Changelog
Follow up on the latest improvements and updates.
RSS
Important
- Provisioning requires the newest agent for communication
Provisioning
Changed:
- Reconciliation report bulk actions
- Support certificate authentication on built-in Entra/Azure Target system
- New target systems are disabled by default and all thresholds are active (grant & revoke)
Fixed:
- audit logging records system name is not correct (show the old value) when an system name is updated.
- Active Directory account could be deleted when an account exists with the same sAMAccountName which isn't correlated and no unique checks are implemented.
- Locking mechanism could cause an error on Exchange Online actions in the Build in Entra/Azure Target system.
Service Automation
Changed:
- Custom FROM address for self service product notifications
- Deselect the selected grid value in Dynamic forms
- Sort Delegated Forms Categories by Name
- Search for product name and description in Managed Products and Managed Users
- Recertification campaign iteration preview
Fixed:
- HelloID task handling is currently unable to manage large volumes of script errors
new
October 2024
Provisioning
Changed:
- Reconciliation report: Support filter operators not & multiple select
- Decreased search & filter loading times on reconciliation report
Fixed:
- Person audit logs filtering. Target systems seem to exist forever in this filtering option this will result in being unable to select some systems when having created more that 50 systems
- Field mapping complex modal when an error is present the modal will grow and create a scrollbar on the left.
Service Automation
Changed:
- User department filter for custom recertification campaign scope
- User job title filter for custom recertification campaign scope
- Product price filter for custom recertification campaign scope
- Report product assignments not linked to any campaign
- Disable creation of new task data source for existing tenants
Fixed:
- Not all departments can be selected when filtering managed users grid
- Product assignment api doesn't accept requests without a form when form is configured for product (hotfix)
Provisioning
Changed:
- Reconciliation report filtering on AD account attributes
- Allow person.accounts.<<systemname>>.attributes to set as person correlation field
- Added static analysis of javascript on all the mapping fields for Source systems
- A function is required in complex javascript mapping when previewing on source and target systems
Fixed:
- Disable action on Azure AD with Exchange intergration returned error when object could not be found.
- Incorrect logging datetime column size on source system logging
Service Automation
Changed:
- Add recertification reasons to the request details
- Risk factor filter for custom recertification campaign scope
- Backend upgrade for Delegated Forms
- Delegated forms can't open without recertification rights (hotfix)
Fixed:
- When clearing the search bar in a grid filter, the filter pop-over closes
- Multiselect grid in form with default selection and a data source input can cause infinite loading
- Conditional visibility settings shown in form editor for text input do not match the actual settings
new
August 2024
Provisioning
Changed:
- Reconciliation report + actions on Active Directory permissions
- Export business rules
Fixed:
- Encoding issue in the javascript complex mapping for source
- Evaluation/enforcement popover styling issue
- Custom event isn't triggered when using condition isUpdated and previous value was empty
- Processing logging is shown when archiving a home folder with the option "do not delete account" enabled. This should not be shown because the folder isn't archived when the option is enabled.
- Null value of a mapped field in target resulted in toggle between field available in persons.accounts with null value or no field at all. This is fixed so no field is stored when sending a null value.
Service Automation
Changed:
- Allow URL filtering on searchstring product overview
- Make field request.toDate available in Elastic data
- Custom recertification campaigns with category filter
- Phasing Out Task Data Sources (phase 1: new tenants)
Fixed:
- Small UI fixes on EULA and initial HelloID startup page for new tenants
- Company logo not shown in task email notifications
- Delegated form cannot save custom icon
- Mails are sent for tasks that succeeded of failed in the past
- Fix color highlight for log messages
new
July 2024
Provisioning
Changed:
- Configure & enforce Toxic combination(s) based on permissions
Fixed:
- Total aggregation count on snapshot overview
- Error message incorrect when sending a notification without subject
Service Automation
Changed:
- Recertification insights - Add request detail information
- Optional CSV export for Grid and Multi select grid form elements
- Added support for fullname when searching HelloID users
Fixed:
- Saving multiple new product actions doesn't work
- Dual list shows wrong label in form summary
- Managed users > Products assignment filter does not scope on selected user
- Dropdown search in Dynamic form element doesn't work at all (hotfix)
new
June 2024
Provisioning
Changed:
- Import Active Directory system permission data and use this as granted entitlements
Fixed:
- Margin issue in evaluation/enforcement label on evaluation screen
- Mapping configuration on target system Active Directory (on-premises) and Powershell v2 have too much margin below mapping
- Correlation on primarycontract custom field not working in report and import of entitlements
- Outdated in condition information could be used when the historic action being retried
- Azure Target system correlation report could show an account twice
- Rule conditions: error on load of department or title condition
Service Automation
Changed:
- Additional filters to Recertification insights details report
- Recertification - report improperly assigned products - return on user disable
- Change mail message from "User reports"
- Add support for 'TimeZoneInfo' for SA cloud script executions
- Optional Search Parameter for API GET All Users Endpoint
Fixed:
- Script editor render bug after tab switch
- Search in dropdown doesn't show empty list if no results
- Removing group from delegated form does not revoke access when using HelloID groups directory
- Wrong manager displayed in approval workflow overview
- Dynamic Form default selection on second page broken (hotfixed)
- Automation tasks do not get marked as finished (hotfixed)
- Syncin processlogs to HelloID fails for finished events (hotfixed)
- Tasks datasources get terminated/ cancelled (hotfixed)
new
May 2024
Important
- Provisioning requires the newest agent for communication
Provisioning
Changed:
- Reconciliation suggestions on Active Directory accounts (access)
Fixed:
- Incorrect error when source import preview took too long
- Source mapping escape issue
- No contracts in condition when retrying failed grant action
Service Automation
Changed:
- Recertification - report improperly assigned products - invalid group memberships
- Recertification - report improperly assigned products - conflicting products
Fixed:
- Form elements don't handle a second datasource execution with changed execution results like they should
- Default selection remains selectec after manual deselect in Dynamic form elements dropdown or radio button
- Recertification insights group selector doesn't show selected group when it is not in first 1000 results
- Campaign insights grid filtering does not refresh grid properly
- Dynamic form crud actions on Training do not result in Elastic messages
- Rename Recertification Elastic properties ProductGUID and RequestGUID
- Elastic logs too many iteration and calculation stopped event when no requests in iteration
- Search broken in dropdowns that use a datasource (hotfix)
new
April 2024
Access Management
Fixed:
- QR Code generation for application mfa enrollment doesn't work anymore (hotfix)
Provisioning
Changed:
- The grid when adding an entitlement to a business rule is now limited to 500 records. Please search if your record isn't visible.
- Reconciliation report on Active Directory accounts (access)
Fixed:
- Slug replacement of person.accounts.<systemname> now searches for the full path ".accounts.<systemname>." instead of ".<systemname>." this could lead to a systemname which isn't resolved properly please check the code if this is the case.
- AD container field is empty in notifications
- Stored account data is missing casing check not preventing duplicates
- Psv2 preview update script account reference has value of 00000-00000-0000 when there is no account entitlement (now it's null value just like the other actions)
- Memory exception when returning to many permissions in Powershell V2 & V1
Service Automation
Changed:
- Recertification - report improperly assigned products - multiple assignments
Fixed:
- Product without a resource owner configured cannot be requested through managed users
- GitHub code snippets remembers filter
General
Changed:
- Allow to update the source of a group in HelloID API
new
March 2024
Provisioning
Changed:
- Ability to import the current account state from Active Directory as HelloID entitlement state.
- Fields from all target system types configured for notification are now available as data. instead account. Already configured notification & notification templates are migrated.
- Fields from PowerShell v2 update action are filtered based on the mapping before the differences between previousData and Data are calculated.
Fixed:
- Blocked incident should only appear on enforcement and not when running evaluation
- External ID is not visible in the blocked person grid when a contract is missing in the source import
- [hotfix] Update tasks fails with an error that the person couldn't be found in the vault.
Service Automation
Changed:
- Add GitHub topic filters to snippet overview
- Add optional parameter to get disabled Automation Tasks with API v1
- PowerShell code snippet icon + readme change of source (main branch) and filename ("Icon.png")
Fixed:
- Page subtitle too large
- Change "Unassign managers" to "Unassign resource owners"
- A single Task data source that is used for multiple fields gets cancelled too much (hotfix)
- Product ‘create’ gets logged as ‘update’ in elastic (hotfix)
- Product API v1: managerCanOverrideDuration cannot be changed (hotfix)
General
- Remove Scheduled reports for Access Management (end of life)
- License count snapshot time/date is unclear
Provisioning
Changed:
- Expected\pending entitlement state is removed. Only granted entitlements are shown in the entitlement overview
- Import/Export of the field mapping in Active Directory & Powershell v2 target systems (A preview of the import is shown) - Import is limited to 50 fields
- It could be that only last week's historic actions are visible in your portal due to a one-time migration. In this case, actions over a week are visible in the audit logging.
- Added static analysis of javascript on all the mapping fields Target & Source when running a preview
Fixed:
- Popup overflow not working correctly on the actions screen in some scenarios
- Could not save RAW HTML notifications after editing
- Notification (Evaluation overview & Blocked overview) logging is now available in the enforcement logging
- Notification (actions) logging is now available in the entitlement logging
- Non-granted entitlements are seen as granted
- Custom fields in notifications fallback not resolved correctly
- Errors in the AD OU scripts are now logged (also visible in preview)
- Show a more detailed error when no accountRef is returned from an update account script (PowerShell)
- Fixed overlay position of some origins in the enforcement overview
- When removing a field the correlation settings didn't update correctly
- Only create an incident for blocked entitlements when running an enforcement
- Snapshot differences could grow larger than the visible area
- The preview spinner could indicate that the preview mapping was finished while it was not yet completed
Service Automation
Changed:
- General improvements of grid overviews on Admin portal
- GitHub code snippet support for Delegated Form tasks
- GitHub code snippet support for powershell data sources
- Made the department and Job title filters searchable in managed users/products
Fixed:
- Managed Products > user overview does not reload on product request / return
- Product request time in request details is not correct (different timezone)
- Slashes in product name result in 404 error in managed products
- Fixed infinite task status spinner in delegated form activities overview for deleted forms
- Fixed missing task status in the request history & my products screens
- Fixed some cases of missing information on sent emails cards in product requests in request history
- HelloID User groups could get temporarily out of sync after AD sync
- A product’s risk factor is still shown in managed users details even if risk factor was disabled for that product
- Updating a product or category using the old API V1 endpoints will no longer remove the non-english translations of their properties
- Request history card layout was fixed (column width not wide enough)
- Request comments in the request timeline (inbox and my products) now fully displays long comments
Load More
→