Yandex Identity Hub release notes

Labels next to update description indicate the interface supporting the update: management console, CLI, API, or Terraform.

October 2025October 2025

• Implemented MFA policy management in an organization using the CLI and API. CLI API
• Added CLI and API commands for suspending and reactivating SAML federation users. CLI API
• Added the ability to automatically generate a password when creating a user in the CLI and API as well as the CLI password reset command. CLI API
• Now you can use the CLI to view which groups a given user belongs to within an organization. CLI
• Added the ability to manage password policies when creating or updating a user pool via the CLI and API. CLI API
• Added commands for managing OAuth applications in the CLI and API. CLI API
• Added support for the domain parameter for working with domains when managing user pools in the CLI and API. CLI API

Q3 2025Q3 2025

• Implemented the user pool management concept in organizations. Management console CLI
• Added command groups for managing user pools and local users to the CLI and API. CLI API
• Added commands for managing SAML federation domains using the CLI and API. CLI API
• Restored the option to set up access permissions to Yandex Cloud resources using federated user group mapping. Management console Terraform
• Added the option to enforce two-factor authentication for all Yandex account users of an organization. Management console
• Implemented reactivation of previously suspended users via the CLI and API. Management console CLI API

Q2 2025Q2 2025

• Identity Hub is now in Public Preview.
• Enabled the use of refresh tokens in the Yandex Cloud CLI. CLI

Q1 2025Q1 2025

• Updated user visibility management in organizations. Management console

Q4 2024Q4 2024

• Added user visibility management in organization. Management console
• OS Login package building script is now available on VMs running Ubuntu 24.04.
• Added the organization-manager.passportUserAdmin role to manage organization users with Yandex accounts.
• In Yandex Audit Trails, added events for federated user group management: CreateGroupMapping, DeleteGroupMapping, and UpdateGroupMapping.
• Implemented user notification about the expiration of their Yandex Cloud SAML certificates.

Q3 2024Q3 2024

• Implemented sending notifications within an organization. Management console
• Added a script for deletion of OS Login packets from a virtual machine.
• You can now see the last authentication date of a service account or federated users. Management console CLI API
• Added federated user deletion event to Audit Trails: DeleteFederatedUserAccounts.

Q2 2024Q2 2024

• Added the ACS URL field for Yandex Identity Hub. Management console
• Added the labels parameter to work with labels when creating federations in Terraform. Terraform
• Added OS Login support for CentOS Stream 9.
• Added validation of user numeric ID (UID) for OS Login.

Q1 2024Q1 2024

• Added an option to delete federated users via the CLI and API. CLI API
• Fixed the Replay Attack vulnerability for SAML.