Powered by Algolia

    New in v2026.4.2

    OpenIAM version 2026.4.2 delivers a set of enhancements focused on improving access certification workflows, connector upgradeability, system observability, and overall platform reliability.

    This release introduces better reviewer experience in User Access Reviews (UAR), enhanced logging capabilities for end-to-end request tracing, and improved support for connector migration and cross-tenant integrations. In addition, it addresses a number of stability, performance, and data consistency issues across UI, authentication, messaging, and large-scale campaign execution.

    New features

    Connectors and integration

    OE-3628 – .NET/PS v5 connectors installer backward compatibility enhancement
    Enhanced the installer for .NET/PowerShell v5 connectors to support backward compatibility and simplified upgrades from previous connector versions.

    This improvement enables:

    • Seamless migration from older connector versions.
    • Support for multi-instance connectivity using a single connector.
    • Reduced configuration complexity during upgrades.
    • Built-in migration mechanism within the installer.

    OE-3830 – Comment section for entitlements
    Added support for comments on entitlements within the User view.

    This enhancement allows:

    • Reviewers to provide justification when revoking entitlements.
    • Improved auditability of access decisions.
    • Better visibility into reviewer actions during certification campaigns.

    OE-3932 – Log enricher with RequestId tracking
    Introduced a logging enhancement that automatically enriches logs with a RequestId across the platform.

    Key capabilities include:

    • Automatic propagation of RequestId across execution threads.
    • Consistent request tracking across backend and client logs.
    • Transparent integration with custom logging implementations.
    • Improved troubleshooting and traceability.

    OE-3957 – Default entitlement page size increased in Access Reviews
    Updated the default entitlement page size in Access Reviews from 10 to 100 entries per page to improve usability and reduce pagination overhead.

    OE-4036 – PS Graph connector support for cross-tenant user invitations
    Added support for sending user invitations across tenants via the PS Graph connector.

    Enhancements and tasks

    Access reviews and certification

    OE-3718 – Optimized reviewer notification strategy in UAR campaigns
    Improved email notification logic for User Access Reviews to prevent excessive email volume.

    Updated behavior:

    • Reviewers receive one notification per campaign step instead of per user.
    • Initial notification informs downstream reviewers of pending requests.
    • Follow-up notification is sent when previous review steps are completed.
    • Emails include aggregated request details for better usability.

    OE-3263 – Supervisor-based reviewer resolution issue in campaign execution
    Identified and documented limitations in Access Certification campaigns when using “User Supervisor” as a reviewer with Supervisor Type assigned.

    OE-4021 – Improved performance for loading user entitlements
    Addressed performance delays when loading user entitlements in the User Manager.

    Bug fixes

    UI and user experience

    OE-3753 – Incorrect property type displayed in Set Header metadata
    Fixed an issue where editing metadata properties resulted in incorrect property type/value display.

    OE-3787 – Unable to create new Resource Type
    Resolved an issue preventing the creation of new resource types.

    OE-3809 – Agency field value not persisting in self-service
    Fixed an issue where updates to the Agency field were not saved in the SelfService application despite successful workflow execution.

    OE-3928 – User attribute values missing from My Info page
    Resolved an issue where only attribute names were displayed without corresponding values in newer versions.

    OE-3929 – Email update failure via simple email field
    Fixed an issue where updating email through the simple email field did not persist unless additional fields were present.

    OE-3949 – Page navigation issues in entitlement views
    Resolved incorrect redirects when navigating pages containing entitlements.

    OE-4020 – Managed system viewer performance and UI issues
    Fixed multiple issues in Webconsole including:

    • Connector configuration UI freezing without loading indicator.
    • Errors during reconciliation view.
    • Broken simulation mode page.

    Access reviews and lifecycle management

    OE-3769 – User profile deletion blocked by active access review
    Resolved database integrity issues preventing deletion of users referenced in active certifications.

    OE-3905 – Missing Supervisor Type-based reviewer resolution
    Restored functionality allowing reviewer resolution based on selected Supervisor Type in Access Certification.

    OE-3971 – Orphan management user creation failure
    Fixed an issue causing failures during user creation in orphan management workflows.

    OE-3976 – SQL exception during large UAR execution
    Resolved database errors encountered when running User Access Reviews on large datasets.

    OE-3988 – UAR campaign view failure for large datasets
    Fixed UI failures when campaign owners attempted to view large-scale UAR campaigns.

    OE-4039 – UAR delegation inconsistencies
    Resolved issues where delegated access review requests showed incorrect counts and missing user data.

    OE-4040 – Improved commenting experience in UAR
    Enhanced commenting capabilities in User Access Reviews:

    • Separation of access-level and task-level comments.
    • Comments visible across views.
    • Inclusion of comments in notification emails.
    • Added dedicated email template for delegation events.

    Authentication and security

    OE-3687 – Ambiguous URL mapping causing incorrect error response
    Resolved conflicting controller mappings that caused a 500 error instead of the expected 401 error page during authentication failures.

    OE-3989 – User remains locked after unlock action
    Fixed an issue where users remained locked out after being unlocked until server restart due to cache inconsistencies.

    OE-3990 – Forgot password flow error for new users
    Resolved issues affecting password reset for newly migrated users who had not completed initial setup or consent.

    Messaging and infrastructure

    OE-4015 – Fanout MQ exchange delivery issue in clustered environments
    Fixed an issue where fanout exchanges delivered messages to only one node due to shared queue names.

    This fix ensures:

    • Unique queue creation per node.
    • Proper broadcast message delivery across all cluster nodes.
    • Consistent cache synchronization across services.

    Minor updates

    • Improved connector upgrade and migration experience.
    • Enhanced logging and observability with RequestId tracking.
    • Better UAR usability and notification handling.
    • Stability improvements for large-scale access review campaigns.
    • UI and navigation fixes across Webconsole and SelfService.
    • Improved cluster reliability for messaging and cache synchronization.
    Previous
    New in v2026.4.1
    Next
    New in v2026.5.1