Change log for OKTA
| Date | Changes |
|---|---|
| 2022-07-08 | Enhancement:
- Modified mapping for "actor.type" from "principal.user.role_name" to "principal.user.attribute.roles". - Modified mapping for "target.0.type" from "target.user.role_name" to "target.user.attribute.roles". - Modified mapping for "target.1.type" from "target.user.role_name" to "target.user.attribute.roles". |
| 2022-06-15 | Enhancement-
- for "target.0.type" == "Token". - Mapped "target.0.detailEntry.clientAppId" to "target.asset_id". - Added conditional check for the field 'transaction.id' mapped to the UDM field 'network.session_id'. |
| 2022-06-03 | Enhancement-
Mapped debugContext.debugData.privilegeGranted to target.user.attribute.roles.name additionally. Mapped debugContext.debugData.requestUri to extensions.auth.auth_details. Mapped debugContext.debugData.suspiciousActivityEventId, debugContext.debugData.threatDetections, debugContext.debugData.threatSuspected to security_result.detection_fields. |
| 2022-03-22 | Enhancement-
debugContext.debugData.behaviors mapped to security_result.description. debugContext.debugData.threatSuspected mapped to security_result.threat_status. debugContext.debugData.risk mapped to security_result.severity. |