User Guide
Release Notes

2023.2.20

Insights

  • A new Edit Report mode provides a significantly improved experience for customizing built-in and user-created reports. Using this mode, you can:

    • Update report names and descriptions

    • Add, remove, and edit queries in a report

    • Customize sections and section titles

    • Change report visibility settings

  • Reports have been re-categorized to reduce the overall number of sections and make insights easier to find. Many built-in queries have been renamed for consistency and readability.

  • The Recipes page is now Remediation > Recommendations.

Integrations

  • Added support for additional Google Group attributes: AllowExternalMembers, WhoCanModerateMembers, WhoCanJoin. Filters on these properties enable identification of groups configured to grant access to users from outside of the organization.

    • The Veza integration requires the additional scope https://www.googleapis.com/auth/apps.groups.settings to gather this metadata. You must also enable the Groups Settings API for any projects to discover.

  • The Configuration panel now provides a more streamlined experience for managing Veza integrations. All integrations are now shown on a single page, with the option to filter, view additional details and pause extractions at the discoverer or data source level. The Add New button now offers the option to add integrations of any type.

Platform

  • Added the option to delete unused API keys, revoking and removing them from the list of all keys.

  • When selecting a filter to apply (for example, when reviewing certification results or the Integrations page), filters for the current columns are now shown by default, instead of all possible columns. You can click show more to reveal all possible attributes for a filter.

Workflows

  • It is now possible to manage delegate reviewers for managers assigned to certification results. Configuring a delegate reviewer for another user enables them to fulfill the responsibilities of that user — for example, if the original manager is on leave, out-of-office, or otherwise unavailable.

    • Any certification items assigned to the original reviewer are also assigned to the delegated reviewer.

    • Delegate reviewers are notified of the assignment and receive notifications in place of the original reviewer. They can review and sign-off on any results assigned to the original reviewer.

    • The original reviewer can still act on results, but will not receive assignment or reminder emails.

    • This option is supported by API operations ListUserDelegations, AddUserDelegations, and RemoveUserDelegations.

  • Added a preview API List Reviewer Infos to get all reviewers and their progress stats for a certification.

Search

  • You can now open entity details by double-clicking the node in Authorization Graph.

Bug Fixes

  • OneLogin Users are now correctly marked mfa_active=true when they have at least one authentication factor (before, two factors were needed).

  • Hide Zero Values now correctly filters results based on the value column (the most recent query result).

Previous2023.2.27Next2023.2.13

Last updated