In Product Releases, RAC/M Identity
0



RAC/M Identity™ is our simple and effective identity governance (IGS) solution that enables large and small enterprises to understand and manage the complex relationships between users and their access to physical and digital resources, on-premise or SaaS.

IMPROVEMENTS

  • Support for OAuth2 authentication when sending emails. Several properties have been added to the conf/config.properties file to enable this option:
    • mail.auth.protocol (optional, default value: BASIC)
      • BASIC: traditional username/password authentication.
      • OAUTH2: uses the OAuth2 protocol, requiring an access token.
    • mail.oauth2.token.url (optional, required when in OAUTH2 mode).
      URL of the authorization server’s /token endpoint to obtain an OAuth2 token.
    • mail.oauth2.client.id (optional, required when in OAUTH2 mode)
      Public identifier of the application (Client ID) obtained during registration with the OAuth provider.
    • mail.oauth2.client.secret (optional, required when in OAUTH2 mode)
      Private secret associated with the Client ID, used to authenticate the application with the token server.
    • mail.oauth2.scopes (optional)
      List of scopes requested when obtaining the token (e.g. https://outlook.office.com/.default).

MINOR IMPROVEMENTS

  • Saving the IP address of connected clients in audits. #4319
  • Added a section to display the campaign manager in the campaign detail view. #2254
  • Added the external email address in external identity integration requests. #3273
  • Added role request options in the self‑service Actions menu. #4318
  • Added a History button in sequence execution that redirects to a filtered history. #2871
  • Updated the sorting of all application lists to display items in alphabetical order. #2968
  • Improved the provisioning process for logical applications. A new provisioning mode is available for assets to clarify the type of provisioning needed for each asset. #4317
  • Added start dates when creating access requests and handling their modification upon task approval. An optional new property is available: self.service.new.request.start.date. Default value: 2y. #13
  • Items executed in the sequence execution detail now use real links, enabling actions such as opening in a new tab. #3801
  • Added more descriptive execution logs when unauthorized access occurs in campaigns. #3438
  • Clarified the use of priority on the delegation group detail page. #2771
  • Added a Source Group column in the group list. #4333
  • It is now impossible to submit an access request without at least one requested access. #4309
  • A filter field has been added to enable searching by technical name for asset groupings in the materialization module.#4372
  • Updated the commons-fileupload library to version 1.6.0, which is not vulnerable to CVE-2025-48976.

CORRECTIONS

  • Fixed profile pictures display on the People screen. #4304
  • Fixed role provisioning logic to avoid removing accesses when a static role removal occurs while the identity is still automatically assigned to the role. #4249
  • Fixed display of access details for an identity when a role is inactive. #4220
  • Fixed display of approval options related to groups when the owner differs from the asset owner. #2700
  • Fixed the language change text on campaign pages. #4316
  • Fixed modules handling CSV files when executed with a CSV_PATH that contains special characters. #4342
  • Fixed account activation during provisioning when another activation request references a null account. #4343
  • Fixed the ModuleSendEmailFolder module to include file contents in the email. #4348
  • Added detailed execution logs and attempt resolution for group removal provisioning errors. #3664
  • Updated the server endpoint for fetching the audit list to use HTTP POST instead of GET. Prevents query-string overflow issues by moving parameters into the request body. #4345
  • Added a delay before popup activation and deactivation on the asset screen to fix a display issue. #4354
  • Fixed display showing identity as completed in external contractor creation when selecting “Create a new identity.” #4366
  • Fixed logic in ModuleModifyAccountFromAccountMng for retrieving account UID during account materialization to prevent duplicate logging. #4392
  • Fixed date display format in admin-mode lists to show the most precise format. #4396
  • Correction to the creation of account change requests so that strategies are no longer applied during materialization. #4374
  • Visual corrections in the sequence list when the description is very long without spaces. #4373
  • Fixed options that were unavailable for custom reports on the reports page. #4426
  • Fixed several security issues and updated third party libraries to latest version.

Previous versions

Leave a Comment

Start typing and press Enter to search