2023.12.4

Changes in Veza release v2023.11.4

FR-1615 Enhanced Risk Details: Clicking a risk scores in Query Builder results now reveals all queries with risk levels that contributed to the risk score. Users can optionally run any contributing queries or view them on the Risks page. Risks in the Authorization Graph sidebar now show risk levels as Warning or Critical.
EAC-29067: Report summaries on dashboards can now include descriptions for better context.

EAC-29539: Fixed an issue where adding queries or sections could reset the report builder.

EAC-28270 Certification Column Grouping (Early Access): Introduced grouped columns for certifications, organizing source and destination entity attributes and result metadata for enhanced readability.
FR-1562, FR-1568 Intermediate Entity Attributes in Certifications: Certifications for Workflows that use Advanced Options > Relationship to show intermediate entity columns now include all waypoint entity attributes. Reviewers can toggle visibility using the columns dropdown to assist in decision-making.

EAC-28827 Attribute Filter Combinations: Workflow queries now support groups of attribute filters with AND or OR operators to better define the scope of Access Reviews.

EAC-29447: Exporting Certifications now includes decision columns decision_by_name, decision_by_id, and decision_by_email.
EAC-29803: Draft Certifications can no longer expire, preventing confusion.
EAC-30076: Fixed an issue with incorrect sign-off timestamps in PDF exports of Certifications.
EAC-26618: The View Datasource Snapshot Status action on the Certification Details sidebar is now hidden when no snapshots are present.

EAC-23758, EAC-26603 Attribute Filter Group Enhancements: Attribute filters for Query Builder and Authorization Graph can now use two levels of AND and OR operators. Before, all operators had to be at a single level.

EAC-30155 Identity Provider IDs: To better support environments with more than one instance of the same authorization provider, the parent Datasource ID is now shown when hovering over the following entity types:
- Okta User
- Okta Group
- Active Directory User
- Active Directory Group
- One Login User
- One Login Group

FR-1637 Enhanced Identity Mapping for Custom Providers: Identity mapping configurations can now use the Custom User email attribute to correlate accounts within two providers (such as Okta and NetSuite).
EAC-29566 Grouped AWS KMS Policy Statements: AWS KMS Policy Statements are now grouped by common attributes, consolidating identical statements across different policies into a single graph node.
EAC-29144, EAC-29145 CSV Import Improvements: Enhanced flexibility in CSV data import for custom providers, including versatile user naming, more activity status options, and searchable email user attribute.

EAC-14019: Users logging in with Single Sign On can now be assigned roles based on authorization provider group assignments. Veza administrators can now change the default role for SSO users under Sign In Settings > Configure SSO.

EAC-30081: Administrators can now easily add team members directly from the Settings > Teams page.

Last updated 4 months ago