Internal - Incorrect mapping attribute requirements for internal lookup tables for a delete mapping
Upgrader - Improved support of running the NIM update on Windows 2019 Server
Role Model - Support role mining for automatic role model configuration
KNOWN ISSUES
Name Generation - If the Synchronize Flag is enabled for a name then condition is not used in the method evaluation. If you turn off the Synchronize Flag for the name the condition is properly evaluated
Role Model Support for Exchange Online Distribution Groups
Currently the Exchange Online connector supports reading and updating Distribution Groups, but unfortunately it can only be done through a mapping. Support for using the Role Model in updating members should be made available.
Mike Sheldon
Released 🚀
0
IMPROVEMENTS AND FIXES
Internal - Support delete function for internal lookup tables with no key configured
Connectors - Dropdown did not always correctly initialize on the previously selected value.
Connectors - The default value of a settings grid interface item is used again.
KNOWN ISSUES
Upgrader - If NIM is installed on Server 2019 you will likely run into error 87 when attempting to upgrade NIM from the Version tab under settings. This is due to an issue with TLS version checking. Workaround: Run installer manually
Auditing - Datetime data of memberships and object mutations no longer incorrect
Audit Queries - Editor now correctly recognizes WITH statements with a SELECT inside it
Connectors - Powershell connectors not longer fail to export
JavaScript - Fixed some linting issues with standard JavaScript functions and objects
Repositories - Certificate Maintenance schedules can now be restored; previous they were only store in the backup
SAML - Improvements for vulnerability CVE-2025-29774 and CVE-2025-29775
Session - Endless loop of access denied was possible, add option for logout
Session - When one browser tab is idle, it will no longer logout all tabs
Snapshots - Fixed restore issue when encryption key changes, service would not start and fails with "RSAES-AEOP padding error"
Snapshots - Mailed settings are now restored properly
Snapshots - Fixed issue when restoring, while NIM did not shutdown correctly the restore would fail.
Updater - Do not abort the update with error 6 or 1077
Validation - Fixed false-positive error for Job guard events
KNOWN ISSUES
Upgrader - If NIM is installed on Server 2019 you will likely run into error 87 when attempting to upgrade NIM from the Version tab under settings. This is due to an issue with TLS version checking.
Notify Administrator when certificate is expiring or expired
ability to notify administrators when a certificate is expired or about to expire in NIM. This will be helpful in preventing any disrupting in processing.
Mike Sheldon
Released 🚀
0
13
Send email when threshold is hit
Many clients want to be notified when their thresholds are hit for the source and target systems. However, the only means of notifying them is by triggering an email on the error state of a sync. There is no distinct "threshold reached" event that we can trigger on, which makes our notifications more vague than they ought to be. It would be great to have such an event that we could use to trigger an email notification.
Steve M
Released 🚀
3
1
Google Mapping Sets for Apps
Currently it is not possible to use a mapping set in an app. With Google Users, its required to use a mapping set to populate fields like organizations. Apps should be provided the ability to set these sub-mapping fields.
Mike Sheldon
Released 🚀
1
1
REST Connector Schema Validation
Provide the ability to validate the JSON Schema for REST Connectors within VSCode
Mike Sheldon
Released 🚀
0
1
Improve Session defaults
Improve the session configuration by following closer to NIST standards
Session timeout for admin
Min: 5 minutesMax: 720 minutes (12 hours)Default: 60 minutes (1 hour)
Session timeout for non administrators
Min: 5 minutesMax: 720 minutes (12 hours)Default: 480 minutes (8 hour)
Session timeout when idle
Min: 5 minutesMax: 720 minutes (12 hours)Default: 60 minutes (1 hour)
Mike Sheldon
Released 🚀
0
1
Snapshots
Expand on the backup/restore options to provide an option to snapshot the service versus just the configuration. Currently repositories are available in the backup and restore to quickly backup small configuration changes and transport them to another service.
Snapshots will be focused on service upgrades, encryption keys, database and more. The idea being that the service can be fully restored to a previous point while also downgrading or upgrading the service automatically to match the snapshot.
Mike Sheldon
Released 🚀
0
1
Maintenance Mode
Provide the ability for the administrator to put the service in maintenance mode so no end users can login. During maintenance mode only administrators will be provided access to the studio.
Other key features
Automatically put into maintenance mode when restoring repositories or snapshotsAutomatically put into maintenance mode when upgrading the serviceNotify end users that the service will be going into maintenance mode
Mike Sheldon
Released 🚀
0
1
Session Expiration Warning
Provide user warning that session will be expiring. Additionally, make it configurable to say how long before warning user.
Mike Sheldon
Released 🚀
0
1
Improve Installer handling of connectors
Currently the installer contains outdated connectors that need to be upgraded after NIM installer is ran. We should make the following improvements
Remove all Github Connectors from the installer so they can be directly maintained through the proper versioning channelsMove connectors from the Program Files files directory into the ProgramData directory. This ensures they are not removed or overwritten by the installer. Additionally this minimizes the administrative rights needed for the service account.
Mike Sheldon
Released 🚀
0
3
Support for Let's Encrypt
Provide the ability for NIM to leverage Let's Encrypt for the HTTPS Certificate. This feature would give the administrator the ability to have automatic certificate renewal and avoid any additional costs for certificates
Mike Sheldon
Released 🚀
0
1
Multi-Line support in Apps
For the ability to provide multi-line input in the Apps
Mike Sheldon
Released 🚀
0
2
Improve Javascript editor
Upgrade the editor for any JavaScript window. It should provide the following
IntelliSense (Auto Complete)Linting (Error Checking)Improved color formatting
Mike Sheldon
Released 🚀
0
2
Audit Report Expansion
Expand the auditing app to include users accessing an app. Beyond the actions taken by a user, it would be useful to know who is using what forms and how often.
Adam P
Released 🚀
0
IMPROVEMENTS AND FIXES
Apps - Fixed issue with grid validation message being shown on load
Apps - Checkbox JavaScript validation now properly enforced
Apps - Fixed issue with logging out users when dismissing notifications
Apps - Ability to disable button on click
Apps - Fixed variable validation error using checkbox with filter and parameter
Apps - Fixed ability to set placeholder on float input text when using dark mode
Apps - Fixed issue renaming app if access group already existed
Audit Log - Fixed issue with false-positive group membership entries
Audit Query - Improve data type support for audit query results
Configuration - Fixed issues where configuration changes don't mark fields dirty
Certificates - Importing certificate no longer requires password
Connectors - Moved connectors from Program Files to ProgramData
CSV - Removed dependency for WMIC
CSV-STP - Ciphers now configurable
Internal - Fixed issue where internal passwords could be cleared unexpectedly and not logged
Multi-export - Added disclaimer for existing files in directory being uploaded via SFTP
Name Generation - "Synchronize name iterations" checkbox is removed and replaced by the "Synchronize" checkbox on each name
Password Reset - Fixed issue with vprConfirmationCodeAddress not being populated on ActionsCompleted event
REST - Support for Key/Value Responses
REST - Function execution support when resolving variables
REST - Support for ordering connection fields and hide Tenant ID
REST - Option to not send query parameters with value is empty
REST - Override support for connection fields
REST - Connection fields can now be marked required
REST - Fixed issue with child tables reporting parent table is missing
REST - Fixed issue with 404's being ignored on PATCH/PUT
REST - Resolved issue with Google Sheets records being overwritten in dataset
SAML - Logout of an SAML session should no longer present error to user
Scripts - Resolved error in NIM type definition file when audit queries result in arguments with equal names
Variables - Improved dirty field detection
KNOWN ISSUES
Validation - Job Guard events report as "not supported" but functions properly
Service - Attempting to use the upgrader service could fail to retrieve the installer, requiring manual effort of downloading and running the installer (e.g. Update error: Failed to update NIM to it's latest version. The updater service stopped with an error 6.)
JavaScript - Global functions could, e.g. parseInt(), report as "does not exist or is used before it is defined" but work properly when used
Snapshots - Snapshot restoration could fail if some database files are not properly removed in the process.
Snapshots - Mail settings are not currently included in snapshot
Currently it is possible for the retention job to delete the latest snapshot for a system which means the user is presented an error message in some pages (ie. opening a system table) until a manual import is completed. An option should be added to the Retention job to preserve the latest snapshot of a system regardless of age so that there is always a dataset available for a system.
Mike Sheldon
Released 🚀
1
IMPROVEMENTS AND FIXES
SAML - The sessionNotOrAfter attribute was not correctly used, giving all sessions a 5m timeout
SAML - When editing a new SAML configuration the authnRequestsSigned is now checked
REST - Receiving an object array while expecting a string array will crash the service
KNOWN ISSUES
Name Generation - "Synchronize" flags do show checked even though they are saved as such. This means you can easily override the flags to be not checked if you save without rechecking the boxes.
Logging - The audit log for Google membership changes can sometimes reflect changes that did not actually occur in addition to ones that did. This only occurs with Google using the Role Model.
Internal - If you attempt to update a record in the internal.passwords table but don't specify the existing the fields already populated it could clear it out.
CSV System - When using Windows Server 2025, it's possible to run into an "WMIC" error when retrieving a list of files on a CSV System.
Service - Force update from a different branch does always download from production
Service - Uniqueness constraint violation should generate a warning only when validating table data
Events - Failure when email template contains table
Validation - Incorrect used by reporting for intersystem relations
Role model – group membership parameter disappears
Jobs - No recipient causes job/table notification to stop on error
Apps - After copying an app, the tag modal is not shown when the pen icon is clicked
Apps - Incorrect handling when copying and renaming a form
Known Issues
SAML - "NotOnOrAfter" within the "Conditions" element is used to control session lifetime currently. This is always provided so it never defaults back to NIM specified timeouts. Future version will use "SessionNotOnOrAfter" within the "AuthnStatement" element, which is optional. When not specified then NIM specified timeouts are used.
A Configuration Scenario is an identifiable bundle of settings that can be used to pre-configure a NIM System. Multiple Configuration Scenarios can exist, each of which can be selected for pre-configuration of a system.
After pre-configuration of a NIM System, the system's configuration can be tailored any further, after which the resulting configuration can be stored as a new Configuration Scenario, or as a replacement of an existing one.
Configuration Scenarios are stored in the NIM Connector.
Mike Sheldon
Released 🚀
0
1
Compose Items
Ability compose items to be reused across apps. This provides the ability to standardize certain elements, rows, or forms so they can be same across multiple apps. Examples of this would be headers, footers, buttons.
Mike Sheldon
Released 🚀
0
9
Timeout Session Length control
Session timeout control for NIM login sessions. When people with various rights to perform admin rights we should be able to control the amount of time that session lives without requiring a re-authorization. How long is the current setting ? From a security perspective I want to be able to adjust custom rules based on access rights .. eg Admin sessions can only have xyz length , password reset rights etc ..
Additionally in SAML authentication support for "notOnOrAfter" attribute
David B
Released 🚀
1
IMPROVEMENTS AND FIXES
Service - When the server reconnects, socket.io communication is restored
Service - Use secure session cookies when HTTP is disabled
Service - Improved session security
Service - Update dependent packages including node
Service - Name Generation iterations limit configurable
Service - Small possible memory leak fix while processing API
Service - Improved authentication on socket.io communication.
Service - When offloading audit is enabled, the service won't start
UI - Dark mode for form construction tab displayed incorrectly
UI - Log window scrolling not correct
REST - Option to set extra headers on data retrieval per table
REST - Add the excludedFields in the array selector configuration
REST - Make it possible to override the selector configuration per endpoint
REST - Support retrieving non JSON results without text/plain content-type
REST - Respect maxCount on exponential retry configurations
REST - Allow the Google connector to override the build-in retry configuration
REST - Remove double query parameters on paged calls with link paging
REST - Body will preserve the type with fields where a variable resolves as non-string
REST - Filter out NULL values in data collection responses
Systems - Dataset statistics show errors in overview
Systems - No checking on duplicate (primary) key and reference values
Role Model - Support for multiple member tables with Role Model scoping
Configuration - When restoring a repo, only load the last successful data if the hash matches
Logs - Loading large logs in the log overview failed with Maximum call stack size exceeded
Templates - Cannot send test e-mail when configuring notification template e-mail
Apps - sort and search in grid custom column
Apps - incorrect processing of variable state
Apps - Validation error 500 between forms
LDAP - Connection reset errors are not logged anymore
Known Issues
SAML - After being released, it was discovered users are able to login with SAML but can be immediately returned to the login screen
Events - Email fails to send when tables are used in the template
Notes
This version checks uniqueness on system table keys. If a key is not unique it will fail validation.
REST - Ability to override pagination per get request
REST - Support iterator resolving in query_parameters
REST - Iterate over the processed data, instead the raw connector output
REST - When specifying path with parameters and query_parameters they were incorrectly combined
REST - When retrieving a 412 ConditionNotMet or 503 error a retry is executed
1
Google License API Retry on Failure
Implement new functionality to allow NIM to retry requests on certain status codes. For instance 503 backend errors happens a lot when adding/removing Google Licenses via API. It would be nice if NIM can retry to clean it up.
Edward F
Released 🚀
1
Known Issues
Google Workspace may retry indefinitely causing imports, jobs, and scheduler to not stop until service is restarted or a network timeout occurs.