What's new for IBM Security Verify features in July 2024

News

Abstract

New IBM® Security Verify features that were released in July.

Content

Key updates

These new features might not be available in your location yet.

IBM Security Verify Adapter now supports SAP Business Technology Platform v1.0.0 application. For more information, see Managing endpoints by identity adapters. The target applications can now be configured for provisioning endpoints managed by Identity Adapters from IBM Security Verify to the SAP Business Technology Platform application. For more information, see Configuring provisioning for SAP Business Technology Platform.
IBM Security Verify now supports decoupling of user and device authentication. The admin can configure Device trust settings for Microsoft Intune, Jamf and Google Workspace device managers to issue a non-exportable certificate on the end user’s device for the device management. See Adding an Intune device manager, Adding a Jamf device manager and Adding a Google Workspace device manager for further details.
IBM Security Verify now supports adding access policies to profile management. See Create a user profile.
The attributes for password dictionary were added to the payloads for management and authentication events. See Management event payload and Authentication event payload.
IBM Security Verify now supports generating a users list report. See Generating a users list report.
IBM Security Verify now supports Verifiable credentials. See Managing verifiable credentials.
The Configure your application in Google topic was updated. See Configuring your application in Google.
Notification webhooks now support JWT and mTLS authentication types. See Creating a notification webhook.
The user invitation option for identity providers is now available in the Add identity provider flow. For examples, see Adding a SAML Enterprise identity provider, Configuring an OIDC Enterprise identity provider, Adding a MaaS360 Cloud Extender identity provider, and Configuring an on-prem LDAP provider.

Other features, enhancements, and announcements

IBM Security Verify added new entitlements. See Access entitlements.
IBM Security Verify added FIDO enrollments and authentication to Management and Authentication event payloads. See Management event payload, or Authentication event payload.
IBM Security Verify now supports modifying user profile settings pages. See Modify user profile pages.
IBM Security Verify Gateway for Windows Login has updates to the config.json file. See The config.json file.
IBM Security Verify Gateway for Linux PAM and AIX® PAM has updates to system configuration modules. For information see, "pam":{}, "ibm-auth-api":{}, and The PAM system configuration file.
IBM Security Verify Gateway for Linux PAM and AIX® PAM supports additional operating systems. See Overview
Added support for the following applications.
- SAP Business Technology Platform
- IBM Storage Ceph

See Supported applications and connectors.

Notifications

Generic User Count and CSV Download features are not yet deployed in the following environments: Australia, Canada, and Japan. If these features are included in the plan for your tenant, but your environment is not yet updated, the features do not work correctly.
When a POST request is sent to the /oidc/endpoint/default/* and /v1.0/endpoint/default/* endpoints, the parameters must be sent in a POST body and not in the query parameters. Enforcement of this restriction begins 20 July 2024 to ensure that security standards are followed.
To improve security, the state and nonce query parameters in the OpenID Connect authorization request must be at least 8 characters long. This change becomes effective 30 June 2024. Ensure that your applications are updated.
Application grants v1.0 APIs /v1.0/appgrants are deprecated. The end of life is 30 June 2024. See Deprecated APIs. The new APIs require the application ID to be specified and either "Manage OIDC and OAuth application grants" or "Read OIDC and OAuth application grants" API entitlements.
The Subscription Usage Dashboard is currently still in preview mode. Some inaccuracies were discovered in the usage statistics. The levels of consumption for your subscriptions might be incorrectly displayed in the dashboard. The issue is being worked on.

Note: The inaccuracies in the data that is displayed do not affect your billing in any way.

Related Information

IBM Documentation

[{"Line of Business":{"code":"LOB24","label":"Security Software"},"Business Unit":{"code":"BU048","label":"IBM Software"},"Product":{"code":"SSCT62","label":"IBM Security Verify"},"ARM Category":[{"code":"a8m0z0000001jljAAA","label":"Security Verify"}],"ARM Case Number":"","Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"All Version(s)"}]

Product Synonym

IBM Cloud Identity;IBM Security Verify;Verify;Verify SaaS

Was this topic helpful?

Document Information

Modified date:
30 July 2024

UID

ibm17159525

Tips