Cobalt 1.3 depends on M-Vault 19.0 or subsequent versions
M-Vault Management Support
- M-Vault Bootstrap. Enables operation in conjunction with M-Vault 19.0 to support headless bootstrap.
- Managing users in M-Vault groups, such as Directory Server Administrators and Messaging Configuration Read/Write. This enables Cobalt to control user and operator rights to access M-Vault.
- AD/LDAP passthrough support
- Allow users (per domain) to support mandatory or partial passthrough
- Set and validate passthrough entry for user
- Identify users in passthrough server that might be added to domain
- Profile Editor for supporting and managing M-Switch Profiler.
- SIC Coverage UI. Provide full list of SICS, showing which addresses each one goes to. This enables operator to ensure that all SICs are sensibly handled.
- File Transfer By Email capability is now managed by Cobalt, replacing capability previously in MConsole.
- For Organizations and Military DLs enable control manage capability functions:
- Max Message Size
- Max Line Length (for ACP 127 destinations)
- Charset Restrictions (for ACP 127 destinations)
- Allows/block attachments
- Option to show for a user which DLs the user is in, and give easy addition to other DLs. This facilitates managing DL membership.
- Non-Human Users (Special Users). Need to support accounts with passwords that are not humans. For XMPP, Email or both.
- View for end users, rather than administrators. User can:
- Change password.
- See all of own entry and modify attributes. The list of modifiable attributes can be configured.
- See references to entry and email list membership.
- User Groups, to enable management of directory groups (Distinguished Names).
Cobalt Access Control
- New Cobalt roles, that can enable selective control of which users can access directory admin controls, and which users can set OAUTH rights and can add OAUTH Clients.
- Restrict Password set/change rights, so that only selected Cobalt administrators can do this.
- When deleting a user, remove the password. This will make it safe for applications searching whole DIT as you can’t authenticate with a deleted user’s account.
- Security Clearance can be selected for any role or user, based on a configured catalogue. This supports key M-Switch and Harrier feature to check clearances.
- When assigning a new email, search entire DIT for conflicts, not just Cobalt area. This helps SASL resilience
- Can add Photos to Routed UAs and Organizations.
- Check References on Delete. Cobalt has a “References” button on user/role form that displays all references of a user/role. On deleting, references are deleted as well.
- Tool to check references to users in AD, so that when users in AD are deleted, dangling references can be picked up.
- Remove default domain concept
- On deletion of domain in Cobalt, give option to delete all the domain data
- Option to end all cobalt logged in sessions of an operator, to allow an operator to logout from all browsers with a single action
- There is also an option for an operator with appropriate rights to end sessions of another Cobalt operator.