August 2024 - PingOne - PingOne Cloud Platform

PingOne

bundle
pingone
ft:publication_title
PingOne
Product_Version_ce
PingOne
PingOne Cloud Platform
category
Administratorguide
ContentType
Guide
Product
Productdocumentation
p1
p1cloudplatform
ContentType_ce
Product documentation
Guide > Administrator Guide
Guide

August 22

Updated API gateway integration kits

PingOne Authorize
New

We’ve released new versions of the following API gateway integration kits:

  • Amazon API Gateway integration kit 1.1.0
  • Apigee integration kit 1.1.0
  • Kong integration kit 1.1.0

These versions improve how the integration kits handle rate limiting to achieve more reliable and stable authorization services. Learn more about connecting your API gateway to PingOne Authorize in PingOne Authorize API gateway integrations.

August 21

Default MFA status for new users setting enabled by default

PingOne
Improved
The Default MFA status for new users setting on the MFA Settings page is now enabled by default in all new environments. This setting allows just-in-time registration of new multi-factor authentication (MFA) methods for PingOne administrators the first time they sign-on to the admin console. Learn more in Configuring MFA settings.

August 19

New risk predictor - Traffic Anomaly

PingOne Protect
New

A new risk predictor called Traffic Anomaly has been added in order to detect traffic anomalies in terms of variables such as users, devices, and sessions.

The Traffic Anomaly predictor will eventually include a variety of rules, some of which you can select to enable or disable. In this initial release of the predictor, PingOne Protect detects situations where there are a large number of risk evaluations requested for a single user within a short period of time, and optionally can also detect situations where the number of users per device during a given period is suspicious.

When a risk level of High is calculated for the Traffic Anomaly predictor, it is recommended that you deny access because the suspicious activity is likely due to malicious behavior.

For details, see Predictors, Configuring predictors, and the Risk Predictors section of the PingOne API documentation.

User IP from Signals (Protect) SDK payload

PingOne Protect
Improved
Due to the use of corporate proxies and other network tools, the user's true IP was often masked by an internal IP, reducing the benefit provided by risk predictors that factor in the IP or user location. To handle such situations, if PingOne Protect encounters an internal IP, it now uses the user IP that is included in the Signals (Protect) SDK payload. This feature requires version 5.2.7 or later of the Signals SDK for Web.

Deprecation of User Risk Behavior (organization-wide) predictor

PingOne Protect
Info
The User Risk Behavior (organization-wide) predictor has been deprecated. The predictor can still be used in existing PingOne environments, but is not available in new environments.

August 9

Updated LDAP Gateway client application

PingOne
New
We’ve released LDAP Gateway client application version 3.2.2, which includes improved support for unauthenticated proxy for LDAP gateway provisioning sync.

August 7

Updated LDAP Gateway client application

PingOne
New
We’ve released LDAP Gateway client application version 3.2.0. This version includes:
  • Support for using a forward web proxy server to handle WebSocket traffic between the gateway client and PingOne
  • Debug logging improvements
  • Bug fixes

Learn more about using a web proxy server in LDAP gateways and Starting a gateway instance.

August 5

User group conditions in composite predictors

PingOne Protect
New
When creating composite risk predictors, you can now include conditions that check what PingOne user groups the user belongs to. For details, see Adding composite predictors and the example in the PingOne API documentation.

New admin alert - suspicious traffic

PingOne Protect
New
You can now add an alert to receive an email notification if PingOne Protect detects a pattern of suspicious traffic that requires your attention. For details on adding alerts, see Adding an alert.

Bot detection enhancement

PingOne Protect
New
The Bot Detection predictor now has an option that you can select to expand the types of bot activity that PingOne Protect can detect. For details, see Configuring predictors and the Risk Predictors section of the PingOne API documentation.