English

Deutsch

English

Deutsch

Appearance

Changelog

2026-03-10

Documentation Changes

AI Assistant (admin audience)

Edited:

  • Using the AI Assistant — Updated Skills section. The Name field now enforces a naming format: lowercase letters, numbers, and hyphens only; maximum 64 characters. Added Additional Frontmatter field for embedding extra YAML metadata (e.g., compatibility, license) in exported SKILL.md files. Updated Import Skill procedure: extra frontmatter fields beyond name and description now populate the Additional Frontmatter field automatically on import.

Account Mapping (admin audience)

Edited:

  • Account Mapping — Corrected the behavior note for rules that combine Account Type and Account Classification. Both conditions must now match for a rule to apply. Previously the documentation stated that matching either condition was sufficient.

2026-03-06

Documentation Changes

AI Assistant (admin audience)

Edited:

  • Using the AI Assistant — Updated Skills section for PR 1475. Skills now use a ZIP resource archive instead of per-skill tools and embeddings. Added Import Skill workflow (import a complete skill from a ZIP file). Updated field table: "Prompt Hint" renamed to "Prompt"; Tools and Embeddings fields removed; Resources field added. Rewrote "How Skills Work with Agents" section to explain the progressive disclosure model (skill discovery → activation → resource access).

Universal Collector Library (admin audience)

Added:

  • APT Hosts (Falcon Circulation) — New topic for APT Hosts Falcon Circulation (SQL + LDAP modules). Covers data collected, module requirements, and prerequisites using the base Microsoft SQL collector.
  • Atlassian — New topic for the Atlassian platform (Jira, Confluence, and related products). Covers Users, Managed Accounts, Groups, and System + Application Roles via REST.
  • Blackline — New topic for the Blackline financial close management platform. Covers Users, Teams (Groups), and Roles via REST.
  • Deel — New topic for the Deel HR and payroll platform. Covers Users and Groups via REST.
  • Microsoft SQL — Application-Specific Collectors — New topic for application-specific SQL collectors (Kiwi, Phoenix, Ripplestone, Falcon, Idera, DBAudit). Covers application-level user and entitlement collection via stored procedures.
  • Workato — New topic for the Workato integration and automation platform. Covers Collaborators, End Users, Groups, and project/environment-level Roles via REST.

Discover Configuration (admin audience)

Edited:

  • Clients — Full rewrite. Added concept block explaining what clients are and why they are needed. Added mermaid flow diagram. Added field reference table (Name, Site, Modules, Connection Targets, Advertise internal/external, Status, Version, Component, Platform, Uptime). Expanded procedures: Add a Client, Edit a Client, Monitor Status, View Live Logs, Delete a Client. Each procedure includes purpose, before-you-begin, numbered steps, and result.
  • Credential Providers — Full rewrite. Added concept block explaining vault credential providers and how they work. Added supported provider types reference (CyberArk, BeyondTrust). Added field reference table. Expanded procedures: Configure a Credential Provider, Import an existing certificate, Generate a certificate (testing only). Added certificate management reference (Copy Client Certificate, Copy CA Certificate, Delete Certificate).

2026-03-05

Documentation Changes

AI Assistant (admin audience)

Edited:

  • Using the AI Assistant — Added Skills feature. New "Set Up Skills" section covering skill creation (name, description, prompt hint, tools, embeddings), how skills work as callable tools within agents, and the skill duplication workflow. Updated "Set Up an Agent" table with the new Skills field.

Data Sources (admin audience)

Edited:

  • Universal Data Source — Added "Identity and Display Name Attributes" section to the IGA Integration block. Documents the new Display Name Attribute field, its default value (hydden_displayName), and when to override it.
  • SailPoint Data Source — Added "Display Name Attribute" section under ISC Bidirectional Sync. Documents that Hydden now reads and tracks the isDisplay schema flag for both ISC and IIQ, ensuring display names match the values defined in the SailPoint schema.

Attestation & Certifications (admin audience)

Added:

  • Certifications — New comprehensive guide to the Certifications feature. Covers certification types (Identity Integrity, Schema Integrity, Report Integrity), the certification lifecycle (Pending → In Progress → Completed/Abandoned), how to review and complete a certification, export to CSV, source comparison mode, priority and due date management, scheduled certifications, and workflow trigger integration.

Settings (admin audience)

Edited:

  • Certificates — Rewrote with Information Mapping structure. Added concept block, step-by-step procedure with required and recommended fields, default certificate guidance, and certificate list behavior (deleted certificates are excluded automatically).

Attestation API (developer audience)

Edited:

  • Attestation & Certifications API — Major expansion. Added certification types and statuses reference endpoints with full response examples. Expanded create/update endpoint with full field reference and status transition table. Added tombstoned and source query parameters to the list endpoint. Added columns endpoint with response example. Expanded records endpoint with chunked streaming notes. Added Export Options section documenting CSV export filename format, column state, and activity logging. Added column state persistence reference for attestation settings. Updated scheduled certifications with last-run seed behavior.

2026-03-04

Documentation Changes

AI Assistant (admin audience)

Edited:

  • Using the AI Assistant — Added hybrid search documentation for knowledge base collections. New collection fields: Default Top K, Default Alpha, Default Min Score. Added Hybrid Search section explaining semantic vs keyword search balance.

Automation (admin audience)

Edited:

  • Triggers — Added Certification Status trigger type with 12 available variables. Updated overview table from 9 to 10 trigger types across 7 categories.
  • Workflows — Added Certification Status and Scheduled Report to trigger dropdown. Documented template variable support in the To field for email workflows.

Data Sources (admin audience)

Edited:

  • SailPoint Data Source — Added Role Sync section documenting separate role and group entitlement collection for ISC. Updated key capabilities and monitoring sections.

Credentials (admin audience)

Edited:

  • Vaulted Credential — Added CyberArk username field selection documentation. Vaulted credentials now expose platform-specific fields for username selection.

2026-03-03

Documentation Changes

Threat Detection (admin audience)

Edited:

  • Threat Detection Rules — Major rewrite. Removed generic filler content and added Hydden-specific threat score architecture (8 categories, 0–100 scoring), threat score ranges (Low/Moderate/Critical), detection-only vs scored rules concept, aggregation methods (Totals Average, Maximum, Weighted Average), supported compliance frameworks (NIST CSF V2.0, CIS, CRITIER4V2), and full rule properties reference table.
  • Default Threat Rules — Expanded from 11 rules to 27 rules organized by category (Privilege, Password & Security, Account Activity, Breaches, Group Membership, Owner Mapping, Special Rules). Added Default State, Detection Only, and Framework columns. Fixed Z-Score score from 8 to 5 to match source code. Removed stale commented-out data.
  • Group Membership Deviation (Z-Score) — Expanded from 35 to 86 lines. Added Z-Score formula, default parameters table, worked example, interpretation guide, threshold customization guidance, NIST CSF V2.0 / PR.AA-05 compliance reference, and report column descriptions.
  • Configure a Threat Rule — Added full rule configuration options table, detection-only rules concept, propagation type concept (max vs sum), score value guidance (1–10 severity scale), and expanded procedure with platform/data source filter steps.

Identity Management (admin audience)

Edited:

  • Ownership — Added identity concept block, owner types reference table (Human/Service/Resource/Vault/Other, values 0–4), identity status lifecycle reference (8 statuses: Active through Deceased), expanded status dropdown from 2 to 8 options, and added Run Mapper, Delete Unmapped Owners, and Block Remapping concept explanations.
  • Owner Creation — Added concept block explaining rule purpose, create option modes reference (Always/If Mapped/IGA), data population by source table (Azure AD/Active Directory/Okta field mappings), and rule priority strategy.
  • Account Mapping — Added concept block, expanded match properties with Custom and IGA options, added Equals operator, rule ordering strategy, match vs create rule interaction reference, and second RegEx example (UPN domain extraction).
  • Classification Rules — Added concept block, Suspicious Account default classification, fixed CVE-2024-42793 to CVE-2023-42793, added Equals operator, 15 available query fields reference (Path through Group Name), rule flags reference (isAlert, isRepeatable, Allow Workflow Trigger), and CVE classifications concept.

2026-02-27

Documentation Changes

AI Assistant (admin audience)

Edited:

  • Using the AI Assistant — Added Agent Type field (Agentic vs Completion) to agent configuration. Added Base URL, Input cost per 1M tokens, and Output cost per 1M tokens fields to provider configuration. Updated session viewing to document per-session cost tracking.

AI Assistant (developer audience)

Edited:

  • DEV AI Assistant — Added Forward Direction: Modern Agentic Orchestration section. Covers Skills, Sub-agents, Planning Mode, Context Window Management, three orchestration patterns, and a phased implementation plan.

Search (end-user audience)

Edited:

  • Search Library — Reordered query categories to match updated display order. "Passwords, Secrets & Certificates" moved to position 4, "Resources & Entitlements" to position 7, "Classification & Certification" to position 8.

2026-02-26

Documentation Changes

On-prem Deployment (admin audience)

Added:

  • Clustered Deployment Architecture — New documentation for clustered on-premises deployments covering high availability, disaster recovery, and multi-site configurations. Includes actual timeout values from codebase (ProbeInterval: 15s, OfflineThreshold: 60s, NetworkTimeout: 300s, RpcConnectTimeout: 10s), quorum formula ((n/2)+1) with 5-node recommendation for multi-site DR, leaf node architecture diagrams, JetStream persistence details, and failover testing procedures with expected timing metrics.

Edited:

  • On-prem Deployment Overview — Reorganized with sections for single server and clustered deployments. Added link to new clustered deployment guide.

Data Sources (admin audience)

Edited:

  • Azure Data Source — Added Custom Security Attributes Collection section documenting Entra ID custom security attribute collection with enable procedure, collected data reference, search guidance, and prerequisite permissions (CustomSecAttributeAssignment.Read.All, Attribute Assignment Reader role). Converted permissions from code block to table format for better rendering.

Attestation API (developer audience)

Edited:

  • Attestation & Certifications API — Added Scheduled Certifications section documenting cron-based certification scheduling with timezone support, automatic skip for tombstoned collectors, and settings field reference.

Search (end-user audience)

Edited:

  • Global Search — Added Date Filter Options reference table documenting relative date filters (The next month, The previous month, The next six months, Today, Today or later) for date columns.
  • Search Library — Reorganized query categories: renamed "Ownership & Mapping" to "Classification & Certification", consolidated credential queries into "Passwords, Secrets & Certificates" category (including MFA, SSH keys, secrets & certificates), added structured tables to Vault Integrations section. Query "Account Credentials" renamed to "Account Secrets & Certificates".

2026-02-23

Documentation Changes

Identity Management (admin audience)

Added:

  • Safes — Updated with timeline integration, grid controls reference table, and enhanced foreign security principal search guidance.

Edited:

  • Global Search — Added saved search scheduling feature and schedule assignment to saved search workflow.

Data Sources (admin audience)

Edited:

  • Azure Data Source — Added Sign-In Activity Collection section documenting optimized API call for last logon data. Enhanced App Registration Credential Collection with service principal linkage details.
  • Windows Host Data Source — Expanded Foreign Security Principals section with edge type details and search guidance.

Automation (admin audience)

Edited:

  • Triggers — Added configuration steps for Scheduled Report triggers linking to Global Search schedule assignment.

2026-02-17

Documentation Changes

Data Sources (admin audience)

Edited:

  • Dayforce Data Source — Added Non-Employee Accounts Report section documenting custom report collection feature with configuration properties (Report XRefCode, Username Property, Rolename Property, Start Date Property) and Mermaid workflow diagram.
  • SailPoint Data Source — Added duplicate application handling and attribute schema mapping to ISC Sync capabilities. Added troubleshooting entries for duplicate applications and description sync issues.

Entity Details (end-user audience)

Edited:

  • Account Details — Added Role Membership tab section documenting role assignment visibility with navigation to Role Details.
  • Owner Details — Added Role Membership tab section documenting aggregated role assignments across all mapped accounts.

API Reference (developer audience)

Edited:

  • Search & Query API — Added Account Role Membership (1gbrYrq61lu5dymofZGYu8ACOTT) and Owner Role Membership (GcN0B8yAZVqXi3SvOjLVeL581I8) saved searches to the catalog.
  • Query Data Reference — Added field reference tables for Account Role Membership (query 6jZNu3bAmCBJ5rZtN6V1FDQN6ms) and Owner Role Membership (query XxQ9DzWCqtCIUNduJ8AmOsf6oVR) queries.

2026-02-13

Documentation Changes

Configuration Reference (admin audience)

Edited:

  • Configuration Reference Overview — Added concept block explaining purpose and audience relevance. Restructured as reference table linking to subtopics.
  • Modules — Full rewrite: split single flat table into categorized collector tables (Cloud/SaaS, Data Center, Databases, Orchestration, Vault/PAM, IGA/Universal) with platform IDs and collection methods, plus separate platform modules table. Added concept block, module type definitions, and StrongDM/Tableau entries.
  • Collected Data — Full rewrite: replaced single table with categorized tables by platform type. Removed stale "Coming Soon" entries and resolved unknown "?" values for BeyondTrust/CyberArk. Added column definitions reference, legend table, and StrongDM/Tableau/Dayforce entries. Updated German translations for all three pages.

Settings (admin audience)

Edited:

  • Data Source Presets — Rewrote with Information Mapping structure (concept + procedure blocks). Added CSV file format reference table with accepted column headers, three CSV examples (Linux with custom args, hostname-only minimal, Windows with port/environment), Mermaid workflow diagram, import result details, and UTF-8/validation tips. Updated German translation.

Integrations (end-user and admin audience)

Edited:

  • Integrations Overview — Restructured with conceptual introduction, category descriptions, corrected links, and added missing configuration references
  • CyberArk Integration — Added end-user conceptual write-up with "What It Is", "Why It Matters", "How It Works" sections, Mermaid data flow diagram, capabilities table, and "What You Can Do" end-user guidance
  • BeyondTrust Integration — Added end-user conceptual write-up with "What It Is", "Why It Matters", "How It Works" sections, Mermaid data flow diagram, capabilities table, and "What You Can Do" end-user guidance
  • BeyondTrust Data Source — Fixed incorrect anchor IDs (referenced CyberArk instead of BeyondTrust), improved prerequisite formatting
  • Viewing BeyondTrust Data — Fixed incorrect image alt text
  • Onboarding Discovered Accounts to CyberArk — Fixed broken link to German locale path
  • Updated all integration pages with localization_status: translated frontmatter
  • Updated German translations for all modified integration pages

2026-02-12

Documentation Changes

API Reference (developer audience)

2026-02-11

Documentation Changes

Updated documentation for baseline product changes:

SailPoint Data Source

  • Added comprehensive ISC bidirectional sync documentation
  • Documented account and entitlement upload capabilities
  • Included ISC sync configuration workflow and troubleshooting
  • Added data flow diagram

Universal Collector

  • Documented sandboxed Python scripting capabilities and syntax
  • Added Hydden.platform object documentation for accessing data source configuration
  • Included Expect/interactive session handling for CLI-based systems
  • Added complete collection script examples

Active Directory Collector

  • Added Group Managed Service Accounts (GMSA) support documentation
  • Documented Foreign Security Principal (FSP) resolution across trusted domains
  • Included cross-domain group membership configuration

LDAP Collector

  • Added multiple OU configuration (semicolon-separated)
  • Documented IBM Security Verify Server support
  • Added IBM-ENTRYUUID attribute documentation
  • Included configurable search parameters

Linux Host Collector

  • Added dzdo (Centrify/Delinea) privilege elevation support
  • Documented Sudo Shell mode configuration
  • Added comprehensive privilege elevation troubleshooting guide

2026-01-19

Hydden Platform v1.19.0

Documentation Changes

Added:

Edited:

2025-11-25

Hydden Platform v1.18.6

2025-11-20

Hydden Platform v1.18.5

2025-11-17

Hydden Platform v1.18.2

Documentation Changes

Added:

Edited:

2025-11-07

Hydden Platform v1.17.7

2025-11-03

Hydden Platform v1.17.6

2025-10-28

Hydden Platform v1.17.3

2025-10-21

Hydden Platform v1.17.2

2025-10-10

Hydden Platform v1.17.0

Documentation Changes

Added:

Edited:

2025-09-08

Hydden Platform v1.16.0

Documentation Changes

Added:

Edited:

2025-08-01

Hydden Platform v1.15.0

Documentation Changes

Added:

Edited:

2025-06-18

Hydden Platform v1.14.2

2025-06-03

Hydden Platform v1.14.1

2025-05-30

Hydden Platform v1.14.0

Documentation Changes

Added:

Edited:

2025-05-16

Hydden Platform v1.12.4

2025-05-12

Hydden Platform v1.12.3

Documentation Changes

Edited:

2025-05-08

Hydden Platform v1.12.2

2025-05-05

Hydden Platform v1.12

Documentation Changes

Added:

Edited:

2025-04-21

Hydden Platform v1.11

Documentation Changes

Added:

Edited:

2025-04-11

Hydden Platform v1.10.1

2025-04-08

Hydden Platform v1.10

Documentation Changes

Edited:

2025-03-26

Hydden Platform v1.9

Documentation Changes

Added:

Edited:

2025-03-07

Hydden Platform v1.8

Documentation Changes

Added:

Edited:

2025-02-26

Hydden Platform v1.7.1

2025-02-24

Hydden Platform v1.7

Documentation Changes

Added:

Edited:

2025-02-14

Hydden Platform v1.6.1

2025-02-10

Hydden Platform v1.6

Documentation Changes

Added:

Edited:

2025-01-28

Hydden Platform v1.5.1

2025-01-24

Hydden Platform v1.5

2025-01-14

Hydden Platform v1.4

2024-12-13

Hydden Platform v1.3

2024-11-29

Hydden Platform v1.2

2024-11-15

Hydden Platform v1.1.5

2024-10-25

Hydden Platform v1.1.4

2024-10-14

Hydden Platform v1.1.3

2024-09-17

Hydden™, Inc. officially launches on this date.

Hydden Documentation and Training Hub

Copyright © 2026 Hydden