Release Notes
Back to All

Entitle March 2025 release notes

13 days ago

Admin experience

BeyondTrust Identity Security Insights integration with Entitle

Entitle now integrates with BeyondTrust’s Identity Security Insights, which provides organizations with real-time visibility into security risks related to user identities and access permissions, enabling them to track accounts, detect suspicious activities, and manage access-related risks.

The integration is only available through Pathfinder, providing admins with visibility into real-time risk detection and user access level in a unified view within Entitle’s permissions graph.

For further details, see the new Identity Security Insights integration guide and the updated Permissions screen documentation.

Account mapping

The account mapping feature in Entitle aims to provide better control and tighter mapping between users and their accounts. This introduces several new functionalities:

  1. Admins can now control whether users can modify their accounts for specific integrations by the Allow users to edit accounts checkbox when creating a new integration or changing the integration’s settings. The checkbox is disabled by default, meaning users cannot modify their accounts for specific integrations.

    For further information, see the updated Integrations, resources, and roles screen documentation.

  2. The following audit logs were added to track all account mapping-related actions:

    • IntegrationAccountSelfMappingEnabled- Admin enabled the account to self-map for integration.
    • IntegrationAccountSelfMappingDisabled - Admin disabled the account self-mapping for an integration.
    • IntegrationAccountAdminMappingAdded - Admin mapped an account to an Entitle user.
    • IntegrationAccountAdminMappingRemoved - Admin removed an account mapping from an Entitle user.
    • IntegrationAccountUserMappingAdded - User mapped an account to their user.
    • IntegrationAccountUserMappingRemoved- User removed an account mapping from their user.

  3. A new integrationAccountSelfMapping parameter has been added to support account mapping for the following API calls:

💡

Notes

Search apps/bundles with missing accounts

  • Currently, there is no search function for apps/bundles with missing accounts when the integration does not support self-account mapping by end-users. This means users cannot directly search for these apps/bundles in the three user interfaces (Entitle web app, Slack, and Teams).

  • For example, a bundle named Sales team whose apps are missing an account is not searchable:

    Entitle Web App example

    Entitle Web App example

    Tile selection for apps/bundles with missing accounts

    • If a user does not have an associated account and self-account mapping is disabled, the tile will be visible but not selectable. Hovering over it will display one of the following messages (depending on whether an app/bundle is selected):

Integrations

🆕 BeyondTrust Password Safe (PS)

Entitle now integrates with Password Safe, enabling JIT access for Password Safe Managed Accounts.

For details, see the new Password Safe integration guide.

🆕 Snowflake permissions visibility and documentation enhancements

Entitle now supports permission visibility for the Snowflake integration, allowing Entitle admins and reviewers better permission management.

See the updated Snowflake integration guide.

Documentation

Microsoft SQL Server

🆕 Documentation added

For further details, see the new Microsoft SQL Server integration guide.

Rancher

🆕 Documentation added

For further details, see the new Rancher integration guide.