Avatier Identity Management Suite (AIMS) 2019 Spring Release
Container and Orchestration · Cloud Application Integration · Password-less Login · Multi-Factor Authentication (MFA) · RESTful API’s
Deploy a unified framework for enterprise applications, cloud subscriptions, and identity security.
Identity Anywhere
Fixed a page crash issue on the Salesforce Resource Dynamic Attributes Configuration Page. | |
Added functionality to open a support case via the configuration user interface. | |
Moved Authenticator options to their own menu under Avatier Identity Management Suite. | |
Fixed a page crash issues on the Salesforce Dynamic Attributes Configuration Page if the Salesforce connector has invalid administrator credentials specified. | |
Fixed a recurring Connector Failure monitoring email that was sent each day at 12:05 AM even though the connector was up. | |
Removed all references to Windows NT from the User Interface. | |
Updated JQuery to reduce the possibility of any cross-site scripting vulnerabilities. | |
Expanded the maximum number of characters for a text box in the configuration UI to 4000. | |
Repacked Cached Credential files with a new code signing certificate. | |
Added Ultra Mobile to the list of available mobile carriers for One Time Passcode delivered via a mobile carrier email. | |
Added the ability to export a custom click report to PDF. | |
All reports now have a default run date value. | |
Correct the Biometric Configuration page to add the field label for Client Secret. |
Password Management
Improved Password Management License Status screen to include information and links to critical password management features such as a link to the help desk password reset reports, and whether or not key security features are enabled. | |
Added a warning message on the Password Management / Security / Identity Strength section that alerts the administrator if the value is set to 0 or above 10 for the number of consecutive failed attempts before a user is unenrolled from Password Management. | |
Corrected a problem where the “Too Many Failed Attempts to Authenticate” email template was not being sent in the French language. | |
Fixed an issue when re-enrolling a user for Password Management and using One Time Passcode SMS, the SMS option was not immediately available to the user during subsequent operations in the same browser session. Now, features selected during re-enrollment are immediately available upon enrollment completion. | |
Corrected a problem where a Password Management User would be reverted to the home page if they double-clicked the continue button on a page. | |
Fixed an issue where the PB URL was being written to the audit logs incorrectly when changed in the user interface. Now the audit log shows the correct to and from values for the PB web application change. |
Single Sign-On (SSO)
Provided a fix to an issue that caused a page crash in the SSO Security page in a Docker container if an invalid cluster key was passed from a Docker Run environment variable. Now, if the data is invalid, the SSO Security page will render correctly allowing you to enter or correct the SSO Cluster key. The cluster key should then be copied to the Docker Run command for the container. | |
Fixed an issue where the Web Application Service Provider certificates for SAML applications were not saving correctly. | |
Added the ability to use Windows Integrated Authentication to the SSO angular system. | |
Provided enhanced error messages when attempting to save a SAML Web Application definition under SSO, without entering any information for Entity ID and Assertion Customer Service URL. Previous to this enhancement, when clicking save, there was no feedback as to why the application definition wasn’t saving. Now, there is an explicit message telling the user what parameters are missing from the definition. | |
Provided better error handling when attempting to add a generic SAML Web Application definition before a valid X509 certificate was installed. Previously, you could define and name the application but would receive an error on save that there was a missing certificate. Now, you will not be able to choose the generic SAML application without a properly installed certificate. | |
Fixed an issue in the SSO application definitions where the Basic Configuration page appeared normally, but the Access pages and the SAML definition pages would appear blank for already defined applications. This happened in builds 10.8.04221 and 10.8.04230. | |
Corrected a problem where users who had never accessed the SSO portal would receive a spinning wheel instead of their delegate applications. | |
Added a new Authentication context class to the SAML configuration page. |
Lifecycle Management
Corrected a button function that was improperly disabling items on the AD/Attributes page. Now, the “Don Not” buttons function on all checkboxes in the grid. | |
Fixed an error in the population of the Request Approver table when “Use Requester’s Manager as Approver is the Requester is the only Approver” option is enabled. | |
Corrected a problem that caused the Bulk Cart to fail if a role or privilege contains a special character. The correct XML escape sequences were added to prevent failure. | |
Fixed an issue preventing multiple item selection in the Lifecycle Management shopping cart that occurred when switching from ComponentArt to Telerik controls for the Lifecycle Management tree. | |
Added functionality to have Task Execution on Transfer. | |
Provided functionality to now use new Azure ADConnect PowerShell commands instead of depreciated MSOnline PowerShell commands for Office 365 integration. | |
Added the functionality to search privileges and roles from the Lifecycle Management configuration user interface. The function is under Lifecycle Management /Options/Lifecycle Catalog Search. Items in the results pane can be selected to take you right to that privilege or role definition. | |
Added a feature that allows the removal of a privilege from multiple roles in a single interface page. | |
Added functionality to add a privilege to multiple roles in a single interface page. | |
Removed ComponentArt controls from Lifecycle Management client. Replaced with Telerik controls. | |
Added the facility to cancel IE requests that have been approved and are awaiting future execution. In the workflow administrator page, you can now view and cancel any future dated request. | |
Corrected the translation of the $$$TARGET_USER_REQ_ACTION$$$ and $$$PRIVILEGE$$$ substitution variables to work with Task Automation called batch files. | |
Added the functionality to independently handle disable and delete options on HR feed events. Settings at the HR Feed LOA, Layoff and Termination event definitions will now override the global settings in Account Terminator. Each HR Feed option now has its own Disable After x days and Delete After x days settings. | |
Fixed a display issue where the Grantor page did not retain the page size setting after actioning an item. | |
Fixed an issue where the new role management feature did not properly record the user who made the change to the role definition in the audit log. | |
Additional corrections made to the Direct Reports chart where the text was rendered outside the chart boxes. | |
Corrected a problem where an account rename initiated by an HR Feed was overriding the user’s email domain incorrectly. Now, the email domain of the user is preserved. | |
Fixed a duplicate key issue that prevented the HR Feed Rename settings from being saved. | |
Fixed an issue in the Telerik Editor, where clicking on the HTML link button would cause a page crash. | |
Fixed an issue where privilege instance limit was not being honored when submitted as part of a role through the IE cart. | |
Rearranged columns on the Remove Access grid to show Resource, Privilege, Description, and Type | |
Removed the “Next” button on the results page of Muti-Request. | |
Fixed an issue where the HR feed connection page would crash when the server was set to the UTC time zone. | |
Fixed an issue that prevented Power Shell connections to be made over HTTPS. There is now a “Use HTTPS” checkbox on the page where you specify the Exchange connection credentials. | |
Corrected an issue in the approval process where requests were failing due to a “Cannot insert duplicate key row in object” error. |
Access Governance
Updated the look and feel of the left navigation with Access Governance to show more data. |