Truth in IT
    • Sign In
    • Register
        • Videos
        • Channels
        • Pages
        • Galleries
        • News
        • Events
        • All
Truth in IT Truth in IT
  • Data Management ▼
    • Converged Infrastructure
    • DevOps
    • Networking
    • Storage
    • Virtualization
  • Cybersecurity ▼
    • Application Security
    • Backup & Recovery
    • Data Security
    • Identity & Access Management (IAM)
    • Zero Trust
    • Compliance & GRC
    • Endpoint Security
  • Cloud ▼
    • Hybrid Cloud
    • Private Cloud
    • Public Cloud
  • Webinar Library
  • TiPs
  • DRAW

One Identity: Web Portal Enhancements & New Web Manager in IM 10 LTS

One Identity
07/03/2026
0 (0%)
Share
  • Comments
  • Download
  • Transcript
Report Like Favorite
  • Share/Embed
  • Email
Link
Embed

Transcript


The last was the API server, as you see it here on the right. This is the application switcher. We was just talking about that. Here are some more details. You can now select with the help of this dot menu on the right upper, just the application you like and which application to choose is depending on which application is installed on that very specific API server. That could be as well controlled as we have seen it in the past. Everywhere where such a login screen is available, this dots menu is also available. And per default, as you easily can see, portal switcher enabled. That means you can switch between the different portals. The standard web portal, by the way, is always the web portal, the main user web portal. And if you then need something other else, you can press the dots and we'll get something other else. There are some other user experience improvements as well in the portal. Here you can see, of course, the new status page. This is the page you get. If you go in, you see a lot of more tasks could be done directly underneath of welcome. This is exactly the help for the people who wants to do something with the portal. This is pointing out where they could have a first look to the rest. Looks a little bit like you have seen that in the past. More improvements, of course, here from a UX perspective for the my report space. There is a new bulk delayed capability available now for my reports to get rid of. There is clarified captions, of course. And you can now configure the view configuration if you like to. The complete table with the overview is new. It is much nicer than before, could be better filtered. You can search. Everything is now much nicer. So dealing with new report reached a new level. Product overview page, the page where you are searching for specific products you like to order is now as well improved. There was a configuration needed after installation to be activated. And this is that child categories are searched as well. If you just select them now, the standard is that the show the products are shown. This is extremely helpful if you like to avoid that people need to die to deep dive into a lot of subcategories. Additionally to that, search is now repeated. That means you enter a search phrase and depending on where you navigate to, that search phrase will just be repeated so that your search keeps alive until you delete it. If you search for identities, for example, because you want to order for someone, then of course the identity selection supports filter and display settings now. That means at the end you get a better overview and you will find the people much easier than it was in the past. One thing I will show you in a second is a port for nested filters with relations. This is completely renewed. That means in the past it was only possible just to search over a specific table or to take a search that was predefined. Now you can define your searches as you like to and you can just define them cross table. That means, for example, if I'm searching for people in a specific department where I only know the department name of, then I can easily do that right now, especially because I can get the display from the department where I then can enter a value. What is of interest as well is that the properties can be limited and I mean the properties can be selected in a search. That means it is not that you just see from a table all the 250 different properties, hopefully not, just the properties which are at the end selected. And there are two choices to do that. Out of the box, the tool will just take the selection that is done in the product. Remember, you can just configure for all the columns in the database if they can be shown in the wizard. This is something that will be the default. But you can also additionally to that just start in the configuration of the web portal, define specific additional columns so that then this default behavior will be overruled by your selection without just changing the complete system. So to show you that I'm here in the Web Manager and the easiest way to filter something is, of course, if I just go here to the user and then to the address book here, we have a list of all users. The filter is available, of course, for many tables. The user list is now the easiest to understand. So I take that. You see the list of all the users which are on many pages, a lot of users. And to get at the end a filter available, I have to go to the filter. And if you see the filter data available, I can here just take one of the predefined which is an active identity or an inactive identity filter. But I can also use the new custom filter. And then I got this page here. And the first thing I like to filter is something that was possible in the past as well. I want to select a property which is a value comparison. You see there are other things available. And in this value comparison, I want to search for the externals. I don't know that exactly. So I just enter here external and I see there is a flag is external. This is what I need to do. And I don't want to have externals. So the property is activated or not. Not means employees. Activated means external. So this is correct. First part of the filter done. Now I like to get all the standard employees from the IT department. That was not possible in the past. I just add here now another condition. You see you can just combine them with an and or with an or. I will take the and. And there I like now to take the reference to other objects. This is now the way, of course, just to select from another table, not the identity table. I will take the primary department. That is what I expect the people are in. The following applies. Select the property. That is now a value comparison. You see there are other things possible as well. I can reference through assigned tables. I can also reference from other objects. However, I will take the value comparison again. This time I'm searching for the department name. Here is the department name. I take that. And in the department name, I like equal to the IT. And of course, there are other possibilities. For example, you can hear presidents the word in the dictionary or something other else. You see there are many different options, including contains, however, everything else there. And I have now two different conditions. One says not external. The second says in the department IT. And if I then apply the filter, my table here gets filtered. And I'm now down to 121 from several thousand. This is at the end how the whole thing works. And if I go then to these people, I will see they are working in the IT. And of course, if I can see that here as well, the external flag is not seen. So let me see if I can find that shortly. And it's easy to see nothing there. What I can just see. However, this is then something I need to add. Going back to the standard view here, the only question is how I can get rid of this filter. This is with the filter icon as well. You see again the standard filter. I go to the custom filter. I just delete all of these filters. By the way, I can also, if I like to, use the reset filter button here. And if I do so, then automatically I'm back here in my phone book with these several thousand people in the environment. The one or the other might remember that in the past, there was a tool in the toolkit of the Identity Manager known as the Web Manager. And it was installed especially with that URL subset. That means Web Manager was to add behind the server string. And then the IIS was just returning with a very, very fancy looking tool. The reason for that very old tool that was looking extremely Jurassic is that, yeah, years ago it was just founded and then it was the ugly stepchild never getting reviewed or updated, especially because we had the on-premise tools and the manager which was installed on-premise. However, a subset of customers was always very interested in the Web Manager, especially customers with a big enterprise which have not every time and everywhere access to their client machines and can open local tools. And because of that, that tool was not dying even if it was not updated. However, as you all know, the world changes. Cloud products are super common and web front ends for nearly everything exists. Think about your home lab where literally everything is in the meantime configured via a web front. And because of that, even in identity and access management, it might be a good idea to bring tools, even admin tools into the web. This here is now the new manager. To say it from the beginning, it is not 100% the same functionality than the on-premise manager which already exists in the Identity Manager, but it is, of course, a big subset of it. It is the first version of the Web Manager and it is only here in the Identity Manager version 10 available. From now on, this will getting increased developed. And that will lead to the following things. First of all, the old Web Manager is completely removed. It did not exist any longer. Secondly, this year is the new web portal and it is based from a technology perspective on the same data than the on-premise manager. That means the same configuration from the on-premise manager used is used from this tool here in the web. And that means changes will happen in the manager, typically will also be available in the Web Manager. Yes, of course, we need in the next version of the Identity Manager to add the one or the other form type, currently not ported. But at the end, that will be the same functionality. However, the new manager, it's a cool tool and this is what you get. And you see, it is a tool which is pretty new. Let's look into the identities like in all managers when we just do something like that. Therefore, I can go to the identities and open the identities. And then I can look at the info system of identities. For example, you see the same graphical items like in the manager. I can open the identities again, sort for names and easy to see. This is nothing really surprising. This is exactly what I know from the other tools. Here is the new list of specific identities. And of course, I can select one of these identities and we'll get the typical picture here, which just shows me then at the end the overview of my object. Let us find something. Therefore, I will just go to the list view again. And in the list view, I will search for Hervik. Hervik is an account freshly created where I know it is just equipped with the different people. I can then, of course, click on Hervik and we'll get the overview. And this overview shows me here all of the things I have to Active Directory accounts and an LDAP account and all of the overview we know. It is possible, of course, to zoom in and to zoom out. Therefore, control and mouse wheel will help like in the other applications as well. Clicking on Hervik, I will go into the main data section. And in the main data section, I see all the properties I would see as well in on-premise tools. Organizations, I can, for example, look into my organizational view. Here is the IT department selected. I can select something different if I like to. By the way, even the search functionality exists where I can directly look into it. I can also create trees if you see that. And I can select from there. If you look into a daytime field, then you will see to be able to enter the daytime value. Here a date selector exists as well. There we are. And I can look into the address where the different phone numbers and extensions exist. All stuff that is just created. Miscellaneous shows me then, of course, my central user account and so on. It is possible also to set the password if I like to. If I want to do that, there is the new password field available, which is in the manager in the meantime as well, which allows me to enter the password based on the policy. And with user defined, I find then my spare fields already there. On the right hand side, if you easily see, there are now the assignments. For example, I can assign Hervik to, for example, account definitions. No, I don't want to change something. Here are now all available account definitions. And I can select directly from there to add more of these account definitions, of course. With more, I can reload, I can show process information, add stuff to favorites and so on. I can also see the properties of that specific selected object, which was at least the department. And I can then see here the permissions like it is in the on-premise manager. Let's close that again. Let's go to Hervik again. Let's see if we can do the navigation by just jumping to the Active Directory account. Even that works pretty well, like we expect that in the manager. And even there exists then specific properties that allows me, for example, to assign this Active Directory account to a group. And I see my Active Directory structure. And I can in this Active Directory structure select, of course, some of these groups. Flags show me if specific things are just assigned or not. Let me directly check that. I open here the IT. Hervik is working for the IT. I select a group of the IT, press Save. And this will now automatically assign Hervik to that very specific Active Directory group. Let us reload the whole thing here. And you see it is now directly assigned. This is a way pretty well to work here with that very specific tool. Reports exists. For example, we see the overview. There we are. With the I button, you get always the help topics to be seen. Help topics will help you, of course, then to understand what you are doing and get more information about different objects. This is just the global functionality of the Identity Manager on-premise front end, which is, of course, available there as well. What can we do additionally to that? First of all, you can now go to every of these objects that was possible in the past as well. Even the basic configuration is possible. You see basic configuration there, for example, status. You see as well predefined stuff and such. And you can work on all of these objects like it is typical. With the More button, you can then do something very specific, like look into the properties as seen, or you can reapply templates, for example. And you have always the same tasks available that was available before. Objects can also be deleted. The Delete button will make it possible. Of interest could be if we are in the IT shop section, for example, the approval processes. So if we go into the approval procedures, we see here a couple of approval procedures. And if we go to approval policy, we see them just working. And in such an approval policy, and we know that in the approval policy always exists workflows. So let's step into the approval policy. And there should be an approval workflow available. And that is here on the right-hand side in Tasks. There is the Edit Approval Workflow. And if I go into that, you see a complete new look and feel. And that is, of course, the new workflow engine, web-based. This is the workflow engine the web is using. The shapes are looking a little bit different, of course, but you can also click into them. You get then inside information about that, all grayed out here. Because this is a standard workflow, you can't change something. But you can configure mail templates if you like to. And you can work then on these different configurations, like in the manager. So that is really nice. You can have here a button to create more connection. Even all the rest, like for example, to sort that out or zoom that in, exists. You can see hints or not. That will help you at the end to work with that. You can edit that. That will not really work, especially because this thing here is a standard workflow. However, that is workflows. Very nice as well. And even policies exist. So for example, let me go to the Identity Audit. And in the Identity Audit, typically, we should see some rules. Let me see. There are hopefully some rules. There is one. And such a rule typically does have a working copy. Here we are. And if we go into that working copy, then we should able just to change a rule. We see also somewhere a rule editor. So here is the General tab. There is the Condition tab. This is where the rule gets defined. That is then a type of SQL wizard. And you can then here select something or add a condition, where you see then different ways to add condition parts. We have here assessment criteria. We have also documentation and extended. And from my personal perspective, this web overview is a little bit nicer to see in an overview, like, for example, the original in the local manager. We see here very detailed that UX is doing its job and is just creating wonderful web forms more and more that allows them easier to work with these very complex objects. What can we see here as well? Additionally to that, the one or the other feature is just missing. For example, if I just look here at the identities and select a list of identities, the complete functionality in case of exporting the complete list is not available yet. This is, for example, something that need to come then in one of the next versions. And that shows exactly that the Web Manager is, of course, a first approach solving the complete manager functionality. But from that perspective, it is not finished yet. We have here to add more functionality in the next future versions, which will, of course, happen. Please remember, everything that is working locally can't easily one-to-one taken into a web tool. Therefore, you need to interpret the same configuration data in web tools. And therefore, you need to build all of these different forms, allowing you specific functionality. I'm very sure that here our developers will do a really pretty work and will just add everything necessary to these specific tools. Let's go again to Herwig. And let's have a look, of course, to assigned Active Directory accounts, for example. And if we do so, we see then here the list of Active Directory accounts. And you see we have here direct assignments of two Active Directory accounts. One, of course, is an admin account. This is the one with the one behind. The other one is here the standard account. I can also navigate to this Active Directory account. I can edit the assignment of this Active Directory accounts if I like to. I can also look into that and see that I can discard changes. I'm able to reload the complete list. I can also work with a change time. So I can do deferred operations, like I can do that from the manager, show process information, add favorites, and look into the properties, as we have seen that. The only thing what is not possible is that I can't just right click, as you easily can see, because what I get there is the right click menu from my browser instead of the right click, what I expected from the manager on premise. If I don't want to save something, I can just switch back. And here I can, of course, use, for example, the switch back button of the browser. There is no specific button implemented. From an overview perspective, this should be good enough. You can see data administration is easily possible now with the web manager. That means, from my perspective, to display and edit objects will work pretty well. Some specific configuration will be in the next version. As you easily can see also, there are, of course, tabs open for specifics. And you can close these tabs and discard your changes if you like to or save them. As you like it. On the right upper side, you see, of course, your user. I'm logged in here with the VI Admin to see the full functionality. I can then look into the user interface settings. There is nothing to select besides the language currently. And if I go here to the logout, I will get logged out. There is, of course, the documentation where I can find more help, the info and the connection. And on the connection side, I can then see the permission groups and the program functions just assigned to that very specific user, which is everything that is the reason why I was using the VI Admin. If I have just pinned then sometimes something to my favorites, I can go into the favorites. This here looks like it is the default. So let us test that. I will therefore just go to the identities and say, I want to ensure that the identity list is part of my favorites. So I add that to the favorites. I can find now the identities list here. That is exactly what I did before. And now I should be able to get rid of that by just deleting it. And it looks like that this is currently not possible. However, let's go back to the navigation and see if we can just remove that from the favorites. Yes, I can. Here, I think is a little bit more functionality necessary before I can start to delete something from that very specific list. I think this overview is good enough for now. We see that this is, of course, a wonderful new version of that very Jurassic Manager we had in the past.

TL;DR

  • Identity Manager 10 LTS introduces a redesigned web portal with application switching, enhanced My Reports management, improved product search with child category support, and advanced nested filtering across multiple database tables.
  • The new cross-table filtering capability allows administrators to build complex queries spanning multiple objects, such as finding employees by department name, with configurable property visibility that can be customized per portal without system-wide changes.
  • The legacy Web Manager has been completely replaced with a modern web-based administration tool built on the same configuration as the desktop Manager, featuring identity management, workflow editing, and policy configuration capabilities.
  • While the first-generation Web Manager doesn't yet match all desktop Manager features (some exports and advanced functions are planned for future releases), it successfully brings core administrative tasks to the browser with a contemporary interface.
  • The Web Manager includes a new visual workflow editor, improved compliance rule configuration, and organizational navigation tools, representing One Identity's strategic shift toward cloud-ready, browser-based administration for enterprise identity governance.

Web Portal User Experience Improvements

The Identity Manager 10 LTS release introduces significant enhancements to the web portal interface, starting with a new application switcher that allows users to toggle between different portals based on what's installed on the API server. The status page has been redesigned to provide clearer task guidance for new users, while the My Reports section now features bulk delete capabilities, improved table filtering, and enhanced search functionality. Product ordering has been streamlined with child category search enabled by default, eliminating the need for users to navigate through multiple subcategory levels. The identity selection interface now supports advanced filtering and display settings, making it easier to find and select users when placing orders on behalf of others.

Advanced Nested Filtering with Cross-Table Relations

A major enhancement in version 10 is the introduction of nested filtering capabilities that support cross-table relations. Previously, users could only search within a single table or use predefined searches. The new system allows administrators to construct complex queries that span multiple tables, such as finding all employees in a specific department by department name rather than ID. The filter builder supports value comparisons, references to other objects, and assigned table relationships. Administrators can also control which properties appear in search interfaces either through global wizard configuration or portal-specific overrides, providing flexibility without requiring system-wide changes. This functionality is demonstrated through practical examples like filtering for non-external employees in the IT department.

Complete Web Manager Redesign and Functionality

The legacy Web Manager, which had remained unchanged for years despite its outdated interface, has been completely replaced with a modern web-based administration tool built on the same configuration data as the on-premise Manager. This first-generation Web Manager provides core administrative capabilities including identity management, organizational navigation, password management, assignment workflows, and approval process configuration. The interface features a contemporary design with graphical object overviews, property editors, and integrated workflow visualization using a new web-based workflow engine. While not yet feature-complete compared to the desktop Manager—lacking some export functions and advanced features—the Web Manager represents a significant step toward cloud-ready administration. The tool is exclusive to Identity Manager version 10 and will receive ongoing development to expand functionality in future releases.

Workflow and Policy Management Capabilities

The Web Manager includes sophisticated workflow and policy management features that bring enterprise-grade configuration capabilities to the browser. Administrators can view and edit approval workflows through a redesigned visual editor with improved shapes and connection tools, configure mail templates, and manage approval policies directly from the web interface. The compliance rule editor provides a cleaner, more intuitive interface for defining SQL-based conditions with assessment criteria, documentation, and extended options. While some advanced features like list exports are planned for future versions, the current implementation successfully translates complex on-premise Manager functionality into web forms, demonstrating that browser-based tools can handle sophisticated identity governance tasks previously requiring desktop applications.

Chapters

0:00 - Web Frontend Overview
0:17 - Application Switcher
1:05 - Portal UX Improvements
3:19 - Nested Filtering Introduction
4:51 - Filter Demo: IT Department Search
8:43 - Web Manager History & Context
11:32 - New Web Manager Tour
14:15 - Identity Management Features
17:13 - Approval Workflows
18:48 - Policy & Rule Editor
21:15 - Assignment Management
23:17 - User Settings & Favorites

Key Quotes

3:32 "Now you can define your searches as you like to and you can just define them cross table."
9:06 "The reason for that very old tool that was looking extremely Jurassic is that, yeah, years ago it was just founded and then it was the ugly stepchild never getting reviewed or updated."
10:44 "First of all, the old Web Manager is completely removed. It did not exist any longer."
11:07 "That means changes will happen in the manager, typically will also be available in the Web Manager."
20:31 "The Web Manager is, of course, a first approach solving the complete manager functionality. But from that perspective, it is not finished yet."
24:51 "We see that this is, of course, a wonderful new version of that very Jurassic Manager we had in the past."

FAQ

Can I still use the old Web Manager in Identity Manager 10 LTS?

No, the legacy Web Manager has been completely removed in version 10. It has been replaced with a new, modern web-based administration tool that provides significantly improved functionality and user experience, though it's still being developed to reach feature parity with the desktop Manager.

Does the new Web Manager have all the same features as the desktop Manager?

Not yet. The Web Manager in version 10 is the first generation and provides core administrative capabilities including identity management, workflow editing, and policy configuration. Some features like list exports and certain advanced functions are planned for future releases as the tool continues to be developed.

How do I control which properties appear in the new nested filter searches?

Property visibility is controlled in two ways: by default, the system uses the wizard configuration that determines which columns can be shown globally. Alternatively, you can define portal-specific property selections in the web portal configuration to override the default behavior without changing system-wide settings.


Categories:
  • » Data Protection
Channels:
News:
Events:
Tags:
  • Identity & Access
  • Technical Deep Dive
  • Demo
  • Getting Started
  • Best Practices
  • Identity Manager 10 LTS
  • Web Portal Enhancements
  • Web Manager Redesign
  • Cross-Table Filtering
  • Workflow Management
  • Identity Administration
  • User Experience Improvements
Show more Show less

Browse videos

  • Related
  • Featured
  • By date
  • Most viewed
  • Top rated
  •  

              Video's comments: One Identity: Web Portal Enhancements & New Web Manager in IM 10 LTS

              Upcoming Webinar Calendar

              • 07/09/2026
                01:00 PM
                07/09/2026
                The HUMAN Experience: Empowering Agentic Trust in Practice
                https://www.truthinit.com/index.php/channel/2026/the-human-experience-empowering-agentic-trust-in-practice/
              • 07/14/2026
                01:00 PM
                07/14/2026
                Crafting an Elite Security Team to Achieve Championship-Level Defense
                https://www.truthinit.com/index.php/channel/2025/crafting-an-elite-security-team-to-achieve-championship-level-defense/
              • 07/14/2026
                02:00 PM
                07/14/2026
                Understanding the Crucial Role of Context in AI Data
                https://www.truthinit.com/index.php/channel/2037/understanding-the-crucial-role-of-context-in-ai-data/
              • 07/21/2026
                04:00 AM
                07/21/2026
                Strategies for Managing AI Governance and Securing App-to-LLM API Traffic
                https://www.truthinit.com/index.php/channel/1967/strategies-for-managing-ai-governance-and-securing-app-to-llm-api-traffic/
              • 07/21/2026
                01:00 PM
                07/21/2026
                HUMAN Dialogue: Insights from Attackers During the FIFA World Cup
                https://www.truthinit.com/index.php/channel/2029/human-dialogue-insights-from-attackers-during-the-fifa-world-cup/
              • 07/22/2026
                06:30 AM
                07/22/2026
                Insights and Strategies for Mastering the DPDP Framework
                https://www.truthinit.com/index.php/channel/2000/insights-and-strategies-for-mastering-the-dpdp-framework/
              • 07/28/2026
                01:00 PM
                07/28/2026
                Illumio + Netskope: Zero Trust in the Age of AI Autonomy
                https://www.truthinit.com/index.php/channel/2031/illumio-netskope-zero-trust-in-the-age-of-ai-autonomy/
              • 07/29/2026
                04:00 AM
                07/29/2026
                Real-Time Strategies for Safeguarding Against Prompt Injections
                https://www.truthinit.com/index.php/channel/1968/real-time-strategies-for-safeguarding-against-prompt-injections/
              • 07/29/2026
                12:00 PM
                07/29/2026
                Unified Data Security in Action: Uncover, Analyze, and Resolve Threats
                https://www.truthinit.com/index.php/channel/2045/unified-data-security-in-action-uncover-analyze-and-resolve-threats/
              • 08/19/2026
                12:00 PM
                08/19/2026
                Becoming Agent Ready: Insights from Cyera's Expertise
                https://www.truthinit.com/index.php/channel/2036/becoming-agent-ready-insights-from-cyeras-expertise/
              • 09/30/2026
                04:00 AM
                09/30/2026
                AI Command Center: Optimizing Visibility and Control in Your Operations
                https://www.truthinit.com/index.php/channel/2024/ai-command-center-optimizing-visibility-and-control-in-your-operations/

              Upcoming Events

              • Jul
                09

                The HUMAN Experience: Empowering Agentic Trust in Practice

                07/09/202601:00 PM ET
                • Jul
                  14

                  Crafting an Elite Security Team to Achieve Championship-Level Defense

                  07/14/202601:00 PM ET
                  • Jul
                    14

                    Understanding the Crucial Role of Context in AI Data

                    07/14/202602:00 PM ET
                    • Jul
                      21

                      Strategies for Managing AI Governance and Securing App-to-LLM API Traffic

                      07/21/202604:00 AM ET
                      • Jul
                        21

                        HUMAN Dialogue: Insights from Attackers During the FIFA World Cup

                        07/21/202601:00 PM ET
                        More events
                        Truth in IT
                        • Sponsor
                        • About Us
                        • Terms of Service
                        • Privacy Policy
                        • Contact Us
                        • Preference Management
                        Desktop version
                        Standard version