Oort is now part of Cisco  |  Learn more

Try it free
Back

Weekly Release Notes: Week 50, 2022

Summary

Another week; another feast of new Oort capabilities. This week, we have new insights available via the HRIS Discrepancy check, deeper context in existing checks, and a host of new ways to access and download Oort data. 

Read, enjoy, and pass along to a friend!

🔔 New Check Available: HRIS Discrepancies

New employee onboarding should be straightforward; an employee joins on Monday, and a range of access and permissions are rolled out from the HRIS (human resources information system) to the IDP. Therefore all information should be consistent across HRIS and IDP systems, and the HRIS should be the single source of truth.

However, it’s not always that straightforward. Sometimes new employees are added before they have a company email address, and their personal email address exists in the HRIS. Sometimes automation simply breaks. Oort detects inconsistencies between information in your HRIS and IDP, enabling you to improve IAM hygiene.

Oort-1-3

📳MFA Flood Context

As we mentioned a couple of weeks ago, MFA flooding is a popular technique we see attackers using. Attackers who have acquired legitimate credentials attempt to bypass MFA by overwhelming the victim with MFA push notifications in the hope the target will accept one. Oort already detects these attacks by calculating how many failed attempts have occurred over a short period of time, and alerts you if it seems particularly high.

In this release, we’ve made it even easier to access the information you need. Within the MFA Flood Check activity pane, you will see how many failed login attempts were tried before the account was accessed. The relevant events are then displayed (as shown below). By displaying this information, we aim to reduce investigation time required for security teams.

Oort-2-3

🔗 Track Oort User Access

One of the great things about Oort is how applicable the information is to a wide range of terms: IAM, Security, Compliance and IT teams all use the Oort platform. We love to see all these Oort users!

At the same time, it’s important to be able to understand who has access to what information, and who can take which action. In this release, we’ve introduced a new page to do just this. In “Tenant Access”, Oort admins can see a list of all their Oort users, with information about their role and their last login data clearly displayed. This enables you to know exactly who has got access to what, giving them the confidence to create more processes with more internal users.

Oort-3-3

📈Chart Downloads

Extracting data from existing identity platforms can be challenging (and, at times, impossible!). That’s why customers love to pull data and insights from the Oort platform. We want to make it as easy as possible to download charts (and the underlying data) so you can quickly create compelling reports. 
In this release, we’ve made sure that trend reports (such as the compliance trend line shown below) are fully downloadable. You can choose from svg, png and csv formats.

Oort-4-3

Bug Fixes and Minor Improvements

  • Enhanced layout for settings pages, which is now in line with the rest of the Oort platform.
  • Export options now include direct links to Oort User Profile pages, so that additional teams can access all the information they need.
  • Local cache refresh. Within the user checks page, you can now click to refresh and update the screen with the latest information. 

Recent Blogs

Duo SSO Logging Improvements 

We’re committed to enhancing the visibility of data sourced from Duo.true

User Linkage Suggestions 

This week, we’re excited to introduce User linkage Suggestions withintrue