In Product Releases, RAC/M Identity
0



RAC/M Identity™ is our simple and effective identity governance (IGS) solution that enables large and small enterprises to understand and manage the complex relationships between users and their access to physical and digital resources, on-premise or SaaS.

New Override Configuration for Self-Service Access #3402

Changes were made to the option for Self-Service requests availability enabling administrators to override the default asset settings (Groups in this asset can be requested in an identity access request and Groups in this asset can be included in a role modification request) for access requests and role modification requests in self-service . This allows greater control over the inherited settings from superior assets.

  • Availability in access requests: Administrators can now specify if access requests for the group should follow the asset’s configuration or be set to Available or Not available manually
  • Availability in role modification requests: Similar to access requests, role modification requests can now be individually configured to either inherit the asset’s settings or be manually adjusted to Available or Not available.

MINOR IMPROVEMENTS

  • Added configurations for temporary file management. #3202
    • Two properties have been added to manage the lifecycle of temporary files in the application.
      • temp.folder.path
        • The path for temporary files used by RAC/M Identity. It is important that the path refers to a folder that will only be used by RAC/M Identity.
        • Default value: ./temp on UNIX/Linux and .\temp on Windows, so the folder will be created in the RACM installation location.
      • temp.folder.clean.on.start.enable
        • Controls automatic cleanup when the application starts. When enabled, the folder referenced by temp.folder.path will be recursively deleted and recreated when the application starts. If an error occurs during file deletion, the application will still start and record that the temporary folder was not cleaned up.
        • Default value: true (enabled)
        • When set to false, temporary files persist between restarts
  • Activating a role now creates a completed role change request to indicate the origin of account changes. #3324
  • Increased columns size related to account and group descriptions in the database. #3156
  • Account change requests resulting from group modifications within a role change are now consolidated by role. #4281
  • Added creation and last modification date fields in account and identity lists. #3728
  • Added audits for correlation operations in the correlation modules. #3436
  • Added a submit button in the top bar of the campaign review page. #4255
  • Added a configuration for the location of temporary files via the temp.folder.path property (default value: ./temp). #3202
  • The role name generated during a multi-role modeling session now uses the value of the extended attribute instead of its external value. #4297
  • Added an indicator at the top of the campaign detail page to clarify that the campaign must be completed. #4293
  • Improved the display of incremental campaigns on the creation page to clarify forced filters. #4293
  • Added a configuration for the ICF server startup wait time via icf.server.start.wait.millis (default value: 120000). #4308
  • Added a confirmation prompt when canceling a campaign. #2682

CORRECTIONS

  • Fixed the display of the loading indicator on the task modal in self-service. #4191
  • Added confirmation message when creating a new ICF connector. #4219
  • Fixed permission issues on the self-service homepage. #4262
  • Fixed display of the last modified date in the identity detail view. #4282
  • Fixed a NullPointerException during partial granular approval. #3262
  • Added validation to prevent creation of extended attributes without a technical name. #2805
  • Fixed sequence start behavior showing success even when it doesn’t start correctly if “Restart from beginning” is unchecked. #4207
  • Fixed display of dates in the execution history of restarted sequences. #4208
  • Fixed display of completed job extension task details. #2667
  • Added comment as audit reference for access request rejections. #4288
  • Added return code 0 in the legend of sequence codes. #4278
  • Fixed report generation when the directory does not exist. #4279
  • Fixed automatic download of generated reports. #4279
  • Improved confirmation message when deleting reports. #4279
  • Improved result report of access review campaigns. #4193
  • Fixed ModuleCSVUpdateTable to not end in success when the file is not found. #4290
  • Fixed SQL query for assigning dynamic roles with criteria on extended person attributes. #4302
  • Fixed display of selection in incremental campaigns. #4292
  • Excluded automatically assigned-only roles from access removal requests. #4274
  • Changed method type to HTTP GET for audit retrieval. #4315
  • Improved handling of extended attributes with different external IDs. #4305
  • Fixed email sending to reviewers who haven’t submitted their campaign. #4298
  • Fix to remaining days count in campaign details to avoid showing negative values. #4322

Previous versions

Leave a Comment

Start typing and press Enter to search