Release Notes
Identity Manager 4.8.9

Facts

  • Product: Identity Manager
  • Platform: Any supported

IM Web 4.8.9 updates released October 5th 2017

IM 4.8.9 update improves the stability, compatibility, and security of your solution, and is recommended for all installations.

Nested groups for file based roles

For LDAP based groups it has been possible to use nested group membership for roles. The same functionality have now been added to file based roles as well. Set the policy NordicEdge_USE_NESTED_GROUPS=true to enable nested groups. By default, the maximum number of group levels are 10, but you can specify another level by setting the policy NordicEdge_NESTED_GROUPS_LEVEL=10.

Configurable attribute in audit log

It is now possible to choose one attribute per objectclass to add to the audit log, when using audit log to file. The attributes are configured in the policy Audit_ObjectIdentifier. If an object is having more than one of the configured objectclasses in the policy, the first objectclass from the left will be used.

Audit_ObjectIdentifier=user|sAMAccountName,group|name

The chosen attribute value will be placed before the object DN in the audit log.

Multilist custom control

The multilist custom control se.nordicedge.controls.lists.MultiListControl now supports attribute filters, as described in PSD1066 – Filter output on search result.

Translation filter

A new translation filter has been created. The filter is named ‘translate’ and is located in ‘filter.PhenixID’. The filter will match the attribute value with the corresponding value in the language file. It is only recommended to use this filter for attributes that are read only, otherwise the translated value will be saved when saving the object.

Custom Control for Password Management

The custom control for changing or resetting a password, se.nordicedge.controls.password.ManagePasswordCC has been updated with a new option to reset the lockoutTime attribute in Active Directory.

Read more in PSD1072.

Log encoding

Log files in a new installation will now be encoded with UTF-8. To encode the log files in an existing installation, add the row below in the file log4j.properties located in phenixid\WEB-INF\classes.

log4j.rootLogger.Encoding=UTF-8

Path to JRE

The path to the JRE has been made absolute instead of relative when installing the product in a linux environment. This makes it possible to launch Identity Manager from anywhere in the file system.

Updated Java

Java is updated to 1.8.0_144.

This is the version that has been used when testing the product.

Bug fixes

In IM 4.8.7 there was a problem with reading policies from the LDAP directory when using MyDN as BASEDN in DSEditor.properties. This has now been solved.

When executing a predefined search, and creating a new object under one of the search hits, the search result was cleared after the object was created. This has now been changed so the search result is still present after the new object has been created.

IM Configurator 4.8.9 updates released October 5th 2017

Policy Manager

The form for editing policies in the LDAP directory, Policy Manager, had a problem that prevented it from being loaded. This has now been solved.

Custom Control for Password Management

New option have been added to the Password Management control.

Updated Java

Java is updated to 1.8.0_144.

This is the version that has been used when testing the product.

Upgrade of Existing Installation

Important step! Verify current configuration with new version in test environment.

Read more in installation and update guides.