Release notes
New REST APIs
Added the following REST APIs
List Helpdesk-Notes (List Call History)
The helpdesk-notes get end point return help-desk notes by the URI listed below
URI: /rest/users/{userId}/helpdesk-notes
Method: GET
Authorization Header: OAuth <<access_token>>
Create Helpdesk-Note (Create Call History Record)
The helpdesk-notes post end point will create a new help-desk note.
URI: /rest/users/{userId}/helpdesk-notes
Method: POST
Authorization Header: OAuth <<access_token>>
Body:
{
"text" : "<note text>",
"tagIds" : [
id1, id2 ...
]
}
Note: tagIds is optional, used to tag the helpdesk-note. Use the helpdesk-note-tag GET end-point get a list of tags.
List Helpdesk-Note-Tags
The helpdesk-note-tags get end point return note-tags by the URL listed below
The helpdesk-notes get end point return help-desk notes by the URI listed below
URI: /rest/helpdesk-notes
Method: GET
Authorization Header: OAuth <<access_token>>
Create Helpdesk-Note-Tag
The helpdesk-note-tags post end point create a new note-tag.
URI: /rest/helpdesk-notes
Method: POST
Authorization Header: OAuth <<access_token>>
Body:
{
"name" : "<tagname>",
"description" : "<tagdescription>"
}
Note: description is optional.
New Dataformats in Azure ActiveDirectory
The existing connector is enhanced with support for couple of new dataformats. The dataformats are
- Sites
- Teams
Site Dataformat
The dataformat is introduced with following export and import functionalities. The below functionalities are implemented by making REST calls to the cloud server. The security concerns (authN and authZ) are ensured by OAuth 2.
Prerequistes
An app should be created in azure portal () with needed permissions. The permissions can be any of the following based on the operation we are performing.
- Sites.Read.All
- Sites.ReadWrite.All
- Sites.Manage.All
- Sites.FullControl.All
Export
- List sites- Lists all sites created
- Get a site by Id - ExportById
- Filter sites by displayName
- Connected system look up from mapper by Id and Filter
Import
- Create Site
- Delete Site
Supported Attributes
| Attribute Name | Type | Export | Create | Delete | Comments |
|---|---|---|---|---|---|
| id | String | Y | N | N | The unique identifier of the item. Read-only. |
| SiteId | String | N | N | Y | The unique identifier of the site with which delete is configured. |
|
webUrl |
String | Y | N | N | URL that displays the item in the browser. Read-only. |
|
Description |
String | Y | Y | Y | The descriptive text for the site. |
|
lastModifiedDateTime |
Date | Y | N | N | The date and time the item was last modified. Read-only. |
|
createdDateTime |
Date | Y | N | N | The date and time the item was created. Read-only. |
|
displayName |
String | Y | N | N | The full title for the site. Read-only. |
|
name |
String | Y | N | N | The name / title of the item. |
| eTag | String | Y | N | N | ETag for the item. Read-only. |
|
siteCollection -> hostName |
String | Y | N | N | The hostname for the site collection. Read-only. |
| siteCollection -> dataLocationCode | String | Y | N | N | The geographic region code for where this site collection resides. Read-only. |
| sharepointIds -> listId | String | Y | N | N | The unique identifier (guid) for the item's list in SharePoint. |
| sharepointIds -> listItemId | String | Y | N | N | An integer identifier for the item within the containing list. |
| sharepointIds -> listItemUniqueId | String | Y | N | N | The unique identifier (guid) for the item within OneDrive for Business or a SharePoint site. |
| sharepointIds -> siteId | String | Y | N | N | The unique identifier (guid) for the item's site collection (SPSite). |
| sharepointIds -> siteUrl | String | Y | N | N | The SharePoint URL for the site that contains the item. |
| sharepointIds -> tenantId | String | Y | N | N | The unique identifier (guid) for the tenancy. |
| sharepointIds -> webId | String | Y | N | N | The unique identifier (guid) for the item's site (SPWeb). |
|
Title |
String | N | Y | N | The full title for the site. Read-only. |
|
Url |
String | N | Y | N | The destined url for the site to be created |
|
Lcid |
Integer | N | Y | N | Locale id. 1033 for English |
|
ShareByEmailEnabled |
boolean | N | Y | N | |
|
Classification |
String | N | Y | N | The classification label for the site |
|
SensitivityLabel |
String | N | Y | N | The UUID value used to mark sensitive items |
|
WebTemplate |
String | N | Y | N | The unique string which determines the template for the site . Ref: |
|
SiteDesignId |
String | N | Y | N | UUID of the out of the box design |
|
Owner |
String | N | Y | N | The email id of the user who is creating the site. |
| isRoot | Boolean | Y | N | N | true if the site is a root site and viceversa |
Teams Dataformat
Introduced a new data format teams to export, lookup and import teams. Export support filter, paging and get entry by id options. Lookup support by id and by filter options. Import supports add, modify and delete. The below functionalities are implemented by making REST calls to the cloud server.
Note: Since the Team creation is an asynchronous call, the calls to process members and channels could fail, if called immediately. It is recommended to process the members and channels in the success path.
Prerequisites
An app should be created in the with the needed delegated permissions. The delegated permissions can be, any of the following based on the operation we are performing.
- Team.Create
- Team.ReadBasic.All
- TeamSettings.ReadWrite.All
- TeamMember.ReadWrite.All
- Group.ReadWrite.All
- Channel.Create
- Channel.Delete.All
- ChannelSettings.ReadWrite.All
Export
- List Teams
- Get a team by Id - ExportById
- Filter teams by Id and displayName
- Connected system look up from mapper by Id and Filter
Import
- Create Team - Creating team from existing group is also supported.
- Modify Team
- Delete Team
- Add/Modify/Delete Members in a Team
- Add/Modify/Delete Channels in a Team
Supported Attributes
| Name | Type | Export | Create | Modify | Delete | Comments |
| id | String | Y | N | Y | Y | The unique identifier (UUID) of the team. Read-only. Filterable. |
| template.odata.bind | String | N | Y | N | N | Template to be used for creating the team. Corresponds to the template@odata.bind attribute. Ref: |
| description | String | Y | Y | Y | N | An optional description for the team. Maximum length: 1024 characters. |
| displayName | String | Y | Y | Y | N | The name of the team. Filterable. |
| visibility | String | Y | Y | N | N | The visibility of the team. Ref: |
| isArchived | Boolean | Y | N | N | N | Whether this team is in read-only mode. Read-only. |
| classification | String | Y | N | N | N | The classification label for the team. Typically describes the data or business sensitivity of the team. Read-only. |
| createdDateTime | Instant | Y | N | N | N | The date and time the team was created. Read-only. |
| tenantId | String | Y | N | N | N | The ID of the Azure Active Directory tenant. Read-only. |
| internalId | String | Y | N | N | N | A unique ID for the team that has been used internally. Read-only. |
| specialization | String | Y | N | N | N | The team specialization. Each team specialization has access to unique behaviors and experiences targeted to its use case. Read-only. Ref: |
| webUrl | String | Y | N | N | N | A hyperlink that will go to the team in the Microsoft Teams client. Read-only. |
| isMembershipLimitedToOwners | String | Y | N | N | N | Indicates whether membership is limited to owners only. Read-only. |
| groupId | String | N | Y | N | N | The unique identifier (UUID) of the group to be used for creating the team. The group should be Microsoft 365 group and it must have at least one owner. At least one team attribute should be specified in the request body for the team creation to succeed. |
| memberSettings-> allowCreateUpdateChannels | Boolean | Y | Y | Y | N | If set to true, members can add and update channels. |
| memberSettings-> allowCreatePrivateChannels | Boolean | Y | Y | Y | N | If set to true, members can add and update private channels. |
| memberSettings->allowDeleteChannels | Boolean | Y | Y | Y | N | If set to true, members can delete channels. |
| memberSettings->allowAddRemoveApps | Boolean | Y | Y | Y | N | If set to true, members can add and remove apps. |
| memberSettings-> allowCreateUpdateRemoveTabs | Boolean | Y | Y | Y | N | If set to true, members can add, update, and remove tabs. |
| memberSettings-> allowCreateUpdateRemoveConnectors | Boolean | Y | Y | Y | N | If set to true, members can add, update, and remove connectors. |
| guestSettings->allowCreateUpdateChannels | Boolean | Y | Y | Y | N | If set to true, guests can add and update channels. |
| guestSettings->allowDeleteChannels | Boolean | Y | Y | Y | N | If set to true, guests can delete channels. |
| messagingSettings->allowUserEditMessages | Boolean | Y | Y | Y | N | If set to true, users can edit their messages. |
| messagingSettings-> allowUserDeleteMessages | Boolean | Y | Y | Y | N | If set to true, users can delete their messages. |
| messagingSettings-> allowOwnerDeleteMessages | Boolean | Y | Y | Y | N | If set to true, owners can delete any message. |
| messagingSettings->allowTeamMentions | Boolean | Y | Y | Y | N | If set to true, @team mentions are allowed. |
| messagingSettings->allowChannelMentions | Boolean | Y | Y | Y | N | If set to true, @channel mentions are allowed. |
| funSettings->allowGiphy | Boolean | Y | Y | Y | N | If set to true, enables Giphy use. |
| funSettings->giphyContentRating | String | Y | Y | Y | N | Giphy content rating. Possible values are: moderate, strict. |
| funSettings->allowStickersAndMemes | Boolean | Y | Y | Y | N | If set to true, enables users to include stickers and memes. |
| funSettings->allowCustomMemes | Boolean | Y | Y | Y | N | If set to true, enables users to include custom memes. |
| discoverySettings-> showInTeamsSearchAndSuggestions | Boolean | Y | Y | Y | N | If set to true, will show team in teams search and suggestions. |
| summary->ownersCount | Integer | Y | N | N | N | Count of owners in a team. Read-only. |
| summary->membersCount | Integer | Y | N | N | N | Count of members in a team. Read-only. |
| summary->guestsCount | Integer | Y | N | N | N | Count of guests in a team. Read-only. |
| members->id | String | Y | N | Y | Y | The unique identifier (UUID) of the member. |
| members->odataType | String | Y | Y | N | N | Type of the member. Corresponds to @odata.type attribute. Ref: |
| members->displayName | String | Y | N | N | N | Display name of the member. |
| members->userId | String | Y | Y | N | N | The user id of the user to be added as member. |
| members->email | String | Y | N | N | N | Email id of the member. |
| members->roles | String | Y | Y | Y | N | The roles for the member. Possible values are: owner, guest |
| channels->id | String | Y | N | Y | Y | The unique identifier (UUID) of the channel. |
| channels->displayName | String | Y | Y | Y | N | Display name of the channel. |
| channels->description | String | Y | Y | Y | N | The description of the channel. |
| channels->createdDateTime | String | Y | N | N | N | The date and time the channel was created. Read-only. |
| channels->membershipType | String | Y | Y | N | N | The membership type. Possible values are: standard, private, shared. |
| channels->tenantId | String | Y | N | N | N | The ID of the Azure Active Directory tenant. Read-only. |
DeletedItems Data Format
Introduced a new data format DeletedItems to export, lookup and import deleted items. Export support filter, paging and get entry by id options. Lookup support by id and by filter options. Import supports add and delete. The deleted item is restored on add and permanently deleted on delete. Following table shows the resource types and delegated permissions required for each.
| Resource Type | Delegated Permissions Required |
| mastermicrosoft.graph.user | User.ReadWrite.All |
| mastermicrosoft.graph.group | Group.ReadWrite.All |
| mastermicrosoft.graph.application | Application.ReadWrite.All |
| mastermicrosoft.graph.administrativeUnit | AdministrativeUnit.ReadWrite.All |
| mastermicrosoft.graph.servicePrincipal | Application.ReadWrite.All |
Following is the list of attributes supported for this data format.
| Name | Type | Export | Create | Modify | Delete |
| deletedDateTime | DateTime | Y | N | N | N |
| displayName | String | Y | N | N | N |
| groupTypes | String | Y | N | N | N |
| id | String | Y | Y | N | Y |
| String | Y | N | N | N | |
| mailEnabled | Boolean | Y | N | N | N |
| mailNickname | String | Y | N | N | N |
| securityEnabled | Boolean | Y | N | N | N |
| visibility | String | Y | N | N | N |
Oracle HCM Data Format Changes
Renamed Role Data Format as RolesLOV
The Role data format introduced in Patch_7.7.16 is renamed as RolesLOV. Only the data format name is changed and everything else should work as before.
Role Data Format
A new Role data format is introduced to export, lookup and import Roles. This data format uses the SCIM APIs. Export support filter, paging and get entry by id options. Lookup support by id and by filter options. Import supports only modify and which manage members of the Role.
Following is the list of attributes supported for this data format.
| Name | Type | Export | Create | Modify | Delete |
| category | String | Y | N | N | N |
| display Name | String | Y | N | N | N |
| id | String | Y | N | Y | N |
| members->value | String | Y | N | Y | N |
| name | String | Y | N | N | N |
Powershell Connector Connect Scripts
Two new connect scripts are included to the default scripts shipped with the powershell.
Office 365 - Connect Modern Auth
This script can be used to make an Office 365 connection using modern auth calls. The two variables adminName and adminPass should be set from mapper to make it working.
Office 365 - Msol Connect
This script can be used to make an Msol connection. When powershell location is configured as Remote or Remote Import, a connection is created when connector session is initialized. So an Msol connection alone is required to execute office 365 cmdlets. This script can be used in such scenarios. The two variables adminName and adminPass should be set from mapper to make it working.
Google Apps Multi Domain Connector Enhancement
Google Apps Multi Domain connector user data format is enhanced to support Org Unit creation. If Org Unit for the given orgUnitPath doesn't exists in Google and below configuration is turned on, connector will create the Org Unit before assigning the path to user. This is processed during user add and modify.
Fixed defects
List of defects reported by customers or implementation, does not contain defects raised internally.
-
Fixed issue with password expiration process which intermittently update the accounts to expired without sending password expired notification or scrambling the password. The issue happens when the account's process_status is set to evaluation pending on the day of password expiration.
Feature Affected: Password Expiry and Scramble Password
-
Enhanced delta count validation to ignore skipped entries. If the duplicate handling configuration is to skip any entries, delta count validator is also skipped those entries while doing the count validation. This will avoid count validation failures in delta export resulted by duplicate entries.
Feature Affected: Delta Export
-
Fixed issues with powershell connector when modern authentication is configured. When modern authentication is used for connection, no session is returned during connection creation. So the calls depends on the session variable was failing when modern auth is used. Adjusted the calls depend on session variables to process without that when modern auth is used.
Feature Affected: Connector
Connector Affected: Powershell
-
Fixed issue with compliance reminder notifications not being sent. This issue is isolated for scenarios where there are more than 1000 certifiers and the product database is Oracle.
Feature Affected: Compliance
Downloads
The download links below are applicable to Fischer on-premise customers that host the Fischer IdM software in their environment. If you are a Fischer IaaS (Cloud) customer, all delivery of updates are performed by Fischer on a scheduled basis.
To download the latest update, you will need a login to the Fischer Release portal. If you are a Fischer on-premise customer and would like to request an account to the Fischer Release portal, please submit a request through the Fischer ticketing system.
Identity Linux 7.7.17 Installer
Identity Windows 7.7.17 Installer
DataForum Linux 7.7.17 Installer
DataForum Windows 7.7.17 Installer
Gateway Linux 7.7.17 Installer