Chat now with support
Chat with Support

One Identity Safeguard for Privileged Sessions 7.3 - Release Notes

Release Notes

One Identity Safeguard for Privileged Sessions 7.3

Release Notes

25 May 2023, 10:41

These release notes provide information about the One Identity Safeguard for Privileged Sessions release. For the most recent documents and product information, see One Identity Safeguard for Privileged Sessions - Technical Documentation.

Topics:

About this release

One Identity Safeguard for Privileged Sessions Version 7.3 is a release with new features and resolved issues. For details, see:

NOTE: For a full list of key features in One Identity Safeguard for Privileged Sessions, see Administration Guide.

About the Safeguard product line

The One Identity Safeguard Appliance is built specifically for use only with the Safeguard privileged management software, which is pre-installed and ready for immediate use. The appliance is hardened to ensure the system is secured at the hardware, operating system and software levels. The hardened appliance approach protects the privileged management software from attacks while simplifying deployment and ongoing management -- and shortening the timeframe to value.

Safeguard privileged management software suite

Safeguard privileged management software is used to control, monitor, and govern privileged user accounts and activities to identify possible malicious activities, detect entitlement risks, and provide tamper proof evidence. The Safeguard products also aid incident investigation, forensics work, and compliance efforts.

The Safeguard products' unique strengths are:

  • One-stop solution for all privileged access management needs

  • Easy to deploy and integrate

  • Unparalleled depth of recording

  • Comprehensive risk analysis of entitlements and activities

  • Thorough Governance for privileged account

The suite includes the following modules:

  • One Identity Safeguard for Privileged Passwords automates, controls and secures the process of granting privileged credentials with role-based access management and automated workflows. Deployed on a hardened appliance, Safeguard for Privileged Passwords eliminates concerns about secured access to the solution itself, which helps to speed integration with your systems and IT strategies. Plus, its user-centered design means a small learning curve and the ability to manage passwords from anywhere and using nearly any device. The result is a solution that secures your enterprise and enables your privileged users with a new level of freedom and functionality.
  • One Identity Safeguard for Privileged Sessions is part of One Identity's Privileged Access Management portfolio. Addressing large enterprise needs, Safeguard for Privileged Sessions is a privileged session management solution, which provides industry-leading access control, as well as session monitoring and recording to prevent privileged account misuse, facilitate compliance, and accelerate forensics investigations.

    Safeguard for Privileged Sessions is a quickly deployable enterprise appliance, completely independent from clients and servers - integrating seamlessly into existing networks. It captures the activity data necessary for user profiling and enables full user session drill-down for forensics investigations.

  • One Identity Safeguard for Privileged Analytics integrates data from Safeguard for Privileged Sessions to use as the basis of privileged user behavior analysis. Safeguard for Privileged Analytics uses machine learning algorithms to scrutinize behavioral characteristics and generates user behavior profiles for each individual privileged user. Safeguard for Privileged Analytics compares actual user activity to user profiles in real time and profiles are continually adjusted using machine learning. Safeguard for Privileged Analytics detects anomalies and ranks them based on risk so you can prioritize and take appropriate action - and ultimately prevent data breaches.

New features

New features in One Identity Safeguard for Privileged Sessions (SPS) version 7.3
  • Configurable Session list view for search-based subchapters in reporting

    From SPS version 7.3, when you create a search-based subchapter for a report, you will see a new configuration interface. In Session list view, you can customize the table in your report to include up to 10 custom columns that you can select from the list of session parameters.

    For more information, see Creating search-based report subchapters from search results and Creating search-based report subchapters from scratch in the Administration Guide.

  • Power BI Integration

    From One Identity Safeguard for Privileged Sessions (SPS) version 7.3, you can use the One Identity Safeguard Power BI Connector (Power BI Connector) to import and visualize audit data from SPS in the Power BI Desktop reporting application.

    For more information, see the One Identity Safeguard Power BI Connector Tutorial on the One Identity Support Portal.

  • App switcher

    From SPS version 7.3, you can configure the external federation login methods to enable seamless switching between SPS and SPP. After the configuration, you do not have to log in each time when you are switching from SPS to SPP or from SPP to SPS.

    For more information, see Switching seamlessly between SPS and SPP in the Administration Guide.

Other improvements
  • In Policies > Audit data cleanup policies, the value range of Audit data retention period has been modified. The new accepted value range is 30-100,000 days.

Changes and improvements in SPS REST API Reference Guide version 7.3:
  • Advanced search method

    The 400 InvalidSearchClientId response code has been added to the HTTP response codes table.

  • Advanced search method, _count endpoint

    The /api/audit/sessions/_count endpoint has been extended with cache handling logic to store the snapshot ID in the internal cache so that an opened snapshot for a request with the same Remote-Addr and User-Agent headers is retrieved from the cache. Subsequent open snapshot requests with the same Remote-Addr and User-Agent headers do not result in opening a new database snapshot until the previously opened snapshot expires in the cache.

    The following response codes have been included in the HTTP response codes table:

    • 400, InvalidAdvancedSearchCountQuery

    • 400, InvalidSearchClientId

    • 404, CountQuerySnapshotNotFound

    The snapshot parameter has been added to _count request and response examples.

    Section Number of sessions has been removed from the API examples section of the REST API Reference Guide and the examples have been moved to the description of the _count endpoint.

  • Advanced search method, _snapshot endpoint

    The following response codes have been included in the HTTP response codes table:

    • 400, InvalidSearchClientId

    • 404, CountQuerySnapshotNotFound

    • 404, SearchQuerySnapshotNotFound

    The following response codes have been removed from the HTTP response codes table:

    • 400, InvalidSearchAfterQuery

    • 400, InvalidAdvancedSearchCountQuery

Self Service Tools
Knowledge Base
Notifications & Alerts
Product Support
Software Downloads
Technical Documentation
User Forums
Video Tutorials
RSS Feed
Contact Us
Licensing Assistance
Technical Support
View All
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating