July 30, 2021
- Data Collection from Microsoft Azure AD available to VIS customers when using a licensed connector.
- Data Connector ease of use features automate connector deployment and use:
- Automated Data Connector installation. The Data Connectors available to the customer automatically install when selected for use.
- VIS informs customers when Data Connectors available to the customer have updates. Users can update their connector with the One-Click Data Connector upgrade feature.
- New types of Data Connectors to be made available to customers automatically as they are released.
- Collected entitlements can be displayed in catagories under the Entitlement Types view in Role Designer.
- Search and add entitlements feature available for use while designing roles with Role Designer.
- Nested Entitlements discovery in Certify and Role Designer:
- The Matrix can display all the entitlements that are contained within a single entitlement with the Nested Entitlements view allowing users to view the full range of access items a specific entitlement provides when added into a role.
- Nested Entitlements toggle button in Role Designer and Certify displays to users working with a specific entitlement all nested entitlements contained within that entitlement.
After the VIS installation, the first user to access the instance is required to agree to the EULA terms. After selecting the agreement check box, users will have access to their instance of VIS.
April 21, 2021
- The issue with the VIS matrix deselecting user selections if users rapidly click on the Zoom in/out or the scroll buttons is now fixed.
Mar 9, 2021
Fixed UI issue that lead the Role Filters to interfere with saving a role.
Job titles displaying “?” in the name instead of a special character has been fixed.
Feb 27, 2021
VIS provides the ability to import user, entitlement, and role data from AAS, enabling users to begin designing roles and perform certifications quickly.
To assist users, VIS data import functions will skip bad or unrecognizable data and continue with the import operation.
The VIS Connection Client has been enhanced to update SSL certificates automatically.
Mouse over matrix headers displays full names or entitlements in a tool tip.
To accommodate different organizations conventions, all data imports are case insensitive now.
SSO now is able to identify users based on email addresses.
Keeping the Admin page open no longer slows down the entire application.
Removing entitlements or users from other than first page of a list does not bring the user back to the first page.
A user having only Role Designer permission can delete unpublished roles now.
A user will not receive random "Role cannot be edited because it is not assigned to any user" messages when multiple users are designing roles.
Fixed issue in which a user cannot edit a smart role if another user in the same instance of VIS saved the role in a separate browser session.
Jan 23, 2021
- VIS 2.5.1 introduces an additional Role Designer account type, RoleDesigner_RO. This provides the user with the privileges to access and view roles in the Role Designer without the abilities to modify those roles.
- In VIS 2.5.1 the Role Details panel shows full entitlement names and descriptions for ease of reading. In addition, if space is available at the top or side of the matrix, VIS no longer will truncate entitlement names.
- In Role Designer, the Mapping tab that displayed the lists of users and the lists of entitlements associated with a particular role has been divided into two separate tabs, Users and Entitlements, for ease of use. Now, separate tabs list the users and the entitlements associated with the role. These are included under both the Design and Export tabs of the Role Designer.
- Users and Entitlements lists now sort alphabetically.
- The matrix zoom view no longer resets after selecting additional cells when editing roles.
Nov 21, 2020
VIS Connection Client enables user to access their data on premises from the VIS instance running in the cloud, allowing VIS to connect to Core Access Assurance Suite (AAS). Using this feature, VIS Role Designer can publish role definitions directly to AAS for use.
- VIS supports Single Sign On with SAML. Admin users now have more ability to manage authentication and authorization on VIS (create, enable, disable, and delete user access). VIS supports third party Identity Providers for Single Sign On authentication and authorization like Azure AD, Okta, Ping, ADFS, and more.
- The VIS intelligence engine functions have been expanded and the Smart Roles presented to the user contain suggestions to modify existing roles, merge two existing roles, or expand existing roles with additional, proposed entitlements.
- Application owners now can review which users have access to their applications with the new Users to Targets review cycle in Core Certify.
- Role visibility has been enhanced in Core Certify with a new Roles panel that can be used to highlight the roles in the Certify matrix, allowing reviewers to examine specific roles and the associated users.
- When evaluating users to entitlements, users now can view entitlements that are assigned to users outside of their roles with a Non-Role Assignments function.
- A clear Roles function is included with the Roles panel in Core Certify and Role Designer to easily reset the matrix.
- Direct access to the VIS login page for regular users. Users can skip the initial login page where they enter their organization name.
- A default reviewer can be appointed for any type of review cycle to ensure none of the reviews are missed.
- A Matrix view can be compacted to gather a current role selection into an easy-to-view field to see related access.
- An option is available to exclude a specific role from Smart Role computations when creating a role.
VIS accepts template CSV files in compressed (.zip) format, allowing users with more than 50 MB of data to conveniently upload their file.
CSV files used to import users’ data do not need case-sensitive column names.
Jul 6, 2020
- New, simplified role design includes intelligence that proposes Smart Roles to the designer. The VIS intelligence engine utilizes existing role definitions and overall access relationships to generate an optimum set of roles, that are proposed to the user, who may accept, modify, and save any of these proposed role definitions. The role designer and the VIS system can create roles to publish quickly for use within an Access Management system, such as Core Access in AAS.
- Role definition view enables users to view and manage role definitions by providing a list of roles on one axis and a list of entitlements along the other axis. Users are now able to simultaneously see multiple role definitions and easily identify any role overlap or duplication.
- A new matrix screen enables users to view a list of users on one axis and a list of roles on the other axis, which provides the user with a view of which roles have been assigned to each user. The matrix utilizes the existing controls to filter the data set to a manageable volume, such as selecting users with a specific job title or users in a specific department.
- All matrix views now have a new display control. Users can click a button and swap the axis that the data is displayed on; this enables users to control the viewing area based upon their preference.
- When using the matrix views, users can select filtering criteria to narrow the focus of the displayed information. Users can now specify how they want their filtering criteria treated when they select multiple items by toggling the Any/All button in the filter panel.
- Automatic adjustment of the matrix view in response to the role selection. Depending upon which matrix view the user is utilizing, the amount of data may exceed the capacity of the viewing area. Therefore, as the user selects or deselects items to view, the matrix will automatically adjust the viewing area to display all the selected items so the user can see where they are located within the overall matrix.
- VIS branding has been updated to reflect Core Security as a HelpSystems company.
- Expanded role design capabilities. A user can edit, publish, and delete roles. Unpublished roles can be viewed in a work area, where designers prepare the roles for publishing to an access management system, such as Core Access in the Core Access Assurance Suite (AAS).
- Enhanced role design capability separates published (shared w/ AAS) and unpublished (local) roles. Users can use theRole Management panel to work with published, unpublished, and Smart Roles in their separate categories.
- Enhanced control over search filters enabling users to control how multiple selections in the filter are treated.
- All searches with in VIS, both VIS Role Designer and VIS Certify, are now case-insensitive to enable users to search VIS easier.
- Improved file import process uses workflow-like steps and provides templates. The environmental data is uploaded into VIS via an admin file import process implementing a step-by-step workflow to help ensure that the data is properly aligned and stored in the system.
- Fixed issue where draft roles imported in a Role Details CSV delete user-role relationships if the role already exists in VIS.
- In the Views panel of Role Designer, the full names of users in the Managers section are displayed instead of the ID.
When creating or editing a role, Users and Entitlements can be removed using the tables in the Mapping tab.
- Target names of entitlements are now highlighted for ease of use.
Version 2.3.2 (update of current version)
Jun 01, 2020
- SSO now initiates a password strength check when saving any user password. This applies in both the Portal, when an end user sets the password through the welcome email link, or changes a password through the Forgot Password link. These passwords must be at lease eight characters long, contain at least one upper case character, one lower case character, one digit, and one special character.
- SSO will display an error message if a password fails the password strength check.
- The VIS SSO Login page has updated Core Security logo designs. In addition, VIS Welcome and Password Reset emails also contain the updated Core Security logo designs.
- Fixed browser issues caused by the latest Google Chrome browser release.
- Additional scaling provided to handle larger numbers of roles.