2025.12.08 - My-Access

Delivery Timeline

• Production: 08 Dec 2025

New Features & Improvements

• RBA management from the admin portal
  You can now enable or disable the RBA via the setting amcp.am.rba.enabled in your admin portal.
  A new “Access Risk” usage available for access attributes used in RBA rules.

• OTP email/SMS quota configuration
  You can now define OTP quotas and write custom messages that users see when they reach their limit.

• Fragments improvements

  • Automatic generation of internal link base URLs:
    {{ENV.usrBaseUrl}}, {{ENV.admBaseUrl}}, {{ENV.ssoBaseUrl}}.

• Authentication behavior updates

  • OATH now works only as part of a two-factor mechanism.

  • You can no longer name an authentication mechanism “Chain”, since the platform reserves this name.

• SAML2/OAuth2 mapping optimization
  Only access attributes marked as identity identifiers can now serve as mapping keys.

• Federation stability improvements

  • Undeployment works even if the federation no longer exists on the identity platform.

  • A protected federation is no longer deleted if someone removes its application.

Other Enhancements

• Added missing labels when editing access-object XML.

• Removed the unsupported SSO favicon setting.

• Blocked changes to non-editable properties in well-known attributes.

• General technical and performance updates.

Patches & Fixes

• Fixed a Java error that occurred when the html parameter was null in an HTML fragment.

• Additional stability and reliability fixes.