What's new
Read on to learn more about new features and improvements in the SecureAuth® Identity Platform release 22.02.
Windows SSO integration with SecureAuth IWA
In the Identity Platform, you can now easily set up Windows SSO for your integrated resources. This feature is available in the New Experience and connects with the SecureAuth Integrated Windows Authentication (IWA) service for Kerberos-based authentication.
To learn more, see Windows SSO integration with Active Directory.
Available only in Identity Platform cloud deployments.
Policy configuration improvements
The Policies feature has some configuration improvements in this release.
- Redirect To condition rule
On the Authentication Rules tab, the Redirect To rule was added to the list of conditions (Prompt MFA, Skip MFA, or Block). You can use this conditional rule to redirect users to another URL.
To learn more about setting up authentication rules, see Policy configuration - Authentication rules.
- New Login Workflow tab
The Login Workflow setting was moved out of the Multi-Factor Methods tab into its own tab.
- Conditional Password rule
On the Login Workflow tab, you can configure conditions where if the user meets certain conditions, they are not required to enter a password.
For example, you can set a condition that users must authenticate by approving a login notification on their mobile device. If they meet this condition, they are not prompted to enter their password in the login workflow.
Otherwise, if the user tries to authenticate using a different authentication method, they are prompted to enter their password in the login workflow.
To learn more about whether to allow users to bypass a password in the login workflow, see Policy configuration - Login workflow.
Azure Active Directory data store enhancements
Some updates related to supporting Azure Active Directory (Azure AD) data stores include the following:
- Support in Identity Platform hybrid deployments
Azure AD data store is now supported in Identity Platform hybrid deployments.
- Azure AD guest account support
Administrators can add a personal guest account in the Azure AD admin portal and have login access through the Identity Platform.
- Regional support for Azure AD instances
Azure AD data store settings include support for regional instances like Azure China, Azure Germany, Azure U.S. Government, and Azure Public.
You can select the regional instance in the data store Connection Settings section for Azure AD. See Add Microsoft Entra ID data store.
Test Active Directory data store connection
Need to troubleshoot or test your data store connection? In the Identity Platform New Experience, you can now test the Active Directory data store connection in the data store settings.
Available only in Identity Platform hybrid deployments.
Delete data store
Do you have a data store in the Identity Platform that you no longer need? In the Identity Platform New Experience, you can now delete a data store.
Delete application
Have an application (realm) that you no longer need in your Identity Platform instance? You can now delete an application that was originally created in the Identity Platform New Experience.
The deletion feature applies only to applications created in the Application Manager, Internal Application Manager, and Login for Endpoints.
Password policy and deny lists
In the Identity Platform New Experience, you can create a password policy to define password complexity rules and include deny lists. Deny lists can include words, fragments of words, and symbols not allowed in a user password.
Then, you can attach this password policy to the Password Reset page in the Internal Application Manager.
To learn more, see Using a password policy in the Identity Platform and Using deny lists in the Identity Platform.
Dashboard view for mobile enrollments
The dashboard view includes metrics about mobile enrollments. You can get insights into the number of mobile devices end users have enrolled to authenticate their access to applications.
To learn more, see Dashboard insights.
Application Manager look and feel
The Application Manager has a consistent look and feel like the Internal Application Manager.
It now includes a search box, grid view, and sort functionality. The list view also includes the display of the login URL for each application.
Other information
For upgrade information and other updates, see Important install and upgrade information.