Release Notes

Note: Pivotal Platform is now part of VMware Tanzu. In v1.12 and later, Pivotal Single Sign‑On is named Single Sign‑On for VMware Tanzu.

These are release notes for the Single Sign‑On for VMware Tanzu.

For product versions and upgrade paths, see Upgrade Planner.

Long-Term Support for Single Sign‑On for VMware Tanzu v1.14

Single Sign‑On v1.14 is a long-term supported (LTS) version. Single Sign‑On v1.14 will be supported through April 2022.

Over the lifecycle of Single Sign‑On v1.14, VMware will release security patches that occasionally include feature enhancements and maintenance updates.

For more information about Single Sign‑On v1.14 LTS, please contact your Account Team.

v1.14.2

Release Date: February 11, 2021

Resolved Issues

This release has the following fix:

  • The number of external group mappings that you can manage through the UI has increased from 100 to 500.

Known Issues

This release has the following issue:

  • Authorization for Okta OpenID Connect (OIDC): When using an Okta OIDC provider, the roles claim in the ID token does not get populated with external identity provider (IdP) groups. This impacts the mapping of external IdP groups to scopes. Despite this limitation, you can still use Okta OIDC provider for authentication.

v1.14.1

Release Date: December 23, 2020

Resolved Issues

This release has the following fix:

  • In Apps Manager, the Manage link for SSO service instances now links to the correct page for all instances. Previously, this link did not work for SSO service instances created with Single Sign‑On v1.8 or earlier.

    For an example of how the Manage link is used, see Monitor App Events.

Known Issues

This release has the following issue:

  • Authorization for Okta OpenID Connect (OIDC): When using an Okta OIDC provider, the roles claim in the ID token does not get populated with external identity provider (IdP) groups. This impacts the mapping of external IdP groups to scopes. Despite this limitation, you can still use Okta OIDC provider for authentication.

v1.14.0

Release Date: December 4, 2020

Features

New features and changes in this release:

  • Removes the following from the SSO Operator Dashboard:

    • The internal user store is no longer configurable from the SSO Operator Dashboard. However, you can manage internal users using the UAA Command Line Client (UAAC). For more information, see Configuring Internal User Store.
    • The toggle to the legacy SSO Operator Dashboard is no longer available.
  • Ability to specify buildpack: Adds the ability to specify the buildpack that Single Sign‑On uses when it pushes its component apps.

    For more information, see Install Single Sign‑On Using Ops Manager in Installing Single Sign‑On for VMware Tanzu.

Known Issues

This release has the following issue:

  • Authorization for Okta OpenID Connect (OIDC): When using an Okta OIDC provider, the roles claim in the ID token does not get populated with external identity provider (IdP) groups. This impacts the mapping of external IdP groups to scopes. Despite this limitation, you can still use Okta OIDC provider for authentication.

Viewing Release Notes for Another Version

To view the release notes for another product version, select the version from the dropdown at the top of this page.