What's New in Zilla Security?
- Christine Gross
- Sophia Maler (Unlicensed)
- Sowmya Manian
Zilla Security continuously builds and delivers new capabilities to keep your cloud environment and applications secure and compliant. To keep you abreast of our latest innovations, “What's New in Zilla Security” shares our new releases, feature enhancements, and bug fixes for each release.
February 11, 2025 Release (V-6)
Integrations Updates
Avalara API Integration now creates additional permissions of type role to bring in user roles.
Integration audit log language updated to be consistent.
DocuSign logo updated in the product.
Snowflake API sync now brings in default role and owner role for a user.
Zilla PO Box / ZUS in the Cloud Update
ZUS in the Cloud AWS deployment now supports cross account secrets access.
February 3, 2025 Release (V-5)
Integrations Updates
Infinite scroll issue resolved for Outreach ZUS integration.
Envoy ZUS sync updated to work against their changed HTML.
Box external users ZUS sync updated to work against their changed HTML.
Buildkite groups ZUS sync updated to work against their changed HTML.
Zilla Comply Update
The Change action dialogue in access reviews is now a free-form only text field where a reviewer can input what needs to change for access. The display no longer contains a drop-down list of all the respective application permissions.
Zilla Platform Update
Resolved an issue where sometimes Slack notifications did not get sent for access review campaigns.
Zilla Provisioning Updates
Access requests are now auto-approved when the access requested matches the user's profile grant.
Managers can now request additional access for a new employee during the onboarding process for new or moving users. Any requested permissions that are part of profiles will automatically be approved.
Added new Awaiting Verification access request status that will be applied until Zilla can verify access directly with the target application. After Zilla confirms the access request was completed successfully, the status will change to Fulfilled.
January 21, 2025 Release (V-3)
Integrations Updates
New ZUS Integration: ApprovalMax
Updated Avalara API sync to work against Avalara production servers.
Snyk ZUS Integration now flexibly allows to fetch members from either organization or group members page based on url specified in app config.
Zilla Comply Update
When using Zilla Profiles in Access Reviews, the profile evidence report now includes the user who last approved the profile grant and when.
January 14, 2025 Release (V-2)
Integrations Update
Infinite scroll issue resolved for Outreach ZUS integration.
Zilla Comply Update
Resolved an issue preventing campaign launch email and messaging notifications from being sent out.
Zilla Platform Update
Filtering of Permissions, Groups, and Resources on the Applications page now utilize search bars to filter for specific objects. Please note that only exact matches are returned.
Zilla AI ProfilesTM Update
Customers can now leverage any user metadata attribute in profiles to produce better profiles using unique data in their organization like job code or employee type, for example.
January 8, 2025 Release (V-1)
Integrations Update
Updated 1Password ZUS pagination to support 1Password's updated UI.
Zilla Comply Update
The Get Ready tab for a campaign with Campaign Readiness enabled now loads properly.
Zilla Platform Update
Improved Performance for Account to User Mapping for Applications.
December 30, 2024 Release (U-13)
Integrations Updates
Azure DevOps API Integration now shows groups and group memberships information.
Updated the FreshService API Integration to support multiple workspaces.
Infinite Scroll support under ZUS for JFrog, Buildkite, Bitwarden.
Zilla Comply Update
Access Reviews: Updated automatic review comments when preventing self-review assignment to reflect Zilla as the actor.
December 23, 2024 Release (U-12)
Integrations Updates
ZUS now supports automatic pagination for group membership pages for Adobe and Expensify.
Zoom API Integration now supports the new server to server OAuth authentication mechanism introduced by Zoom.
Zilla Comply Update
Resolved an issue where some customers experienced issues saving review items.
December 17, 2024 Release (U-11)
Integrations Updates
New API integration: Cloudflare
Sync config description changed for Blackline integration to indicate that API Key can be specified in the password field.
Google Workspace API sync now syncs service account members of a group.
Azure DevOps API sync now brings all groups and its group members.
Okta API sync now brings authentication factor only for active accounts.
Zilla Comply Updates
When using Profiles and limiting an Access Review to contain just privileged permissions, the summary count for pre-approved and not pre-approved permissions is now correctly displayed.
Access Reviews are now generated when using the “Assign Reviews for Accounts to Account Owner” campaign setting to include just Service accounts. Review items that have no account owner are set to the Unassigned bucket.
Updated Access Review Campaign reports to include the user's display name in specific cases where the user record did not have a first and last name.
Zilla Platform Update
Resolved six medium severity vulnerabilities discovered in an external Pentest.
Zilla PO Box / ZUS in the Cloud Updates
Fix to ZUS in the Cloud syncs to ensure that there is a wait before entering text to prevent race conditions.
On Premise AD PO BOX sync now allows the app to be synced as a directory.
December 9, 2024 Release (U-10)
Integrations Updates
Updated our CrowdStrike API integration to skip users without roles to ensure a successful sync.
Threads app is no longer supported in the product since Shopify acquisition.
FreshService syncs requesters by default.
Slack sync updated to ensure sync succeeds without running into rate limiting when fetching channels as resources.
Outreach OOTB ZUS integration fixed to bring in accounts and last login information.
Zilla Comply Update
Zilla is now displayed as the actor for automated review actions (for example: escalations, assignment, profile approval, etc.) in the comment history and audit logs.
Zilla Platform Updates
Improved the page response time when loading a large number of applications on the Applications page.
Filtering audit logs by date has been fixed and no longer timeout.
Zilla PO Box / ZUS in the Cloud Updates
Oracle 9i integration support via PO BOX.
Updated the Hubspot authentication recipe to match their updated selectors.
December 2, 2024 Release (U-9)
Integrations Updates
New API integration: Qualys
FreshService OOTB API Integration now supports the option of optionally syncing Requesters and requester group membership. The default behavior is to include requesters as Zilla users, and requester group membership.
FreshService OOTB integration now supports bringing in workspaces as resources and workspace permissions as resource permissions.
Updated the Oracle HCM app's configuration field Oracle HCM REST Endpoint to Oracle HCM SCIM Hostname.
Zilla Comply Update
Campaign monitors can now complete campaign readiness tasks from the Campaign Get Ready tab before adding applications to the campaign.
Zilla Platform Update
Resolved one critical severity vulnerability discovered in an external Pentest.
November 26, 2024 Release (U-8)
Zilla Comply Updates
In Access Review notifications, resolved an issue to allow escalation custom messages to be saved as blank.
When selecting the users to include in a review for a supervisor campaign, a new Last Transfer Date filter has been added to support a user transfer review process. The available filter options include transfers in the previous week, previous month, and previous 3 months.
Zilla Platform Updates
Account groups are no longer duplicated in the permissions columns in the display.
Read-Only admin role has been updated to no longer show the archive/activate application and regeneration completed campaign reports buttons.
November 20, 2024 Release (U-7)
Integrations Update
New API integration: Twilio Segment
Zilla Platform Updates
Manually adding a new permission to an application's permission listing has been removed from the UI. Please contact Zilla customer support if there is a requirement for this previous capability.
Users assigned with the Read Only Admin role in Zilla cannot edit or download any system settings.
Zilla AI ProfilesTM Update
Zilla administrators will have the ability to manually add new profile grants to their tenant to augment the existing profile grants recommended by the machine learning algorithm.
November 15, 2024 Release (U-6)
Integrations Updates
Audit logs for API integration and configuration changes now include the details of configuration name, the old value of the configuration and the updated value of the configuration. For sensitive fields, the value is masked.
Slack integration now supports optionally bringing channel dates and also allows to specify a comma separated list of channels to fetch with support for wildcard matching for easy filtering.
No Code (Generic) API integration can now be used to sync directory apps.
Zilla Comply Updates
Campaign monitors can now send reminders through the Zilla UI to users that have open campaign readiness tasks.
A CSV report for the Active Profile Grants has been added as campaign evidence.
Zilla Platform Updates
When viewing data within Zilla, the maximum number of items listed per page has changed from 500 to 100 for a streamlined experience.
Removed the configuration option for when synching an application with groups and group members, the group memberships are now always treated as a permission.
Improved the page response time when loading a large number of applications on the Applications page.
Users assigned with the Read Only Admin role in Zilla cannot make configuration changes or download data in Zilla.
November 5, 2024 Release (U-5)
Integrations Updates
Microsoft Entra ID (AAD) sync now supports skipping groups fetch.
Github API Integration now supports the ability to bring in custom roles assigned to repository.
Zilla Comply Update
An additional notification template for Access Reviews has been added to separate manual and automatic reassignment notifications.
Zilla Platform Update
Enhanced Google Workspace SSO to allows users with verified secondary domain emails to sign in and access their Zilla tenant.
Zilla PO Box / ZUS in the Cloud Update
PO BOX can now be deployed to Azure Container Registry and pulled from a customer's Azure Container Instance.
October 28, 2024 Release (U-4)
Integrations Updates
Integriti API Integration now takes base path as a configuration.
Optional configuration added for Looker API Integration to suffix Groups with " (Group)" allowing to distinguish between regular permissions and group permissions of the same name.
New ZUS Integration: Figma
Support cursor-based pagination for Zendesk API Integration.
Added informational tooltips to the Avalara API Integration configuration to help user set up the authentication.
Zilla CSV File upload integrations only support UTF-8 encoding, files with different encodings need to be converted to UTF-8 before importing.
Zilla Comply Update
When using Campaign Readiness, all checklist items must be completed before the readiness task can be submitted.
Zilla Platform Updates
A "Last 90 Days" option has been added to date filters for quick filtering.
Users assigned Read Only Admin role cannot download CSV or PDF reports from the user interface.
Zilla Secure Update
Resolved an issue where the Security Dashboard might generate an error under a certain situation.
October 21, 2024 Release (U-3)
Integrations Updates
New API integration: Integriti
New API integration: Avalara
Zilla Comply Updates
In Access Reviews, the user information will remain static in the user interface and campaign reports at the time of generation and post campaign completion.
In Access Reviews when the campaign setting to revoke unreviewed permissions is enabled, the submission dialogue has been updated to inform the reviewer that unreviewed permissions will be automatically revoked.
Zilla PO Box / ZUS in the Cloud Updates
TOTP MFA support for Microsoft SSO Login for ZUS in the Cloud.
October 14, 2024 Release (U-2)
Integrations Update
Retool ZUS integration now supports multiple tenant url formats and also support infinite scrolling.
Zilla Comply Update
When reassigning review items, campaign monitors can easily select to reassign to the assigned reviewer's supervisor.
Zilla PO Box / ZUS in the Cloud Updates
On Premise AD sync now supports searching across multiple OUs.
ZUS in the Cloud now supports collecting data from pages that paginate via infinite scroll.
October 7, 2024 Release (U-1)
Integrations Updates
New API integration: Integriti
New API integration: Domo
Microsoft Entra ID integration is now capable of filtering groups based on query parameters received in support config. This configuration requires assistance from Customer Support.
Updated sync failure email notifications to be sent only when notifications are enabled.
Updated AWS API integration to correctly capture the MFA status for the root account.
On Premise AD can now bring in additional attributes of groups as metadata based on a support config. This configuration requires assistance from Customer Support.
Ability to mark accounts as service accounts based on a support config. This allows app owners to decide which accounts are service accounts based on a condition or algorithm. This configuration requires assistance from Customer Support.
Zilla Secure Update
Resolved an issue when filtering on a large number of Segregation of Duties findings would take a long time or not respond at all.
October 2, 2024 Release (T-13)
Integrations Update
New GraphQL based API Integration for New Relic app.
Zilla Comply Updates
Added new campaign progress bar to view the overall task completion percentage across campaigns.
Campaign monitor progress bars have been updated to display green and the respective percentage complete when a task is submitted.
Zilla Platform Update
Zilla admins are now included on Sync Failure Notifications when they are sent out.
September 23, 2024 Release (T-12)
Integrations Updates
Pagination (infinite scrolling based) support for the new BOX external users page.
Updated Jira integration to ensure Jira account status shows correctly in Zilla.
Updated AWS integration to ensure IAM roles is correctly syncing even when there is a statement with a principal 'Service' and effect 'Allow' in trust relationship policy.
Support added to ensure successful CSV syncs with non UTF-8 encoded csv files.
Added “Read Only Admin” permission as an available privileged permission under the Zilla app when Zilla Service Account is created.
Zilla Comply Update
Campaign option for the "Allow Reviewers to Reassign Access Review Items": Yes - Limit reassignment to reviewers reporting organization now excludes Zilla admins from the user's hierarchy reassignment list. Zilla admins and campaign monitors still retain the ability to reassign to any User.
Zilla PO Box / ZUS in the Cloud Update
Improved error handling and error messaging for On Premise AD PO Box sync.
Zilla Platform Update
Added ability to create service accounts with admin role.
September 16, 2024 Release (T-11)
Integrations Update
Updated our Checkly ZUS integration to support Checkly's new users page along. The integration is now also syncing the MFA value.
Zilla Comply Updates
Updated limiting permissions in review capabilities to support permissions with a "/" in the name.
Updated Zilla Comply to ensure pending revocations flag for the Default (account) permission are persisted for reporting.
Zilla PO Box / ZUS in the Cloud Update
ZUS in the Cloud now supports MFA based login with "Okta Identity Engine".
September 6, 2024 Release (T-10)
Integrations Updates
Updated the changed url for external users in the BOX ZUS integration recipe.
Added Oracle Peoplesoft to application library.
Updated our Miro ZUS Integration to support a change in Miro's APIs. The integration has been updated to ensure it syncs successfully with both ZUS and ZUS in the Cloud.
Updated Example URL in Config for SAP Gigya to be more generic, to highlight that it is only an example.
Updated the Crowdstrike API integration to show the role name instead of role id.
Zilla Comply Update
Removed Segregation of Duties filtering in campaigns when Segregation of Duties is not enabled.
September 3, 2024 Release (T-9)
Integrations Updates
New ZUS integration: ADManager Plus
Updated the Crowdstrike API integration to resolve a sync error.
Updated the post-processing for directory syncs to correctly resolve the "Has Manager" field in the Users table when the manager is removed in the source system.
Zilla Comply Updates
Updated Zilla Comply to support separate custom emails for campaign launch and campaign reminders. This feature requires assistance from Customer Support.
Campaigns have a new setting “Limit Review to Orphan Accounts” under “What to Review”. When this is set to “Yes - Limit review to accounts with missing or inactive users“, generating the campaign will result in only permissions belonging to accounts that do NOT have an active user being included in the review.
Campaigns have the new setting “Limit Review to Segregation of Duties Violations” under “What to Review”. When this is enabled, generating the campaign will result in only permissions with segregation of duties violation flags being included in the review.
Campaigns have a new option in the "Who Reviews" tab for "Allow Reviewers to Reassign Access Review Items": Yes - Limit reassignment to reviewers reporting organization. By selecting this option, reviewers can only assign to a user higher in their reporting organization OR a campaign monitor. Zilla admins and campaign monitors retain the ability to reassign to any User.
Enhanced Zilla Comply's Email Notifications to include the date/time when the notification will be sent.
August 27, 2024 Release (T-8)
Integrations Updates
Updated our AWS Organization API integration to optionally fetch a user's SSO status using the API without requiring a SCIM token. This requires an update to the zilla-sso-reader-policy, please see AWS Organization - API Integration for details.
Improved the robustness of our SharePoint V2 API integration.
Updated the Procurify API integration to handle the case when a user does not have a department specified.
Updated our Crowdstrike API integration to provide role IDs in the entities roles request.
Zilla PO Box / ZUS in the Cloud Updates
Added support for Jenkins to ZUS in the Cloud.
Updated the On Premise AD script in Zilla PO Box to correctly handle the groups sync.
Delinea On Premise Deployment via native APIs is now supported in Zilla PO Box.
August 20, 2024 Release (T-7)
Integrations Updates
New API integrations: Procurify, Vonage Contact Center, Dutchie
Updated our Crowdstrike API integration to map roles to their display name in the Crowdstrike UI.
Updated the handling of CSV file uploads such that the audit log will only show the CSV file, the parsed json file will no longer be stored. This will allow Zilla to support larger CSV files.
Renamed Outlook to ‘Microsoft Exchange Online’ and 'Azure Active Directory' to ‘Microsoft Entra ID’. This change does not impact the name of existing application instances in Zilla.
Zilla PO Box / ZUS in the Cloud Updates
Added support for SQL Server to Zilla PO Box.
Zilla Platform Updates
Added audit logs when an account has been mapped to a user both automatically and manually.
August 13, 2024 Release (T-6)
Integrations Updates
Updated our Snowflake API integration to support role names which contain a hyphen.
Updated our Adobe API integration to correctly sync groups in the case the type is not specified in the API response.
New ZUS integration: SAP Gigya
Updated the SAP Gigya ZUS integration to add a configuration parameter to allow admins to specify the URL where the Gigya users table is found.
Zilla PO Box / ZUS in the Cloud Updates
Updated ZUS in the Cloud to be able to customize which recipe(s) should be used during the sync for an application. This configuration requires assistance from Customer Support.
MongoDB is now supported in Zilla PO Box.
Oracle Database is now supported in Zilla PO Box.
Zilla Comply Updates
Updated Zilla Comply to save application specific campaign reports in addition to the complete PDF report. These app-specific reports can be found in the evidence download.
August 5, 2024 Release (T-5)
Integrations Updates
New API integration: Wurk
Enhanced the Okta API sync to better handle large numbers of users being synced.
Updated our GitLab API integration to focus on active projects and skip over resources which are archived or marked for deletion.
Updated the QuickBooks ZUS integration to support QuickBooks' new UI.
Updated our LinkedIn ZUS integration to support LinkedIn's new UI.
ZUS in the Cloud Updates
Added support for Metabase to ZUS in the Cloud.
Platform Updates
Added the ability for read-only Zilla Service Accounts to access the Zilla Accounts API endpoint.
Zilla Comply Updates
Updated Zilla Comply to ensure the number of pending revocations on a campaign's Report tab is accurate and does not include any permissions not marked as Pending Revoke on the application's Permissions tab.
July 30, 2024 Release (T-4)
Integrations Updates
Updated the Okta API integration to support Okta's policy endpoint changes.
Improved the AWS API integration retry mechanism as well as the error handling.
Zilla PO Box Updates
Updated the On Premise AD script file destination path.
Platform Updates
Updated bulk editing of available permissions for an application to refrain from clearing the setting to treat groups as permissions in the CSV sync case.
Zilla Comply Updates
Updated the review task view to replace "Comments" with "History". The History still includes comments but also includes all actions taken on the review item as well.
July 23, 2024 Release (T-3)
Integrations Updates
New API integration: Adobe (only supported for Adobe Enterprise Customers), see Adobe API Integration for details.
Updated our Salesforce API integration to correctly import permission descriptions.
Updated the Expensify ZUS integration to support syncing multiple workspaces and its members as groups and group members in Zilla.
Resolved an issue with the ZUS browser extension getting updated while a sync is in progress.
Deprecated the Threads ZUS integration, see Threads (Deprecated) for details.
Updated the ZUS integrations to include accounts as active when they only show up in a group membership.
July 12, 2024 Release (T-2)
Zilla Comply Update
Include escalation reassignment history in the review item comments. The statement includes both old and new assignees as well as the date/time.
Allow comments to be submitted and edited independently from taking a maintain/revoke/change action on a review item.
Support a custom message on the reviewer submission certification dialog. This feature requires assistance from Customer Support.
Respect the 'Allow Self Review' campaign setting over designated reviewers. If the setting is configured to disallow self review and a designated reviewer would result in a self review, the review item is assigned to the Technical Owner of the application.
Integrations Updates
Updated the Power BI API integration to sync all workspaces regardless of user access. This update requires the
Tenant.Read.Allscope, see Power BI for details.Updated our Grafana ZUS integration to support Grafana's updated UI.
Resolved an issue with csv uploads for syncing an application when a column contains the separator character.
July 8, 2024 Release (T-1)
Zilla Secure Update
Updated Zilla Secure permissions to allow application owners to view a finding for a policy.
Zilla Comply Update
Added a new setting to Zilla Comply campaigns to optionally enable revoking unreviewed permissions when the campaign is closed. This feature currently requires assistance from Customer Support.
Integrations Updates
Updated our AWS API integration to correctly capture the MFA status for the root account.
Updated our Okta API integration to optionally enable syncing roles assigned to applications.
Updated the Rivery API integration to correctly handle accounts in the EU region.
July 1, 2024 Release (S13)
Zilla Comply Update
Added a REST endpoint to allow downloading a campaign CSV report.
Integrations Updates
New ZUS integration: Kibana
New API integrations: Rivery, Hashicorp Vault
Updated the 1Password ZUS integration to correctly sync group memberships.
Updated our Jira API integration to create a group discovered during the sync even when there are no members in that group.
Zilla Platform Updates
Updated the login process to resolve an issue when multiple tabs are open with the Zilla application.
Updated the database drivers in the platform.
June 21, 2024 Release (S12)
Zilla Comply Update
Updated the campaign CSV and PDF reports to include the permission description as a column.
At campaign completion, ensure the CSV download is generated such that it includes all of the resolution data.
Integrations Updates
Added the ability to receive notifications when a sync fails. The Technical Owner of the application will receive the email notification. This feature requires assistance from the Customer Support team.
Updated our GCP V2 API integration to sync project and folder level group membership.
Updated the Gitlab API integration groups sync to support sub group and projects within sub groups.
Updated our Concur API integration to skip the user name attribute if it is not included in the Concur response.
June 14, 2024 Release (S11)
Integrations Updates
Updated our GCP V2 API integration to sync project and folder level group membership.
Updated our Concur API integration to enable users search to filter the users which get synced with Zilla.
Zilla Platform Updates
Added support for multiple SSO providers within a single tenant.
Updated caching to ensure string resources are updated in a timely manner.
June 7, 2024 Release (S10)
Zilla Comply Update
The Campaign Settings section of a campaign has a new look! Settings have been split between three tabs, see Creating an Access Review Campaign | Customizing campaign settings for details.
Updated Zilla Comply to include Last Login info in the campaign CSV and PDF downloads.
Zilla Secure Update
Zilla Secure has been updated to include both a saved search and a new out of the box policy specific to Snowflake to show/flag accounts with MFA status disabled.
ZUS Browser Extension Update
Updated the ZUS browser extension integration builder to optionally save the full web page (mhtml) when assistance is requested. Saving the full web page requires an additional temporary permission for the Chrome browser extension. Please note that Zilla will not change any of your data and will revert the permission once the web page has been saved. See the Sending screenshots and HTML section of Zilla Universal Sync (ZUS) Browser Extension - Collecting application data for details.
Integrations Updates
Our Snowflake API integration has been updated to import MFA status.
Updated our AWS API integration to skip importing permission descriptions in the case that SSO config was not set up in the AWS integration.
Updated our Blackline API integration to correctly paginate through the users.
Updated our NetSuite API Integration RESTLet script to sync permissions.
ZUS in the Cloud Updates
Updated ZUS in the Cloud syncs to support large datasets.
Zilla Platform Updates
Resolved six medium severity vulnerabilities discovered in an external Pentest.
June 3, 2024 Release (S9)
ZUS Browser Extension Update This change has been updated, see S10 release notes above.
Updated the ZUS browser extension integration builder to save a screenshot and HTML as soon as the builder is invoked. This requires an update to the browser extension and a new permission must be accepted. Please note that Zilla will not change any of your data. See https://zilla.atlassian.net/wiki/spaces/ZILLASUP/pages/2009759749/Zilla+Universal+Sync+ZUS+Browser+Extension+-+collecting+application+data#Re-enabling%2FUpgrading-the-browser-extension.
Integrations Updates
Updated the way groups are synced in API integrations to allow nested groups to be saved correctly.
Updated our Databricks API integration to add a new config parameter, "URL of your Databricks account". See https://zilla.atlassian.net/wiki/spaces/ZILLASUP/pages/2535850005 for details.
Updated our AWS API integration to correctly import descriptions for permissions and permission sets into Zilla.
Zilla Comply Updates
Updated the Slack notifications for campaign completion. In the case there are revocations requested for a completed task, the following message will be sent, "We're letting you know that the access review was just completed. The revocations and changes have been sent to your ticketing system, please look there for the revocations you need to do."
Updated campaigns which enable Campaign Readiness to show the correct number of permissions defined for an application.
May 28, 2024 Release (S8)
ZUS in the Cloud Update
Updated Okta SSO MFA authentication to support both Okta classic engine and Okta identity engine.
Integrations Updates
New API integration: Blackline
New ZUS integration: Wistia
Updated our Mimecast API integration to create accounts for users which the client id and secret credentials cannot access.
Updated our Airtable ZUS integration to import usernames and to sync invited users.
Resolved an issue with some API syncs failing during group membership imports.
Zilla Comply Update
Fixed an issue with campaign evidence download which was timing out for larger campaigns.
May 20, 2024 Release (S7)
Zilla Comply Update
Added the ability to limit an access review to just include privileged (non-privileged, or no limit) accounts and the permissions that belong to these accounts to support reviewing all the access that a privileged account has.
Zilla Secure Update
Updated the text in Zilla Secure Findings -> Take Action -> Mute to "Mute All" to make it more clear that all the Findings in the current view will be muted.
Integrations Updates
Updated our Mimecast API integration to skip over users which the client id and secret credentials cannot access.
May 13, 2024 Release (S6)
Zilla Comply Update
Updated access reviews to show the correct permission description in the case when there are multiple permissions with the same name in a review task.
Updated campaign evidence package downloads to include audit logs via a csv file.
Integrations Updates
New API integration: Google Cloud Platform (GCP) V2 - this integration improves upon our original GCP API integration by syncing Projects as child applications. See https://zilla.atlassian.net/wiki/spaces/ZILLASUP/pages/2852815209 for details.
New ZUS integration: Virtual Keypad
Updated our API integrations which sync groups to address an intermittent failure.
May 5, 2024 Release (S5)
Zilla Comply Update
Added a column to the campaign csv report to show when a permission was reviewed.
During an access review, updated the "(default)" permission description to display the text set in Available Permissions, if available.
Updated evidence gathering in Zilla Comply to include screenshots for custom applications.
Zilla PO Box Update
Zilla PO Box syncs now allow the application to be specified as a directory to create Users in Zilla.
ZUS in the Cloud Updates
Enhanced ZUS in the Cloud to support additional recipe navigations to ensure the correct data is displayed before syncing.
Updated ZUS in the Cloud Microsoft SSO authentication to support application names containing an apostrophe.
Integrations Updates
Updated our FreshDesk API integration to correctly mark an account as inactive when they have been deactivated in the application.
Updated our ZUS framework to ensure permissions will be aggregated when they are synced from different pages within an application.
Updated our Trello ZUS integration to support Trello's updated UI.
Zilla Secure Update
Updated Zilla Secure to include two new application properties, Single Sign On (SSO) and Multi-Factor Authentication (MFA), when configuring policy rules.
04-29-2024 Release (S4)
Zilla Comply Update
Updated Zilla Comply's Upload Evidence feature to expand the allowed file types. Use a zip file to encapsulate any disallowed file types.
Integrations Updates
New ZUS integration: Postman
Updated our Gitlab API integration to be able to optionally filter projects to be synced. This feature requires assistance from our Customer Support team.
04-22-2024 Release (S3)
Integrations Updates
New API integrations: Astronomer and Concur
Updated our Tenable API integration to support additional permissions returned from Tenable in the API response and to gracefully handle unknown values.
Improved the error handling on our Azure Cloud API integration when retrieving subscriptions in the Deleted state.
ZUS in the Cloud Update
Added support to ZUS in the Cloud to allow different users to be associated with different applications for SSO login.
SOD Update
Added support for wildcards to be specified for permissions and resource permissions in the csv file for the SOD feature.
04-15-2024 Release (S2)
Integrations Updates
Updated our Salesforce API integration to:
optionally append the suffix string "(Profile)" to the name of all Salesforce profiles. This feature requires assistance from our Customer Support team,
sync Permission Set Groups.
Added support to our No Code API integrations for the application to be specified as a directory and generate Users in Zilla.
04-09-2024 Release (S1)
ZUS in the Cloud Updates
Simplified our ZUS in the Cloud configuration for new applications to support SAML/SSO login out of the box.
Updated our ZUS in the Cloud authentication support to include Okta SSO + MFA including Google authenticator, Okta verify, SMS authentication and Email authentication.
Added Microsoft (Azure) SSO + MFA to our supported authentication for ZUS in the Cloud application syncs.
Integrations Updates
Updated GCP API integration to improve error handling for projects which are pending deletion.
Updated our Checkly ZUS integration to support Checkly's updated UI.
Updated our Workato API integration to sync and display all environment-specific permissions.
Updated our Snowflake API integration to support nested roles.
Updated the authentication for our Okta API integration to use client credentials.
04-02-2024 Release (R13)
Integrations Updates
New ZUS integration with ZUS in the Cloud support:
6Sense
Bynder
ClientSuccess
Crayon
Manage Engine OpManager
Updated our Azure Active Directory (AAD) API integration to optionally specify:
custom filters to limit the users which are synced with Zilla. For example, it is possible to filter by the “Country” attribute so that Zilla will only sync those users where the country is as specified in the filter. This setting requires assistance from the Customer Success team.
select filters to expand the info which is synced with Zilla. The additional fields that are synced are stored as metadata on the accounts.
Updated our Adobe ZUS integration to map a user's Products by image to permissions in Zilla.
Platform Updates
Updated the application Permissions tab summary bar counts to improve performance.
Updated the Zilla login to correctly support very long email addresses and to correctly validate emails with TLDs longer than 3 characters, such as .bank.
03-26-2024 Release (R12)
Zilla Comply Updates
Added custom comments to Zilla Comply to allow campaign monitors/admins to specify a set of reasons for revocations, maintains, and/or changes as well as separate reasons for maintains when there is an SoD violation. These custom comments are currently hard-coded per campaign and require assistance from Customer Success to configure.
Added a new feature to Zilla Comply to support reviewing group structures via "Enable Campaign Setting for Account Owner Assignments". This feature is still in beta, please contact Customer Success to find out more.
Zilla Comply Slack notifications are now generally available. See https://zilla.atlassian.net/wiki/spaces/ZILLASUP/pages/2711453732 for details.
Integrations Updates
New API integration: Xero
Updated our Azure Active Directory (AAD) API sync to improve the error handling when fetching members or owners of a group.
Platform Updates
Updated the Zilla login to correctly support very long email addresses.
Resolved one medium severity vulnerability discovered in an external Pentest.
In the Add Application -> Applications listing, updated the Stitch app website to point to Stitch's new URL.
Improved performance when loading the Permissions tab of an application.
03-15-2024 Release (R11)
New Integration
New ZUS integration with ZUS in the Cloud support: Fairwinds
Platform Update
Updated application Group Details pagination to correctly paginate through all of the group's members.
Zilla Comply Update
Updated Zilla Comply to address an intermittent issue with allowing incomplete reviews to be submitted from different browser tabs/windows.
03-12-2024 Release (R10)
New Integrations
New ZUS integration: ServiceDesk Plus
New API integration: Sage Intacct
Integrations Updates
Updated our Gitlab API integration to accommodate Gitlab's limit on API calls.
Improved the error handling in our Smartsheet API integration to skip over unrecognized users which have been deleted from Smartsheet.
Updated our Zilla PO Box Active Directory script to automatically create the SFTP directory if it does not already exist.
Updated Zilla's 'No Code' API integration to support 'nextURL' pagination.
Updated our Sharepoint API integration to sync sites and sub-sites for domains that are synced in Azure Active Directory.
03-03-2024 Release (R9)
New Integrations
New REST API integration for Workday.
Integrations Updates
ZUS in the Cloud support added for Buildkite.
Improved the error handling in our DocuSign API integration to skip over unrecognized users which have been deleted from DocuSign.
Updated the Twilio ZUS in the Cloud sync to support Twilio's updated login process.
Updated our Workato API integration to correctly sync the following System Roles: Admin, Analyst, Operator, Team Owner.
Updated our OneTrust API integration to support specifying the domain and auth domain to allow for verification in a test environment.
Added support to the SFTP syncs to be able to specify the algorithm for encryption, ssh-rsa or ssh-dss. To configure this setting, please contact Customer Support (support@zillasecurity.com).
02-25-2024 Release (R8)
Integrations Updates
ZUS in the Cloud support add for Boku.
Added the ability to download a csv file from the Retool application from within the ZUS in the Cloud framework. This csv file is then sent to Zilla to sync the Retool application. Please contact Customer Support (support@zillasecurity.com) to setup ZUS in the Cloud and to add support for csv downloads for other applications.
Updated our Freshservice API integration to support Freshservice's updated APIs.
02-18-2024 Release (R7)
GCP API Integration: New Authentication Process
We’ve updated our integration with the Google Cloud Platform (GCP) API to include an additional authentication method based on service accounts. This update improves our platform’s ability to detect new accounts and ensure it always has the correct permissions for the GCP services.
UX Enhancement: Campaign Task Review Interface
We've updated the campaign task review UI to clearly indicate 'maintain' and 'revoke' actions with green and red text colors, respectively.
Default Behavior Update for 'Bulk Edit' in Campaign Tasks
We've modified the 'Bulk Edit' default setting in campaign tasks to exclude items that have already been reviewed.
Hyperlinks to Inherited Groups from Group Details Page
We've introduced hyperlinks for inherited groups contained within a group on the Group Details page, enabling full traversal of the group structure.
Task Creation Optimization in Campaigns for Designated Reviewers
We've updated the campaign task creation process for specified reviewers to prevent the generation of multiple tasks for the same reviewer.
Performance Enhancement for Application Instance Permissions
We've improved the performance of updating an application instance's Available Permissions. Now, customers can successfully update permissions using the 'Edit Available Permissions' dialog, even when dealing with a very large number of permissions.
Performance Enhancement for Permission Owner Campaign Assignment
We've enhanced the performance of campaign generation when using the 'Assign Review to Permission Owner' option.
Security Improvements
We’ve addressed and resolved five medium-severity vulnerabilities identified during an external penetration test. For more information on vulnerability levels, contact Zilla Customer Success team.
02-11-2024 Release (R6)
Group Details Page Enhancement
Corrected the behavior of the Member Type filter on the group details page. It now appropriately offers "Group" as an option when relevant, improving usability and accuracy in filtering member types.
1Password Integration: Support for New Pagination Model
Our ZUS integration with 1Password has been updated to support 1Password's new pagination model. This update ensures smoother synchronization and enhanced performance, aligning with the latest changes in 1Password's UI for a more efficient user experience.
Google Cloud Platform Integration: Ability to Exclude System-Generated Projects from Sync
Our Google Cloud Platform (GCP) API integration now allows users to specify a list of project ID prefixes to exclude during the synchronization process. For example, GCP-created projects starting with 'sys-' can be excluded.
Coupa Integration: Improved Data Accuracy
We have updated our Coupa API integration to ensure that account email addresses are correctly synchronized. This improvement enhances data accuracy for customers using the integration.
LastPass Integration: Error Handling Enhancement
Our LastPass API integration has been updated to properly handle error cases, ensuring more robust and reliable interactions.
02-03-2024 Release (R5)
Zilla PO Box: On-Premise AD Connector for ZUS in the Cloud
We've released a new feature that allows for the integration of on-premise Active Directory (AD) using ZUS in the Cloud, thereby enhancing flexibility and ease of use for our customers. Named ‘Zilla PO Box,’ this feature introduces a standardized method for connecting to on-premise applications and directories, such as AD, ensuring a seamless and efficient experience.
Security Dashboard for Efficient Administrative Oversight
We’ve updated Zilla Secure with a new Security Dashboard giving admins a summary view containing metrics of Findings, Terminated Users, Dormant Accounts, and more so that they can quickly decide if immediate action is required. This feature is located in the new Security tab and both Findings and Policies have been moved under this menu option.
Zilla Comply Enhancements: New Reviewer Status Filter and Assignee Details
Zilla Comply campaigns now provide a Reviewer Status filter on the Preview and Monitor Campaign tabs to allow admins to quickly identify and take action on reviews that are assigned to non-active users while the campaign is in preview and running states. Assignee and Assignee Status have also been added to the Get Ready tab.
New API Integrations: Workato
We've added a new API integration with Workato, an automation platform that connects various applications to automate workflows and processes, without requiring deep technical skills.
01-29-2024 Release (R4)
Beta Announcement: Slack Integration for Enhanced Access Request Notifications
Zilla Comply now seamlessly integrates with your Slack workspace, enhancing your access request notifications experience. Upon activation, users will directly receive notifications via Slack, in addition to email alerts, for various actions. These notifications encompass the launch of a review campaign, reminders for reviews, the assignment of a 'Get Ready' task for review, reassignment of review items, reopening of review tasks, and the completion of a review. This integration aims to streamline communication and ensure timely updates within your team. To learn more about the feature, read the documentation.
If you are interested in testing this feature while it is in beta and providing feedback, please reach out to your account manager or customer support for enablement.
New Integrations: Loopio, Monday.com
We've added three (3) new integrations:
API integration with Loopio, a leading RFP response management platform that streamlines the proposal process
API integration with Monday.com, a versatile project management tool that facilitates team collaboration and project tracking
01-21-2024 Release (R3)
ZUS Framework Enhancement for Better Sync Experience
We've updated our ZUS framework to make syncing smoother and more user-friendly. This upgrade improves how you interact with ZUS, making the process more intuitive and efficient.
Enhanced Groups Tab Performance
We've improved the loading speed and performance of the Groups tab within the application, ensuring a smoother and more efficient user experience.
Zilla Comply Change Action Enhancement
We've introduced a significant improvement to the Change action process in Zilla Comply. Reviewers can now manually enter a new permission when they do not have access to the application's permission list.
New Campaign Setting for Handling Inactive User Assignments
We've introduced a new campaign setting that enhances how review items are managed. With this update, administrators now have the option to automatically move review items assigned to Inactive or Deleted users to an Unassigned status.
New Integrations: Seismic, Zscaler, 6Sense
We've added three (3) new integrations:
API integration with Seismic, a comprehensive sales enablement platform that improves sales team effectiveness
API integration with Zscaler, a cloud-based information security platform offering a secure internet and web gateway
ZUS integration with 6Sense, an account engagement platform that leverages AI for predictive marketing and sales insights
Enhanced GCP API Integration: Seamless Sync with Bypass for Access-Denied Projects
Our GCP API integration now allows for the bypassing of projects where access is denied, ensuring a seamless and successful completion of the sync.
Enhanced Checkly ZUS Integration: Supporting Trial and Production Accounts
We've upgraded our Checkly ZUS integration to support for both trial and production accounts.
Enhanced Pega ZUS Integration: Support for Groups
Our latest update to the Pega ZUS integration brings full support for groups, enhancing how users can manage groups and their associated permissions and settings in Zilla.
01-15-2024 Release (R2)
ZUS Framework Enhancement for Better Sync Experience
We've updated our ZUS framework to make syncing smoother and more user-friendly. This upgrade improves how you interact with ZUS, making the process more intuitive and efficient.
Zilla Provision: Enhanced Access Request Capabilities
Zilla Provision now allows both Unmonitored and Unrecognized applications to be included in access requests. This enhancement broadens the scope of applications that users can request access to, facilitating a more comprehensive and flexible access management process.
New Integrations: Loopio and Pega
We've added two (2) new integrations to our catalog:
Loopio, a leading RFP response management platform that streamlines the proposal process.
Pega, a business process management (BPM) tool that automates complex business processes.
DocuSign API Integration: Automated Permission Revocations Post-Access Review
We've updated our DocuSign API integration to include support for automated permission revocations once an access review is completed.
01-06-2024 Release (R1)
Appcues ZUS Integration Enhancement
Our Appcues ZUS integration now fully supports the latest updates made by Appcues. This enhancement ensures seamless compatibility and functionality, allowing users to take full advantage of the newest features and improvements in the Appcues platform.
Zilla Provisioning: Expanded Admin and Service Desk Capabilities
We've updated the Zilla Provisioning feature to empower Administrators and Service Desk Team roles with the ability to update the requested app and permissions directly from the Portal UI before approval.
Additionally, we've made a strategic update to enhance security and streamline user experience by removing the visibility of the requested app and permissions for the Service Desk Customer role.
New ZUS integration: Braintree
We’ve added a new integration with Braintree, a payment processing service that simplifies online transactions for businesses.
GitHub API Integration: Improved Group Sync Process
We've enhanced the group synchronization process in our GitHub API integration, ensuring a more reliable and successful sync completion.
“Enable account modifications" Tenant Setting Removal
We have removed the "Enable account modifications" tenant setting to simplify our configuration process. Moving forward, account modifications will be governed solely by the application's configuration settings.
Enhanced On-Premise AD Group Support
Our On-Premise Active Directory (AD) support for groups now includes comprehensive support for sub-groups and the permissions assigned to these groups.
12-27-2023 Release (Q12)
ZUS in the Cloud Update: Support for On-Premise Databases
The ZUS in the Cloud infrastructure has been extended to include support for on-premise databases, such as PostgreSQL. This enhancement ensures organizations can seamlessly integrate their on-premise database resources with ZUS's cloud capabilities, effectively bridging the gap between cloud and on-premise environments. The result is a more cohesive and flexible data management strategy.
Enhancement to Saved Searches
We've updated Zilla to ensure that newly created saved searches are now visible to other administrators. This improvement facilitates better collaboration and efficiency, allowing admins to share insights and streamline their workflow within the platform.
Enhanced AWS API Sync: Optimized Rate Limiting Processing
We've improved the rate limiting processing for AWS API syncs, ensuring a smoother and more efficient synchronization experience."
Expanded On-Premise AD Group Support
We have enhanced our On-Premise Active Directory (AD) support. Building upon our existing capabilities, support has been extended to include not only groups but also sub-groups and the permissions assigned to these groups. This update enables a more granular and comprehensive management of group hierarchies and their associated permissions,
Enhanced UKG Pro API Integration
We've made an update to our UKG Pro API integration, specifically within the "REST Endpoint" configuration parameter. Previously, the URL included "/services" as part of its structure. This portion has now been removed to streamline the endpoint's URL.
New Supervisory Access Review Setting
We've introduced a new setting for Supervisory Access Reviews. This feature allows organizations the option to automatically assign unassigned review items—those without a designated supervisor—to the application owner during the (re)generation of a campaign.
Enhanced Review Process: Comments on Item Reassignment
We've introduced a new feature that enhances the review process by allowing users to specify a comment when reassigning a review item. This comment will be visible directly within the review item and included in any related reports, ensuring clear communication and context for the reassignment. Additionally, the comment will be featured in the reassignment notification, keeping all relevant parties informed and up-to-date on the reasons behind the change.
New integrations: Pega and KnowBe4
ZUS integration with Pega, a business process management (BPM) tool that automates complex business processes.
API integration with KnowBe4, a security awareness training platform that helps organizations manage phishing threats and improve their security culture.
12-18-2023 Release (Q11)
New Configuration Option for User Access Reviews
We have introduced a new configuration option for users setting up their reviews. The added 'Limit by Account Type' campaign setting supports including and excluding specific account types. Now, users have the ability to continue limiting which account types are included in the review, or they can choose to exclude certain account types altogether.
New ZUS Integration: PrivX
We are pleased to announce a new ZUS integration with PrivX, an automated privileged access management (PAM) solution for hybrid and multi-cloud environments.
Integration Updates
Improved paginated user support in KnowBe4 ZUS integration: This enhancement focuses on better supporting paginated users. With this update, our system is now more adept at handling large sets of user data, ensuring smoother navigation and efficient data management.
Configurable API URL in Datadog API integration: We've introduced a new configuration option that allows users to specify the Datadog API URL. This feature is designed to support various Datadog sites more effectively.
Improved preview dialog and data sync in OpenVPN ZUS integration: The enhancement ensures that the Preview dialog is correctly displayed and that data synchronization is effectively handled, even when dealing with multiple pages of users.
12-11-2023 Release (Q10)
Preserving Existing Tags in Application Renaming Workflow
Our application renaming workflow has been updated to preserve any previously specified application tags. This ensures that your carefully selected tags remain intact and consistent, even when applications undergo a name change.
New 'Advanced Sign In' Feature for Super Admins
We've updated the login screen to include an 'Advanced Sign In' option specifically designed for super admins. These enhancements are aimed at bolstering security and hardening access control for power users.
Edit/View Multiple Permission Owners in Available Permissions Application Profile Tab
We've added the ability to edit and view multiple permission owners directly from the 'Available Permissions' application's Profile tab. With this update, users can now manage multiple permissions simultaneously, enhancing productivity and ease of use.
New API Integration: Mimecast
We are pleased to announce a new API integration with Mimecast, a mail management system designed to protect email, ensure access, and simplify the tasks of managing email.
12-03-2023 Release (Q9)
Restricted 'Download CSV' Capability on the Users Page
We have updated the "Download CSV" feature on the Users page to enhance data security and management. This capability is now exclusively available to Super Admins, Admins, and App Admins. This change is part of our ongoing effort to ensure the highest levels of data protection and to align user privileges with organizational roles and responsibilities.
Permission Type Limitation in Campaign Configuration
Our campaign configuration settings now support limiting reviews by permission type, offering greater control and customization in managing campaign reviews. This enhancement allows for a more targeted and streamlined review process, ensuring that reviewers only access the information relevant to their permissions.
Honoring Review Delegates in Campaign Escalation Process
Zilla now properly honors review delegates in the campaign escalation process, ensuring that escalations are directed to the appropriate individuals. This improvement enhances the accuracy of our campaign management workflows, aligning better with delegated review structures.
Customizable Campaign Email Messages with Language Translations
We've added the ability to customize campaign email messages through email templates, including the option for language translations. This new feature offers unparalleled flexibility in tailoring your communication to better resonate with diverse audiences, ensuring clarity and engagement across different language groups.
Note: using this feature requires assistance from our Customer Success team.
11-26-2023 Release (Q8)
Evidence Download: Enhanced PDF Creation for Large Campaigns
We've updated our evidence download feature to address the creation of PDF evidence files specifically for large campaigns. With this update, the system now correctly and efficiently generates PDFs, regardless of the campaign size."
Pave ZUS Integration Update: Extended Page Loading Time
We have updated our Pave ZUS integration to accommodate longer loading times. This enhancement is designed to ensure a smoother and more reliable experience for customers using Pave, thereby enhancing overall system performance.
Zoom API Integration: Enhanced Handling of Additional API Responses
This enhancement significantly improves the handling of additional API responses from Zoom, ensuring a more successful and seamless synchronization process. Zilla is now better equipped to manage a broader range of responses, thereby enhancing the reliability and efficiency of our Zoom integration.
Admin Scope Removed from JSM Connector App
We've updated our JSM connector app to remove the admin scope. This change is part of our ongoing efforts to enhance security and streamline user permissions. With this update, customers can expect a more tailored and secure experience while using the JSM connector app.
New API Integration: SAP BTP
We've added an API integration with SAP Business Technology Platform (SAP BTP), a platform focused on turning data into actionable business plans, particularly by leveraging tools found in an intelligent enterprise.
UKG Pro Integration Updates
We've updated our UKGPro API integration to refine the interpretations of active and inactive accounts. With this update, our system now offers more accurate and nuanced handling of account statuses, aligning better with UKGPro's definitions and workflows.
We've also identified and resolved an issue where multiple entries for the same user were being sent in responses from the Users API, each differing only in roles. This issue led to extended synchronization times and the last entry overriding previous permissions data, resulting in Zilla displaying only a single permission for each user. Zilla now efficiently handles unique entries for each user role, ensuring accurate and streamlined synchronization. Consequently, all relevant permissions are correctly reflected in Zilla, effectively eliminating unnecessary delays.
11-15-2023 Release (Q7)
Campaign Escalation to Immediate Supervisor
We enhanced our campaign escalation feature by adding the ability to escalate issues to an employee's immediate supervisor specifically. This enhancement ensures a more direct and efficient communication channel, aligning with organizational hierarchies for quicker response and resolution. This update reflects our commitment to providing streamlined and effective tools for managing workplace processes.
Support for Parentheses in Application Names within Business Roles CSV Files
We've added support for parentheses in application names within business roles CSV files. This enhancement ensures better flexibility and accuracy in managing business roles, especially for applications with names that include parentheses. Users can now seamlessly integrate and organize their business roles data with enhanced clarity and precision.
Download Complete Campaign Evidence Package
Zilla now supports the ability to download a complete campaign evidence package. This new feature allows users to conveniently compile and download all relevant data and documents associated with a specific campaign in one comprehensive package. This enhancement aims to streamline your workflow and ensure that you have easy access to all necessary information for reporting, analysis, or archival purposes.
11-05-2023 Release (Q6)
New Product: Zilla Provision
We are excited to announce the launch of Zilla Provision™, our innovative solution for automated access provisioning. Zilla Provision offers an efficient, error-free approach to requesting and managing access, significantly improving operational efficiency and reducing risk.
Read the full press release here.
For more information, visit Zilla Security’s Self-Service Access Provisioning page."
Azure Active Directory API Sync: Enhanced Robustness in User Import
We've updated our Azure Active Directory API synchronization, enhancing the robustness of our system during user imports.
Permissions Discovery Now Ignores Deleted Accounts
With this enhancement, Zilla will now automatically ignore permissions associated with deleted accounts. This improvement ensures more accurate and relevant management of permissions.
10-29-2023 Release (Q5)
Campaign Task Reassignment Performance Enhancement
We’ve enhanced performance when reassigning items within a campaign task. Users can now experience a more efficient and smoother process of managing and reassigning tasks.
Integration Enhancements
We’ve upgraded our DocuSign ZUS synchronization functionality. It now accurately imports users and displays the Preview dialog, enhancing user experience and ensuring seamless data integration.
Our Threads ZUS integration has been updated to align with the recent changes made to the Threads application. This update ensures continued compatibility and enhances overall integration performance.
Bug fix
We’ve resolved an issue in campaign audit logs where some entries were incorrectly displayed as "undefined.” This fix ensures accurate and complete logging of campaign activities for better tracking and auditing.
10-22-2023 Release (Q4)
Performance Enhancements
Optimized the process for editing available permissions for an application. Users can now experience faster and more efficient modifications.
Improved the performance of reviewing items in a campaign.
Integration Enhancements
Enhanced our Airtable ZUS integration with support for infinite scrolling in built-in sitemaps. The integration now auto-scrolls and captures extended account data, ensuring comprehensive data retrieval.
Updated our Envoy ZUS integration in response to changes in Envoy's Admin UI. The integration now fully supports and aligns with the refreshed Envoy Admin users page, ensuring a smooth and reliable synchronization experience.
Adjusted our KnowBe4 ZUS integration in line with recent UI modifications by KnowBe4. The integration is now aligned with the updated KnowBe4 user interface, ensuring a seamless synchronization experience.
Bug fixes
ZUS Permission Parsing: Updated our parsing logic to eliminate unnecessary whitespace and commas. This refinement ensures a cleaner and more accurate representation of permissions imported through ZUS.
Addressed an issue encountered during the editing of available permissions for an application. Users can now update permissions without errors for a smoother experience.
Addressed an issue in KnowBe4 ZUS integration where the "Full recipe" was only retrieving the first 100 users. The integration now handles of paginated users correctly.
Updated our synchronization logic for AWS Organizations. If a display name is provided, it will now be "Account name" for better clarity and alignment with AWS terminologies.
Resolved an issue where users could not sync Mailchimp security settings.
Our integration has been revised to align with Mailchimp's new security settings UI.
Addressed the "Invalid UserID" error encountered during the Workday API synchronization. Updated our integration to bypass any invalid ID values and proceed with the synchronization, ensuring consistent and uninterrupted data transfer.
10-15-2023 Release (Q3)
Oracle HCM Integration
Our Oracle HCM integration has been updated to now support basic authentication, providing an additional method for secure connection and data exchange.
Crowdstrike API Integration Enhancement
Updated the integration to accept the API hostname as a configurable value. This allows for proper synchronization across different regions, ensuring a consistent and reliable data sync for global users.
Workday API Integration Enhancement
Our integration can now skip over any invalid ID values encountered. The synchronization process will now continue uninterrupted, ensuring more consistent data transfer even in the presence of anomalies.
Campaign Review Tasks Limit
To enhance manageability and performance, we've introduced a cap on the number of review items in a task. Now, when initiating a new campaign, each review task will be generated with a limit of 5,000 review items.
Bug fixes
We’ve optimized User Department filter options to ignore duplicates caused by white spaces.
Refined our AWS auto-discovery process to intelligently skip over child applications that have previously been archived in Zilla. This ensures a cleaner discovery process, avoiding the unintended re-discovery of archived apps.
10-09-2023 Releases (Q2, Q2 HF-1)
Bug Fixes
Resolved an issue where permission types for permissions were being reset after a sync. Users can now ensure consistent and reliable permission settings post-synchronization.
HubSpot ZUS integration: Enhanced the pagination mechanism to better support regions. This ensures a more efficient and thorough synchronization experience for customers with a large volume of Hubspot users.
Adobe ZUS integration: Adjusted our integration parameters to cater to Adobe's longer loading times during pagination. This enables a more reliable synchronization of all accounts, even when Adobe requires additional time to page through them.
Campaign Preview
You can now download the full list of review items for campaigns in the "PREVIEW" state. This enhancement provides more flexibility in managing and reviewing campaign details before finalizing.
UKG Pro API Integration Enhancements
Our UKG Pro API integration now enables email address skipping during syncing. Previously, it would ignore all email addresses; now, it only skips those not associated with the tenant domains. To use this feature, please seek guidance from the Zilla Customer Success team.
The integration now defaults the employeeNumber as the universal ID in Zilla, replacing the previous default of employeeId. This adjustment is designed to enhance identity management and bolster data consistency across the platform.
Performance Enhancement
We've made optimizations to decrease the loading time for campaigns.
10-03-2023, 10-05-2023 Releases (Q1-HF,1-HF2)
Performance Enhancement
We've optimized our algorithms to deliver even faster campaign generation times,.
Bug Fix: Azure AD API Integration
Our integration with Azure AD API has been updated to address an issue where data syncs were occasionally incomplete and ensure more consistent and complete synchronizations.
10-02-2023 Releases (Q-1)
Campaign Cloning Update
When cloning an existing campaign in Zilla, the newly cloned campaign will now be in the CREATED state and not automatically generated. This enhancement helps reduce potential confusion and makes the campaign management process smoother.
Boolean Metadata Search in Accounts
We've enhanced the Accounts search functionality to allow search based on boolean metadata values. This update provides more refined search options tailored to your specific needs.
AAD API Integration Update
Updated our AAD API integration to import the 'last login' and "manager" data via the user API. The 'last login' data now aligns with what is reported by AAD on the Users Overview page. This enhancement boosts performance, ensuring faster and more efficient data retrieval.
09-27-2023 Releases (P-13/P-13-HF1/P-13-HF2)
UI Update: Relocating Available Permissions Back To the Profile Tab
We moved the “Available Permissions” section of an application back to the Profile tab based on customer feedback.
Performance enhancement
We’ve optimized loading speeds for both the Profile and Groups tabs in the Application instance.
Bug Fixes
Resolved an issue that occurred when generating campaign reports with high permission counts.
Fixed an issue in the HubSpot ZUS Integration related to config URL processing, ensuring the correct user's page is loaded.
09-18-2023 Release (P-12)
Campaign-Specific Evidence Upload
We've enhanced the evidence campaign feature. Now, any evidence uploaded for an application within a campaign will be exclusive to that particular campaign. This ensures more precise tracking and organization of evidence related to specific campaigns.
Application Integration Fixes and Updates
Atlassian Cloud integration: Enhanced to correctly identify active accounts in Zilla, even when the 'active' field is absent from the API response.
Hubspot ZUS integration: Updated to align with Hubspot's recent Security settings UI changes.
UKG Pro API integration:
Utilize 'employee number' as the universal ID for Zilla Users.
Optionally omit email addresses during data synchronization.
Display 'first name' and 'last name' in the Account field.
Okta API integration: Enhanced the “Accounts” table to allow optional columns showing mapped metadata fields.
Updated KnowBe4 ZUS integration to accommodate KnowBe4's recent UI changes.
Bug Fix: Campaign Regenerate Button
Resolved an issue in the Campaign Regenerate Button functionality where the "Regenerate" button occasionally did not display as intended.
09-11-2023 Release (P-11)
Bug Fixes
Fixed an issue with the advanced email settings for the manual reminder option when creating the email distribution list.
Updated reporting in the new audit logs for syncs to display the correct actor.
Application Integration Fixes and Updates
Fixed a group pagination issue in the Okta API integration sync.
In our Slack integration, resolved an issue where "Multi-Channel Guest" was syncing to Zilla as a "Regular Member."
09-04-2023 Release (P-10)
Enhancement to API Integration Framework
We've added finer-grained active statuses support to our API integration framework. You can now achieve more detailed control and monitoring of active statuses designed specifically to fit within your unique processes. Note that this enhancement requires assistance from the Customer Success team.
New Application Integrations
We've added new application integrations:
ZUS integration: OpenVPN Access Server, a VPN solution for businesses by OpenVPN Inc.
ZUS integration: Sendwithus, a communications platform aimed at helping businesses manage, optimize, and track email communications.
Application Integration Enhancements
We’ve enhanced our HubSpot ZUS integration to sync MFA information to Zilla.
We've updated our AWS API integration to make group sync failures more resilient.
08-28-2023 Release (P-9)
Changes to Available Permissions' Section
The 'Available Permissions' section, previously located under the 'Profile' tab, has been moved to a new tab called 'Access'.
A new 'Bulk Edit' option has been added, which will allow you to edit multiple permissions at once. This new feature comes with a dialogue box that will guide you through the bulk editing process.
The checkbox for 'Edit Permission Owners' has been removed. Also, 'Owner' is now an additional column that can be added to the display. This change simplifies the permission editing process by eliminating unnecessary options.
Automatic Campaign State Switch
We have fixed an issue where the campaign state would incorrectly switch from 'Populating' to 'Created' if the campaign took longer than 15 minutes to populate, even when not all necessary elements were added to the campaign. Now, the state will not change prematurely, allowing the campaign to finish populating before switching to 'Created'. This enhancement will ensure the campaign state accurately reflects the progress of the campaign, regardless of the time it takes to populate.
New Application Integrations
We've expanded our already extensive catalog of over 500 application integrations by adding two new ones:
ZUS integration with Grafana, an open-source platform for monitoring and observability
API-based integration with CrowdStrike, a cloud-native, AI-powered cybersecurity platform for endpoint security
Salesforce Integration Enhancement
We have updated our Salesforce integration to allow for the optional syncing of groups. You now have the flexibility to choose whether or not you want to sync groups between our application and Salesforce. This enhancement provides greater control over the data shared between the two platforms.
08-22-2023 Release (P-8)
Fix for Permissions CSV Download and Campaign Generation
We have fixed an issue that was affecting the permissions CSV download and campaign generation functionalities. The issue was related to permissions, and it prevented users from properly downloading the permissions CSV file and generating campaigns.
Workday Integration Enhancements
We have updated our Workday full sync integration to mark users as 'Deleted' in Zilla if they are not found during the sync process.
Azure AD Integration Enhancements
We have fixed an issue that caused syncing problems when group names were missing in Azure AD.
The integration now allows for the optional syncing of the 'Last Login' date.
UKG Pro API integration Enhancements
Optional Mapping of Employment Details to User Metadata in Zilla: We have enhanced our UKG Pro API integration to allow for the optional specification of a mapping of Employment Details, such as EmploymentStatus, to User metadata in Zilla.
Optional Specification of Roles Indicating an Inactive User: We have also updated our UKG Pro API integration to allow for the optional specification of the roles that indicate an inactive user.
Please note that this enhancement requires assistance from our Customer Success team to implement.
New Application Integration: Outreach
In this release, we have added a new ZUS integration with Outreach, a popular sales engagement platform.
Okta Integration Enhancement
Our Okta integration now allows administrators to specify a mapping of attributes that can be added to the access review screen via an additional column in the table. This feature will enable administrators to include relevant Okta attributes in the access review process, providing more comprehensive information for making access decisions.
Please note that this feature requires assistance from our Customer Success team to implement.
08-14-2023 Release (P-7)
Background Campaign (Re)Generation
We have updated our campaign (re)generation process to complete in the background, allowing you to continue using the Zilla application without interruption. This means you no longer have to wait for the (re)generation process to finish before using other parts of the application.
Concur Integration Enhancement
We have updated our Concur ZUS integration to sync permissions between Concur and ZUS.
Reassigning Review Message Update
When reassigning a review while the campaign is in 'Preview' state, the message that an email will be sent to the new reviewer will no longer be displayed. This change was made to reduce confusion, as emails are not actually sent until the campaign is launched.
Workday Integration Enhancement
We have updated our Workday integration to mark users as 'Deleted' in Zilla if they are not found during the sync process. This enhancement will ensure that the user data in Zilla is always up to date and accurately reflects the current status of users in Workday.
New Application Integration: JFrog
We have added a new ZUS integration with JFrog, a popular platform for software release management and binary repository management.
08-06-2023 Release (P-6)
ZUS Availability in EU and ANZ Regions
We have added support for ZUS deployments in the European Union (EU) and Australia and New Zealand (ANZ) regions. This update ensures that our customers in the EU and ANZ regions can fully leverage the capabilities of ZUS while complying with local data residency and privacy requirements.
New Application Integration: Tallie
We have added a new ZUS integration with Tallie, a leading expense report automation software.
Incorta integration Enhancement
We have updated our Incorta API integration to gracefully handle situations where the UID (User Identifier) is missing. Previously, the absence of a UID would cause the integration to fail. With this update, the integration will continue to function and provide as much data as possible, even if the UID is missing.
Databricks integration Enhancement
We have updated our Databricks API integration to skip over workspaces that do not have permission assignments. Previously, the integration would fail if it encountered a workspace without permission assignments. With this update, the integration will continue to process other workspaces and provide as much data as possible, even if some workspaces do not have permission assignments.
Workday Integration Enhancement
When creating a directory user, our Workday integration will now check for a universal ID if the email address is missing. Previously, the absence of an email address would cause the integration to fail. With this update, the integration will use the universal ID as a fallback identifier to create the directory user.
07-31-2023 Release (P-5)
Support for Semi-Colon Separated Email Aliases
We have updated our CSV upload syncs to support email aliases that are separated by either semi-colons or commas. Previously, only comma-separated email aliases were supported. With this update, you can use a comma or a semi-colon to separate multiple email aliases in your CSV file.
Copying Over "Limit Permissions to Review" Setting
We have updated our Clone Campaign feature to copy over the "Limit Permissions to Review" setting from the original campaign to the cloned campaign. Previously, this setting was not copied over, and users had to manually configure it in the cloned campaign. With this update, the setting will be automatically copied over, saving time and effort.
New Application Integrations
We have added a new API integration with Veracode, a leading platform for application security testing.
We have added a new ZUS integration with Camunda, a powerful open-source workflow and decision automation platform.
We have added a new API integration with BeyondTrust, a privileged access management platform.
ServiceNow Integration Enhancement
We have updated our ServiceNow API integration to allow users to optionally specify a domain that identifies the users to be synced. The integration now enables you to target specific domains for user syncing, providing more control and flexibility over the user syncing process.
July 2023 Releases (O13 - P4)
Improved Access Review Assignment Logic
To further refine our system's capabilities and adhere to best practices, we've updated our Access Review assignment logic.
The enhancement incorporates the 'no self review' setting into the process of enabling the “Assign Review to Resource Owner” or “Assign Review to Permission Owner” options. This means that if the 'no self review setting is active, users will not be assigned to review their own resources or permissions, even when these options are enabled.
Permission Revocation Status Monitoring
With this enhancement, we now support applications that do not immediately revoke a permission. Different applications handle revocation requests in their own timeframes, and this update allows us to better accommodate those workflows. Zilla will continue to monitor these applications until the requested revocations are executed. To provide greater visibility into this process, we have added a new state: "Revocation Initiated".
When you see this state, it means that the revocation has been initiated within the application. Following this, Zilla performs a sync, and once the application completes the revocation, the permission is effectively removed from the account.
This new state helps keep you informed about the status of revocation requests, giving you more control and a better understanding of the process.
Conditional Skipping of Terminated Users During Directory Sync
Our platform now has the capability to conditionally exclude terminated users during a directory synchronization process. This enables more accurate and streamlined syncs by preventing unnecessary processing of users who are no longer active within your system.
This new functionality is managed by a tenant flag, which allows for enabling or disabling this feature based on your operational needs. The flag is controlled by the Zilla Customer Success team.
Bulk Editing of Account Type
We've made an enhancement to our "Edit Accounts" feature. Now, the "Account Type" field can be edited in bulk, allowing users to set or update a value across multiple accounts at once.
Bug Fix: Prevention of Permission Descriptions Disappearance After Sync
We've resolved an issue where permission descriptions were inadvertently removed during a synchronization process. Please note that we have several different permission types in Zilla, and depending on the type, the handling is slightly different for its description. In some cases, updated descriptions may still be overwritten.
New Application Integrations
In July, we've expanded our already extensive lineup of over 500 app integrations by adding three new ones:
ZUS integration with IT Glue, a cloud-based IT documentation platform.
API-based integration with Duo Security, a multi-factor authentication and secure access platform.
ZUS integration with ShieldQ, a secure document and data management platform
Integration Enhancements and Fixes
This month, we updated our Salesforce integration to improve the handling of specific scenarios. The system will now skip "Security Settings" and "Integrations" during the sync process when sufficient access to these data isn't available, ensuring a smoother and more efficient sync. Additionally, we have improved the handling of accounts with no permissions.
We've improved the resilience of our GCP integration, providing you with a more seamless and reliable synchronization process. Previously, the sync process could potentially fail if a group's name was not available. We have addressed this issue by implementing a new logic to substitute the group's ID when the name is not available, ensuring the sync operation's success.
We are committed to ensuring that our integrations remain up-to-date with the latest changes in their corresponding platforms. In line with this, we have updated our Threads ZUS integration and Google Analytics ZUS integration to support the latest user interface changes in Threads and Google Analytics.
We have released an update to our Customer.io ZUS integration.
Before this update, some users might have encountered issues with the Preview dialog ZUS sync showing a blank preview for team member sync.
With this update, we have addressed this issue, ensuring the Preview dialog is displayed correctly.
We've updated our Expensify ZUS integration to correctly sync the account permissions.
Our ZUS integration with Jenkins is now compatible with Jenkins Version 2.387.1.
We've updated our Okta API integration to sync group descriptions. It also now syncs deactivated users correctly.
We've enhanced our BambooHR ZUS integration to sync the Last Login column.
In our Incorta API integration, we've mapped the "Unique Id" field in Incorta to the "Universal Id" in Zilla.
06-19-2023 Release (O-12)
End-of-Campaign Notifications Enhancement
We have enhanced the functionality of our end-of-campaign notifications. You can now send the application revocation reports to Technical Owners, Business Owners, and Campaign Monitors by email. Zilla also allows you to create a list of additional email recipients. The recipients can be pulled from a directory or added manually. This update complements the previously available option to send the application revocation notifications to ticketing systems and aims to improve communication and ensure that relevant stakeholders are kept in the loop.
API Integration: Databricks
In this release, we have introduced an API-based integration with Databricks, a cloud-based platform that provides tools for data engineering, data science, and machine learning.
Updates of Existing Integrations
We've updated the Adobe ZUS integration to support pagination. This ensures smoother navigation and a more streamlined experience while handling large datasets.
We have updated our Buildkite ZUS integration to support recent changes in Buildkite's user interface. This ensures that our integration continues to be seamlessly compatible with Buildkite.
Our ZUS integration with Workato has been updated to accommodate their recent UI changes. Additionally, the integration now supports synchronization of users with 'Pending invitations'. This will help you keep track of users who have been invited but have not yet joined your Workato workspace.
The Mailgun ZUS integration has been updated to align with the recent user interface changes on Mailgun, ensuring continuous and seamless integration.
We've updated our Bridgecrew ZUS integration to support recent UI changes in Bridgecrew, to maintain compatibility and user experience.
We’ve enhanced our Salesforce API integration, which now allows you to optionally specify a comma-separated list of Salesforce account types. Only accounts that match the specified types will be brought into and saved in Zilla. When the filter is applied, the data stored in Zilla will be updated on the next sync. When the filter is not specified, all the accounts will be synchronized by default. This enhancement enables more granular data retrieval and storage based on your needs.
06-11-2023 Release (O-11)
Automatic Revocations in Github API Integration
We have introduced a new feature in our Github API integration that supports automatic permissions revocations after an access review.
When permissions like group, repository, member, or outside collaborator are marked as "Revoke" during an access review, the system will now automatically revoke these permissions.
This enhancement aims to improve the security and governance of your repositories by ensuring that only the appropriate users have access.
Note: The automatic revocation feature does not apply to owner permissions. As of this release, owner permissions will still need to be revoked manually.
Updated Active Admin Integration
We've refined the interpretation logic of the "No Aa Access" column in our Active Admin integration. With this update, the synchronization process is now streamlined to sync when there is access, correcting the previous behavior.
This improvement is designed to enhance the accuracy and efficiency of access management through Active Admin integration.
MedTek Integration Rebranded to Nimble
The application, previously known as MedTek, has undergone a rebranding and is now called Nimble. We have updated our integration to reflect this new name. From this version onwards, you'll see references to Nimble instead of MedTek within the integration.
The functionality remains the same; only the name has changed.
Update to Aha API Integration: Sync Products as Resources
We have updated our Aha API integration to synchronize products as resources instead of groups. This change aligns the integration more closely with Aha’s product-centered configuration, allowing for more streamlined and intuitive management of products.
By treating products as resources, users will experience a more logical mapping between Aha and our platform, which is expected to improve workflow efficiency.
NEW Integrations: WPEngine and Proggio
We are excited to introduce two brand-new integrations in this release:
New API integration: WPEngine, a WordPress-based hosting blogging platform
New ZUS integration: Proggio, a project management tool
06-04-2023 Release (O-10)
SoD Policy Description Import via CSV Upload
We have introduced the ability to import SoD policy descriptions directly from your SoD documentation via CSV file uploads. The enhancement enables customers to integrate descriptions with their SoD rules, providing vital context and information directly within the Zilla interface. Here are the details:
Description column: In the CSV upload file, a new 'Description' column is mandatory, but it can be left blank if there's no description to be added.
Overwriting existing descriptions: If a description already exists in Zilla from a previous upload, it will be overwritten if there's a new description for the same policy in the uploaded CSV file. Please ensure to review the descriptions in your CSV file before uploading, to avoid accidental overwriting.
First-In-First-Out rule: The first non-blank description read in during the upload becomes the default description for that SoD policy. Any subsequent descriptions, even if different or blank, will be ignored.
Preservation of existing descriptions: If there's already a description for a policy in Zilla and no corresponding description in the uploaded file, the existing description in Zilla will remain unchanged.
Campaign Setting for Reviewer Reassignment Control
As part of our commitment to enhancing Zilla compliance capabilities, we have added a new setting for campaign monitors. This setting allows campaign monitors to disable the ability for reviewers to reassign items they are responsible for, ensuring items are handled as intended and preventing unnecessary reassignment. This enhancement makes it easy to meet an important compliance requirement under the Sarbanes-Oxley regulation.
Key details include:
New Campaign Setting: Campaign monitors can now choose to Allow or Do Not Allow reviewers to reassign review items.
Default Setting: The default setting will be to Allow reassignments, ensuring no disruption to current workflows unless desired.
Cloned Campaigns: The selected setting will persist for cloned campaigns.
Visibility Restriction: If set to Do Not Allow, the assigned reviewer will not see the ability to reassign items, either individually or in bulk.
Role-based Permissions: Monitors, Admins and Super Admins retain the ability to reassign items.
Campaign Report: This new setting will be included in the campaign report for transparency and easy tracking.
Integration Updates and Bug Fixes
ZUS Stripe Integration Update: We have updated our ZUS Stripe integration to support Stripe's new user interface.
Adobe ZUS Integration Update: In line with Adobe's new user interface, we've updated our Adobe ZUS integration. This update ensures continued compatibility with the latest changes from Adobe.
GitHub API Integration Update: We've enhanced our GitHub API integration to better support teams and child teams.
Azure Cloud Auto-Discovered App Sync Fix: We've addressed a bug causing Azure Cloud auto-discovered app sync failures when the account email did not match between parent and child apps.
05-28-2023 Release (O-9)
Policy Enablement Tracking in Zilla Secure
We’ve introduced an ability to track and display the date a Policy was enabled in Zilla Secure. This information can now be viewed on the Policy Category page, providing additional insights into your policy management timeline.
As part of this release, this field will be populated with the current date. Moving forward, the exact date a policy was enabled will be recorded and shown.
Permission Sets on Child Permission Page
To offer you a more comprehensive and efficient way to manage permissions, we have updated our Child Permission page. In addition to Groups, it now supports Permission Sets, providing a clear and detailed view of permission inheritance and effective permissions.
Key details of the enhancement include:
Inclusion of Permission Sets: The Child Permission page now provides detailed information for Permission Sets, making it easier for application owners to understand and manage access rights.
Comprehensive View: The new design provides an extensive view of inherited and effective permissions, clearly showing the additional access a user or account has based on their direct permissions.
Easy Navigation: The Child Permission page can be accessed from various parts of the application interface, allowing for quicker navigation and reducing the time spent searching for permission details. Specifically, the Child Permission page can be accessed from the following areas within the application:
Application > Accounts > Permissions
Application > Accounts > Account Group
Application > Permissions > Permission Set / Group
Application > Groups > Group
Group Details Page Update: Tree View for Inherited/Effective Permissions
We have updated the Group Details page to offer a more user-friendly display of inherited and effective permissions. Now, permissions are displayed in a clear, intuitive tree-view format, simplifying the understanding and management of access rights. This layout effectively illustrates the hierarchical relationships of permissions, providing a comprehensive understanding of access rights.
Integration Updates and Bug Fixes
SoD Findings for Groups and Permission Sets: We've fixed the issue where SoD findings were not being generated for groups and permission sets. Now, Zilla will correctly identify and report any potential SoD conflicts for these elements.
CSV Uploads Comment Character Update: In order to streamline and standardize CSV uploads, we've updated the system to only allow a '#' character as a comment when it's at the start of a line.
Salesforce Integration Improvement: We've addressed an issue where the Salesforce integration was not preserving Role and Profile permission types. This fix ensures accurate representation and synchronization of these crucial data types.
GitHub Integration Enhancement: The GitHub integration has been enhanced to sync MFA (Multi-Factor Authentication) status and additional metadata.
Workday API Integration: We've fixed a bug in the Workday API integration where password values needed to be converted to Unicode.
05-21-2023 Release (O-8)
MFA status on User Details page
Zilla administrators now have enhanced visibility into the security measures enabled for individual users. MFA (Multi-Factor Authentication) status has been added to the “User Details” page, indicating whether it is enabled or disabled for the user.
SoD findings for groups
We’ve added Segregation of Duties (SoD) findings for groups. Zilla now identifies and reports potential SoD conflicts caused by group memberships, helping to improve compliance and reduce risk.
NEW integrations (beta): MedTek, Oracle HCM, Smartsheet, and RingCentral
In this release, we are adding four new application integrations. You can now seamlessly connect to and audit with Zilla:
New ZUS integration: MedTek, a streamlined medical technology management tool
New API integration: Oracle HCM, a human resource management application
New API integration: Smartsheet, a highly popular project management tool
New API integration: RingCentral, a global enterprise cloud communications and collaboration solution.
Note: Beta access is available for all customers. Please coordinate with the Zilla Customer Success team to confirm that the integrations work as expected before using.
Bug fixes:
AAD Sync Issue: We have resolved a bug that caused Azure Active Directory (AAD) synchronization to fail due to missing parent apps. With this fix, users should no longer experience problems with data synchronization between their AAD and Zilla.
SharePoint API Integration: The SharePoint API integration now supports the syncing of all SharePoint sites and subsites. This means users can seamlessly integrate all their SharePoint content with Zilla, making for more efficient and unified data management across platforms.
05-14-2023 Release (O-7)
Azure Active Directory integration enhancement
We've enhanced our Azure Active Directory integration. Administrators now have the ability to map additional User field attributes. The enhancement supports any number of fields that can differ from instance to instance and tenant to tenant. These fields can be seamlessly integrated as additional columns on the access review screen, providing more comprehensive data for access control and management.
Please note that this enhancement requires configuration by our Customer Success team.
Airtable integration update for ZUS browser extension
In response to recent changes in Airtable's dashboard UI, we've updated our ZUS browser extension to ensure continued seamless integration.
Previously, the synchronization was performed by clicking a "users" icon within an Airtable base, a feature that was removed in the recent Airtable update. Consequently, we have adapted our extension to align with these changes.
Improved DocuSign API integration
We've addressed an issue with the DocuSign API integration that previously only allowed syncing of the first 50 accounts, due to pagination constraints. In this release:
We've enhanced the DocuSign API integration to sync all accounts, not just the first 50.
We've added a feature that allows support users to set the page size of API calls from hidden configuration settings.
To facilitate further debugging, we've implemented debug logs to record the responses of all API calls.
NEW integrations: Alert Logic and Active Admin
In this release, we are announcing the addition of two new integrations:
New ZUS integration with Alert Logic, a security monitoring and threat detection tool
New ZUS integration with Active Admin, an application administration and management tool
These new integrations underscore our ongoing commitment to expanding the range of SaaS applications you can seamlessly connect to and audit with Zilla.
05-07-2023 Release (O-6)
Enhanced filtering in access reviews
We’ve introduced an improvement in Zilla's access review functionality. Users can now filter based on Flags, allowing for a more efficient and focused review process. This new enhancement makes it easy to quickly identify and address all flagged review items, streamlining the decision-making process.
NEW Integrations: MedTek and Lucidchart
In this release, we are delighted to announce the addition of two new integrations with MedTek and Lucidchart. These integrations expand the range of SaaS applications you can seamlessly connect to and audit with Zilla:
New ZUS integration with MedTek, a streamlined medical technology management tool
New API integration with Lucidchart, a diagramming and visual collaboration tool
Support for group-assigned roles in Azure Active Directory API sync
We’ve updated our Azure Active Directory (AAD) API sync functionality. The enhanced sync process now captures roles assigned to groups, providing a more comprehensive and accurate view of your organization's access control.
Support for Least Privileged Permissions in Snowflake API Integration
Our Snowflake API integration now supports least privileged permissions, ensuring a more secure and efficient access management experience.
Bug fixes:
Corrected swapped title and department columns in CSV download in the “users” page
Modified the "Copy Email Addresses" option to separate addresses by a semi-colon when running a campaign
Fixed abbreviated permissions issue in Box ZUS integration
Updated Carta ZUS integration to support Carta's latest update
Improved DocuSign API integration to handle permissions with no name
Revised privileged status for AAD administrator permissions
05-02-2023 Release (O-5)
NEW feature: Segregation of Duties (SoD) policies with automated actions
We are excited to announce the addition of a new feature that allows admins to upload and configure Segregation of Duties (SoD) policies in Zilla. With this enhancement, admins can now create and manage policies tailored to their organization's unique requirements, facilitating informed decision-making during access reviews and compliance certifications:
Admins can now upload custom SoD policies, ensuring that their organization's specific needs and regulations are met.
Zilla automatically evaluates the configured SoD policies on a daily basis, providing a continuous and up-to-date compliance status.
Admins have the ability to add automated actions to their SoD policies. This includes sending notifications when violations are detected and alerting the appropriate personnel to promptly address potential issues.
Please note that this new functionality requires configuration by our Customer Success team.
Enhanced policy landing page and category-specific policy overview
We’ve introduced UX improvements to the policy landing page and a new category-specific policy overview. This update now allows users to navigate and manage policies within their respective categories more efficiently:
Clicking on a policy card on the new policy landing page sends users to the respective category landing page displaying all policies and summary metrics within that category.
Use filters in the summary bar to view total policies and enabled policies within a specific category.
When changing a policy's category, the policy will no longer appear in its original category table and will now appear in the newly assigned category.
The ability to edit a policy remains unchanged with this update.
No changes to the search feature; it remains the same as the current Policies page.
NEW integration: Incorta
In this release, we've added an API-based integration with Incorta, an innovative data analytics platform that allows organizations to quickly and easily analyze complex data, making it easier to gain insights and make informed decisions.
Support for subdomains in tenant settings
We’ve enhanced domain management in the Zilla platform. Users can now add subdomains to their tenant's list of domains in the Settings section, allowing for more comprehensive and flexible control over domain configurations.
Support for enterprise accounts in Heroku integration
An update to our Heroku integration now provides support for enterprise accounts. This enhancement allows users with Heroku enterprise accounts to seamlessly integrate their applications with Zilla.
Bugs fixed:
An update to our OneLogin integration enhances the sync process in case an MFA status API call fails. This improvement makes the integration more robust and ensures an uninterrupted experience for users.
We have rolled out an update to our Google Cloud Platform (GCP) integration, addressing sync issues for resources without parent relationships. This enhancement ensures a smoother and more reliable synchronization process for all resources, regardless of their hierarchy within GCP.
04-23-2023 Release (O-4)
Enhanced AWS API integration with rate limiting for syncs
Our AWS API integration now supports rate limiting for AWS syncs. AWS rate limiting is a mechanism used by AWS to control the number of requests that a user or service can make to specific AWS resources or APIs within a given period of time. This enhancement ensures that syncs do not fail when the rate limit is hit on production. By implementing support for rate limiting, our AWS integration becomes more robust, providing a reliable and consistent experience for AWS users.
NEW integration: Aircall
We've added an API-based integration with Aircall to our extensive library of out-of-the-box application integrations. Aircall is a cloud-based phone system and call center software solution designed for businesses, offering features like local and international phone numbers, call routing, call recording, analytics, and customizable call distribution.
Custom GitHub URL support for OAuth authentication
We've enhanced our GitHub API Integration, which now supports OAuth authentication with custom GitHub host URLs. You can now configure a 'Custom GitHub URL' parameter, allowing you to input your specific GitHub host URL. The OAuth authentication process will then use this custom URL to send authentication requests instead of defaulting to github.com. This feature provides greater flexibility for organizations with private or self-hosted GitHub instances and helps streamline the integration process for various setups.
Streamlined 'Edit Policy' flow in Zilla Secure
We've made an improvement to the Zilla Secure 'edit policy' flow. In order to streamline the process, we have combined the last two steps, moving the "Enable Policy" option to the "Configure Actions" page. This update simplifies the overall user experience, making it more efficient and easier to manage your security policies.
Support for production and developer environments for DocuSign
We've expanded our DocuSign API integration to support both production and developer environments, providing more versatility for your workflow. Please note that this new functionality requires configuration by our Customer Success team.
Bug fix:
We've updated our Azure Active Directory integration to resolve an issue where internal users were incorrectly marked as external. We have updated the external domain calculation for accounts to accurately process all domains specified in the tenant.
04-16-2023 Release (O-3)
NEW feature: In-app release notes access for admin users
Release notes are now easily accessible directly within the application, informing you about the latest updates and improvements.
Enhanced user identification in OneLogin integration
We've improved our OneLogin integration to provide greater flexibility in user identification. You can now identify users based on a property other than their email address. Please note that this new functionality requires configuration by our Customer Success team.
Presenting inherited permissions as a tree view
We've upgraded the access review experience by introducing a tree model to display inherited permissions, providing a clearer and more organized view of user access levels.
Pagination support in BambooHR ZUS integration
Our BambooHR ZUS integration now includes pagination support, offering a smoother and more efficient user experience when -syncing data.
04-09-2023 Release (O-2)
NEW integration: KEMI
We've added a new KEMI integration via ZUS. The new integration includes data parsing to automatically retrieve the email within parentheses and combine the first two strings (first and last name) to form the Account Name.
"Console Login" account status consideration for AWS
We've updated our AWS integration to consider "Console Login" when determining account status, providing a more accurate and comprehensive assessment of your AWS accounts.If a user's AWS Console login is disabled, they will be made inactive in Zilla.
Account Import Restrictions for Power BI
We've enhanced the Power BI API integration to restrict imported accounts based on Power BI license SKU ID, eliminating unlicensed accounts and reducing noise in the app for Zilla users.
Bug fix
Our ZUS integrations for Bitwarden and Cognito have been updated to be compatible with the latest versions of the applications. Sync will no longer fail for these apps if the URL is changed in Config.
04-02-2023 Release (O-1)
Cursor-Based Pagination Strategy for No Code API and Generic Integrations
The pagination strategy for our No Code API and Generic integrations now supports a cursor-based approach, which allows users to browse large sets of data more easily. The pagination overrides will be set to {"cursorKey": "next_cursor", cursorPath: "response_metadata.next_cursor", "limit":"limit"}, which will help streamline the pagination process and ensure the data is displayed in a more organized and accessible format.
Bug fixes
Zilla can now be configured to update existing users when their email changes in Okta, instead of creating a new user.
Workday Directory was previously pulling in User IDs instead of full names, resulting in incorrect user profile names. We now generate names based on first and last names in Workday.
03-28-2023 Release (N-10)
NEW feature! Custom actions
We've enhanced our identity security platform by adding the capability to create custom actions for Slack, Microsoft Teams, webhook, and email. You can now use custom actions as automated actions for Zilla Secure Findings or configure them as manual actions for both Findings and Accounts and Permissions search. For example, when Zilla identifies a new permission change, a Slack action can automatically post a message on your security team's channel requesting an additional review and even tag the reviewer. This new feature enhances automation capabilities and improves teams’ efficiency in remediating security and compliance issues.
Integration improvements
Our Box API-based integration can now sync additional user and group details for better security visibility. For users, it now includes “canSeeManagedUsers”, “isExemptFromDeviceLimits”, “isExternalCollabRestricted”, “isPlatformAccessOnly”, and “isSyncEnabled”. For groups, it includes “externalSyncIdentifier”, “invitabilityLevel”, “memberViewabilityLevel”, “provenance”, and “canInviteAsCollaborator”.
The ZUS-based FullStory integration now maps and syncs the "Last active" field to "Last Login" in Zilla.
We also updated our no-code generic API integration to support "Client Credentials" OAuth authentication flow.
03-21-2023 Release (N-9)
NEW feature! Sync Frequency Tooltip
As an admin, you can now easily view the frequency of your sync schedules directly from the clock icon. Just hover over the clock to see a tooltip displaying the sync frequency, such as "Daily,” "Every Monday,” or "27th of every month". This will help you stay informed about when your next automatic sync is scheduled to run.
NEW integrations: IBM MaaS360, ZohoCRM, Mosyle, Celigo
We've expanded our extensive library of out-of-the-box applications by adding a ZUS-based integration for IBM MaaS360 and two API-based integrations - ZohoCRM and Mosyle. We also updated our no-code generic API integration to support Celigo.
Enhancement: Access review customization for Google Workspace's Teams
This Google Workspace integration update allows Admins to effortlessly customize the access review screen by specifying a mapping of attributes. This update allows for the addition of an extra column, providing more visibility and control over the information displayed during access reviews.
Please note that this new functionality requires configuration by our Customer Success team.
Enhancement: Setting up external Okta users as guests
Our updated Okta integration now enables setting up external users as guests, providing better control over access and collaboration within your organization.
Please note that this new functionality requires configuration by our Customer Success team.
Enhancement: Supporting boolean values in no-code integration
We’ve added support for boolean values in our generic no-code API integration. This enhancement allows supporting additional data fields when configuring your integrations without needing any coding expertise.
Bug fixes
Within the Zilla application instance, the external status of accounts now accurately displays the correct value.
The pending revoke flag is now consistently cleared in all cases, whether permission revocation is implemented or an account is deleted or disabled.