The latest features of BAYOOSOFT Access Manager
Release 2021.1
Get an overview of the latest functionalities of version 2021.1 with the following excerpt of the current release notes:
Usability, security, sabotage protection
With this update many strengths of the Access Manager are improved even more
Further secure sensitive data by pre-authorizing users
In the case of particularly sensitive data, it may be advisable for security reasons to carry out pre-authorization, e.g. in the form of sabotage protection training or confidentiality training, in addition to compliance with the need-to-know principle. At the same time, it should be ensured that only those employees who have completed this pre-authorization are granted authorization.
In order to technically map such organizational protection measures, it is now possible to define AD groups at data protection classes that contain the pre-authorized employees.
Mark user IDs in the system
A new setting UserTaggingGroups allows to tag user accounts in the system with icons. AD groups whose members are to be tagged can be stored for this purpose.
In addition to safeguarding sensitive data due to pre-authorization, it is thus possible for users of the system to recognize whether an employee displayed in the system has already been pre-authorized.
Manage multiple AD groups per 3rd party element
The 3rd Party Permission Management allows you to manage memberships of AD security groups. This way, the permission management can be applied to third party services like remote applications, printer shares or internet access.
If multiple AD groups were managed for a third party service, e.g. to map multiple permission levels, it was necessary to provide a separate element in Access Manager for each permission level. In order to support such situations in a user-friendly way, 3rd party authorization management has been extended to the effect that multiple AD groups can now be managed per 3rd party element.
Installation & Update Features
Installing & updating the Access Manager using a command line program
The previously executed PowerShell scripts for installing and updating the Access Manager have been transferred to a console program, which can be started by double-clicking AccessManagerInstaller.exe or from an existing Windows console window. The installation can be done
interactive (default) or completely without user interaction (command option -no-interactive). In the latter case, all required information must be passed with the command line parameter.
Silent Installation & Update of Access Manager Agents
The Access Manager agent installer has been enhanced so that it can now be run without calling the installation interface.
Furthermore, you can expect the following enhancements:
Disable deviation check per share
Automatically remove permissions of deleted users
Merge owner and responsible menu into “rights management” menu
Revise the permissions request page.
Domain Whitelisting
Renaming of directories that are no longer found
Read system roles for customizing
Encrypted and signed access to Active Directory
Customization of the interface to SharePoint Online
Customization of counting disabled and deleted permission users.
For more detailed information, please refer to the release notes in your release package.
Before updating, please refer to the information under “Update Access Manager (Main System)” in the installation document included with the download.
Instructions on how to remove the Windows execution prevention in your version package
Some security software marks a file downloaded from the Internet as potentially unsafe.
This means that Windows will not allow it to be executed without asking.
For ZIP files, unpacking also applies this mark to all unpacked files, so the mark should be removed before unpacking.
Open the properties of the ZIP file and click “Allow” if you have such an option: