Release notes
Alias Management
The ability for end-users to manage their aliases using Fischer Identity Self-Service portal has been introduced in version 7.3.
The Alias Management feature will allow administrators to configure which user have the ability to add aliases to their profile depending on their user roles. Administrators can also configure a blacklist of words they do not want end users to be allowed to use when setting their aliases. This new feature also provides for a configurable list of domains available for use when users choose to create an alias.
Omnilert Connector
This is a REST based connector implementation which supports two dataformats:
- Subscriber
- Group
The following operations are supported:
- Add/modify/delete a subscriber.
- Add/modify/replace a subscriber's email.
- Add/modify/replace a subscriber's phone number(s).
- Export all subscribers.
- Lookup a subscriber by id.
- Add/modify/delete a group.
- Export Groups.
- Lookup a group by id.
The screen below shows the subscriber export attributes. The base attributes are in the selected box and the multilevel sub attributes are in the Source attribute sections.
Below is the import attribute screen with few attributes missing/extra as they are export/import only attributes. The union of selected attributes represent the complete list of import attributes.
The group export attributes are shown in the below image.
The group import attributes are shown in the below image.
Peoplesoft Connector Enhancement
Add Support for Row Level Security and Permission Lists as Entitlements
A new entitlements type for PeopleSoft has been introduced to support row level security and permission lists as entitlements.
Support for new permission list types as entitlements
Our Peoplesoft connector as been enhanced to support the four permission list types listed below as entitlements:
- Primary Permission.
- Row Security Permission.
- Process Profile Permission.
- Navigator Home Permission.
The below Peoplesoft resource shows the type of entitlements listed in the entitlement section:
Note: Earlier these permissions were set as attributes, which is still retained for backward compatibility of old workflows.
Office 365 REST Connector
The supported APIs for Office 365 REST connector are User, User Contacts, User Mailbox settings, User License and Group.
The supported entitlement types are Group, Role and Attribute. Only static entitlement is supported for Attribute.
User Attributes:
Group Attributes:
Workflows
The ability to restart workflows that have failed, without losing the existing payload has been added to Fischer Identity.
Connectors
The ExecuteGIGAssociatedTaskAsynchronolsy property has been added to all connectors. It is recommended that each resource workflow is defined as asynchronous due to changes made in our workflow engine.
Notifications
The ability to configure whether notifications are sent to end-users when their account(s) is disabled has been introduced.
Compatibility
Java
OpenJDK 8
Database
Database | Minimal Version | |
---|---|---|
Microsoft SQL Server | Microsoft SQL Server 2012 Service Pack 4 | |
Oracle | 11.2 | |
PostgreSQL | 9.4 |
Operating System
Operating System | Minimal Version | |
---|---|---|
Windows Server | Windows Server 2008 Service Pack 2 | |
Linux | No restriction |
Browser
Browser | Minimal Version | |
---|---|---|
Internet Explorer | 11 | |
Edge | Latest | |
Chrome | Latest | |
Firefox | Latest |
Upgrade process
The product needs to be at least at version 6.1 to be upgraded.
Fixed defects
List of defects reported by customers or implementation, does not contain defects raised internally.
- Fixed org export getting stuck during connected systems export
- Fixed instance name being too long to be stored in database table
- Fixed form not being refreshed in create new user page when changing user type
- Fixed GIG patch version being displayed in the Admin UI after new release model is introduced.
- Fixed issue with multiple DUI screens being displayed in Identity Claim identification step.
- Fixed issue with AsofEffectiveDate workday connector attribute when used in a filter.
- Fixed instance name being too long to be stored in database table
- Fixed issue with Captcha disappearing from Identity Claim page when making a selection from a drop down list that is higher in the page.
- Fixed issue where end-user is logged out Self-Service when scheduling new report.
- Fixed global variable size limitation in the Admin UI.
- Fixed various UI issues.
- Minor changes to how the records are pulled back using workday connector.
- Fixed worker type lookups in workday connector.
- Fixed issue forcing user to start over the identity claim process.
- Fixed issue with product attributes not being replaced with dynamic attributes.
- Fixed issue when deleting notifications from Self-Service.
- Fixed issue with Write Log mapper rule causing workflow to fail.
- Fixed policy engine issue failing if configured to only evaluate attribute changes in Self-Service.
- Fixed timestamp difference between change access request and new user request
- Fixed issue inaccurate results when using provisioning events filters, in Self-Service.
- Fixed issue with users who don't qualify for self-service update and are not able to login to self-service when their profile is not complete.
- Removed support for JGroup send_interface configuration attribute.
- Fixed issue with remove access request's end date being updated wrongly if request is approved after the expiration date.
- Fixed tab key not enabling the submit button on Identity Claim page when a date field is the only required input field.
- Fixed focus not going to the first input field on the screen in identity claim, forgot user id, self-registration, sms reset pages.
- Fixed access expiry notifications not going out for some users when end date is set only in policy membership table.
- Fixed issue in account claim where answers to security questions prevent user from submitting after having entered the same answer to all questions.
- Fixed issue required non-editable DUI elements.
- Fixed issue workflow stopped on Instance page but in details, the mapper is still running.
- Fixed issue with Submit button only becoming enabled after clicking out of the last required field that is filled out in Request Access.
- Fixed failing delta export.
- Fixed issues when modifying mapper functions.
- Fixed 'invalid system' issue occurring when running a downloaded workflow.
- Fixed issue Modifying Write Data Lose configurations.
- Fixed policy evaluation count displaying in the incorrect format in the Admin UI.
- Fixed issue with workflow instance status not getting updated.
- Fixed federation ui metadata providers screen not allowing administrator to edit or delete a metadata provider.
- Fixed federation ui issue when adding a new URL based metadata provider.
- Fixed preferred tab setting not working
- Fixed issue with global variables not working after upgrade.
- Fixed issue when running workflows through Studio having a GIG cluster with multiple GIGs configured.
- Fixed issue when running workflows through Studio having a GIG cluster with multiple GIGs configured.
- Fixed issue in account claim where answers to security questions prevent user from submitting after having entered the same answer to all questions.
- Fixed workday connector to support getting communication usage behavior tenanted ID.
- Fixed issue with password expiry notifications being sent twice.
- Fixed issue with AD entitlement workflows failing.
- Fixed issue with wrong status being displayed in workflow instance page and provisioning events.
- Fixed access expiry notifications not going out for some users when end date is set only in policy membership table.
- Fixed issue with provisioning events in grace period not getting cancelled when qualifying again.
- Fixed issue with notifications default search order not displaying by most recent first.
- Fixed issue with cancel button not working after making change to DUI screen elements in the Admin UI.
- Fixed issue with AD connector when using Original_DN attribute while renaming an account.
- Fixed issues with duplicate provisioning events.
- Fixed BiCo connector success status which was returned when a password reset was attempted on a user who does not exist.
- Adjusted workflow queue pending count to only account for NEW and STARTUP_PENDING statuses.
Solution Changes
Azure AD connector
Modified the connector to run the API calls using the 'Web app / API' application type instead of 'Native'. Since the 'Web app / API' application type
requires an application key (Client Secret) to authenticate, added that to the connector configuration.
Existing connected systems of type 'Azure Active Directory' should be updated with the application id and client secret key of a 'Web app / API' type application.