Help Center
News
Help Center
News
Sign in
Document
Documents & PoliciesQuestionnairesControls & Technical and Organizational Measures (TOMs)Report ExplorerAsset RegisterFrameworksRecord of Processing Activities (ROPA)Exporting your ROPAVendorsImpact Assessments (IA)Legitimate Interest DocumentationsMeetings & ActivitiesRetentions & Deletions PeriodsData Collection Point (DCP)Add documents to vendors
DPIA
Assessments
ROPA
Assets
International Standards & Frameworks
TOMs & Controls
Categories & Attributes
Data Collection Points
Legal Basis
Legitimate Interest
Documents & Policies
Retention & Deletion
Data Flow
Vendors
Questionnaires
Manage
Process Risk OverviewData Flow Map
Dashboards
AI Assistance & Automation
Projects
Tasks
Meetings & Activities
Workflows & Automations
Reporting
React & Resolve
TasksProjectsIncidents & BreachesData Subject Requests
Risk Scenarios & Treatments
Incidents & Breaches
Release Notes
Q2 2026
Q1 2026
Q4 2025
Q3 2025
Q2 2025
Q1 2025
Release 223 (16.01.2025)Release 224 (18.01.2025)Release 225 (20.01.2025)Release 220 (10.01.2025)Release 221 (10.01.2025)Release 222 (13.01.2025)Release 226 (31.01.2025)Release 227 (31.01.2025)Release 230 (07.02.2025)Release 231 (08.02.2025)Release 232 (12.02.2025)Release 233 (15.02.2025)Release 234 (21.02.2025)Release 236 (01.03.2025)Release 237 (05.03.2025)Release 238 (08.03.2025)Release 239 (15.03.2025)Release 240 (20.03.2025)Release 241 (21.03.2025)Release 242 (21.03.2025)Release 243 (24.03.2025)Release 228 (02.02.2025)Release 229 (06.02.2025)Release 235 (27.02.2025)Release 244 (29.03.2025)Release 263 (24.03.2025) Release 260 (20.03.2025) Release 258 (14.03.2025) Release 257 (08.03.2025) Release 256 (05.03.2025) Release 254 (26.02.2025) Release 253 (22.02.2025) Release 251 (12.02.2025) Release 250 (08.02.2025) Release 244 (31.01.2025) Release 235 (10.01.2025)
Q4 2024
Q3 2024
Q2 2024
Q1 2024
Q4 2023
Q3 2023
Q2 2023
Q1 2023
Q4 2022
Q3 2022
Getting Started
Quickstart GuideQuestionnairesTasksProcess Risk OverviewIT SettingsFrameworksThe Information Security / Asset Risk ModelData Subject RequestsDownloading an elementLegitimate Interest DocumentationsAssigning Audiences to ElementsDocuments & PoliciesControls & Technical and Organizational Measures (TOMs)General SettingsCreating attributes that fit your industryDocument list for onboardingThe Data Protection Risk ModelIncidents & BreachesProjectsManaging audiencesAdd documents to vendorsHow to answer an assessment/questionnaireSetting up the first organization or companyData Collection Point (DCP)Use AI to create elementsSetting Risk models in General SettingsSharing ElementsHow can a user change the language?Data Flow MapRecord of Processing Activities (ROPA)Time MachineCreate and evaluate assessments Company Widget FeatureAsset RegisterVendorsImpact Assessments (IA)Creating organizational unitsExporting your ROPAMeetings & ActivitiesTerms for legitimate processingRetentions & Deletions PeriodsHow to create a new user and how to change the password for loginReport ExplorerMaturity modelAdding risk scenarios to assets or asset groupsRelevant Risk SzenariosPriverion GRC Platform overviewDocument list for onboardingHow can a user change the language?Setting up the first organization or companyCreating attributes that fit your industry
User account
Sharing & Group functions
Features
How-To Guides & Tips
Get Help
Legal
Settings
General Settings
Compliance settings
Identity and access management
IT Settings
Risk Settings

Release 229 (06.02.2025)

Release 229 introduces a completely redesigned login experience and a comprehensive new Identity & Access Management (IAM) module, including SCIM provisioning, SAML/OAuth single sign-on configuration, and detailed authentication logs.

New Release

Version: 229
Release Date: 06.02.2025 19:00 CET

Overview

This release delivers two major areas of change: a modernised login and password-reset experience with improved visual design and usability, and a brand-new IAM section under IT Settings that centralises user provisioning, single sign-on, token management, and access logs. Administrators and compliance officers now have significantly more control over how users authenticate and how external identity providers are integrated.

Contents

  • What's new
  • Improvements
  • Known issues

What's new

Redesigned Login Screen [NG-3263, NG-3264]

The login screen has been fully redesigned with a refreshed visual layout. Improvements include:

  • A new Priverion-branded look with updated colours and typography.
  • Caps Lock detection on password fields, with an inline warning when Caps Lock is active.
  • The password field now highlights in red when an incorrect password is entered.
  • The two-factor authentication (2FA) code entry screen has been updated with a cleaner square-style input layout.
  • The "Link no longer available" error screen has also been visually updated to match the new design language.

Improved Password-Reset Flow [NG-3334, NG-3457]

The password-reset and "forgot password" screens have been redesigned with clearer step-by-step guidance and improved feedback messages throughout the process.

New IAM Module — Identity & Access Management

A new IAM section is now available under IT Settings, bringing together all identity and access controls in one place. It contains the following areas:

SCIM Provisioning Overview [NG-3431]

A dedicated overview screen shows the current SCIM configuration status at a glance, including the total number of provisioned users and groups, the base URL for the SCIM endpoint, and a copy button for easy access to connection details.

SCIM Tokens [NG-3214]

Administrators can now create, view, edit, and delete SCIM bearer tokens directly from the UI. Each token displays its expiration date, last-used date, and a configurable type-of-use label. A dedicated "Generate Token" screen shows the token value once — with a clear copy button — so it can be saved securely.

SCIM Roles Mapping [NG-3431]

A new Roles Mapping screen lets administrators map external identity-provider groups to internal Priverion roles. Mappings can be created, edited, and deleted from a searchable, paginated table.

SCIM External Groups

The groups synchronised from an external identity provider (e.g. Microsoft Entra ID / Azure AD) are now visible in a dedicated screen, showing group names and member counts.

SAML / OAuth Single Sign-On Configuration [NG-3224, NG-3225, NG-3295]

Administrators can now configure SAML 2.0 and OAuth 2.0 / OpenID Connect providers directly in the UI. The configuration form supports:

  • Choosing the SSO type (SAML or OAuth/OIDC).
  • Pre-defined configuration templates to speed up setup for common providers.
  • Fields for all required metadata: entity IDs, sign-on/logout service URLs, certificates, client ID/secret, tenant ID, token URL, group-claims name, and more.
  • SP (Service Provider) metadata fields — entity ID, SSO service, SLO service, and Assertion Consumer Service URL — displayed for easy copy-paste into the identity provider.

IAM Local Settings [NG-3519, NG-3520]

A new "Local" settings screen allows administrators to configure the local login behaviour, including enabling or disabling local login and setting allowed e-mail domains per company.

General Notifications [NG-3430]

A new Notifications screen under IAM allows administrators to configure system-level notification settings, such as workflow token expiration alert e-mails and the maximum number of days allowed for token expiration [NG-3432].

Authentication & SCIM Logs [NG-3302, NG-3298]

A new Logs screen provides a filterable, paginated list of authentication and SCIM protocol events. Each log entry shows the event type, target user, protocol, status code, and timestamp. Filters are available for event type, target user, and protocol.

Enable / Disable SCIM [NG-3847]

A dedicated toggle now allows administrators to enable or disable SCIM provisioning for their tenant without leaving the IAM section.

Delete Provisioned Users [NG-3511]

Administrators can now bulk-remove all SCIM-provisioned users or all Entra ID-provisioned users directly from the IAM user management area, with a confirmation dialog to prevent accidental deletion.

Improvements

  • Active Directory settings have been moved into the new IAM section, consolidating all identity-related configuration in one place.
  • Workflow token expiration — a maximum allowed expiration period (in days) can now be set in IT Settings General, and an expiration date field is available when creating or editing tokens [NG-3438].
  • Filter search — the filter/search bar has been extended to support additional filter operators and attribute types used in the new IAM screens.
  • Roles mapping select — a new dedicated multi-select component for role mappings supports searching and displaying roles with group-type context.
  • Password input — the password input field now universally supports a show/hide toggle and communicates validation errors more clearly.
  • Translations — all new screens are fully translated into all supported languages (EN, DE, and 16 additional locales).

Known issues

No known issues.

Feedback and Support

We value your feedback. If you encounter any issues or have suggestions, please contact our support team:

  • Schedule a Meeting: Via the Help Widget
  • Give Feedback with Screenshots: Via the Feedback Button in the Help Widget
  • Schedule a Support Call: Here
  • Schedule a Technical Support Call: Here

Was this article helpful?

English
Powered by Product Fruits