Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Updated links.

...

Configurations made for Activiti can be run with the new Flowable engine to ensure upgrading. The migration is done automatically, see Upgrade Smart ID Identity Manager from 23.10.9 to 5.0.1. Update the link! 

Flowable is a fork of Activiti and it is BPMN 2.0 compliant.  

...

For more information, see Upgrade Smart ID Identity Manager from 23.10.9 to 5.0.1. Update the link! 

Support for some CardOS related encodings has been removed 

...

For more information, see Upgrade Smart ID Identity Manager from 23.10.9 to 5.0.1. Update links!

Deprecation of Service Task "Cert: Update Certificate State from CRL"

...

Excerpt
nameIDM_5.0

Features

Jira ticket number

Description

CRED-12528

The bootstrapping procedure, that is, the creation and placement of keys needed in Smart ID Identity Manager for different purposes, has been made more secure.

For more information, see Sign and encrypt engine in Identity Manager and Upgrade Smart ID Identity Manager from 23.10.9 to 5.0.1.

Update link!

CRED-13624

The business process engine included in Smart ID Identity Manager has been switched from Activiti to Flowable.

For more information, see Cleanup Flowable process history in Identity Manager and Upgrade Smart ID Identity Manager from 23.10.9 to 5.0.1.Update links!

CRED-13706

The support for encodings of USB Tokens via Card SDK is discontinued. PKI encoding of USB tokens can now be handled by Smart ID Desktop App.

For more information, see Upgrade Smart ID Identity Manager from 23.10.9 to 5.0.1. Read more in the Removed features and changes in delivery section above. Update links!

CRED-15871

A connector is now available to allow user synchronization between Smart ID Identity Manager and Microsoft Entra. Read more in the Main new features section above.

For more information, see Set up Microsoft Entra connector.

CRED-15873

Improved responsiveness in Smart ID Self-Service. The Self-Service is now usable on small screens like mobile phones or with large zoom.

Read more in the Main new features section above.

CRED-15893

A validation of the expression will be done in Identity Manager Admin when adding a Kerberos 5 Principal Name value in a certificate configuration.

CRED-16320

When showing a list of objects in a form, it is now possible to add checkboxes for selection to the list and to work with the selected entries.

CRED-16749

The performance of the cleaning of the ObjectHistory has been improved.

CRED-16776

Support for key archival and recovery of ECC keys with Certificate Manager has been added.

This requires Certificate Manager version 8.10 or later.

CRED-16798

Added a rate limit filter to the Tomcat configuration in docker to prevent DoS attacks. Individual adjustments are possible.

For more information, see Harden Tomcat.

CRED-16972

In Self-Service, interactive elements are now labeled with their role so that screen readers can recognize them.

CRED-17366

Support for OsVersionField and PackageInformationField has been removed from encoding descriptions. Read more in the Removed features and changes in delivery section above.

For more information, see Upgrade Smart ID Identity Manager from 23.10.9 to 5.0.1. Update link!

CRED-18099

If there are many buttons on a form in a process, a primary button can now be defined. See Configure display of buttons in Identity Manager for more information.

CRED-18951

When configuring SAML in Smart ID Identity Manager, request signing and verification settings now default to true if not specified in the metadata file. See Enable two-factor authentication to Identity Manager clients via SAML federation for more information.

Corrected bugs 

Jira ticket number

Description

CRED-16398

Previously in Identity Manager Admin, when editing a process with the BPMN editor, there was no reminder to save when leaving the tab. This has been fixed.

CRED-17721

On card encodings for card selection, an additional check of the ICCSN has been introduced to improve security. See Reader/card selection and information in Identity Manager for more information.

CRED-18101

Updating certificate state from CRLs would sometimes not find certain certificates due to upper lower case differences in the serial number. This has been fixed.

...