March 2024 - PingOne - PingOne Cloud Platform

PingOne Cloud Platform

bundle
pingone
ft:publication_title
PingOne Cloud Platform
Product_Version_ce
PingOne
PingOne Cloud Platform
category
Administratorguide
ContentType
Guide
Product
Productdocumentation
p1
p1cloudplatform
ContentType_ce
Product documentation
Guide
Guide > Administrator Guide

March 26

Integration of a PingID account with PingOne

PingOne
Improved
We’ve improved the process for integrating an existing PingID account with PingOne. PingOne now performs more comprehensive validations during the integration process, enabling Administrators to fix issues and ensure license compliance before starting the integration. Learn more at Integrating a PingID account with a new PingOne environment.

RADIUS Gateway enhancements

PingOne
New
We've updated the RADIUS Gateway client application to version 1.1.1. This version has a lighter footprint, improves security, and reduces dependencies. RADIUS Gateway 1.1.1 supports Java 17.0.8 or later.

March 20

Role assignment UI enhancements

PingOne
Improved
We’ve streamlined the user interface for viewing and assigning roles. This update reduces scrolling and clarifies the context in which the user or group has roles assigned. Learn more at Managing user roles and Managing group roles.

March 12

LDAP Gateway user attribute updates on every authentication

PingOne
New
We’ve added the ability for PingOne to always update PingOne user attribute changes from an external directory on every successful authentication through the LDAP Gateway client. Learn more about enabling user attribute updates in Adding a user type.

March 7

Password Check audit event descriptions enhanced

PingOne
Improved
The descriptions for the Password Check Succeeded and Password Check Failed audit events in PingOne have been enhanced to include more information for users signing on through a PingOne gateway and to improve the troubleshooting experience, as described in the following table:
PingOne gateway user? Event type Previous description New description

Yes

Password Check Succeeded

Check Succeeded Password <userId>

Password check succeeded for Gateway User <userId> through Gateway <gatewayId> using User Type <userTypeId>

Yes

Password Check Failed

Check Failed Password <userId>

Password check failed for Gateway User <userId> through Gateway <gatewayId> using User Type <userTypeId>

No

Password Check Succeeded

Check Succeeded Password <userId>

Password check succeeded for User <userId>

No

Password Check Failed

Check Failed Password <userId>

Password check failed for User <userId>

Learn more about audit events in Event types.

March 5

User Updated audit event enhancements

PingOne
Improved
The User Updated audit event in PingOne has been enhanced to include information about most user attributes that were changed, added, or removed during the update. Learn more about auditing events in Event types. Learn more about user attributes.

PKCE support added for custom OIDC identity providers

PingOne
New
You can now enable Proof Key for Code Exchange (PKCE) for custom OIDC identity providers in PingOne. PKCE helps to secure communication with the provider and can prevent authorization code interception attacks. Learn more at Adding an identity provider - OIDC.

March 4

New risk predictor - Email Reputation

PingOne Protect
New

The use of disposable email addresses is a common characteristic of fraudulent activity. PingOne Protect now has a risk predictor to detect the use of disposable email addresses during registration.

You can add the predictor to your risk policies, and you can also define a specific course of action if the result.recommendedAction field in the risk evaluation response indicates the use of a disposable email address.

PingOne API - field added to risk evaluation response

PingOne Protect
Info
For risk evaluations that use a risk policy with the New Device predictor, the API response now includes a field that represents the date and time that the device was last seen. For details, see Risk Evaluations in the API documentation.

March 1

New API Access Management audit event types

PingOne Authorize
New
We've added the following new API Access Management event types:
  • API Service Created
  • API Service Updated
  • API Service Deployed
  • API Service Deleted

You can review these events in the PingOne Audit log or create webhooks to ensure management of API Services is working correctly. Learn more in Viewing API Access Management events in your PingOne environment audit log.