Provisioning

As an administrator I would like the option to also export lists in Provisioning. The possibility to export grids is now implemented in most parts of the software. There are however a lot of lists which are not exportable. For example in the business rules, which persons are in that rule. Excluded/Included persons, custom events, aggregation, etc. Could you make it that every overview can be exported?

There is currently no way to order Revoke and Grant actions for the same person. As a result, when an account switches from one business rule to another, it is possible that the Grant action is executed first, followed by the Revoke action, which could cause the entitlement to be completely lost. It would be helpful if, at the very least, actions could always be executed in the following order based on accounts: first Revokes, then Grants, and finally Updates. This would ensure that the actions produce the correct results.

Currently, pre-onboard and pre-offboard events are triggered for excluded persons. We would prefer not to send any notifications for these excluded persons.

Within this feature we review the HelloID entitlement state agains the current state of a Powershell V2 target system. Match the state from a Powershell V2 system (network state) against entitlement state (based on account entitlement reference) Match only on granted entitlements (not on open actions) Based on mismatching show the following data in a report Filter on systems & scenario & mapped account properties. This should contain all the same specifications as the current reconciliation for Active Directory. The biggest differences are that we support subpermissions in the report but it's not possible to take actions (against the target system) on the subpermissions besides exclude or resolve.

Can we support conditional event for the pre-onboard and pre-offboard events This way we can send a pre-offboard mail for each company. In example: If someone leaves for company1, we send the pre-offboarding company1 mail, and if someone leaves company2, we send the pre-offboarding mail for company2.

I would like to request that for all new source systems, all thresholds be enabled by default. This change will help reduce the risk of accidentally importing data when it isn't needed. Enabling thresholds by default will ensure that data imports are controlled and only occur when necessary, during implementation, thereby preventing unintended data processing.

We would like to remove reconciliation exclusions in bulk so it's easier to manage the exclusions. Too remove the exclusions in bulk we add support for filtering the following information: account permission name (sub permission in case sub permission issue type)

We would like to see when accounts or permissions are not imported from a target system because the data isn't valid. As example a permission is missing an account reference when returned from powershell in the import target system data script. Show overview of invalid data (tab in snapshot overview) Show info that data is deleted when a new snapshot is created (only latest is stored) Show origin of data Reason of invalid (like source -> field and error) validate all data and show (possibly) multiple validation errors Filter on origin/reason/search on displayname

Currently, when running an enforcement, you must wait for all actions to execute successfully or fail. This can lead to longer implementation times, as mistakes made during configuration may only become apparent when processing a large set of actions. To assist implementers, we would like to introduce a way to cancel running actions within an enforcement. Requirements: Add a button to cancel an enforcement while actions are still running or waiting. Only cancel actions that have not yet started or have not been sent to the agent.

It would be nice if the built-in departments filter (in the condition tab for business rules) would work when departments are send to HelloID as part of the contracts in the persons script of HelloID. Now we need to filter on contact attribute since we cannot use the drop down menu.