Policies

• We are excited to announce the addition of a simplified Snippet Builder. With this release, users can now create complex policy snippets with easy to use form fields. The simplified Snippet Builder is available for early-access preview. If you would like to learn more about this feature and start using it, please reach out to us at [email protected].

UI

• Fixed an issue where a displayed error message perisisted on screen until tab refresh

Authentication

• We’ve extended the active timeout for a console user

What’s new

• We have a new set out of box Protected System integrations - learn more at https://help.sgnl.ai/articles/protected-systems/

Bug Fixes

• Fixed an issue where testing SSO configuration in the console was returning a HTTP 500 Internal Service Error

What’s new

• We’ve made some architectural enhancements that will improve the overall experience of using SGNL

Bug Fixes

• Fixed an issue where some Azure AD group memberships were not being successfully evaluated during access evaluations, leading to access deny decisions

Bug Fixes

• Fixed an issue were Salesforce entities were not matching against the access service in some situations
• Fixed an issue where the jurisdiction ID was not showing up in the Admin -> Environment page

Bug Fixes

• Fixed an issue where identifers were not persisting during Policy Snippet creation
• Fixed an issue where attributes may have been duplicated in the creation experience

Systems of Record

• Datasources are now called Systems of Record, to better reflect their importance in policy decision making
• SGNL now supports OAuth2 when integrating with Okta as a System of Record

Protected Systems

• Integrations are now called Protected Systems, to better reflect the array of systems that can use SGNL for policy decisions

Policy Lens

• Users can now specify IP address as a query parameter in a Policy Lens request

Bug Fixes

• Fixed an issue where ingestion sync settings for a datasource were not being applied to its entities
• Fixed an issue where some access checks were returning a 500 Internal Server Error for valid access requests

Access Service

• It is now possible to resolve IP Addresses sent in Access Requests to Cities, Postal/Zip Codes, States/Regions, and Countries

Policies

• Policy Snippets can now include conditions to evaluate whether a given principal is making a request from a specific location

Bug Fixes

• Fixed an issue with ingestion of entities from datasources

Access Service

• Support for validation of the page token sent by the user to the SGNL Search API
• Similar to the Access API, the Policy Lens API now accepts principal IP address and principal device ID as parameters

Policies

• A preview of the applied Policy Version can now be reviewed when investigating with Policy Lens
• Previews of Policy Versions can now be reviewed in the version history of a Policy

Bug Fixes

• Fixed an issue with ingestion of Okta entities where only the first page was being ingested

Policies

• Access Analyzer is now called Policy Lens, providing deep understanding of the policies applied to integrations and enabling granular debugging
• Policy Lens now provides visibility into individual snippets that were evaluated as part of the policies that were evaluated, enabling deep understanding of policy components

Policies

• Support for validation of lists of objects in Snippets

Access Service

• Support for the SGNL Search API [Learn More]

Bug Fixes

• Fixed an issue with ingestion of ServiceNow entities across multiple pages

Data Sources

• Support for Jira as a Data Source [Learn More]

Bug Fixes

• Fixed an issue with ingestion of ServiceNow entities across multiple pages

Administration

• Added support for deletion of more entity types in SGNL, including SGNL User entities and Relationships

Bug Fixes

• Fixed an issue where an error was not properly returned when a PATCH was attempted against an invalid path

Policies

• Enabled Snippets to be created and managed in the SGNL UI

Bug Fixes

• Fixed an issue where the service would sometimes return 500 errors if the request to the service was badly formed

Bug Fixes

• Fixed an issue where the same request to the Access Service multiple times may be treated differently

Bug Fixes

• Improved validation in Policy Snippet Versions
• Fixed an issue with metrics

Data Sources

• Custom Relationships can now be named by a SGNL Administrator

Bug Fixes

• Improvements to SGNL Metrics for Data Sources and Policy Evaluation

Data Sources

• Optimized ingestion for large data sets from all Data Sources
• Azure AD onPremisesSecurityIdentifier can now be used as an identifier in Integration Request Config

Access Service

• API Documentation for the Access Service has been improved [Learn More]

Bug Fixes

• Snippet creation would sometimes return a 500 error if the request was malformed, it will now provide guidance based on validation parameters

Access Service

• Added EvaluationDuration to Access Service response, to inform evaluation time for a set of access queries

Administration

• New look-and-feel for the SGNL Console sign-in page
• Added more types of error logs
• Improved the experience for creating Policies and SNippets

Policies

• Enabled Policies to be copied into a new version from the latest

Data Sources

• Improved Event Logs for Azure AD Group synchronization
• Improved Curity User synchronization

Bug Fixes

• A number of fixes to improve Azure AD synchronization performance

Data Sources

• Added support for filtering Curity Users

Bug Fixes

• Minor bug fixes to improve SGNL configuration

Administration

• Enabled Just-In-Time creation of users when signing-in via OpenId Connect

Data Sources

• Improved error messages in SGNL Event Logs when Data Source synchronization was not successful
• Added support for filtering the Azure AD entities (Users and Groups) that flow into the SGNL Graph
• Improved configuration experience for Okta and Azure API Management

Policies

• Policy Snippets are now validated to ensure they can be evaluated prior to a new version being created