Skip to main content
Version: Cloud

Resolved Issues and Bug Fixes

Read more about resolved issues and bug fixes in this release.

Access Request

Resources from obsolete resource assignments are not visible

Previously, if a user had an obsolete resource assignment, the resource was not shown in the resource search. Now, this issue has been fixed, and obsolete assignments can be selected in the Access Request process.

INC-272362

Access Request regional settings for data pickers

Previously, the date field in the Access request did not display the date according to the regional settings. This has now been fixed, and the date field is formatted correctly.

INC-274688

Field unsanctioned use

Previously, an issue was present enabling a field unsanctioned use. A cross-site scripting vulnerability has been fixed and unsanctioned use of the field has been contained.

INC-275517

Enterprise Server

Calculation failed for the unresolved identity

Previously, if a calculation of the unresolved identity failed, the identity would automatically be re-added to the queue, even if the skipQueuingUnresolved setting was configured to true. This behavior has been enhanced to ensure that the skipQueuingUnresolved setting is respected when re-queuing failed identity calculations.

INC-273580

Errors with import jobs

We have added new IX_tblCalculatedAttributeValue_AssnId_ValueRef_AttrId index to the RoPE database and improved the SQL statement for lookup of child resources to a parent role as a performance improvements.

INC-274760

INC-274631

Issues in the delivery of email notifications

There was an issue with the delivery of email notifications from Omada Identity. While some notifications were received correctly, the majority failed to arrive. This issue has been resolved. Previously, the "no authentication" setting failed when the SMTP server supported other authentication methods.

INC-274824

Missing indexes in ArchiveDB causes full table scans due to TimerService Maintenance

We have added an SQL Index in the ArchiveDB on tables with the _DELETETIME column. This action was taken to address the performance issue arising from full table scans triggered by the Timer Service.

INC-273847

Delay in scheduled imports

We've addressed an issue where the calculation determining the start and end times of an hourly timer failed to incorporate the local time zone of the system, particularly when the RunTimerInSystemUserTimeZone customer setting was activated.

INC-274779

Event Definition (and View) Filter do not work with "Estimate" and a reference path property simultaneously

The combination of Reference Path and Property to Property filters is not supported. We've added a new validation error that triggers on filter definition save. If this error is triggered, the following message will be displayed:

Filter expressions containing Reference Path expression with Property on left and right side of expression are not supported

Omada Data Warehouse

Systems in slowly changing dimensioning processing

There was an issue where, during import of multisystem categories, not successfully staged systems were included in the slowly changing dimensioning processing. This involved a risk of deleting data from the failing system. The issue has been resolved and only successfully staged systems are now included in the slowly changing dimension processing.

INC-275838

Inefficient processing of extension attributes in account data flow

There was an issue resulting in import errors due to inefficient preparation of account extension attributes in the prepare data for processing step of import process. The issue has been resolved and import are successful.

INC-274975

Role and Policy Engine

Missing attribute name in Always Provision Attribute Changes setting notification

Previously, when the Always Provision Attribute Changes setting was enabled and an attribute value altered, RoPE would only display "Provisioning attribute 'System.Collections.Generic.List...'" in the calculation message, lacking the specific attribute name. However, following an update, RoPE now includes the attribute name in the format: Provisioning attribute '<attribute name>' changed.

INC-274721

Error calculating unresolved identity

There was an issue with the unresolved identity failing and blocking the RoPE calculation queue. The issue has been fixed. If RoPE is configured to not queue the unresolved identity automatically, then RoPE will also not queue it automatically after a failed calculation.

INC-271866

Error calculating identity: Error executing non-query command: The connection is broken and recovery is not possible

If a RoPE identity calculation fails with a transient SQL problem, it will be logged as a warning in the Operation dashboard, and the calculation is being retried after the next scheduled re-queuing of failed calculations.

INC-271386

Issue with re-queuing unresolved identities

If the calculation of an unresolved identity fails, it remains excluded from recalculation until the configured time in 'unlockQueueItemsOlderThan' elapses, plus an additional 4 hours.

INC-274501

Surveys

Overextended access to historical data

There was an issue with possible overextended access to surveys' historical data. To improve the security, additional safety measures were implemented verifying user access rights ensuring that only appropriate users can access the data.

INC-275332

System Onboarding

Issue with filtering in system onboarding queries

There was an issue with the #MAXROW and #MINROW filter expression resulting in the identities being read multiple times. The issue has been resolved by adding the paging support to the #MAXROW and #MINROW filtering in the system onboarding queries.

INC-273806

Connectors

Powershell connector doesn't accept relative paths for scripts

The Powershell connector didn't accept relative paths for scripts. This issue has been fixed: both relative and absolute paths are now accepted.

INC-273424

ServiceNow ITSM connector mixing items from two provisioning jobs

In some scenarios, the ServiceNow ITSM connector updated the same SNOW cart from two OPS instances, resulting in REQ with mixed items from two provisioning jobs. This issue has been fixed.

INC-273148

Paging type set incorrectly as a mandatory field during data import

During data import using REST and OData connectors, when change paging in nested requests tab is enabled, the paging type for non-nested queries was set as a mandatory field. This issue has been fixed.

INC-274572

JSON paths in double quotation marks are not processed correctly in the REST connector data model

Property values in double quotation marks were not recognized correctly. Double quotes are now replaced with single quotes (for property values, if they are not valid paths).

REST data import continuation token paging incorrect behavior (after April 2024 update)

After the April 2024 update, REST data import (collector) pagination continuation token did not work correctly if the token location in the request was set to header. This issue has been resolved.

#INC-275461

Other

Issue with OpenIDLogoutRedirect customer setting in the New UI

This update addresses an issue where the OpenIDLogoutRedirect customer setting failed to function properly with the New UI. With this fix, users are now correctly redirected to the logout page after logging out of the IdP.

Error with post-logout redirect with Okta

After logging out from the Identity Provider (IdP), you should be redirected back to the New UI logoff page, for example, https://localhost:44323/logoff?LANG=1000.

However, while doing that, an error occurred: Your request resulted in an error. The post_logout_redirect_uri parameter must be a Logout redirect URI in the client app settings.

To resolve this issue, when configuring the Okta OpenID Connect Application, ensure that you include the LANG=<Language ID> parameter in the Sign-out redirect URIs. This parameter should contain the ID for any language you anticipate users will use, for example:

  • https://localhost/logoff.aspx?LANG=1000
  • https://localhost/logoff.aspx?LANG=1001

For more information, refer to the Configure OKTA with Open ID Connect documentation.

Sorting by Visible to in Views

We have fixed an issue that prevented users from sorting by the 'Visible to' field in the Views pane.

INC-274971

Security Vulnerability in Windows Installer XML (WiX) toolset

We've upgraded the Vault Service installer due to a vulnerability identified in the Windows Installer XML (WiX) toolset used to generate the MSI package.

Operations Dashboard - provisioning jobs queue does not allow ordering by the task creation date

It is now possible to sort jobs by the date of creation in the Operations Dashboard (in the provisioning jobs section).

#INC-274825

CSV download of Access review survey question

There was an issue when downloading a CSV from the survey questions in the Access review survey. This has now been fixed by adding a new line to all values of set property columns. The line appends if there is more than one set property value.

#INC-274940

Documentation

Access Request Reason field

We have added information about how to configure the Reason field in the Access Request process. Refer to Access Request to see how to do it.

INC-275811

The following script files contains illegal characthers

We fixed a bug in the documentation related to adding arbitrary javascript files in forms. For more information, refer to the Creating a form section.

INC-274982