CzechIdM 11.2

The new version 11.2.0 of the CzechIdM has been already released! This version brings, as we could already get used to, many new features and improvements.

Support for MS-AD Cross-domains in IdM allows you to cross-assign groups of systems in trusted domains. In addition, advanced logging has been added for analysis purposes in log management (SIEM). In the previous version, IdM monitoring was implemented. In this release, monitoring has been further enhanced and extended.

The main improvement in this version was the addition of support for cross-domains. By cross-domains, we mean a set of external systems that are linked and share, for example, the same permissions.

A typical example of a cross-domains group might be the linking of multiple domains in MS Active Directory. In this case, we can have several AD domains that share groups with each other. That is, within one AD domain it is possible to assign users to groups from another AD domain. The groups are thus shared across the entire group of domains (cross-domains). From the end user's perspective, the systems thus appear to have the same set of groups.

The goal of cross-domains in CzechIdM is to connect systems as described in the example above and to allow to simulate the same property, i.e. that individual group can be assigned to any system in the same cross-domain group.

You can find more about this feature here.

One of our main missions is to improve UX. In this release, we improved the display of changes in the provisioning archive, with the goal of making sure that changes are visible not only in single value attributes, but also across multiple value attributes. Individual values are visually separated by color to ensure easy orientation. A filter has also been applied to the multi-value attributes to ensure that only modified values are displayed.

Based on users requests, a new operation has been added to allow bulk role assignment to multiple users directly from the role detail.

Hint 💡: This operation allows you to select another role in addition to the role from which it is started. This gives you a tool to assign multiple roles, to multiple users at the same time.

1. #2883 - Cross-domains
2. #2717 - Enhance audit logging in the text log of CzechIdM
3. #2914 - Multivalued attributes comparison highlight.
4. #1028 - 1) upload and display image / delete image
5. #2711 - Support 'Windows authentication' in the wizard for the SQL Server database table
6. #2879 - FE: Closable panels
7. #1195 - Form values - add filters by value
8. #2884 - Monitoring: Add evaluators for errors in queues
9. #978 - Dto mappers - new layer
10. #2867 - Monitoring: report with last results in notification
11. #2920 - Bulk action: Assign role to identity from role side
12. #2873 - Monitoring - Column settings - use loaded entity instead call BE
13. #2911 - Monitoring: Add url link to agenda with monitored record
14. #2881 - Monitoring: rest endpoint shortcuts
15. #2202 - Main form definition consistency solved on service level.
16. #2918 - FE: find assinged roles by role text
17. #1065 - Link to entity in virt. system tasks (for deleted AccAccount)
18. #2872 - Monitoring - Add filter for show only last results
19. #2619 - Report rendering processing
20. #437 - Force removal of eav attribute definition
21. #813 - Identity configuration - make contract properties private, add default contract state
22. #2916 - Rpt: Run report again with different setting
23. #2876 - Eav: Create info component for form value
24. #2874 - Monitoring: evaluate monitoring from result table and detail
25. #2823 - Execute provisioning after profile photo was added, changed or deleted
26. #2059 - Check maximum height and width uploaded profile picture
27. #2926 - Bulk action: Assign role to identity for contract managers and role guarantees
28. #2731 - Eav: Support min a max validations for strings and dates
29. #2890 - Monitoring: Open detail in new page with tabs
30. #2913 - Rpt: Delete report bulk action
31. #2877 - Script: Delete scheduled script long running task after script is deleted
32. #2878 - Script: Add xsd definition for backup
33. #2919 - FE: Show selected and previsous version on audit detail
34. #2910 - FE: Sort sub roles by name in business role info component

1. 🟡 #2903 - Event: Prevent to use original source from parent event (wrong original source is propagated in event and cannot be used)
2. 🟢 #2935 - Trim connector configuration value

The changelog for this and previouse versions can be found here.