This release of ForgeRock Identity Management software includes the following new features:
Support for Bouncy Castle FIPS
IDM now supports the use of Bouncy Castle FIPS as a security provider. Bouncy Castle FIPS is useful when dealing with government data, where meeting the FIPS 140-2 security requirement is necessary for regulatory compliance.
For information on how to configure Bouncy Castle, refer to FIPS 140-2 compliance.
Support for UTF-8 email addresses
IDM now supports UTF-8 (non-ascii/international) characters in email addresses, such as zoë@example.com. When sending emails to these type of addresses, the configured SMTP server must also support UTF-8.
Disable delegated administrator sort and filter while searching
You can now disable delegated administrator sort and filter while searching resource collections in the End User UI. For more information, refer to Disable sort and filter for resource collections.
Patch operation improvements
It is now possible to patch the root of an object. The only supported patch operations on the root of an object are
Improvements to the /system endpoint
/system endpoints now support specifying additional fields when also using
*. This allows callers to get fields that are not returned by default.
New sync mapping configuration fields
New sync mapping configuration fields,
defaultTargetFields, allow specifying which fields to use for read and query requests made on source and target resource collections.
ForgeRock issues security advisories in collaboration with our customers and the open source community to address any security vulnerabilities transparently and rapidly. ForgeRock’s security advisory policy governs the process on how security issues are submitted, received, and evaluated as well as the timeline for the issuance of security advisories and patches.
For details of all the security advisories across ForgeRock products, refer to Security Advisories in the Knowledge Base library.