Identity Manager 8.2.1 - Release Notes

The following is a list of all patches provided for synchronization projects in One Identity Manager 8.2.1. Every patch contains a script, which tests whether the patch can be applied to the synchronization project. This depends on the specific configuration of the synchronization.

For more information, see Applying patches to synchronization projects.

Table 15: Patches for Azure Active Directory
Patch ID	Patch	Description	Issue ID
VPR#34896	Improved mapping of user accounts in federations	Changes the User mapping to support the addition of Azure Active Directory user accounts that are later synchronized with the associated Active Directory user account. User accounts enabled for synchronization with the local Active Directory (OnPremisesSyncEnabled = True) only have specific schema properties read in. This patch is applied automatically when One Identity Manager is updated.	34896

Table 16: Patches for Oracle E-Business Suite
Patch ID	Patch	Description	Issue ID
VPR#34775	Adds a password variable	Adds a variable for the synchronization user's password and replaces the password in the login credentials with the variable. This patch is applied automatically when One Identity Manager is updated.	34775

Table 17: Patches for Microsoft Exchange
Patch ID	Patch	Description	Issue ID
VPR#21073_2	Manages mailbox permissions	Only permits principals that are also available in the Exchange Admin Center. Depends on the Support for mailbox permissions Send as and Full access patch. This patch is applied automatically when One Identity Manager is updated.	21073
VPR#35343_EX0	Changes the behavior of "unlimited" values	Change to the behavior of "unlimited" values. They are represented in the database as -1 instead of 0, whereby true 0 values can be handled. This patch is applied automatically when One Identity Manager is updated.	35343

Table 18: Patches for Exchange Online
Patch ID	Patch	Description	Issue ID
VPR#34938	New property mapping rule for mail user recipient type	Adds two property mapping rules for the recipient type in the MailUser mapping. This patch is applied automatically when One Identity Manager is updated.	34938
VPR#35373	Corrects incorrect processing methods in synchronization workflows.	Removes incorrect processing methods from the Calendar Processing and Mailbox Statistics synchronization steps in the workflows. This patch is applied automatically when One Identity Manager is updated.	35373
VPR#35343_O3E	Changes the behavior of "unlimited" values	Change to the behavior of "unlimited" values. They are represented in the database as -1 instead of 0, whereby true 0 values can be handled.	35343

Table 19: Patches for SAP R/3
Patch ID	Patch	Description	Issue ID
VPR#35118	New property mapping rule for mapping ALE model names and ALE names	Adds property mapping rules for loading ALE model names and ALE names from the central system of a CUA to the ALEModel mapping.	35118
VPR#35370	Corrects the reference scope	Corrects the reference scope of the One Identity Manager connection to correctly map deputies to SAP user accounts. Prerequisite for the Corrects the reference scope (for CUA) patch. This patch is applied automatically when One Identity Manager is updated.	35370
VPR#35370_CUA	Corrects the reference scope (for CUA)	Corrects the reference scope of the One Identity Manager connection to correctly map deputies to SAP user accounts in the CUA. Depends on the Corrects the reference scope patch. This patch is applied automatically when One Identity Manager is updated.	35370

Table 20: Patches for SAP R/3 personnel planning data and structural profiles
Patch ID	Patch	Description	Issue ID
VPR#35174_1	Allows updating of SAPUserInSAPHRP during provisioning (part 1/2)	Corrects the provisioning workflow to allow updating of structural profile assignments to user accounts. Prerequisite for the Updating structural profiles during provisioning (part 2/2) patch. This patch is applied automatically when One Identity Manager is updated.	35174
VPR#35174_2	Allows updating of SAPUserInSAPHRP during provisioning (part 2/2)	Corrects the synchronization configuration to allow updating of structural profile assignments to user accounts. Dependent on the Updating structural profiles during provisioning (part 1/2) patch. This patch is applied automatically when One Identity Manager is updated.	35174

Patches in One Identity Manager version 8.2

Patch ID	Patch	Description	Issue ID
VPR#28669	Support for invitations from guest users	Extends the user mapping for creating guest users by sending invitations.	28669
VPR#31389	Support for schema properties for hybrid environments, age groups, and user profiles	Adds new property mapping rules to the User mapping to support hybrid environments, age groups, and user profiles.	31389
VPR#32384	Support for Azure Active Directory group license assignments	Extends the synchronization configuration to support license assignments through Azure Active Directory groups.	32384
VPR#32454	Sets the AzureAD tag on synchronization projects	Sets the AzureAD tag on synchronization projects for Azure Active Directory.	32454
VPR#32665	Synchronizes ExternalUserState and ExternalUserState ChangeDateTime	Adds property mapping rules for the schema properties ExternalUserState and ExternalUserStateChange DateTime in the User mapping.	32665
VPR#32975	Adds a property mapping rule for LastPasswordChangeDate Time	Inserts a property mapping rule for LastPasswordChangeDateTime into the User mapping.	32975
VPR#33088	Support for Azure Active Directory Service principals	Extends the synchronization configuration to support Azure Active Directory service principals and app roles. Requirement for patch Active Directory policy support.	33088
VPR#33198	Active Directory policy support	Extends the synchronization configuration to support Active Directory policies. Depending on patch Azure Active Directory service principal support.	33198
VPR#34150	Support for Microsoft Cloud US Government deployments (L4)	Adds support for Microsoft Cloud for US Government (L4).	34150
	Milestone 8.2.1	Milestone for the context Azure Active Directory.

Patch ID	Patch	Description	Issue ID
VPR#32110	Adds the middleName schema property	Inserts the middleName schema property into the User and inetOrgPerson mappings.	32110
VPR#32759	Adds property mapping rules for the schema property ProtectedFromAccidental Deletion	Adds a property mapping rule for the schema property ProtectedFromAccidental Deletion into the user, contact, group, and computer mappings.	32759
VPR#32950	Adds further property mapping rules for the schema property mS-DS-ConsistencyGuid	Inserts a property mapping rule for the mS-DS-ConsistencyGuid schema property into the contact, group and computer mappings. Prerequisite for patch Corrects the property mapping rule for the schema property mS-DS-ConsistencyGuid.	32950
VPR#33217_001	Checks the properties of mappings	Checks and corrects mappings that have the Only suitable for updates option enabled.	33217
VPR#34324	Publish group members as read only	Publish member properties of groups as read-only to avoid write operations in the target system browser.	34324
VPR#34715	Corrects the property mapping rule for MSDsConsistencyGuid	Corrects the mapping direction of the property mapping rule for the mS-DS-ConsistencyGuid schema property in the user mapping. Dependent on the patch Adds further property mapping rules for the schema property mS-DS-ConsistencyGuid.	34715
	Milestone 8.2.1	Milestone for the context Active Directory.

Patch ID	Patch	Description	Issue ID
VPR#32110	New property mapping rule for middleName	Inserts a property mapping rule for the middleName schema property into the User and InetOrgPerson mappings.	32110
VPR#32783	New property mapping rule for edsvaProtectFromDeletion	Inserts a property mapping rule for edsvaProtectFromDeletion in the Group, Computer, User and InetOrgPerson mappings.	32783
VPR#32952	Adds property mapping rules for mS-DS ConsistencyGuid	Inserts a property mapping rule for the mS-DS-ConsistencyGuid schema property into the Contact, Group, Computer, User, and InetOrgPerson mappings.	32952
VPR#34168	New property mapping rule for edsaIsDynamicGoup	Inserts a property mapping rule for the edsaIsDynamicGoup schema property into the mapping Group. This patch is applied automatically when One Identity Manager is updated.	34168
VPR#34634	New property mapping rules for edsvaGFIsGroupFamily and edsvaCGIsControlledGroup	Inserts property mapping rules for the edsvaGFIsGroupFamily and edsvaCGIsControlledGroup schema properties into the group mapping.	34634
	Milestone 8.2.1	Milestone for the context Active Roles.

Patch ID	Patch	Description	Issue ID
VPR#33804	Clearing up connection parameters	Removes unnecessary system connection parameters from the connection parameter. This patch is applied automatically when One Identity Manager is updated.	33804
	Milestone 8.2.1	Milestone for the context Oracle E-Business Suite.

Patch ID	Patch	Description	Issue ID
VPR#21073	Support of the mailbox permissions Send as and Full access	Extends the synchronization configuration to support the Send As and Full Access mailbox permissions. NOTE: Since this has a large impact on performance, the corresponding synchronization steps are disabled by default and must be enabled manually.	21073
VPR#26120	New Property Mapping Rules for IsExcludedFromProvisioning and IsSuspendedFromProvisioning	Inserts property mapping rules for the IsExcludedFromProvisioning and IsSuspendedFromProvisioning schema properties into the MailboxDatabase mapping.	26120
VPR#27741	Supports address book policies	Extends the synchronization configuration to support address book policies for mailboxes.	27741
VPR#31470	New property mapping rule for IsSingleItemRecoveryEnabled	Inserts a property mapping rule for the IsSingleItemRecoveryEnabled schema property into the mailbox mapping.	31470
	Milestone 8.2.1	Milestone for the context Microsoft Exchange.

Identity Manager 8.2.1 - Release Notes

Patches for synchronization projects

Deprecated features

System requirements

Minimum requirements for the database server

Patch ID	Patch	Description	Issue ID
	Milestone 8.2.1	Milestone for the context DPR.
	Milestone 8.2.1	Milestone for the context One Identity Manager.

Patch ID	Patch	Description	Issue ID
VPR#34170	Support for Microsoft Cloud for US Government (L4)	Adds support for Microsoft Cloud for US Government (L4). This patch is applied automatically when One Identity Manager is updated.	34170
VPR#34046	New property mapping rule for HiddenFromExchange ClientsEnabled	Adds a property mapping rule for the schema property HiddenFromExchange ClientsEnabled in the UnifiedGroup mapping.	34046
	Milestone 8.2.1	Milestone for the context Exchange Online.

Patch ID	Patch	Description	Issue ID
VPR#32610	Mapping of different access permissions of groups	Extends the group mapping to map access permissions. This patch is applied automatically when One Identity Manager is updated.	32610
VPR#33093	Additional schema properties mapping for user accounts	Extends the user mapping to map additional schema properties of user accounts.	33093
VPR#34645	Correction in the User mapping	Corrects the property mapping rule for the Aliases schema property in the user mapping.	34645
	Milestone 8.2.1	Milestone for the context Google Workspace.

Patch ID	Patch	Description	Issue ID
VPR#33513	Support for multiple domains with the same DN	Expands the scope and default variable set to support multiple domains with the same distinguished name.	33513
	Milestone 8.2.1	Milestone for the context LDAP.

Patch ID	Patch	Description	Issue ID
VPR#25230	Changes the default value of the MailFileAccessType variable	Changes the default value of the MailFileAccessType variable to 0.	25230
VPR#34393	Correction of a property mapping rule in person mapping	Corrects settings of the property mapping rule for InternetPassword in the person mapping. This patch is applied automatically when One Identity Manager is updated.	34393
	Milestone 8.2.1	Milestone for the context HCL Domino.

Patch ID	Patch	Description	Issue ID
VPR#32541	Support for SSH key access requests	Adds property mapping rules to the Asset and AssetAccount mappings to support access requests for SSH keys.	32541
VPR#34392	Support of Vault for personal passwords	Inserts property mapping rules for the AllowPersonalAccounts schema property into the User mapping.	34392
VPR#34403	Handling passwords as secret values	Updates the connector scheme to treat passwords as secret values. This patch is applied automatically when One Identity Manager is updated.	34403
	Milestone 8.2.1	Milestone for the context Privileged Account Management.

Patch ID	Patch	Description	Issue ID
VPR#33217_002	Checks the properties of mappings	Checks and corrects mappings that have the Not suitable for new creation option enabled.	33217
VPR#33301	Support of SAP S/4HANA user types and communication data	Extends the synchronization configuration to map the address and communication data of business partners.	33301
VPR#33301_2	Support for SAP S/4HANA user types	Extends the synchronization configuration to map user types.	33301
VPR#33819	New Property mapping rule for the default company of SAP clients	Inserts a property mapping rule for mapping the default company of SAP clients into the client mapping .	33819
VPR#34563	Correction of userInRole mapping and synchronization step	Corrects the mapping and synchronization step for SAPUserInSAPRole assignments that are not effective. This patch is applied automatically when One Identity Manager is updated. Dependent on patch Set filter for SAPUserInSAPRole (VPR#31427).	34563
	Milestone 8.2.1	Milestone for the context SAP R/3.

Patch ID	Patch	Description	Issue ID
VPR#32292	Mapping of table USOBHASH	Inserts a map and a synchronization step to read in USOBHASH table data from the target system.	32292
VPR#32963_1	Mapping changes to map additional authorization objects (part 1)	Modifies various mappings to map external services, TADIR services, and RFC function modules into SAP functions. Replaces the patch VPR#32292. Part 1: Deletes existing maps. This patch is applied automatically when One Identity Manager is updated. Prerequisite for patch Mapping changes to map additional authorization objects (part 2).	32963
VPR#32963_2	Mapping changes to mapping additional authorization objects (part 2)	Modifies various mappings to map external services, TADIR services, and RFC function modules into SAP functions. Part 2: Adds new maps. This patch is applied automatically when One Identity Manager is updated. Depending on patch Mapping changes to map additional authorization objects (part 1).	32963
	Milestone 8.2.1	Milestone for the context SAP R/3.

Patch ID	Patch	Description	Issue ID
VPR#31779	Configuration for creating and deleting site collections and sites	Expands the synchronization configuration to be able to create and delete site collections and sites.	31779
	Milestone 8.2.1	Milestone for the context SharePoint Online.

Patch ID	Patch	Description	Issue ID
VPR#32564	Configuration of the number of parallel requests	Adds the variable Max. Parallel Queries into the default variable set.	32564
VPR#33884	Configuration of the KeepAlive connection parameter	Adds the HTTP KeepAlive variable to the default variable set.	33884
VPR#33978	New variable for setting a default time zone	Adds a variable to the default variable set and connection parameters to be able to set a default time zone. This patch is applied automatically when One Identity Manager is updated.	33978
	Milestone 8.2.1	Milestone for the context SCIM.

Processor	8 physical cores with 2.5 GHz+ frequency (non-production) 16 physical cores with 2.5 GHz+ frequency (production) NOTE: 16 physical cores are recommended on the grounds of performance.
Memory	16 GB+ RAM (non-production) 64 GB+ RAM (production)
Hard drive storage	100 GB
Operating system	Windows operating system Note the requirements from Microsoft for the SQL Server version installed. UNIX and Linux operating systems Note the minimum requirements given by the operating system manufacturer for SQL Server databases.
Software	Following versions are supported: SQL Server 2017 Standard Edition (64-bit) with the current cumulative update SQL Server 2019 Standard Edition (64-bit) with the current cumulative update NOTE: The cumulative update 2 for SQL Server 2019 is not supported. NOTE: For performance reasons, the use of SQL Server Enterprise Edition is recommended for live systems. Compatibility level for databases: SQL Server 2017 (140) Default collation: case insensitive, SQL_Latin1_General_CP1_CI_AS (recommended) SQL Server Management Studio (recommended)

Patch ID	Patch	Description	Issue ID
VPR#Patch32500	Elevation password variable correction	Marks the Elevation password variable as a secret value.	32500
VPR#33249	New variables and connection parameters for authentication with the SSH private key	Inserts variables and connection parameters for authentication with the SSH private key.	33249
	Milestone 8.2.1	Milestone for the context Unix.

Patch ID	Patch	Description	Issue ID
VPR#33728	Updating the One Identity Manager schema	Updates the One Identity Manager schema to support the generation of synchronization projects with the One Identity Manager connector.	33728
	Milestone 8.2.1	Milestone for the context Database.

Please select your product:

To serve you better, please complete the Purpose of your Chat:

Recommended Solutions for Your Problem

Identity Manager 8.2.1 - Release Notes

Patches for synchronization projects

Deprecated features

System requirements

Minimum requirements for the database server