---
title: Regular channel changelog version 19722.7
description: Version 19722.7
component: pingoneaic
page_id: pingoneaic:release-notes:regular-channel/version-19722.7
canonical_url: https://docs.pingidentity.com/pingoneaic/release-notes/regular-channel/version-19722.7.html
section_ids:
  03_dec_2025: 03 Dec 2025
  key_features: Key features
  enhancements: Enhancements
  fixes: Fixes
  changed_functionality: Changed functionality
---

# Regular channel changelog version 19722.7

|   |                                                                                                                                                                 |
| - | --------------------------------------------------------------------------------------------------------------------------------------------------------------- |
|   | This is a changelog entry for version 19722.7. You can review the changelog for all versions in [Regular channel changelog](../regular-channel-changelog.html). |

## 03 Dec 2025

**Version 19722.7**

### Key features

* Entitlement composition certification (IGA-3827\[[1](#_footnotedef_1 "View footnote.")]\[[2](#_footnotedef_2 "View footnote.")])

  Entitlement composition certification provides a review mechanism that allows certifiers to evaluate, review, and modify the definition of entitlements within the certification process. This capability enables reviewers to submit requests to change the entitlement definition, even independently of the certification decision, with options for drafting and deferring modification requests until sign off.

  Learn more in [Create an entitlement composition certification template](../../identity-governance/administration/template-entitlement-composition.html).

* Accounts page (IGA-3960\[[1](#_footnotedef_1 "View footnote.")]\[[2](#_footnotedef_2 "View footnote.")])

  The accounts page gives application owners and application administrators a single place to manage all user accounts without granting them full application configuration permissions.

  Learn more in [Accounts](../../identity-governance/administration/governance-accounts.html).

### Enhancements

* IAM-9395: Table columns are now resized uniformly across the Advanced Identity Cloud admin console.

* IAM-9429: If your production environment is configured for deferred release, you can use the new `/environment/promotion/promote` endpoint to check if running a promotion will trigger a release upgrade.

* IAM-9516: The tenant administrator profile page now prompts for re-authentication when adding or removing an MFA device.

* OPENIDM-19400: New Prometheus metric for the availability of connector servers, for example:

  `idm_icf_connector_server_availability{name="system-id",type="connector-server-type",} 1.0`.

* OPENIDM-20341: Identity management scripts now natively support Base64 encoding using the `btoa` (encode) and `atob` (decode) [global script](../../idm-scripting/scripting-func-engine.html#global-utility-functions) bindings.

* OPENIDM-20790: The `openidm/sync/mappings` endpoint now [supports paging](../../idm-synchronization/mappings.html#sync-mapping-paging) using either offsets or cookies.

* OPENIDM-20933: Improved task scanner exception handling. If the task scanner encounters a task that results in an exception, it now aborts only that task and continues processing the remaining tasks. Previously, the scanner would abort the entire process when any task caused an exception.

* OPENIDM-20937: New provisioner metric `idm_icf_pending`. Includes all the same tags as `idm_icf*`.

* OPENIDM-21170: Metrics for router filters now use `router_filter` for the metric name and include a `name` tag to identify the specific filter.

* OPENIDM-21171: Metrics for managed identity script hooks now use `managed-script-hook` for the metric name, `object` to tag the identity object, and `script-hook` to tag the script hook.

* OPENIDM-21172: Metrics for custom endpoints now use the new `custom_endpoint` metric name and include a `name` tag based on the custom endpoint configuration name after the hyphen. For example, a custom endpoint configuration `endpoint-onboardCustomer.json` will generate metrics with a name tag/label of "onboardCustomer". The policy service makes use of an internal scripted endpoint based on the file `policy.js`, and its metric name is `policy-js`.

* OPENIDM-21233: The `openidm/health/ready` endpoint has been enhanced to include the number of waiting requests. A new set of metrics have been added to provide a historical accounting of IDM health.

### Fixes

* FRAAS-28885\[[1](#_footnotedef_1 "View footnote.")]: ESV secret `useInPlaceholders` attribute is now taken into account by promotion integrity checks.

* IAM-9466: Annotation comments added to sub-nodes are now saved correctly.

* IAM-9496: The tooltip in journey comments now correctly displays the creator's name without overflow.

* IAM-9527: The hosted account pages logo now correctly uses the height specified in the theme.

* OPENICF-3277: The SaaS REST connector no longer throws a `NullPointerException` when attributes are missing in the request payload.

* OPENIDM-20525: The `cn` and `telephoneNumber` schema for `alpha_user` and `bravo_user` are now `scope: public` and `searchable: true`. This schema change applies to tenants created on or after December 3, 2025. Existing tenants are unchanged.

* OPENIDM-20863: Default values for multivalue mappings are now copied by value to prevent unintended mutations during runtime.

* OPENIDM-21421: Updating the configuration of an inactive provisioner no longer throws an `IllegalStateException`.

* OPENIDM-21454: Every failed record from a live sync is now stored in the dead-letter queue with a unique entry ID.

### Changed functionality

* Default API version for unversioned requests to `openidm/*` endpoints (OPENIDM-21191)

  Previously, REST API requests made to `openidm/*` endpoints without an `Accept-API-Version` header defaulted to the latest available API version for the resource. These unversioned requests now default to API version `1.0` for most resources. However, the `consent`, `scheduler/job`, `scheduler/trigger`, and `schema` endpoints default to API version `2.0`.

***

[1](#_footnoteref_1). This issue was inadvertently excluded from the rapid changelog.[2](#_footnoteref_2). This change applies to a feature only available in PingOne Identity Governance, which is an [add-on capability](../../product-information/add-on-capabilities.html) and must be purchased separately.