New features
This release of PingIDM software includes the following new features:
Maintenance releases
Ping Identity maintenance releases contain a collection of fixes and minor RFEs grouped together and released as part of our commitment to support our customers.
IDM 7.5.1 is the latest release targeted for IDM 7.5 deployments and can be downloaded from the Backstage Download Center.
| You can deploy the release as an initial deployment or as an update from an existing 7.5.x deployment. Learn more about updating from 7.5.x in Update to a maintenance release. |
IDM 7.5.1 features
_api parameter requires authorization
Requests passing the _api parameter now require authorization. Learn more in Common REST.
Secure RCS access
You can create stricter RCS authorization and access rules. To enable authorization for RCS, add an appropriate role to the static-user mapping used for the RCS subject and write the appropriate access rules to permit this role to be granted access to the openicf servlet on the path (pattern) corresponding to the RCS name used in the RCS configuration.
Learn more in Secure RCS access.
Array comparison
You can choose how synchronization detects managed object array changes using unordered or ordered comparison using the configuration property comparison in the schema. Unordered JSON array comparison ignores the order of elements and can negate the need for certain custom scripts within mappings.
Learn more about managed object schema properties and array comparison.
IDM 7.5.0 features
Connectors
Connectors continue to be updated and released outside of IDM. To stay up-to-date with new features and versions, check out the ICF Release notes.
Although not bundled in this release of IDM, the two newest connectors are available to download from Backstage:
International email addresses
IDM now supports international email addresses. This feature is only available for supporting SMTP providers.
For more information, refer to International email addresses.
Store credentials as secrets
You can store credentials for a number of services as secrets. The supported services include:
For more information, refer to Secret stores.
Version file system secrets
You can have multiple versions of secrets stored in a file system secret store.
For more information, refer to Filesystem secret stores.
Enhanced signal propagation
Managed objects can now receive relationship graph topology change signals through the SignalPropagationCalculator class that is active by default.
Learn more in Enhanced signal propagation.
Workflow engine upgrade
The Flowable embedded workflow engine has been upgraded to version 6.8.0. If you are upgrading from a previous version of IDM and use workflow, this upgrade requires one or more incremental upgrade scripts. For more information, refer to Upgrade an existing repository.
Connect to DS with ScriptedREST sample supports client_credentials grant type
The customizer script for the Connect to DS with ScriptedREST sample now includes OAuth capabilities for the client_credentials grant type.
Security advisories
ForgeRock issues security advisories in collaboration with our customers and the open source community to address any security vulnerabilities transparently and rapidly. ForgeRock’s security advisory policy governs the process on how security issues are submitted, received, and evaluated as well as the timeline for the issuance of security advisories and patches.
For details of all the security advisories across ForgeRock products, refer to Security Advisories in the Knowledge Base library.