HelloID
Home
Feedback
Changelog

Changelog

Follow up on the latest improvements and updates.

RSS

new

Reconciliation

Recertification

Release 2025.06

June 2025

Provisioning
Changed:
  • Reconciliation for PowerShell v2 target system. With this you can create a reconciliation report and take action for Powershell v2 target systems. Assuming the target system has the capabilitie to read all accounts & permissions. Currently we support the processing of up to 3 million records for reconciliation. This limit includes records from all configured systems (Powershell v2 and Active Directory).
Fixed:
  • Reconciliation when starting an exclude action with the exclude related permissions toggle enabled could result in duplicate actions and exclusions
  • Reconciliation when starting an exclude action on account issues with the exclude related permissions toggle enabled will now display the correct number of actions
  • Reconciliation when starting a bulk action for actions that are already locked the bulk action will never finish and show incorrect counts
  • Reconciliation when retrieving account data for an issue results in an error the old account data is shown
  • Filtering on date account field in reconciliation report or excludes doesn't work
  • Reconciliation when there are multiple persons with the same reference for an account, the permission issues where not always checked against the correct person
Service Automation
Changed:
  • Display campaign iteration progression information
  • Distinguishing recertification campaign types in UI
  • Recertification request state filter in Insights details overview
Fixed:
  • Icons do not render in GitHub readme
  • Can not approve a recertification as a delegated approver

new

Reconciliation

Release 2025.05

Recertification

May 2025

Important
Provisioning
Changed:
  • Reconciliation: Remove exclusions in bulk.
  • Increase field mapping name limit to 100 characters for both the Active Directory Target System & Powershell v2 Target system
Fixed:
  • Clicking the account tab in the PowerShell Target system could generate an audit log entry, even if no changes were made.
  • A person merge was left in limbo when the merge occurred without creating a snapshot, and the main person was missing in the subsequent import.
Service Automation
Changed:
  • Bulk selection for recertification requests
  • Periodic reminder email of open recertification requests
Fixed:
  • Missing "Product details" and "Request details" headers in request details side slide-in for My Products, Recertifcation Requests and Recertification Insights
  • Clicking "open request" in Admin > Self Service > Administration goes to request history overview instead of specific request details
  • Delegated Form submission results in the notification center are not translated
  • Navigation buttons padding is incorrect when requesting a product
  • Incorrect icon position in task execution tab on Request History page
  • Updated the product ownership limit message to improve clarity for end-users
  • Approval workflow preview is visible when requesting a product while "Show anticipated approvers" is turned off
  • Bulk recertification approval with time limit shows incorrect numbers (hotfix)
  • Recertification: new open requests email after iteration calculated not sent (hotfix)

new

April 2025

Important
  • Provisioning requires the newest agent for communication
  • New item on domain whitelist cdn.helloid.cloud (scheduled for rollout with the May release please add before this release)
Provisioning
Changed:
  • Cancel running enforcement/actions. Allows to cancel an enforcement and all their action (with exception of the actions for which the script is already executing on the agent (onpremises/cloud))
  • Show powershell target import validation errors. Helps with detecting issues when importing target data.
  • In PSv2 Target systems, we have adjusted output filtering based on the fields defined in the mapping. Previously, we accepted any data type. However, this could lead to unexpected behavior when storing the data. To prevent this, we fixed some inconsistencies and we show a warning in preview when the data type isn't something we expect to be returned.
  • In PSv2 Target systems, 'mapping none' fields are no longer present in actionContext.Data but can still be found in outputContext.Data. This distinction allows us to differentiate between a 'mapping none' field and a field whose mapped source has a null value. A 'mapping none' field should be absent from actionContext.Data, whereas a field with a mapped source that holds a null value will still be present.
Fixed:
  • In PSv2 target systems, in preview a undefined system identifier is shown in the result data for Retrieve permissions.
  • Import permission memberships is available on the user interface of the PSv1 connector which doesn't support the functionality to import data from a target system.
  • Unmatched accounts in the import entitlements screen are missing when exported.
  • Object.x field as correlation key not properly supported when importing entitlements for an PSv2 target system
Service Automation
Changed:
  • Recertify time limited products
  • Elastic audit messages for recertification requests
  • Recertification campaign calculation summary email
Fixed:
  • Users with Recertification recertify rights cannot load the request's products and categories in the Recertification requests overview
  • Self-service inbox completed tab does not load any results when having a large amout of completed requests for the HelloID tenant (> 70.000)
  • Sending emails using the new Product actions is not working (hotfix)
  • Recertification approval messages to Elastic have incorrect index (hotfix)

new

March 2025

Provisioning
Changed:
  • Force account actions via enforcement. No longer will the force account update button start actions directly but it will mark the account as needs to be updated and will update on the next enforcement run. This contains all the advantages an enforcement run has like dependency an up to date inconditions on contracts.
  • Import entitlements for PSv2 target systems. This allows the admin to import entitlements from a PSv2 target system and prevents create actions. We recommend to import the entitlements before the first big enforcement (go live run). With this you can see in the evaluation which accounts are actually created on the first big enforcement run (go live run).
  • Deprecating PowerShell V1 Target System. With this it's no longer allowed to create new Powershell V1 Target systems. Please be carefull when deleting a Powershell V1 Target systems because after deleting such system you cannot create a new one.
  • Provisioning agent number of max Powershell session is set to 10 instead of the previous 5.
Fixed:
  • Corrupt aggregation state after system delete
  • Provisioning not working correctly when username contains diacritics
Service Automation
Changed:
  • End-of-life Scheduled Reports
  • End-of-life end-user dashboard notifications
  • Basic recertification request approval for custom campaigns (beta - requires featureflag)
  • Add links from Delegated Form activities to edit form or edit task
Fixed:
  • Upgrade font awesome from 4.7 to latest for end-user and admin
  • Form data from form row not visible if the field it depends has "hide element" as show summary value
  • Retrieving tenant license information has been improved for Delegated Forms

new

January 2025

General
Fixed:
  • Disable gateway dashboards which where visible without authentication (
Special thanks to
Yash K.
for bringing this security risk to our attention)

new

February 2025

Provisioning
Changed:
  • Show contracts as sorted in Person overview
  • Add username running the import as audit log information
  • Add audit logging on target system changes
  • Add audit logging on source system changes
  • Target snapshot overview
Fixed:
  • Mapping fields not loading after Azure AD initialization
  • AD and PowerShell connectors store account data from both relevant create and update fields after successful correlation
  • Persons could remain after system delete
  • Empty grids when tab becomes active again
  • Entitlements missing when paging results from AD
  • Progress circle animation no longer breaks when clicked
Service Automation
Changed:
  • Recertification Request Overview for Custom Campaigns (beta)
  • Display group source in HelloID admin panel
Fixed:
  • Enhanced validation of form submissions and product requests

new

December 2024

General
  • New item on domain whitelist cdn.helloid.cloud (scheduled for rollout with the May release please add before this release)
Access Management
Changed:
  • Disable adding Radius servers for authentications
Fixed:
  • The response from Users API V1 contains a googleAuthenticatorSecret property in the userAttributes object for users that have MFA with an authenticator app enabled
Provisioning
Fixed:
  • When creating new reconciliation report grid will disappear when no previous report exists
  • Reconciliation report filtering unavailable on initial load
Service Automation
Changed:
  • Disable creation of new Scheduled Reports
  • Disable creation of new end-user dashboard notifications
  • Increased script execution PowerShell sessions for local SA Agent
Fixed:
  • [Ordered] objects in Powershell are ignored by SA Agent resulting in an empty data source result

new

November 2024

Important
  • Provisioning requires the newest agent for communication
Provisioning
Changed:
  • Reconciliation report bulk actions
  • Support certificate authentication on built-in Entra/Azure Target system
  • New target systems are disabled by default and all thresholds are active (grant & revoke)
Fixed:
  • audit logging records system name is not correct (show the old value) when an system name is updated.
  • Active Directory account could be deleted when an account exists with the same sAMAccountName which isn't correlated and no unique checks are implemented.
  • Locking mechanism could cause an error on Exchange Online actions in the Build in Entra/Azure Target system.
Service Automation
Changed:
  • Custom FROM address for self service product notifications
  • Deselect the selected grid value in Dynamic forms
  • Sort Delegated Forms Categories by Name
  • Search for product name and description in Managed Products and Managed Users
  • Recertification campaign iteration preview
Fixed:
  • HelloID task handling is currently unable to manage large volumes of script errors

new

October 2024

Provisioning
Changed:
  • Reconciliation report: Support filter operators not & multiple select
  • Decreased search & filter loading times on reconciliation report
Fixed:
  • Person audit logs filtering. Target systems seem to exist forever in this filtering option this will result in being unable to select some systems when having created more that 50 systems
  • Field mapping complex modal when an error is present the modal will grow and create a scrollbar on the left.
Service Automation
Changed:
  • User department filter for custom recertification campaign scope
  • User job title filter for custom recertification campaign scope
  • Product price filter for custom recertification campaign scope
  • Report product assignments not linked to any campaign
  • Disable creation of new task data source for existing tenants
Fixed:
  • Not all departments can be selected when filtering managed users grid
  • Product assignment api doesn't accept requests without a form when form is configured for product (hotfix)

new

September 2024

Provisioning
Changed:
  • Reconciliation report filtering on AD account attributes
  • Allow person.accounts.<<systemname>>.attributes to set as person correlation field
  • Added static analysis of javascript on all the mapping fields for Source systems
  • A function is required in complex javascript mapping when previewing on source and target systems
Fixed:
  • Disable action on Azure AD with Exchange intergration returned error when object could not be found.
  • Incorrect logging datetime column size on source system logging
Service Automation
Changed:
  • Add recertification reasons to the request details
  • Risk factor filter for custom recertification campaign scope
  • Backend upgrade for Delegated Forms
  • Delegated forms can't open without recertification rights (hotfix)
Fixed:
  • When clearing the search bar in a grid filter, the filter pop-over closes
  • Multiselect grid in form with default selection and a data source input can cause infinite loading
  • Conditional visibility settings shown in form editor for text input do not match the actual settings
Load More