Changelog
Follow up on the latest improvements and updates.
RSS
new
April 2024
Provisioning
Changed:
- The grid when adding an entitlement to a business rule is now limited to 500 records. Please search if your record isn't visible.
- Reconciliation report on Active Directory accounts (access)
Fixed:
- Slug replacement of person.accounts.<systemname> now searches for the full path ".accounts.<systemname>." instead of ".<systemname>." this could lead to a systemname which isn't resolved properly please check the code if this is the case.
- AD container field is empty in notifications
- Stored account data is missing casing check not preventing duplicates
Service Automation
Changed:
- Recertification - report improperly assigned products - multiple assignments
Fixed:
- Product without a resource owner configured cannot be requested through managed users
- GitHub code snippets remembers filter
General
Changed:
- Allow to update the source of a group in HelloID API
new
March 2024
Provisioning
Changed:
- Ability to import the current account state from Active Directory as HelloID entitlement state.
- Fields from all target system types configured for notification are now available as data. instead account. Already configured notification & notification templates are migrated.
- Fields from PowerShell v2 update action are filtered based on the mapping before the differences between previousData and Data are calculated.
Fixed:
- Blocked incident should only appear on enforcement and not when running evaluation
- External ID is not visible in the blocked person grid when a contract is missing in the source import
- [hotfix] Update tasks fails with an error that the person couldn't be found in the vault.
Service Automation
Changed:
- Add GitHub topic filters to snippet overview
- Add optional parameter to get disabled Automation Tasks with API v1
- PowerShell code snippet icon + readme change of source (main branch) and filename ("Icon.png")
Fixed:
- Page subtitle too large
- Change "Unassign managers" to "Unassign resource owners"
- A single Task data source that is used for multiple fields gets cancelled too much (hotfix)
- Product ‘create’ gets logged as ‘update’ in elastic (hotfix)
- Product API v1: managerCanOverrideDuration cannot be changed (hotfix)
General
- Remove Scheduled reports for Access Management (end of life)
- License count snapshot time/date is unclear
Provisioning
Changed:
- Expected\pending entitlement state is removed. Only granted entitlements are shown in the entitlement overview
- Import/Export of the field mapping in Active Directory & Powershell v2 target systems (A preview of the import is shown) - Import is limited to 50 fields
- It could be that only last week's historic actions are visible in your portal due to a one-time migration. In this case, actions over a week are visible in the audit logging.
- Added static analysis of javascript on all the mapping fields Target & Source (Limited) when running a preview
Fixed:
- Popup overflow not working correctly on the actions screen in some scenarios
- Could not save RAW HTML notifications after editing
- Notification (Evaluation overview & Blocked overview) logging is now available in the enforcement logging
- Notification (actions) logging is now available in the entitlement logging
- Non-granted entitlements are seen as granted
- Custom fields in notifications fallback not resolved correctly
- Errors in the AD OU scripts are now logged (also visible in preview)
- Show a more detailed error when no accountRef is returned from an update account script (PowerShell)
- Fixed overlay position of some origins in the enforcement overview
- When removing a field the correlation settings didn't update correctly
- Only create an incident for blocked entitlements when running an enforcement
- Snapshot differences could grow larger than the visible area
- The preview spinner could indicate that the preview mapping was finished while it was not yet completed
Service Automation
Changed:
- General improvements of grid overviews on Admin portal
- GitHub code snippet support for Delegated Form tasks
- GitHub code snippet support for powershell data sources
- Made the department and Job title filters searchable in managed users/products
Fixed:
- Managed Products > user overview does not reload on product request / return
- Product request time in request details is not correct (different timezone)
- Slashes in product name result in 404 error in managed products
- Fixed infinite task status spinner in delegated form activities overview for deleted forms
- Fixed missing task status in the request history & my products screens
- Fixed some cases of missing information on sent emails cards in product requests in request history
- HelloID User groups could get temporarily out of sync after AD sync
- A product’s risk factor is still shown in managed users details even if risk factor was disabled for that product
- Updating a product or category using the old API V1 endpoints will no longer remove the non-english translations of their properties
- Request history card layout was fixed (column width not wide enough)
- Request comments in the request timeline (inbox and my products) now fully displays long comments
new
January 2024
Provisioning
Changed:
- Added elastic audit log when entitlement is manually unmanaged
- Show null values while mapping or viewing raw data
- hotfix: Allow - and _ in names of fields in Active Directory & Powershell v2 target connectors.
Fixed:
- Text overflows when you publish a Rule when using long rule or system names
- The location of the Sub-permission pop-over from the person overview is not correct
- Active Directory target system external uniqueness preview is missing custom system configuration
- New custom fields are not selectable in source system mapping without refreshing the page
- Error is triggered when a create action ended in a correlation and the update action script was empty on a Powershell V2 target system.
Service Automation
Changed:
- Added enhanced request state column and filter to Managed users > product overview
- Added enhanced request state column and filter to Managed products > user overview
- Added category and availability state filters for Managed users > product overview
- Allow specific product return instead of default the latest for Managed products > user overview
- Various smaller UI enhancements for managed users and managed products
- HelloID page title is a bit smaller resulting in a better fit for tablet and mobile view
Fixed:
- Validate regex pattern in form editor UI
- Disabled approval workflow can still be selected in Admin product CRUD
- Managed users > request on behalf doesn't close modal upon request
Important
- Provisioning requires the newest agent for communication
Provisioning
Changed:
- Export to csv for blocked users in source import
Changed in AD:
- Support conditional notification events
- Improved account mapping UI
- Ability to configure mapping for enable, disable, and delete actions including updating these attributes on the configure action (delete only updated when the "delete account" option is disabled)
- Removed the additionalFields object for the account which makes using data in post AD scripts and notifications easier (current notifications & post AD scripts are automatically migrated)
- Selection of attributes for which the built-in uniqueness check is executed (limited to 10 fields)
- Select for which action(s) the external uniqueness check is executed.
- Which action is executed is available in the external uniqueness check.
- No required mapped fields anymore but when the field is (potentially) required for AD we've added [Required] to the field description
- Import & export mapping is not available
- Allow override of iteration value, however, the internal fields first need to be unique to get to the external check
- Account create fails when correlation configuration incomplete
- Only fields that are mapped are selectable for correlation (this is not a static list of selectable fields anymore)
- Mapping type none allows for retrieval of properties for notification use as example
Fixed:
- Warning shown as Information icon in connector logging
- Entitlements are revoked when unmanaged was selected when removed from a Business rule in specific situations
- Scheduled import was skipped when we were downscaling the schedular instances (only appeared a single time)
- RAW data on mandatory DisplayName field issue with casing
- No error if supplied contracts have an unsupported format
Service Automation
Changed:
- Show user selection in a page instead of a modal for managed products
- Show product selection in a page instead of a modal for managed users
- Added search bar to Self Service category view
Fixed:
- Back-end enhancements for product assignments
- Data source execution during data source configuration fails
- Snippet icon not displayed correctly in snippet catalog
- Can not navigate back to categories overview for none EN languages
General
Fixed:
- license information popup was not in the correct positions in some browsers
- Could not delete custom mail domain when the wizard wasn't finished on our West US cluster
- Security issue: No limit on the maximum number of retries for Legacy Mail, SMS & Radius MFA (We extend special recognition to Max van der Linden of Secura for the discovery of this issue)
Important
- Provisioning requires the newest agent for communication
Provisioning
Changed:
- Powershell V2 target system is final and ready for production use
- Autocomplete option when creating/updating scripts of a Powershell v2 target system is filtered based on the scenario of use
- Input variables of scripts from the Powershell V2 target system are filtered based on the scenario of use.
- Improved exception handling (better and clearer fail messages) when a vault snapshot creation fails.
Fixed:
- Person.accounts.systemName doesn't resolve to a variable in notifications
- Error on disable or delete action when a person is missing in Powershell V2 target system
- Transfer suggestion broken after the main person is deleted after a previous transfer from a deleted main person
- Actions keep the state running although executed
- Actions not executed for 2 hours on Powershell system with concurrent actions on 1
- Exchange online proxy addresses are not updated because of case sensitivity in Azure AD target system with Exchange enabled on an update account action
- Readme links do not work properly when importing a source system and loading the options from GitHub
- Switching the "Use separate script for each action" option on the permission definition causes the script to be emptied in the account actions in the Powershell V2 target system
- Field mapping form throws an error when pressing enter in the name input field of a Powershell V2 target system
- Field mapping Array should not have notification selected of a Powershell V2 target system
- Audit logging Powershell target actions are always registered in Elastic as Powershell Cloud system type
- Object type account data storage issues with PowerShell v2
- Default mapping script for UserName not compatible with on-premise PowerShell v2
Service Automation
Changed:
- Category view for product overview
- Increased PowerShell sessions in local SA agent from 5 to 10
- Automatic task execution on local SA Agent (re)connect when task could initially could not be executed
Fixed:
- Wrong local/ prefix for selected groups (Delegated Form)
- Admin portal: categories not a-z sorted in product administration UI
- Product actions new - console error when editing or creating task without a form
- Clarify no agent online message in data source configuration
- Diacritical characters in grid export are incorrect
- Delegated forms with automation tasks keep triggering the automation tasks
- Delegated forms not shown to end-user if missing icon and no FA-icon configured
- New category view checked for the wrong HelloID right (hotfix)
- Data source used as input for other data sources not working (hotfix)
- Dual list data source canceled on page load (hotfix)
General
Fixed:
- Pay-as-you-go license information popover location incorrect
new
October 2023
Important
- Provisioning requires the newest agent for communication
Provisioning
Changed:
- Support mapping for object type (We do not support nested objects) in the Powershell V2 target system
- Powershell V2 mapping support for an array type
- Improved Powershell source execution resilience
- Improved uniqueness script result validation and error messages
Fixed:
- Added more logging when updating or creating an Exchange Online mailbox in Azure AD target system
- Improved retrying connection for mailbox actions in Exchange Online for the Azure AD target system
- Removing all actions from a mapped field in Powershell V2 could result in not being able to create a field with the same name until you refresh the page
- Account correlate create success output is ignored in the create action of a Powershell V2 target system
- Account reference is required for the preview of an update account action (which should not be required).
- Disabling the uniqueness check on an action when the Onpremise agent is used will result in an error when that action is executed.
- Snapshot logging cannot be displayed for scheduled snapshots
- PowerShell v2 default mapping error caused on entitlement revokes when the person no longer exists
Service Automation
Changed:
- Add API support for new product actions
- Allow URL filtering on managed products overview
- Allow URL filtering on managed users overview
- Import GitHub code snippets for new product actions
- Enlarge modal for Product action CRUD UI
Fixed:
- Delegated Form $requester not correctly resolved at task retry
- Too much recursion error in console in product edit screen
- Managed Products - Product name not displayed when using multi line product description
- Groups for products and delegated forms are not shown in admin UI
- Delegated forms with automation tasks keep triggering the automation tasks (hotfix)
- Improve inbox on landscape tablet view (hotfix)
- OS 15.7 devices can't login (hotfix)
General
Fixed:
- Wildcard certificates with more than two dots in the full name were seen as faulty certificates when setting up a custom domain
Important
- Provisioning requires the newest agent for communication
Provisioning
Changed:
- Import source system from Tools4ever B.V. Github
- Iteration support Powershell v2 target system
- Limit the number of fields in the form configuration to 50
- The key value of a form field is limited to 2048 characters
- The default value of a form field is limited to 2048 characters
- The description value of a form field is limited to 2048 characters
Fixed:
- Mapping an attribute with a datetime string value results in an error within Active Directory
- Grid total row count stuck infinite loading loop after scrolling while reloading
- Entitlement overview grid could stay in loading when the request is taking a long time
Service Automation
Changed:
- Add additional information and filters to managed users overview
- Add additional information and filters to managed products overview
- Clarify selected record of form elements
- Improve usage of available space in end-user UI
Fixed:
- Disable mark as succeeded button while waiting for feedback
- (multi select) grid total records placeholder shown while loading data source
- Request details returned action placed under the wrong header
- Unclear Dutch message when requesting a product more than once
- Updated HelloID docs links in default PS scripts for administration pages
- Updated dual list form element configuration regarding source (left) and destination (right) data sources
- Product action execution error when user's manager refers to a not existing user
- Minor UI changes to Admin request history and My Products
- Intellisense does not work for existing product actions PowerShell tasks
- SelfService administration can not handle ‘requesting’ requests while trying to approve
- $requestedFor in data sources does not work when requesting a product using managed users and managed products
- iPads do not display the request product buttons correctly
- Disabled overlay in user interface on smaller screens (iPad) (hotfix)
General
Fixed:
- Wildcard certificate not valid when it contains more than 2 dots in the domain name
new
August 2023
Important
- Provisioning requires the newest agent for communication
- SA Agent upgrade to .NET 6.0(included in agent setup)
Provisioning
Changed:
- Suggestion of variables in notifications
- Correlation support Powershell v2 target system
- Increased limits of notification template field value to 2048 characters
- Limit the number of fields in a notification template configuration to 50
- Agent backoff (retry connection) mechanism improved on disabled tenants or agents removed from the tenant
- Removed some non-trivial and not working timezones from the schedule list (this includes all offsets using minutes and not whole hours)
- Upgraded Exchange online Powershell module to version 3 in the Azure AD built-in connector (Only modern authentication is supported other authentication methods are deprecated).
Fixed:
- Hovering over the origin label in the evaluation history actions view shows popover incorrectly
- PowerShell editor dialog resizes issue
- A incorrect error is shown when no domain is selected in a notification for a mail notification system
- Preview person selector size and dropdown size mismatch
- Adding or removing '.' in an existing key field in formly JSON results in broken forms
- Grid issues loading data while scrolling
- Longer requests to retrieve AD groups when selecting entitlements can result in a grid that stays loading
- Notification event is not triggered for Azure AD target system when the account is already enabled or disabled for enable/disable actions
- Notification configuration save button stays disabled after switching to the notification system or notification template
- Performance improvements in the front-end
- Security improvements
Service Automation
Changed:
- Update my products overview with new design and request state filter
- Add total records count to grid form element
- Support SA (cloud) Agent for product action executions (release)
- Support variable autocomplete for new product actions
Fixed:
- Product segregation has incorrect text markup
- HelloID Login page markup inconsistency
- Fix inconsistency font sizes in form elements
- Fixed issue where UI did not show submit button in managed users screen
- Failed delegated form tasks are now reported after submission in notification center
- Required fields, without a selection, using a data source do not block form navigation
- Form using a text area form element and specific data source causes blocked navigation
- Task retry from task history not working
- Product assignment with required comment is not working in Admin Panel
- Multi checkbox form element could lose selected values after navigating
General
Fixed:
- Removed API endpoint https://your-company-name.helloid.com/api/v1/users/addUserCredentials/{UserId}
new
July 2023
Important
- Provisioning requires the newest agent for communication
Provisioning
Changed:
- Ability to use and manage a Powershell Notification system instead of the built-in mail notification system
- The number of notifications is limited to 1000
- The number of notification systems is limited to 10
- The number of notification templates is limited to 10 per notification system
- Notification System configuration and template fields value is limited to 512 characters
- Notifications are now alphabetically ordered by name
Fixed:
- Pending actions are not updated\cleared when entitlements are unmanaged.
- Mapping preview AD/Azure AD does not get canceled
- No fields can be selected for fields of type boolean even when the source data field is of type boolean
- Retried account update doesn't show the retry label in the evaluation report
- Mail domain validation pincode rejected
Service Automation
Changed:
- Add button for default PowerShell script example
- Add new variable support for the new product actions (beta feature): $approvalHistory, $requester, $requestedFor and $manager
- Added support for the new product actions in the Admin panel request history UI (beta feature)
Fixes:
- Fix markdown preview rendering matching end-user rendering
- Make product save feedback more clear when using incorrect price value
- Product actions (automation tasks) not on new line in Admin portal
- Delegated forms submission detail side slide in too small
- Local administrator in new HelloID tenants does not have self service rights
- Request administration displays date/time in wrong timezone
- Default selection grid does not work
- Product crud approval workflow dropdown not sorted A-Z
General
Changed:
- Management portal exceptions are now logged in Stackdriver
Fixes:
- Add a new custom mail domain isn't working
Load More
→