as Unknown
Workflow>Inbox- Address fields name in inbox /pending workflow and identity hub users are not same
Export- Rename Config type to Select All
MFA- When default MFA rule is inactive, user is able to delete default rule as well
Amaya connector>Policy mapping- Bottom slider should be fixed
Amaya || Validation preventing usage of long valid header
Amaya Connector- By default only green colored (confirmed policy attributes) only should be checked
Amaya Quick Setup- When an auto test run fails and operations are manually updated, clicking 'Generate Policy Mapping' should exit the page.
Application delete-Campaign-Deleted application available for review
Import Manager-Manager is deleted and user trying to assign then in the import history showing success but in audit showing failed
Import/Export- By default, the time in the application name should be removed when exported
SSO - OpenID - Configure CIDR - Add - While clicking on Add icon without entering any details , blank data is getting added.
SSO - OpenID - Configure CIDR - While clicking on delete icon ,no message is getting displayed and entry is getting removed
Workflow List - View - Showing label as "Custom Workflow "
Import/ Export- Application name while importing file should be limited to 50character
Application - SSO - SLO toggle enable/disable audit log
SOD; policies-Policy owner name is not getting updated after updating user name from Identity hub and without owner name policy is getting saved
AD new bundle- When recon is executed for both exist update but application is not linked, still user is getting updated.
Application - Form - When submitted as blank, after assigning the application page is getting blank.
Masters - Grade- While clicking on Add button it is showing edit page of existing record
Tenant registration- Showing suspicious popup box when clicked on verify your email
New tenant registration- If tenant is already on registration page then after clicking verify email from mail box should show tenant is already registered
Tenant registration- Taking time to register tenant
Email verification - Email verify link is redirecting to otp verification screen.
My Workflow> Teams- Add short menu button
Tenant creation not working
After release v 3.1.2, for old updated tenant campaign module is disabled
Portal-For module update showing error, already exist
Push and FIDO scan zoom functionality not available at the time of Device MFA
Push and FIDO scan zoom functionality not available at the time of application MFA
User setting- External idp rule is active-An admin user should not be able to reset user password when the external IDP rule matches the user condition
manager notification : receiving user name required manager name
In application setting if show to user flag off then also application show in recent application.
Unable to identify application properties data type where value is empty
Amaya || Create user operation fails due to invalid password
User-Email with invalid email id like NA, this user not able to use MFA with OTP
3.1.4 Beta (13 August 2024)
UI/UX || Warning added || Application Config Import Modal || Auto 'Create Only' for User Principal policy mappings
A new feature has been developed for the "Recommendation Engine", enabling seamless integration and management of application and role recommendations. The recommendation engine supports the generation of personalised application and role suggestions for each user. The system supports the automatic synchronisation of data from various sources, ensuring that recommendations are always based on the user behaviour. All recommendation engine configurations, data synchronisation are stored and can be easily retrieved and updated as needed.
UI/UX || Amaya || Add support for JSON body validation through validate button
Audit log comparison for oldObject and newObject when they are in detailed format
UI/UX Inconsistent buttons placement in some module fixed to a default below position
UI/UX Onboarding walkthrough of New users
ICICI: a. The inbox title in the workflow setup event has been updated to display the workflow name. b. Workflow (Pending workflow list) requester and requestedFor column added for display
Identity Analytics (Reporting Engine)
End to End Request/Response Payload Encryption for all authservice's API. (/authsrvc/*)
User Threshold (Phase 2): i. Update Email Title and Template ii. Create a new 'Move to Archive' button to manually archive a user. iii. Make the notifications field mandatory in the User Threshold Configuration. iv. Added the Org Admin as the default notifier in the user threshold configuration.(Not supported for old tenant). v. Update UI Error Message Format vi. The User Threshold staging mode name has been changed. vii. Failure to Move Staging User to Archive Manually and Audit Log Display for fail. viii. The changes made to the staging dashboard view. Include a comparison between the previous and updated versions of the UI. ix. Show the display name in the Threshold Delete operation on the Staging Dashboard. x. Notification Field in User Threshold Config for delete users.
Amaya- When server connector timeout is changed and test configuration is clicked, it is showing "connector not found in cloud" error in Audit log
Import User - If loginid already exist , then remark shows "Usrsrvc.existing Login" . Change this text to "Existing Login Id"
Import/Export- Showing host server details when file is imported for script connector
My Access - Tags - Roles is not getting displayed in Application
Application - Clicking on the role tile ,SSO is happening and also while clicking on close icon, SSO is happening
Applications- When any attribute is updated (made empty in the target application) and recon for both exist operation is executed, the corresponding attribute in Cymmetri should also be cleared
Reports- SSO based application- Reports are blank/ not showing data when SSO based application are accessed (To correct the data need to perform data-logger sync for respective tenant. Refer configuration steps here)
Deprovision- User is getting deprovisioned even after user status is changed to Active from Inactive
User threshold mail notification- Title changes required
Audit log-Recon - When recon is executed with status as Inactive, audit log is showing "Recon initiated successfully" but not any log for execution failed/aborted
Audit Filter- Add cross button in Target Type and Action field.
Threshold Config- Validation message for all three operations should be similar
Threshold Create/Update- Spelling for exceeded is not correct
Notification Template - Toggle and status should display in status column as per other modules.
Create User- While creating user on newly created tenant, assign group page showing text "No group assigned , assign group"
User setting- External idp rule is active-An admin user should not be able to reset user password when the external IDP rule matches the user condition
Create user - While creating user on newly created tenant, assign application page showing text "No data found, add application"
Audit Filter- Add cross button in Target Type and Action field.
Portal-For module update showing error, already exist
My Access - Tags - Roles is not getting displayed in Application
Threshold Config- Validation message for all three operations should be similar
Threshold Create/Update- Spelling for exceeded is not correct
Notification Template - Toggle and status should display in status column as per other modules.
Create User- While creating user on newly created tenant, assign group page showing text "No group assigned , assign group"
Create user - While creating user on newly created tenant, assign application page showing text "No data found, add application"
Group Unassignment: The message appearing on group unassignment is incorrect
Push and FIDO scan zoom functionality not available at the time of Device MFA
Push and FIDO scan zoom functionality not available at the time of application MFA
Campaign Reassign -inactive users are also listed for reassignment on click
Login page- AD auth- Provide proper UI message when AD adapter details are incorrect
Amaya- When server connector timeout is changed and test configuration is clicked, it is showing "connector not found in cloud" error in Audit log
Import User - If loginid already exist , then remark shows "Usrsrvc.existing Login" . Change this text to "Existing Login Id"
User threshold- Pending Staging- When changing page select all box should be unchecked.
Threshold Pending staging- Whenever the page changes or the number of records per page is modified, the selection should be reset
Import/Export- Showing host server details when file is imported for script connector
Threshold pending staging- When the retry button is clicked multiple times, the validation message does not appear after the third click on UI
Application assignment- Change user search suggestion watermark
Onboarding registration- When resolution is at 80%, PAM report admin option is not visible in dropdown
Reports- SSO based application- Reports are blank/ not showing data when SSO based application are accessed
After release v 3.1.2, for old updated tenant campaign module is disabled
Onboarding registration- When an application is selected and then reverted to the previous page, selecting the application again causes the application count to double
External JIT- JIT configuration should be disabled until new external idp configuration details are filled
External IDP- JIT- API is showing "undefined" error on clicking JIT button and on enabling JIT configuration
External IDP- JIT- Reverse the title, it is confusing for user
MFA - Secret Question - Question selection is getting non-selectable after entering incorrect answers and then retrying for correct answer
My workspace>Inbox- Count is not showing when records are in claim
Reports( Employee's with upcoming contract end date) - By default date filter should be applied of 30 days
Provision Rule - Cursor of the condition is getting overlapped with footer of the page.
Onboarding - Login credentials timeout error
My Access - Superset Application logo and label should be changed
Applications- When any attribute is updated (made empty in the target application) and recon for both exist operation is executed, the corresponding attribute in Cymmetri should also be cleared
Deprovision- User is getting deprovisioned even after user status is changed to Active from Inactive
Audit log-Recon - When recon is executed with status as Inactive, audit log is showing "Recon initiated successfully" but not any log for execution failed/aborted
User threshold mail notification- Title changes required
Application- Managed view- When manager is removed from Cymmetri, user is still getting displayed in managed view
Create Threshold Config> Csv import- Showing empty records in pending staging list when threshold limit is exceed and user are imported via csv file
Reports- SSO based application- Reports are blank/ not showing data when SSO based application are accessed
My workspace>Inbox- Count is not showing when records are in claim
login with admin-Campaign detail show role also, currently role showing only for campaign manager
Cymmetri Selfservice App - Once we click on the web link from scanner , it should show confirmation popup on screen (Suggestion)
Selfservice Mobile App - When app is in Quit state and open the app via scanner(camera), it is not redirecting to login page of the website
Push Authenticator - Need to change the error message
User creation- While creating new users then going to next level that is on groups page and then on application page ,then user should be redirected back to the group's page when back button is clicked instead of existing user creation page
Showing error when saving workflow with name( User creation, Application provisioning, Application deprovisioning)
deployment_analytics_1 Service CPU utilisation is 100%
Campaign-email report showing error
Some time tenant registration not working,showing WriteConflict error in the service
Application provisioning and deprovisioning workflow initiated request is not getting displayed in activity logs.
Workflow Rules - Application Deprovisioning event - If condition is set as RegEx for custom attribute is not working
User update-Showing audit failed-Write conflict
Report - Updated record should display on top.
Auth rule showing unknown error
Workflow List - View any workflow detail - While clicking on info icon it is showing Grade List Detail
AD-Recon-If Policy attribute marked inactive then also it is getting pull from AD
Login via Application admin- When click on application showing processing please wait error message
Applications- Application are not getting assigned to user and also audit log is not visible for the same
PAM write admin not able to assign users, user list not populating
manager notification : receiving user name required manager name
In application setting if show to user flag off then also application show in recent application.
Unable to identify application properties data type where value is empty
Amaya || Create user operation fails due to invalid password
Reports- Records are getting displayed after 11min approximately
3.1.5 Beta (6 August 2024)
UI/UX - Workflow Inbox User detail will now have applications detail as well assigned to the user
UI/UX - Workflow Inbox will have start date and end date filter
User delete workflow support a. Workflow configuration support b. Rule configuration support
CISO Dashboard - REVERTED
Amaya || General Config based role data type
PAM write admin not able to assign users, user list not populating
Policy map- Empty value are getting saved in policy mapping
Workflow Rule update - View - Created by and updated by fields are empty
Superset - OpenId issue - While doing sso for superset application, it should is getting redirect superset url with error "The request to sign in was denied"
Threshold configuration- Replace could be to can be
Policy Map- When searching in the search box by any attribute, the search should get reset after changing tabs
Onboarding - Login credentials timeout error
Application- When searching user in application, user can be searched by first name, last name, login id but not by First name+lastname
PAM write admin not able to assign users, user list not populating
TOTP-Lookahead window change , on click save button show warning message,
User delete Workflow - Pending Workflow - Application details tab is not present
manager notification : receiving user name required manager name
In application setting if show to user flag off then also application show in recent application.
Unable to identify application properties data type where value is empty
Amaya || Create user operation fails due to invalid password
Reports- Records are getting displayed after 11min approximately
Deprovision Rule executed via Scheduler - Workflow is not getting initiated for the set of users on the basis of status/end date
Workflow List - Getting error " Contact system administrator" on technova tenant
3.1.6 (10 September 2024)
Form Logic - The FormLogic functionality, enables you to store custom data using flexible, administrator-defined forms. It empowers you to create forms tailored to your specific data collection requirements, providing a versatile solution for various data management needs. 360 Degree Reconciliation - Compare tab added to the current feature, where user can compare with the source application and target application and further generate reports and download csv.
SkipPasswordExpiry - We are enhancing our Password Policy by introducing a new field
SkipPasswordExpiry, within the PasswordChangeRule. This enhancement allows users to opt out of the password expiry process entirely. When the SkipPasswordExpiry field is enabled, users will not receive warnings or notifications about password expiry, nor will they be prompted to change their password due to its expiration.
Connector: SimpleLDAP application.
ICICI Client - Role Based form delivery in IGA.
SDK based integration to send mobile push notifications to mitigate legacy API issues: a. Fido Based Notifications b. Normal Push Based Notifications The LDAP adapter has been updated with a new feature that eliminates the need to enter a username and password for each execution.
Form logic-Configured Forms -On click setting icon screen getting flicker
Selfservice Submit form-Update error message and backend error code if pre and post hook script h
Form logic-on form submit close form
Form logic-Selfservice-My Form Submissions pagination, page getting blank
Archived Forms detail-Revision data showing wrong, showing non existing list
Form logic-After changing form schema, form detail showing blank
Form logic-User submissions-Provide search by taskeid, username, loginid
Form logic-on all screen search only working for the exact case, expected should be work for matchin
Form logic-Form table-sorting not working
Form logic-Pre and post hook should be non mandatory
Form map with rule-if form map more than defined limit then error message showing only one time
Staging users details - Version history log user details not loading
Form logic-Configured form and archive form detail, back button behaviour is not as expected, need
Form logic-Form Access Rules-Link form, save button should be disabled till form selection
form logic- if request is timeout or fail then feature showing disabled
Form logic-User submissions-Provide date filter
Workflow || Additional Form Info || Readonly text-based form submissions
Timebased Application: Timebased application assignment message spelling incorrect
Deprovision- When applications are assigned via group and deprovision is executed all the application
Teams - Suspended Users - List View - Edit - It is redirecting to Users but showing a blank screen
Application Search: When clicking on "View More Applications" and searching for an application, the
Pending Staging- When no records are present on the page, the "Select All" button should be disabled
User Onboarding - Dropdowns are not loading when creating a user after adding an Admin during t
Global search - Pending action is not coming in global search
manager notification : receiving user name required manager name
In application setting if show to user flag off then also application show in recent application.
Unable to identify application properties data type where value is empty
Amaya || Create user operation fails due to invalid password
Reports- Records are getting displayed after 11min approximately
Deprovision Rule executed via Scheduler - Workflow is not getting initiated for the set of users on th
Workflow List - Getting error " Contact system administrator" on technova tenant
FormLogic || Step 2 of form || Form config JSON should be mandatory
3.0.1 Beta (3 November 2023)
1. Policy Map Datatype Converter: Added standard converter to convert the LDAP profile picture. Added standard converter to encrypt & decrypt data.
1. Cymmetri Verify- When exporting TOTP users password is accepting all digits/values as alphabets/number when it should have accepted alphanumeric values
1. Manager notification: Receiving user name required manager name
2. Decision Engine Restart Scheduler: Added scheduler which will run every hour and process stuck decisions.
2. Cymmetri Verify | IOS | Face ID being asked infinitely
2. Multi-role assignment with form, then form adding repeatedly for each role, expected only one form should be there
3. Audit JMS Queue added for the following services, authPolicy, mfa, notification, provisionEngine, registration, ruleEngine, selfservice, usermanagement, workflow, IG, sodengine, pam, analytics.
3. Cymmetri Verify app- Showing duplicate records when imported from other device
3. Fido - Push/fido not getting removed from mobile app
4. UI/UX Changes: Show Cymmetri Verify app link on push/fido registration screens.-Rejected for the selfservice app.
4. Cymmetri Verify app- Search functionality is not working when users imported from different device
4. Password converter only accepted encrypted value. It should also accept user's editable value
5. Cymmetri Verify App update (v5.9.1)
5. Cymmetri Verify- Show password when clicked and file is exported, then again export file same password is visible with no masking(password is visible)
6. Cymmetri Verify App update (v5.9.2)
6. Cymmetri Verify | IOS | Unable to import backup file
7. Cymmetri Verify App update (v5.9.3): Display a message to indicate the action being performed.
7. Cymmetri Verify | IOS | Face ID not supported error
8. Restructured bulk user import for performance
8. Cymmetri Verify | Account details not updated on adding/removing push/fido
9. Notification Global Config: Notification categories in two types i] Mandatory and ii] Optional. Notification Global Config applicable for only optional types of notification.
9. Cymmetri Verify | IOS | Not internet error
10. Application getting repeated within different pages of application list
11. My workspace>Access Review>IG>Managed - When all the checkbox of Info field are disabled, then title checkbox should also be disabled
12. User - Application - Group name should be displayed
13. Audit-Audit with device filter not working
14. Vaulting Configuration- Test connection audit not present
15. Notification Template- User is not receiving mail for reset password
16. Login-Showing incorrect validation message and asking user to reset password again
17. Onboarding flow | Additional details not accepting other country mobile number
18. Recon history- provide search
19. Tenant Registration- Domain is not visible
20. Register tenant- Country dropdown is showing no option instead of countries list
21. Application - Tag - Already created tags present in application are not getting displayed in grid page.
22. Partner Portal- Showing invalid argument but not able to understand exactly which field is invalid: Admin Portal- Top search not working Admin Portal- Get Started link not working Admin Portal- Company name and company code should get trim
23. Fido Authentication- User is not able to authenticate via FIDO in first time, user need to kill app or refresh inorder to register device
3.0.2 (1 December 2023)
1. User management service restructured.
1. Forgot password-User is not receiving email notification
1. Manager notification: receiving user name required manager name
2. PAM - Sub domain added in Authentication Parameter
2. Workflow description spelling correction
2. AD Group pull || Only under 1000 member getting pulled (Connector Server Restriction)
3. UI/UX Improvements: Show username in user selection dropdown menus, Show Cymmetri Verify app link on MFA TOTP Registration and App MFA TOTP, Push, Fido, Show message when cookies are disabled on the browser Cymmetri Verify App update (v5.10): App drawer, header and lock screen UI improvements, Search box moved to header, Show search history, Haptic feedback on TOTP code press
3. Workflow on unassignment-On role unassignment, if any workflow already trigger then the message should be shown
4. Cymmetri Verify App Hotfix (v5.10.1)
4. Manage view- for converter used parameter not showing
5. Introduced spring expression language in SAML.
5. Application-date converter, recon pull getting stuck
6. In Multifactor otp config we can't disable both email otp and sms otp. At least one should be active.
6. Workspace | click search box creates Ul glitch
7. Group Provisioning
7. Login with Read only user- Configuration> Syslog configuration- Configuration should be gray out and should not be editable
8. Cymmetri Mobile App update (v1.5): Added QR code self-registration for TOTP, Push, and FIDO Added TOTP self-verification eliminating the need for finding and copying TOTP from the Cymmetri Verify app for the login. Added App lock with biometrics in the app
8. Configuration>User decommission config- Add a short description specifying functionality (Title)
9. MFA- Rename SMS Authenticator to OTP Verification
10. Configuration>Master>Zone>Gateway IP- Sorting is not working
11. Configuration>Master>Global>Value- Sorting is not working
12. Configuration>Master>Zone>Name- Sorting is not working
13. User Onboarding| Contact info details not accepting other country mobile number
14. Delegation- Successful Validation message should be shown after user is assigned
15. Time-based role assigned application- Time-based Application is not deleted after a period is completed when a role is assigned
16. Configuration>Master>Zone- Showing old zone data when creating new zone
17. My workspace>Access Review>IG>Managed - When all the checkbox of Info field are disabled, then title checkbox should also be disabled
18. Provision- When user is trying to create new role, role is not getting added neither validation message is shown
19. Cymmetri Verify - IOS - Push/FIDO Verification screen not shown when app opened through its notification
20. Cymmetri Verify - App protection not working
21. Self service app- User when trying to login on self service app having Fido authentication On, user is redirected to Play store but see in play store app is not clickable
22. Cymmetri Verify - Same day exported file - with file count attached to the name is reported as invalid file
23. Application provisioning MFA- When max TOTP/OTP/Secret Question invalid answers limit exceeds, it should show validation message and should be redirected to login page.
24. Application Role workflow- User is applying workflow for specific role but non-workflow as the signed role is also not getting assigned
25. Update user import sample file
26. usersrvc/api/user/dropdownList- in the above path, for creating workflow in bulk
27. when we create in bulk it is showing out of memory
28. Global Notification disable-by default it is off
29. Notification template- Global Notification for OTP is off still logs is showing mail sent(True)
30. Campaign with group-Campaign getting aborted
31. Multi-role assignment with form, then form adding repeatedly for each role, expected only one form should be there
32. Deprovision rule- User is not getting suspended when end date is applied at the time of user creation
33. Users Import- User name, Login should get trim if space is included while importing user
3.0.3 Beta (5 December 2023)
WebAuthn passwordless authentication (It only works for chrome, safari, edge on desktop and chrome and edge on mobile) - EXPERIMENTAL
Workflow for time-based role application- Audit log should show action not supported me ssage if lifetime application is changed to time base from approver end.
Manager notification: receiving user name required manager name
2. Onbehalf Configuration: Default onbehalf configuration, Rule engine support to create custom configuration. Display the OnBehalf menu in self-service according to the logged-in user's matching custom/default configuration. Below menu operations supported: User Application View: Assign Application, Assign Role, Unassign Application, and Unassign Role. User Groups View: Assign Group and Unassign Group. Group Provisioning Enhancement Policy map datatype converter Enhancement. Converter support was added in the custom attribute. Configuration support added for custom attribute converters, Encryption added for Custom attribute password converter value of user, Cymmetri Verify v5.10.3 - (link) - Bug fixes Cymmetri Mobile v1.5.1 (link) - (Rejected): Bug fixes and Added self-verification support for forgot passwords, App MFA, server MFA, and passwordless. Global module search feature (Ctrl+K). Groups list pagination in user details, Connector: Oracle HCM, PAM: AD separated from the Cymmetri and Group - View Attribute - Showing list of CN of members of remote group
2. Recon Link for both exist- When updating the group after linking showing a custom attribute error
2. AD Group pull || Only under 1000 members getting pulled (Connector Server Restriction)
3. Multi node-Application assign with role, all user getting assigned but still import showing in progress
3. Application getting assigned from UI. If it is failed.
4. AD group count mismatch-In AD total 1278 group but in pull it is showing 1260
4. Group-Custom Attributes not getting updated in group while assigning user to the group manually
5. Application Group- Pagination should be applied for the group provision page
6. AD application push- Group should not be updated when update checkbox in policy map is unchecked
7. AD Recon Push- When all policy attribute are false, group creation should show error.
8. AD Application Pull- When all policy attribute are set to false, group creation should show error
9. AD-Policymap_memberOf need to be default false for old tenants
10. Browser specific-On Mozilla browser OTP verification is not proper
11. Login with Domain Admin- Manager assignments should not be greyed out
12. Import completed file show end time
13. Policymap-group(pull/push)-if attributes are inactive then this should not be reflected under dropdown
14. PAM-Sign on Policy- Policy should not get activated unless MFA factor is selected.
15. Audit-Configuration-OTP-For check uncheck Send OTP on,audit should be present
16. AD application- Should show error message when description is user principal
17. Self service-Read auto MFA considering camel cases
18. Cymmetri Verify app- Cymmetri mobile app is not able to fetch TOTP from verify app if the re are more than 20 TOTP users
19. Users Managed View- Managed view should get blank for those applications not supporting this operation
20. Configuration>Master>Browser Tab text is not correct
21. Workflow- Close button in Users details pop-up box should be enlarged (currently not visible properly)
22. Branding-Should show proper validation message on UI
23. Version-provisionsrvc showing two times
24. PAM> SignOn Policy- Discard button is not working
25. Identity Hub> Users: Others field details are not visible on user display page on editing profile
26. Cymmetri app(selfservice)-Auto read MFA-when Cymmetri verify app having App protection is enabled then also it is reading,bypassing app protection
27. Cymmetri Verify - Google Authenticator Import TOTP timer not running
28. Cymmetri Verify - MFA Push Registration fails
29. Cymmetri Verify - App crashing on Samsung fold phone
30. SAML-Expression-restrict to show id
31. SAML-Expression-if user don't have data and fetching data then no message showing on UI
32. SAML Key:- Not able to understand why validation message is showing invalid arguments
33. Delegation- Session getting expired even after refreshing token continuously
34. External idp login showing error
35. SAML-User is not able to download metadata, showing 500 internal server error
36. API SSO validateToken API only validate the auth_key parameter
37. Password converter only accepted encrypted value. it should also accept user's editable va lue
38. Identity Hub>Group: Grey out Group name field for remote groups as user cannot edit name
3.0.4 Beta (3 January 2024)
1. Connector: Darwinbox and SuccessFactor
1. Reset password OTP- Max limit validation message should be displayed if 3 invalid otp are provided
1. Manager notification: receiving user name required manager name
2. Cymmetri Verify now supports webauthn QR code scanning from mobile in case mobile camera doesn't support QR scanning
2. For the newly created tenant configuration showing error
2. AD Group pull || Only under 1000 member getting pulled (Connector Server Restriction)
3. Persistent Form Enhancement: Added Form submission support on Role assignment, Added Form submission support on Role unassignment and Added configuration to enable/disable form submission on role assignment and unassignment.
3. For newly created tenant notification template not loading
3. Workflow initiated for form but form is getting updated without workflow approval.
4. Policy Map Data Type Converters: Added support to input pattern of date of target system and Added support to convert date & date time of target system using mentioned pattern.
4. Time-based/Normal Application- When deprovisioning time-based application or successf ully assigned application is going into failed state showing null pointer exception
5. PAM: Download AD Certificate
5. Selfservice-Behalf-User-Group-Group is already assigned then also it is again available for t he assignment
6. Passwordless Login Flow Enhancement.- Now tere is MFA registartion is optional in login
6. Selfservice-Team-User-Group-Group is already assigned then also it is again available for t he assignment
7. Lock user on mfa failed Attempt: Added configuration for mfaattempt, coooldown period.
7. Group-Custom Attributes not getting updated in group while assigning user to the group manually
8. Provision Rule- User need to refresh page when adding/updating application role condition
9. Recon pull with AD-For default data related to date it is not working
10. ctrl+K search -add MFA rule not present
11. Partner portal-Add customer with domain-for domain field validation should be as per the normal registration
12. Cymmetri verify App(Selfservice(-Need to handle auto register flow in the application MFA
13. App Auth does not work when verify app in closed state
14. ios 17.2 Auto Auth not working
15. ctrl+k search-Read only user redirecting on add form
16. SAML-Expression-Provide sample on i icon
17. PAM- Rename server to device
18. Login with PAM Read Access Admin-PAM>Devices>Setting: User is able to edit complete p age details and showing processing validation message when clicked on save button
19. User not getting deleted from AD when assign in AD
20. Recon-Pull-Group, for one user having 900 groups, then under recon history showing error,same vice versa one group multiple users
21. Take pull from AD- User having remote group present in AD
22. When password is expired and the user is trying to change password then it is not adhering password policy, accepting same old password
23. SAML-Regular expression-if user entity not exist and doing SSO then in audit data should be present
24. Identity Hub- Group: Validation message should be shown when clicked on assign group button
25. Identity Hub >User: Custom attribute dropdown is not completely visible
26. Custom Attribute Import- When the password attribute is imported via csv file then password should be visible in encrypted form in user details
27. Custom attribute Import via API EXT- Password should be encrypted form when imported
28. Application MFA- Showing routes issue when accessing application
29. Not able to login on partner portal via admin login
30. Route issue-On click configuration tab
31. On Behalf- Route issue
32. Import> Download sample file- showing route error
33. Browser cookies disable-end user-facing difficulty
34. Calendar: Resolution specific> Calendar Ul is getting glitched at 75% 80% 90% zoom
35. Identity Hub-Users: User should not be able to assign application again if already is assigned.
36. Teams-Add user showing unknown error
37. Inbox showing unknown error
38. Teams-User list not showing
39. Application Recon- When user is trying to Pull users from database and if pin code is blank, then default set value should have been taken
40. Authentication> Auth rule- Showing Rulesrvc not found validation message
41. Policy map update-on save showing error
42. Hide this /disable button when script is enabled
43. MFA- Rename SMS Authenticator to OTP Verification
44. Application getting assigned from UI. If it is failed.
3.0.5 Beta (12 January 2024)
No new features were introduced. This version has implemented all the features and bug fixes from the 3.0.4
3.0.6 Beta (30 January 2024)
1. Provision Rule Revamp: Restructure Provision rule condition configuration: Provide support for single condition and group condition in condition config, Provide Operator support like Equal and Not Equal and Provide AND, OR Operator support for multiple condition in provision rule condition config, Group provision Support: Add group in provision rule. (only local group), Old provision rule migration: If the old rule is without condition mark it as inactive and if the old rule is without application also mark as inactive.
1. Provision Rule- Rule is not getting applied if previous provision rule is deleted.
1. Manager notification: receiving user name required manager name
2. UI/UX Changes: Application profile and group mapping in SAML SSO and SAML Service Provider - Restructuring and provide defaults
2. Group- Search functionality is not working
2. AD Group pull || Only under 1000 member getting pulled (Connector Server Restriction)
3. Deprovision Rule support for user delete (if no application assign)
3. Not getting form values in the target application when Form updated, role assigned and role unassign
3. Workflow initiated for form but form is getting updated without workflow approval.
4. SSO -SAML: SSO-group policy Mapping -- SSO SAML, SSO-added nameFormat in profileMapping and groupMapping -- SSO SAML. SSO-added digest algorithm method. SSO-added list support for profile mapping.
4. Self service app- Increase spacing
5. Mfa Attempt Enhancement(Old behavior when admin locks the user then the user should not able to unlock from selfservice now he/she can able to unlock yourself): User can unlock if admin locked the user invalid mfa will permanently lock the user, user can unlock account after mfa cooldown period is completed. Admin can unlock the user which will unlock the mfa as will.
5. Notification bell icon- When notification is empty, mark read and delete option should not be clickable
6. UserType Master Support in User Creation and Updation.
6. Cymmetri self service app- When clicked on groups or application from on behalf tab, it is redirecting to dashboard page
7. User Onboarding| Contact info details not accepting other country mobile number
8. Cymmetri Verify app- For long tenant name timer clock is not visible
9. Group-Attribute detail-provide search
10. Android Heads Up Notification now will display notification upfront which earlier required from user to turn on from the Notifications Settings (Float Notification)
11. Notification template-correct spell for delegation
12. Deleted user login-on forgot password this user should be validated and restrict,currently showing error-Please try again
13. SAML-On clicking validate regular expression should show data message which is available in backend
14. Ctrl+K: Search filter is showing records for all the letters mentioned
15. If the admin lock the user, then the user should be able self unlock by forgot password flow
16. Audit- Audit log should shows role specific logs for role assignments/ unassignments
17. Self Service: Access review- Validation message is not complete it is getting cut
18. Registration- Showing processing please wait validation message after registering user and without any setup if user is clicking logout
19. Self-service app-On behalf: When clicking on application/groups from the dropdown mobile keyboard is getting displayed and due to that applications/ groups visibility is less
20. Not getting form values in the target application when form updated, role assigned and role unassign
3.0.7 Beta (09 February 2024)
1. PAM SUDO SU feature for linux server.(For SUDO SU shortcut key Ctrl+Shift+E)
1. Default delegation consents do not convey responsibility of delegator or delegatee
1. Manager notification: receiving user name required manager name
2. SAML Assertion Preview
2. Self service app- On behalf: When clicked on application/groups from dropdown mobile keyboard is getting displayed and due to that applications/ groups visibility is less
2. AD Group pull || Only under 1000 member getting pulled (Connector Server Restriction)
3. Encrypt saml response
3. Provision rule-On click save showing error,without condition
3. Workflow initiated for form but form is getting updated without workflow approval.
4. ETL: Custom Create user in AD API with unboundid library, Custom user assign to group in AD API with unboundid library
4. Configurations-general-config-Rename message for User Decommission Config
5. Configurable UI Info and Actions: Hide "Reset / Unlock User", Hide "Login Help Page Link", Configure "Login Help Page Link", Hide "IP Address" and Hide "Self-Service App Links"
5. Label update for suspend config
6. Login Help page external link updated
6. Provision Rule; Groups/Application- If user is selecting any local group in first field then second field is greyed out not showing other local groups
7. Cymmetri Verify: Firebase version upgradation and A troubleshoot page provided if FCM token is missing
7. Notification content should not be hardcoded
8. SSO UI migration
8. Remove trailing slash from selfservice endpoint
9. Made Gateway IPs and Proxy IPs non mandatory on the Masters -Zone page. Only Name and CIDR fields will be mandatory.
9. Error handling for product Webhook custom error
10. Application SSO-attribute mapping-without selecting Cymmetri Attribute save button should not be enable, as this is mandatory field
3.0.8 Beta (23 February 2024)
1. UI/UX Changes: Skeleton loaders - Improved loading indicators, Filter enhancement for Users and Application pages - Now filter persists the data once go in the detail page and comes back also an indicator to show how many filters or any filters are applied and Branding changes - Now the preview of branding will be on scroll for better UX , "should help icon be shown " field would highlight the help icon
1. API Integration for passwordless flow reset password
1. Manager notification: receiving user name required manager name
2. Mfa attempt Admin User lock:Mfa attempt config added in global auth policy, Self-unlock flag to unlock the user during admin lock the user and Email for invalid mfa attempt
2. Workflow- For the user list workflow approver, the user is showing in the list dropdown but in the pending workflow it is showing empty.
2. AD Group pull || Only under 1000 member getting pulled (Connector Server Restriction)
3. Service Provider (SP) Initiated SAML Single Logout
3. Application- Application name should be unique
3. Workflow initiated for form but form is getting updated without workflow approval.
4. Secret Questions verification changed: Earlier it used to show all questions and mandate the user to fill in all the configured questions. Now it will only ask the user to show a dropdown multiple times configured by the admin for minimum correct answers.
4. Applications Group mapping- Change the validation message as only one group can be added in group mapping/ disable the add attribute button after 1st group mapping is done
5. SBI VAPT: Encrypt 'login' in some public API same as password encrypted. The following APIs are changed: validateIdentity API: on login page, validateIdentity API change get type to post and in request body login encrypted value pass and token API: on login page token api login encrypted value pass.
5. AD application Recon- When importing users via recon having provision rule assigned for User creation with condition, then showing error in recon history and again after executing run now command then the user is getting imported but going in Ignore case.
6. AD Application recon- When workflow is applied for User creation having condition applied(Department=Accounts), and user is imported via recon, recon history is showing user assigned but when searched In identity hub-Users, showing user not found.
7. Notification Template- Showing processing please wait message when trying to click toggle button
8. Provision Rule- User should not be able to save provision rule without adding applications/groups
9. SBI VAPT || Testing and changes for SBI as well as product
10. Application SSO- Label change to update
11. My workspace>Inbox- User details popup box should not be displayed when user is deleted from admin account after initiating workflow
12. Deprovision- Remove Exclusion Applications field
13. Delegation account- Change label from Delegate Session Active to Delegate Session Information
14. Users> Applications- The total number of applications assigned should be shown in user account
15. User: Menu Action- There should be a sync event toggle button while marking user inactive in user menu as available while marking inactive from user setting tab
16. Policy attribute- When removing the policy attribute, that field is not getting removed also it is visible in policy map application field dropdown
17. Identity Hub> Users- Users should be searched on basis of Usertype as well
19. User Creation Workflow- When clicking on the cancel button on the workflow preference popup box, it should remain on the user creation page. For now it is cancelling the whole process
20. Application> SSO>Configuration>Edit configuration- UI for logos and name is not proper
21. Application SSO> Configuration- The marked button should be disabled until service provider is selected
22. Branding- Change the label as both the fields sound similar
23. Branding- Preview is not available after changing setting
24. Branding- Add a short note/sample file for default help link when show help button is Yes
25. User Filter- Reset button should reset all the filters applied and load complete data
26. Self Service App>Managed access- Fields on right side should be slightly moved to left as in mobile it is not visible properly
27. Application Audit logs- Applications are getting updated when password reset is performed for users.
28. Selfservice app-MAX MFA attempt message is not readable
29. Self Service mobile app: Application- Application Tag is not visible when clicked on move to tag option at first time and later on option is continuously visible
30. My workspace> Inbox- Starred requests are not getting saved in starred folder
31. Exclude application > delegation- When any application is added in tag and excluded by delegator, then should not be visible in delegatee account
32. My workspace: Application- One application should be assigned/moved to one tag only
33. Teams Configuration- Showing route issue when saving new teams configuration
3.0.9 Beta (03 November 2023)
1. Provide show-to-user flag support in the Application Setting. Application Setting: Show to user: if the flag is off, then hide the application from my access ➝ assigned application. Delegation: If the flag is off, hide the application from Delegation ➝ my access ➝ assigned application. user can request: If the flag is off, then hide the application from my access ➝ request for assigned application, If the flag is off, then hide the application from On-behalf ➝ users ➝ request for assigned application and Delegation: If the flag is off, then hide the application from Delegation ➝ On-behalf ➝ users ➝ request for assign application.
1. Policy Attribute- Add pagination
1. Manager notification: receiving user name required manager name
2. Framework Upgrade: Java based services are updated for spring framework, spring boot, also updated utility libraries. Please note it may have impact on several functionalities.
2. Teams Configuration- Showing route issue when saving new teams configuration
2. AD Group pull || Only under 1000 member getting pulled (Connector Server Restriction)
3. MFA attempt Admin User lock: MFA attempt config added in global auth policy and Self unlock flag to unlock the user during admin lock the user
3. Passwordless- Passwordless page is showing blank when clicked on clicked on Passwordless button on Login page
3. Workflow initiated for form but form is getting updated without workflow approval.
4. Token Rolling period : Token start period should start before current server time.
4. Notification template- Increase spacing between Kathreftis Team and Disclaimer and remove space above
4. In application setting if show to user flag off then also application show in recent application.
5. Passwordless reset password : When password is required to be changed then user is forced to change password during login using passwordless.
5. Login failed> User locked Template- Change notification template
6. Bearer Token subject is encrypted now in header.
6. My access> Applications- If an application is already present in a certain tag, when attempting to move it to another tag within the "All Applications" section, it should not be visible in the tag it is already associated with.
7. cookies samesite attribute is being set to strict to all the cookies.
7. Login-Tab button should be applicable for enter password field when passwordless in enabled
8. Active Directory new bundle (Using unboundid.ldap.sdk library) - Phase 1: Server Connector bundle name: simpleADServer Connector bundle version: 1.0Server Connector name: com.cymmetri.connector.simple.ad.SimpleADConnector and Added one field inside the user configuration of the active directory "Disable User With Date Time".
8. AD Application- When assigning remote group to AD user, showing error
9. Passwordless- Passwordless page is showing blank when clicked on clicked on Passwordless button on Login page
10. Self-service app: On-behalf tab is loading late
11. Master> Zone- When editing zone then status is always changing to inactive
12. Authentication Rule- When a user is trying to reset the password having LDAP authentication active, then password is changing into target system first and reflecting older password in target system
13. PAM- Dormancy disabled config- By default config should be disabled
14. Audit-"action":"DORMANCY_DISABLE_COMPLETED" ,Data showing null,need to show data
15. PAM dormancy disabled showing failed
16. Deprovision- All three fields should be in one line
17. Policy Attribute- Add search filter in policy attribute
18. Delegation- Add cancel button after editing consent
19. My Access> Applications- When moving an application from one tag to another, the validation message should be proper for the end user to understand
20. Campaigns> Access Review > Campaign Manager- Sorting is not working
21. My Workspace> Inbox- Need to refresh page every time to see changes in started request
22. Global Auth Policy- Update message to "Auto Unlock MFA period should be less than Account Auto Unlock period."
23. Insights> Reports -Showing error message when disabling scheduler toggle
24. Application MFA update -on click Next button -getting in loop
25. PAM vault user-Confirm button should not be enable till any value entered
26. Validation message change-Change 1 days to 1 Day
27. Teams Config- Configuration should not be saved without adding condition
28. Teams - User is not able to lock/unlock account even after configuration in teams is enabled
29. Need to show proper error message when Maximum MFA attempts reached
30. Reset Password OTP -there is only OTP option is available then also showing error message for question
31. MFA- User not able to login via Consent based MFA showing error
32. Login- Showing error when trying to log in using secret question as MFA
33. Teams Configuration- Showing route issue when saving new teams configuration
34. MFA count gets reset, when admin mark lock to unlock
35. MFA- User is able to unlock account event after unlock user account time is not completed
36. Login with password less-password expiry should be consider and need to follow steps to reset
37. When admin lock user the take conformation, unlock yourself or lock lifetime
38. End date over user login-on forgot password this user should be validated and restrict,currently redirecting on MFA
39. Inactive user login-on forgot password this user should be validated and restrict,currently redirecting on MFA
40. Need to update audit when user attempts max MFA
41. MFA- User not able to login when user is trying to login using normal password flow
42. My workspace> Active Campaign- Latest selection should remain as it is.
43. Pagination persistence for users (when a user clicks on lets say 3rd page and go into the user details and when come back the pagination gets reset )
44. Application provisioning workflow- Assign application to user and then cancel it, still showing user assigned
45. My Access>Application> Tag- Search filter should be applied for tag applications as well
46. Add New Application Search, when no data is there the UI breaks and a No Data Found card should also be shown on screen
47. Login Page- User is not redirecting to mentioned login help page( Mentioned in Branding)
48. Cymmetri Mobile App- Changes required in secret question layout on login page
49. User Creation Workflow- When clicked on the cancel button on the workflow preference popup box, it should remain on the user creation page. For now it is cancelling the whole process
50. Branding- Show validation message if user miss to fill any fields and clicked on save button
51. Lifecycle mgmt>Workflow Configuration- Save button should be enabled when removing approver.
52. Suspend user-For device deleted message should be shown as Device Deleted
53. User Onboarding- When provision rule is trigged while onboarding user and any application is assigned to user then assigned tag should be shown in that application as showing in Groups
54. Configuration> Master- Accepting emoji values in Global Master
55. MFA- Secret question- Answer field should get blank after question is selected.
56. Delegation- After delegation time is completed, delegation configuration should be updated
57. Authentication Rule- When user is trying to reset password having LDAP authentication active, then password is changing into target system first and reflecting older password in target system
58. Global Auth- User should be able to set Account unlock and MFA unlock to minimum 1min
59. User-Account lock-Account is self lock then also on UI showing message user cannot unlock
60. User Setting- Showing user not found error message
61. Lifecycle Management || Applications redirects user to Identity Hub
62. Campaign- UI of Calendar field is not proper
63. Policy attribute- When removing policy attribute, that field is not getting removed also it is visible in policy map application field dropdown
64. Audit Log- When duplicating a tab and subsequently refreshing it, then audit log is displaying a random requestor ID
65. Global Auth Policy- "Allow Users to have" is displayed twice
3.0.10 Beta (21 March 2024)
1. Addition of Grade as an attribute for users: Workflows updated to support grade-based approvers: Added grade to Pending Workflow Page and Workflow List Page, Added grade for User profile: Added grade in create user, update user, user info page, grade in user info page for Suspended Users and Archived Users and Displaying grade in User Details [Assignee Details], Added grade in Attribute Setting, policy map [cymmetri policy mapping drop down], bulk import and Added grade in Teams Config Page: Added grade in create user, update user and user info page, grade in user info page for Suspended Users and Archived Users, Added grade in OnBehalf config for self user, Displaying the grade for self user profile, Added the grade for the pull/push reconciliation process Added the grade to get the value of the middle name in a user profile, to create the user through apiext, Added grade in JIT to create the user -Not working and Added grade value on the page that displays the delegatee.
1. Application Update Workflow- In inbox user name and Login ID fields are showing empty
1. Manager notification: receiving user name required manager name
2. Analytics Metabase in the report: Configuration of Metabase and Metabase Report
2. Rename application name as shown below should be Google Workspace and not Google Workplace.
2. AD Group pull || Only under 1000 member getting pulled (Connector Server Restriction)
3. __MANAGER__ support in policy map for manager assignment in Active Directory (Target application)
3. Fix typo in application provisioning labels
3. Workflow initiated for form but form is getting updated without workflow approval.
4. Addition of Middle Name as an attribute for users: Added middle name in create user, update user and user info page, in user info page for Suspended Users and Archived Users, for User Profile, to Pending Workflow Page, to Workflow List Page, Displaying middle name in User Details [Assignee Details], Added middle name in Attribute Setting, Added middle name for the policy map [cymmetri policy mapping drop down], for the bulk import, in create user, update user and user info page, in user info page for Suspended Users and Archived Users, in OnBehalf config for self user, Displaying the middle name for the self-user profile, Added the middle name for the pull/push reconciliation process, to get the value of the middle name in a user profile, to create the user through apiext, in JIT to create the user -Not working and Added middle name value on the page that displays the delegatee.
4. Preference Workflow config popup box - Add Auto option in dropdown list when workflow approver is set to user list
4. In application setting if show to user flag off then also application show in recent application.
5. Role Required in Application Assignment: In the application setting, Role Required flag added and Application Assignment flag is enabled in the below mentioned pages:Application assignment page, User page, in application assignment and Self-Service: When user request for application, Teams page, in application assignment and Onbehalf page, in application assignment.
5. My access application- Calendar UI is not proper for 90% resolution
5. Creating the user through the JIT: Message was rejected due to issue instant expiration
6. Password policy-Show last sync time if already sync
7. MFA attempt configuration-take confirmation on save
8. JIT-Detail showing route error
9. JIT-Custom field-Only type=USER should be present in dropdown, currently showing group also
10. correct notification template-login failed
11. Unlock User- API is getting called twice and login should be shown in encrypted form
3.0.11 Beta (05 April 2024)
1. New Feature - Amaya (Schema Maker): A new feature called "Amaya" is released for generating policy map, policy attribute, and also for generating schema for various functions - Create User, Update User, Sync User, Search User etc. Using a UI-based designer, an administrator may configure JSON REST-API based applications without needing to write scripts for the above mentioned functions.
1. Inbox- Request count should be shown in claim> open request as visible in Requests>Open request
1. Manager notification: receiving user name required manager name
2. Role Required in Assign Application(Backend Validation):Bulk Application Assignment, Admin Application Assignment, Admin User Page, Selfservice, User Application Request, Selfservice -> Teams, Application Assignment, Selfservice -> Onbehalf and Application Assignment
2. Application deprovision Workflow- When removing role from user application, workflow is getting triggered but before saving popup box is getting disappeared
2. Workflow initiated for form but form is getting updated without workflow approval.
3. Active Directory new bundle (Using unboundid.ldap.sdk library) <Group operation supports>: Added a field inside Active Directory User Configuration Page: "Add or Remove group using Simple AD".
3. Password Policy- Accepting -1 in password history versions and also displaying in policy rule when changing password
3. In application setting if show to user flag off then also application show in recent application.
4. Added a default filter for the start date as the current day in all report detail views.
4. Password Policy- Password history versions should have default 0 value and also add note specifying description of 0 value.
5. The view button in the application role is only visible when edit access is not provided to the user, but read access is granted, such as for read-only users.
5. Import user with grade,need to handle user import with inactive grade
6. PAM - Device Termination when device unassigned
6. Attribute setting- Not able to disable grade attribute
7. Audit log- Showing application id instead of application name when moving application to tag from self service app
8. AD Authentication- Audit log should be shown when changing password for AD authenticated user
9. My workspace >Teams>Users- The message "User account locked" appears whenever changing pages.
10. Forms- Field name is not displaying double spaces when inserted in JSON field
11. Workflow Config- Add Remove button for stage 1 user
12. Tenant registration flow- show password not working
13. Workflow- Pending/ Inbox- Menu action should not be visible for every application or when field is empty.
14. Identity Hub>User Filters- When applying a filter for inactive users or any other filter and then activating the same user, the filter selection is removed, but the count is still displayed.
15. Upload CSV- Not able to drag and drop csv files in import users, manager assignments, groups
16. Global module search-when product is disabled and the user trying to search then showing an error
17. Application update Workflow- Workflow is not getting trigged when application role is assigned to user
18. Partner portal-delete customer not working
19. Applications-For old google applications name getting replaced with Google Workspace
20. Password Policy>Blacklisted Password- When setting blacklisted password for user showing error
21. Password less login showing error
22. Email Notification- User is not receiving email notification
23. Version Specific > Delegation recent apps- When the delegatee is accessing the account then excluded applications are still showing in recently used apps
24. Admin MFA -on click save showing error
25. TEAMS-Menu action click showing unknown error
26. Admin Dashboard, Risk Dashboard and Insight reports are not loading
27. Taking time to load data in complete application
28. User-Activity -taking time to load data
29. AD- Recon- Push- Users are going into pending state for new AD bundle
30. Managed View- IDM value is not getting displayed
31. Notification template-need to add middlename attribute under system variable
32. Users | Sort by filter should be beside Sort Order
33. Role mandatory-In import assign application there is no validation, without role also able to assign
34. Identity Hub>User>Setting- Admin should not be able to lock himself from setting
35. Suspend user-for AD update , remove application
36. AD application - In Suspend user, application status is showing fail updation state
37. Group-Recon pull-update and full sync assign/update-taking too much time
38. AD Group pull || Only under 1000 member getting pulled (Connid Restriction)
39. Remote group-bulk assignment showing error, "failureReason" : "javax.naming.ServiceUnavailableException: [LDAP: error code 51 - 0000200E: SvcErr: DSID-031A1202, problem 5001 (BUSY), data 0 ]; remaining name 'CN=allgroup,OU=allgroup,dc=cymmetri,dc=in'"
40. When Add group pull/push then server getting stuck due to memory increase.
41. Remote Group assign in bulk-Not moving all user in group under AD
42. AD Application new bundle- If user is inactive in AD, and same user is updated in Cymmetri then user in AD should also get updated
43. AD Recon push-User not getting push in target (New bundle)
44. Adaptive MFA-Blacklisted ip configuration- Not able to enter range
45. Phone number - Phone number and country code validation issue
46. Partner portal- Company name letters should be extended to 100 characters and space at the end should be trimmed
47. Partner Portal- On the admin approval dashboard page, column name width should be identical, and if the name is extending then the extended name should be shown in hover.
3.0.12 Beta (18 April 2024)
1. Upload filename length validation: When a file is uploaded in the form of a profile image or Excel file import then validation is added for the file name length. Implement pages are as follows (20 characters): Selfservice profile picture, Application image, and Excel upload in User import, manager assignment, application assignment, group assignment,Role import
1. Application> Roles- Add toggle button to Active /Inactive status.
1. Manager notification: receiving user name required manager name
2. For the remote group, when a user or application is assigned to the group, they will not be assigned to Cymmetri until they have been successfully assigned to the target.
2. Add application/device name with space,Space should be trim
2. Workflow initiated for form but form is getting updated without workflow approval.
3. Workflow Config: After creating work flow now user redirect to workflow config page and Now we can't active workflow if approver not configure in workflow config.
3. Users> Activity- Filter and search should be added in user activity
3. In application setting if show to user flag off then also application show in recent application.
4. Workflow-"Save" button should remain disabled unless some condition is mentioned
4. Unable to identify application properties data type where value is empty
5. Application SSO-attribute mapping-for duplicate entry, a message should be shown on the same screen, refer other modules for the duplicate entry error message
6. Lifecycle Mgmt>Hook Config - Search filter is not working
7. Amaya Connector- Show complete name on tooltip
8. User Setting- Change validation message for all three tasks( Active, Inactive, Delete)
9. Workflow Configuration- If the approver is not present then workflow config should not get active
10. Partner Portal - Add Asterisk (*) for marked fields
11. Partner Portal- The validation message indicates that spaces are acceptable, but the field is not currently allowing them
12. Partner portal- Company name letters should be extended to 100 characters and space at the end should be trimmed
13. Amaya-Param getting duplicate
14. Trigger email to user when MFA max attempted in login
15. Master > Audit logs- Audit for fields created or updated in Master is not showing except for Grade
16. PAM Device- Not able to search PAM devices from my workspace
17. Application add with space,Need to handle space in backend also as temporary fix deployed from UI side
18. Rename- Dynamic json connector to Amaya
19. Amaya connector- Rename Dynamic Json connector to Amaya
20. Dynamic Json Connector- Text is overflowing tag border
21. Delegation- User should not be able to save delegation when start date is in past.
22. Amaya-policy map-felicity-If for policy map attribute not generated then default value should be there
23. Add application-For policy map default should be off
24. Update pagination offset - label and placeholder
25. Amaya-Response getting hide
26. Rename Amaya provision sub tab to User Configuration
27. Amaya-Policy map,tooltip overlap issue
28. Partner portal-under cymmetri customer total user count showing-1, actual available-12
29. Recon- Modes should be non editable
30. Import users via CSV/recon- Users should not be imported/ should show error when particular usertype, department ,designation fields are inactive
31. Load Test Data: Identity Hub> Users- Pagination is not working when multiple users(Load) are present
32. Workflow- Workflow popup box is showing unknown but in pending workflow is going into requestor manager
33. User-Filter with custom attribute not working on below data
34. AD Application new bundle- If user is inactive in AD, and same user is updated in Cymmetri then user in AD should also get updated
35. AD Recon push-User not getting push in target (New bundle)
36. Recon- Timing is not correct
37. Application delete-Deleted application present under Provision rule, even after application deleted
38. Processing please wait message should be changed, when no data is entered and clicked on preview assertion
39. Deprovision- User is getting suspended when the deprovision rule is executed via scheduler when no end date is applied or status is inactive
40. Reports> Filter- Showing error message to enter start and date when resetting filter or applying any other filter.
41. Remote Group assign in bulk-Not moving all users in the group under AD
42. To verify user deleted from AD OU and cymmetri admin trying to assign remote group
43. AD application - In Suspend user, application status is showing fail updation state
44. Remote group-bulk assignment showing ServiceUnavailableException
45. Group-Recon pull-update and full sync assign/update-taking too much time
46. Ad Application- Application assignment is going in failed state , but deleting application is also getting failed
47. Assign user to remote group is failed
48. AD application recon- When workflow is configured and recon is executed, then user is going in pending workflow
49. AD New Bundle- Thumbnail Photo is reflecting incomplete(In hex form) in AD
50. Workflow- Workflow popup box is showing unknown but in pending workflow is going into requestor manager
51. Recon-Name not present then also showing error for the duplicate
52. AD application - In Suspend user, the application status is showing a fail updation state
53. Custom attribute Import via API EXT- Password should be encrypted form when imported
54. SSO-Openid not working on QA, same working on dev
55. Multi node-Application assigned with the role, all users getting assigned but still import showing in progress
56. API ext (API Client) User not getting created
57. Deprovision rule-user data not getting updated when changing Grace Period from 3 to 0 days
58. Unable to add Gmail account on Android after logging into Cymmetri
59. Tenant specific> Reset OTP config- Not able to save configuration
60. Partner portal- Display validation message specifying some fields are missing
61. Grade workflow- Preference config popup box is showing the user name but pending is showing Unknown
62. Group recon pull-when space is in name then not going in ignore case
63. Workflow- Sequence for approver is mismatched in the preference config popup box and pending workflow
64. Workflow- Workflow in the preference popup box is showing the user name but in pending showing unknown when applied for user list or grade
65. Workflow- When approver is set as reporting manager and application workflow is initiated then preference box is showing approver name but pending is showing unknown
66. Schedule report- cron not getting updated, from hourly to change once in day then also report receiving hourly
67. creating the user through the JIT Message was rejected due to the issue instant expiration
68. PAM device is assigned then on access showing a message for the disconnected
69. AD Adaptor token- Token is showing Invalid
70. PAM Device- showing processing plaese wait validation message with 403 forbidden error
71. Application- Showing processing please wait validation message.
72. Loadtest-workflow page not loading
73. Expired session: Showing blank page when clicked on user setting logout tab
74. Suspend Config- User should be able to disable suspend config
75. Deprovision- Deprovision via scheduler is not working
76. AD-Recon pull with update-If user data removed from AD and taking pull,then this data not updating in the cymmetri user data
77. group push-not taking user in AD at the time of update
78. Daily scheduler running late
79. AD Application- Showing error when trying to update profile picture
80. MFA- Rename SMS Authenticator to OTP Verification
81. Global Auth- When the "Single Session > Block Session" setting is enabled, attempting to log in with the same user account should block the user even before verifying Multi-Factor Authentication (MFA).