Release 2.0
ACS password authentication (AAAS-2756) (AAAS-2758) (AAAS-2680) (AAAS-2679)
Administrators can now create and manage passwords on ACS. They can also prompt users to update their password when the newly-assigned password is used for the first time. Administrators can customize the settings applied to each password from Password Authenticator, under Authenticator Settings. Those settings outline the rules that must be met for a password to be assigned.
By default, each user is assigned a password when their account is created manually in ACS. Administrators can modify the authenticators automatically assigned to newly-created users from the General Settings section of the Administrator portal.
Active Directory (AD) password authentication (AAAS-2552)
Users imported into ACS with passwords from their corporate directory can now use those passwords to authenticate. The passwords can be used to authenticate to an ACS account or web applications. Any user imported into ACS through Active Directory (AD) sync cannot use an ACS password. A new gateway with a password agent must be set up to perform any AD password authentication, otherwise the AD password authentication will not be successful.
Bulk import users, groups and user-group associations (AAAS-2636) (AAAS-2637) (AAAS-2638) (AAAS-2850)
Bulk import allows administrators to upload a set of user, group, or user-group association details in CSV format and have them imported into ACS as a background task. While the ability to add account information manually or through active directory synchronization remains available, bulk import offers a middle ground where a large set of users, groups, or user-group associations can be added without the need for an on-premise agent. A table on the bulk import page shows all of the bulk operations that have been performed. The entries in that table can be filtered to only show select operations that meet the filter criteria.
Box, CitrixOnline, Office 365 and WebEx now accessible from ACS (AAAS-742) (AAAS-3072) (AAAS-3073) (AAAS-3520)
Administrators can now manage access to Box, CitrixOnline, Office 365 and WebEx accounts through ACS and facilitate access restrictions. Administrators may control which users can authenticate to the applications available through customizing each application's Resource Rules.
Create multiple gateway instances (AAAS-2685) (AAAS-2686) (AAAS-2687) (AAAS-2688)
Users with the appropriate roles can add and delete multiple instances within a Gateway. Instances can only be added within gateways that are created in ACS 2.0 or later.
Edit application settings on ACS (AAAS-2899)
Administrators can now modify the settings of applications they have configured on ACS. The settings within each application's account must be updated to match the modified application configuration settings on ACS.
Two-Factor authentication now available (AAAS-2678)
In this release, a user is prompted to engage in two-factor authentication when they have a password. The user is presented with a password challenge, followed by an authentication challenge (OTP, token authentication, or token push authentication). Users can bypass two-factor authentication by clicking on another authentication challenge option when prompted to enter their password, and completing that challenge instead.