Just-in-Time user provisioning for applications: ADSelfService Plus now supports Just-in-Time user provisioning for Assetsonar, Monday.com, Peakon, Slack, and more applications .
Issue Fixes
An issue causing an Invalid access URL
error while authenticating with Duo Security from the ADSelfService
Plus mobile site has been fixed. This issue occurred when ADSelfService
Plus was utilizing a reverse proxy set up on a separate machine.
An
issue that prevented access to ADSelfService Plus via any shortcut icon
when the product was already running has now been fixed.
An
issue with the enforce enrollment login script that affected the
working of the Duo Universal prompt when ADSelfService Plus was using
the default port for HTTP or HTTPS connections has now been fixed.
An issue that caused an Invalid Request error when setting up mail configurations on non-English deployments of ADSelfService Plus has now been fixed.
An
issue causing the Tenant ID value in OAuth mail configurations to
disappear upon integrating ADSelfService Plus with AD360, has been
fixed.
An issue that caused OAuth SSO login failures while using the PKCE code challenge has now been fixed.
Enhancements
REST API-based integration support has been provided for the RSA authenticator.
The RSA authenticator now supports policy-based configuration.
A
Username Pattern has been introduced for RSA authentication to
efficiently manage issues caused by multiple domains having similar
usernames.
Issue Fixes
The ADSelfService Plus MFA connector for OWA MFA can now be installed on Exchange servers which also act as domain controllers.
An
issue which prevented users from uploading their AD photo attribute
using the directory self-update feature when the file extension of the
image was in uppercase letters has been resolved.
An
issue that prevented password changes and resets using the
ADSelfService Plus mobile site if the password contained a unicode
character, despite the password policy mandating it, has now been fixed.
An
issue that prevented initial logins to machines using the
manually-installed login agent when the ADSelfService Plus server was
inaccessible, has now been fixed.
A
loading issue that domain technicians without a designated policy
experienced while attempting to access ADSelfService Plus from AD360 has
been fixed.
An issue that prevented SMTP settings from being saved if the admin's display name had more than one space has now been fixed.
An
issue caused while configuring a high availability deployment of
ADSelfService Plus with an external PostgreSQL database has now been
fixed.
An
issue that prevented attachments with the .docs extension from being
sent with emails from ADSelfService Plus has now been fixed.
An
issue that prevented the Mobile App Deployment page from loading when
the domain name began with a numeral has now been fixed.
An issue that caused the Access URL to revert to the hostname when an SSL certificate was applied has now been fixed.
Issues with password changes and resets using the SHA-1 algorithm for the OpenLDAP and 389 Directory Server have now been fixed.
An issue that caused the login agent to display a Server Unreachable error when ADSelfService Plus had a context path configured has been fixed.
An issue that caused incorrect search results to be displayed while searching for computers under the Conditional Access section has now been fixed.
An
issue that caused restricted users to consume licenses while attempting
password resets or account unlocks from the self-service portal has now
been fixed.
Feature
FIDO Passkeys for phishing-resistant MFA: FIDO-compliant
device-authenticators like Windows Hello, Apple Face ID/Touch ID,
Android Biometrics, and security keys like YubiKeys, Google Titan Keys
etc., can now be used to protect access to applications for a secure,
passwordless experience.